securedns1.planmygift.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:0e:bf:f9:60:18:95:ab:f3:5f:a7:c6:f8:cc:c4:91:68:cb was issued on by Let's Encrypt.
With 67 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=securedns1.planmygift.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:0e:bf:f9:60:18:95:ab:f3:5f:a7:c6:f8:cc:c4:91:68:cbSerial Number (int): 266355988310345691525143899219886580263115
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 40:3b:60:f5:f5:77:08:6e:bf:88:0b:1f:d0:88:07:b8:23:9a:7f:c1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 41:2b:0d:ea:40:3e:cd:98:f8:5a:87:9e:30:15:71:91:d8:c2:7e:be
Fingerprint (sha256): 01:ab:73:97:cf:84:18:d3:3d:a0:a1:14:01:31:b8:78:2b:3a:a4:de:d2:ab:78:ea:a0:97:1b:f2:ec:35:45:01
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate securedns1.planmygift.org
67
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for securedns1.planmygift.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
foreversyracuse.syr.edu
giftplanning.chiomega.com
giftplanning.colostate.edu
giftplanning.emory.edu
giftplanning.harleyschool.org
giftplanning.isugift.org
giftplanning.northwestern.edu
giftplanning.utk.edu
legacy.amcpfoundation.org
legacy.pathfinder.org
legacy.vermontpbs.org
llulegacy.org
montereybayaquarium.oceanlegacycircle.org
mycathedrallegacy.com
mylegacy.utmb.edu
mylegacygift.wmualumni.org
plan.capitalareafoodbank.org
planmygift.sfspca.org
plannedgiving.afmonline.org
plannedgiving.allb.org
plannedgiving.alliancetheatre.org
plannedgiving.alphachirho.org
plannedgiving.asianart.org
plannedgiving.assumption.edu
plannedgiving.atlantasymphony.org
plannedgiving.barnard.edu
plannedgiving.blakeschool.org
plannedgiving.breckschool.org
plannedgiving.bsomusic.org
plannedgiving.calpoly.edu
plannedgiving.cancersupportcommunity.org
plannedgiving.central.edu
plannedgiving.childrensnational.org
plannedgiving.gbfb.org
plannedgiving.gcfb.org
plannedgiving.gnof.org
plannedgiving.greensboroday.org
plannedgiving.grinnell.edu
plannedgiving.hebff.org
plannedgiving.hf.org
plannedgiving.high.org
plannedgiving.johnstonhealth.org
plannedgiving.juilliard.edu
plannedgiving.kansashealthsystem.com
plannedgiving.lehigh.edu
plannedgiving.mosaicinfo.org
plannedgiving.msuaf.org
plannedgiving.muttville.org
plannedgiving.pitt.edu
plannedgiving.pprm.org
plannedgiving.rangelandtrust.org
plannedgiving.sdsu.edu
plannedgiving.shfb.org
plannedgiving.sja1890.org
plannedgiving.st-agnes.org
plannedgiving.transforminglives.org
plannedgiving.umbc.edu
plannedgiving.uso.org
plannedgiving.utfoundation.org
plannedgiving.weraise.org
plannedgiving.woodruffcenter.org
plannedgiving.wtxfoodbank.org
plannedgiving.wvwc.edu
plannedgiving.ymcabr.org
securedns1.planmygift.org
www.llulegacy.org
www.mycathedrallegacy.com
giftplanning.chiomega.com
giftplanning.colostate.edu
giftplanning.emory.edu
giftplanning.harleyschool.org
giftplanning.isugift.org
giftplanning.northwestern.edu
giftplanning.utk.edu
legacy.amcpfoundation.org
legacy.pathfinder.org
legacy.vermontpbs.org
llulegacy.org
montereybayaquarium.oceanlegacycircle.org
mycathedrallegacy.com
mylegacy.utmb.edu
mylegacygift.wmualumni.org
plan.capitalareafoodbank.org
planmygift.sfspca.org
plannedgiving.afmonline.org
plannedgiving.allb.org
plannedgiving.alliancetheatre.org
plannedgiving.alphachirho.org
plannedgiving.asianart.org
plannedgiving.assumption.edu
plannedgiving.atlantasymphony.org
plannedgiving.barnard.edu
plannedgiving.blakeschool.org
plannedgiving.breckschool.org
plannedgiving.bsomusic.org
plannedgiving.calpoly.edu
plannedgiving.cancersupportcommunity.org
plannedgiving.central.edu
