futurecitieslondon.live.ft.com
Issued by R3
About this certificate
This digital certificate with serial number 04:b2:37:f7:96:72:7d:bb:8a:c7:29:bc:20:2b:e3:30:00:7e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=futurecitieslondon.live.ft.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:b2:37:f7:96:72:7d:bb:8a:c7:29:bc:20:2b:e3:30:00:7eSerial Number (int): 409093798127492624983503352721595381579902
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 03:dd:01:4e:62:1e:fd:6a:a3:12:4f:38:13:d9:66:c9:6a:88:f3:6c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): e6:fc:fc:99:43:24:92:00:d8:54:9b:b4:69:cb:2e:5e:c7:ab:36:33
Fingerprint (sha256): 02:59:ca:eb:2b:83:e0:5e:7e:3c:ac:ca:39:0e:0b:96:bd:97:db:99:3b:dd:af:9c:1e:ed:fc:0a:05:81:2e:3f
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate futurecitieslondon.live.ft.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for futurecitieslondon.live.ft.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
futurecitieslondon.live.ft.com
Other certificates including the domain name ft.com
(limited to 100 certificates)
f4.shared.global.fastly.net
datasovereigntyandthecloud.live.ft.com
h2.shared.global.fastly.net
globalcarbonforum.live.ft.com
dns-vetting1c.map.fastly.net
e.ssl.fastly.net
ft-nbh-ise-01.osb.ft.com
cryptowinter.live.ft.com
o2.shared.global.fastly.net
dns-vetting2.map.fastly.net
akamaisecure3.qualtrics.com
dns-vetting1-mims-pawel.map.fastly.net
o2.shared.global.fastly.net
h2.shared.global.fastly.net
netzero-newyork.live.ft.com
futurecitiessingapore.live.ft.com
int-ic.glb.ft.com
o2.shared.global.fastly.net
r.ssl.fastly.net
www.lantern.ft.com
dns-vetting1f.map.fastly.net
h2.shared.global.fastly.net
luxuryglobal.live.ft.com
energydecadeofdelivery.live.ft.com
dns-vetting1-mims-pawel.map.fastly.net
h2.shared.global.fastly.net
dns-vetting1g.map.fastly.net
dns-vetting1d.map.fastly.net
forums.ft.com
discoverb2b.ft.com
dns-vetting1d.map.fastly.net
marketingservices.ft.com
santander.ft.com
etnotalks.live.ft.com
education.ft.com
www.ftbroadcast2.live.ft.com
luxuryglobal2021.live.ft.com
dns-vetting1-mims-pawel.map.fastly.net
intelligentbusiness2020.live.ft.com
f3.shared.global.fastly.net
banking.live.ft.com
dns-vetting1f.map.fastly.net
commoditiesglobal.live.ft.com
e1p-internal-sandbox.mrooms.net
intelligentdocumentprocessing.live.ft.com
futurecitieslondon.live.ft.com
dns-vetting1.map.fastly.net
indiainvestment.live.ft.com
pharma2022.live.ft.com
o2.shared.global.fastly.net
intelligentdocumentprocessing.live.ft.com
dns-vetting1h.map.fastly.net
heroku-ft-app-remove-long-pres-aiiucp.apps.in.ft.com
pharmaanalytics.live.ft.com
f4.shared.global.fastly.net
dns-vetting1g.map.fastly.net
o2.shared.global.fastly.net
leveragingdigitisation.live.ft.com
womeneurope2024.live.ft.com
dns-vetting1.map.fastly.net
futurecitiesjohannesburg.live.ft.com
industrialinnovation-europe.live.ft.com
climatecapitalfinance.live.ft.com
about.ft.com
r.ssl.fastly.net
eff22.live.ft.com
asiagreentech2023.live.ft.com
www.ft.com
ft.map.fastly.net
*.memb.ft.com
e1p-internal-sandbox.mrooms.net
scienceatstake.com
ft.com
dns-vetting1g.map.fastly.net
r.ssl.fastly.net
o2.shared.global.fastly.net
dns-vetting1e.map.fastly.net
dns-vetting2.map.fastly.net
api.workfit.com
sendgrid.trytuesday.com
zenith.ft.com
dns-vetting1e.map.fastly.net
heroku-ft-app-at-4199-remove-c-f4qu5g.apps.in.ft.com
h2.shared.global.fastly.net
dns-vetting1g.map.fastly.net
retirementstrategies.live.ft.com
acceleratingequality.live.ft.com
santander.ft.com
i.subs.ft.com
inboundjapan.live.ft.com
o2.shared.global.fastly.net
r.ssl.fastly.net
app-review-1772.apps.in.ft.com
dns-vetting1-mims-pawel.map.fastly.net
corporateculture.live.ft.com
streamliningbusiness.live.ft.com
dns-vetting1e.map.fastly.net
managingregulationandrisk.live.ft.com
futureinvestmentprofessional.live.ft.com
hcltechatdavosceo.live.ft.com
datasovereigntyandthecloud.live.ft.com
h2.shared.global.fastly.net
globalcarbonforum.live.ft.com
dns-vetting1c.map.fastly.net
e.ssl.fastly.net
ft-nbh-ise-01.osb.ft.com
cryptowinter.live.ft.com
o2.shared.global.fastly.net
dns-vetting2.map.fastly.net
akamaisecure3.qualtrics.com
dns-vetting1-mims-pawel.map.fastly.net
o2.shared.global.fastly.