plannedgiving.childrensnational.org
plannedgiving.gbfb.org
plannedgiving.gcfb.org
plannedgiving.gnof.org
plannedgiving.greensboroday.org
plannedgiving.grinnell.edu
plannedgiving.hebff.org
plannedgiving.hf.org
plannedgiving.high.org
plannedgiving.johnstonhealth.org
plannedgiving.juilliard.edu
plannedgiving.kansashealthsystem.com
plannedgiving.lehigh.edu
plannedgiving.mosaicinfo.org
plannedgiving.msuaf.org
plannedgiving.muttville.org
plannedgiving.pitt.edu
plannedgiving.pprm.org
plannedgiving.rangelandtrust.org
plannedgiving.sdsu.edu
plannedgiving.shfb.org
plannedgiving.sja1890.org
plannedgiving.st-agnes.org
plannedgiving.transforminglives.org
plannedgiving.umbc.edu
plannedgiving.uso.org
plannedgiving.utfoundation.org
plannedgiving.weraise.org
plannedgiving.woodruffcenter.org
plannedgiving.wtxfoodbank.org
plannedgiving.wvwc.edu
plannedgiving.ymcabr.org
securedns1.planmygift.org
www.llulegacy.org
www.mycathedrallegacy.com
Other certificates including the domain name planmygift.org
(limited to 100 certificates)
securedns2.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
*.planmylegacy.org
planmygift.org
securedns2.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns4.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns4.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
securedns3.planmygift.org
*.planmylegacy.org
securedns2.planmygift.org
securedns1.planmygift.org
securedns3.planmygift.org
securedns3.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
planmygift.org
securedns2.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
planmygift.org
securedns4.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
planmygift.org
planmygift.org
securedns.planmygift.org
securedns4.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns4.planmygift.org
securedns2.planmygift.org
securedns4.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
securedns2.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
planmygift.org
securedns3.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
planmygift.org
*.planmylegacy.org
securedns.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns3.planmygift.org
securedns2.planmygift.org
securedns2.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
*.PLANMYGIFT.ORG
securedns2.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
*.planmylegacy.org
planmygift.org
securedns2.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns4.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns4.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
securedns3.planmygift.org
*.planmylegacy.org
securedns2.planmygift.org
securedns1.planmygift.org
securedns3.planmygift.org
securedns3.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
planmygift.org
securedns2.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
planmygift.org
securedns4.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
planmygift.org
planmygift.org
securedns.planmygift.org
securedns4.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns4.planmygift.org
securedns2.planmygift.org
securedns4.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
securedns2.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
planmygift.org
securedns3.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
planmygift.org
*.planmylegacy.org
securedns.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns3.planmygift.org
securedns2.planmygift.org
securedns2.planmygift.org
securedns2.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns2.planmygift.org
*.PLANMYGIFT.ORG
securedns2.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
securedns.planmygift.org
Certificate
The complete raw certificate details for securedns1.planmygift.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIMmjCCC4KgAwIBAgISAw6/+WAYlavzX6fG+MzEkWjLMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMTYxNjE2MDhaFw0y MDA0MTUxNjE2MDhaMCQxIjAgBgNVBAMTGXNlY3VyZWRuczEucGxhbm15Z2lmdC5v cmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvtPWY63hwB9IpOEaE IAY3eOvs/NleBeq8m19E9prgEiGTJBtcgfIiF+Z63MqXAzYqbySlqZolKNODm+Cv KZV3T090nHFYlW+3RKhoq8Rj3bHnaR16OpV+ImLdqqGswR7eWFrXqCDgY0KGS41J yK3febhyxTJkSXpFGT0dkGAEqyGA1xzLGY3+HhEuJ5SXZx5ATl/RSaJRydMkd/3s kSxTMvhQQ4pqsUhunDhas5btK9mgUTvnwavqefzbz4E6FnXp9JOLEp9HuGESU6WF DiY8NOA+Wwqe6G8yz4aUp1u2NtpL+mWeXqQ44KvSpWpH5NV74F5d/D06voZQ6BN6 2kJjAgMBAAGjggmeMIIJmjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFEA7YPX1dwhu v4gLH9CIB7gjmn/BMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wggdSBgNVHREEggdJMIIHRYIXZm9yZXZlcnN5cmFjdXNl LnN5ci5lZHWCGWdpZnRwbGFubmluZy5jaGlvbWVnYS5jb22CGmdpZnRwbGFubmlu Zy5jb2xvc3RhdGUuZWR1ghZnaWZ0cGxhbm5pbmcuZW1vcnkuZWR1gh1naWZ0cGxh bm5pbmcuaGFybGV5c2Nob29sLm9yZ4IYZ2lmdHBsYW5uaW5nLmlzdWdpZnQub3Jn gh1naWZ0cGxhbm5pbmcubm9ydGh3ZXN0ZXJuLmVkdYIUZ2lmdHBsYW5uaW5nLnV0 ay5lZHWCGWxlZ2FjeS5hbWNwZm91bmRhdGlvbi5vcmeCFWxlZ2FjeS5wYXRoZmlu ZGVyLm9yZ4IVbGVnYWN5LnZlcm1vbnRwYnMub3Jngg1sbHVsZWdhY3kub3Jngilt b250ZXJleWJheWFxdWFyaXVtLm9jZWFubGVnYWN5Y2lyY2xlLm9yZ4IVbXljYXRo ZWRyYWxsZWdhY3kuY29tghFteWxlZ2FjeS51dG1iLmVkdYIabXlsZWdhY3lnaWZ0 LndtdWFsdW1uaS5vcmeCHHBsYW4uY2FwaXRhbGFyZWFmb29kYmFuay5vcmeCFXBs YW5teWdpZnQuc2ZzcGNhLm9yZ4IbcGxhbm5lZGdpdmluZy5hZm1vbmxpbmUub3Jn ghZwbGFubmVkZ2l2aW5nLmFsbGIub3JngiFwbGFubmVkZ2l2aW5nLmFsbGlhbmNl dGhlYXRyZS5vcmeCHXBsYW5uZWRnaXZpbmcuYWxwaGFjaGlyaG8ub3JnghpwbGFu bmVkZ2l2aW5nLmFzaWFuYXJ0Lm9yZ4IccGxhbm5lZGdpdmluZy5hc3N1bXB0aW9u LmVkdYIhcGxhbm5lZGdpdmluZy5hdGxhbnRhc3ltcGhvbnkub3JnghlwbGFubmVk Z2l2aW5nLmJhcm5hcmQuZWR1gh1wbGFubmVkZ2l2aW5nLmJsYWtlc2Nob29sLm9y Z4IdcGxhbm5lZGdpdmluZy5icmVja3NjaG9vbC5vcmeCGnBsYW5uZWRnaXZpbmcu YnNvbXVzaWMub3JnghlwbGFubmVkZ2l2aW5nLmNhbHBvbHkuZWR1gihwbGFubmVk Z2l2aW5nLmNhbmNlcnN1cHBvcnRjb21tdW5pdHkub3JnghlwbGFubmVkZ2l2aW5n LmNlbnRyYWwuZWR1giNwbGFubmVkZ2l2aW5nLmNoaWxkcmVuc25hdGlvbmFsLm9y Z4IWcGxhbm5lZGdpdmluZy5nYmZiLm9yZ4IWcGxhbm5lZGdpdmluZy5nY2ZiLm9y Z4IWcGxhbm5lZGdpdmluZy5nbm9mLm9yZ4IfcGxhbm5lZGdpdmluZy5ncmVlbnNi b3JvZGF5Lm9yZ4IacGxhbm5lZGdpdmluZy5ncmlubmVsbC5lZHWCF3BsYW5uZWRn aXZpbmcuaGViZmYub3JnghRwbGFubmVkZ2l2aW5nLmhmLm9yZ4IWcGxhbm5lZGdp dmluZy5oaWdoLm9yZ4IgcGxhbm5lZGdpdmluZy5qb2huc3RvbmhlYWx0aC5vcmeC G3BsYW5uZWRnaXZpbmcuanVpbGxpYXJkLmVkdYIkcGxhbm5lZGdpdmluZy5rYW5z YXNoZWFsdGhzeXN0ZW0uY29tghhwbGFubmVkZ2l2aW5nLmxlaGlnaC5lZHWCHHBs YW5uZWRnaXZpbmcubW9zYWljaW5mby5vcmeCF3BsYW5uZWRnaXZpbmcubXN1YWYu b3JnghtwbGFubmVkZ2l2aW5nLm11dHR2aWxsZS5vcmeCFnBsYW5uZWRnaXZpbmcu cGl0dC5lZHWCFnBsYW5uZWRnaXZpbmcucHBybS5vcmeCIHBsYW5uZWRnaXZpbmcu cmFuZ2VsYW5kdHJ1c3Qub3JnghZwbGFubmVkZ2l2aW5nLnNkc3UuZWR1ghZwbGFu bmVkZ2l2aW5nLnNoZmIub3JnghlwbGFubmVkZ2l2aW5nLnNqYTE4OTAub3Jnghpw bGFubmVkZ2l2aW5nLnN0LWFnbmVzLm9yZ4IjcGxhbm5lZGdpdmluZy50cmFuc2Zv cm1pbmdsaXZlcy5vcmeCFnBsYW5uZWRnaXZpbmcudW1iYy5lZHWCFXBsYW5uZWRn aXZpbmcudXNvLm9yZ4IecGxhbm5lZGdpdmluZy51dGZvdW5kYXRpb24ub3Jnghlw bGFubmVkZ2l2aW5nLndlcmFpc2Uub3JngiBwbGFubmVkZ2l2aW5nLndvb2RydWZm Y2VudGVyLm9yZ4IdcGxhbm5lZGdpdmluZy53dHhmb29kYmFuay5vcmeCFnBsYW5u ZWRnaXZpbmcud3Z3Yy5lZHWCGHBsYW5uZWRnaXZpbmcueW1jYWJyLm9yZ4IZc2Vj dXJlZG5zMS5wbGFubXlnaWZ0Lm9yZ4IRd3d3LmxsdWxlZ2FjeS5vcmeCGXd3dy5t eWNhdGhlZHJhbGxlZ2FjeS5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYB BAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5v cmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgDwlaRZ8gDRgkAQLS+TiI6tS/4d R+OZ4dA0prCoqo6ycwAAAW+vWujlAAAEAwBHMEUCIBivj52qj7Whd90I2X+IBtgy CXHwP7vrc/uDhir2zPQDAiEA2eelXCIefBOyuZe8P/MtnBX4o4Okq2BEmhjClJ/+ zaEAdgAHt1wb5X1o//Gwxh0jFce65ld8V5S3au68YToaadOiHAAAAW+vWukRAAAE AwBHMEUCIQDGlWrVAMUbBsjcfa3utGnfShZuKRam3zTYYttYZf707QIgPte7nELX iB3KuHIwhLRuIVqfOARinLpeYkYq8pPZJMUwDQYJKoZIhvcNAQELBQADggEBABTf mkmub146V7RSLkqWIG+GPvMGipCq4qnZgOsR9uMiCnTu0hFQUuoQGKfm7/sNMrHy M92LXL2JpWoKJyBVWU2nmX8wVGHJGnUincSP0dH8iwjKfOCrvBh3K1Y7hUwig+wX nLbYTziE2Ev4AxDy9z9QJ7zEViUTdeRBH+YawErhZXmR15JI5nmHwjpE6+S+KThJ cgrkN8PbbYpX6TlSZ/tvIz/rpgz6RM4M5XwRDCkn9NDJqixVdddoJKjQXhENh/// 2JZwcQxciJ944sCxvj7f5rLgIoFyem3Qs6I/lXMve80EyI9OkCF5UyQ6N0SuPjRO b1uk4vSGSEaBBd/wdeg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7T1mOt4cAfSKThGhCAG N3jr7PzZXgXqvJtfRPaa4BIhkyQbXIHyIhfmetzKlwM2Km8kpamaJSjTg5vgrymV d09PdJxxWJVvt0SoaKvEY92x52kdejqVfiJi3aqhrMEe3lha16gg4GNChkuNScit 33m4csUyZEl6RRk9HZBgBKshgNccyxmN/h4RLieUl2ceQE5f0UmiUcnTJHf97JEs UzL4UEOKarFIbpw4WrOW7SvZoFE758Gr6nn828+BOhZ16fSTixKfR7hhElOlhQ4m PDTgPlsKnuhvMs+GlKdbtjbaS/plnl6kOOCr0qVqR+TVe+BeXfw9Or6GUOgTetpC YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 266355988310345691525143899219886580263115 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-16 16:16:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-15 16:16:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'securedns1.planmygift.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22180937757566114008301220098135195618485725262498348545822888998324591166647684859951339887130904021318734678634107076098084591290037610675991200235827139664085514247691148336312376067996710652225366611835573427513078775975754055010303051370011163431655164038271986948338285921416679723562267726617030707277304345815283483459398724221447621557126547037123196889323207710662182068061374230116845492689900779246386255601866707951159760699101052303415257620796261543859353827666475063393557164086751019091840179500099712471346154859717926404444145024366283183781869931886686368205619439486039366453030085939838435607139 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 403b60f5f577086ebf880b1fd08807b8239a7fc1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1865 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'foreversyracuse.syr.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giftplanning.chiomega.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giftplanning.colostate.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giftplanning.emory.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giftplanning.harleyschool.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giftplanning.isugift.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giftplanning.northwestern.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giftplanning.utk.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legacy.amcpfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legacy.pathfinder.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legacy.vermontpbs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'llulegacy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'montereybayaquarium.oceanlegacycircle.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mycathedrallegacy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mylegacy.utmb.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mylegacygift.wmualumni.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plan.capitalareafoodbank.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'planmygift.sfspca.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.afmonline.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.allb.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.alliancetheatre.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.alphachirho.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.asianart.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.assumption.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.atlantasymphony.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.barnard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.blakeschool.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.breckschool.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.bsomusic.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.calpoly.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.cancersupportcommunity.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.central.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.childrensnational.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.gbfb.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.gcfb.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.gnof.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.greensboroday.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.grinnell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.hebff.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.hf.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.high.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.johnstonhealth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.juilliard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.kansashealthsystem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.lehigh.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.mosaicinfo.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.msuaf.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.muttville.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.pitt.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.pprm.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.rangelandtrust.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.sdsu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.shfb.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.sja1890.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.st-agnes.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.transforminglives.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.umbc.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.uso.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.utfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.weraise.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.woodruffcenter.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.wtxfoodbank.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.wvwc.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plannedgiving.ymcabr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securedns1.planmygift.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.llulegacy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mycathedrallegacy.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016faf5ae8e50000040300473045022018af8f9daa8fb5a177dd08d97f8806d8320971f03fbbeb73fb83862af6ccf403022100d9e7a55c221e7c13b2b997bc3ff32d9c15f8a383a4ab60449a18c2949ffecda100760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016faf5ae9110000040300473045022100c6956ad500c51b06c8dc7dadeeb469df4a166e2916a6df34d862db5865fef4ed02203ed7bb9c42d7881dcab8723084b46e215a9f3804629cba5e62462af293d924c5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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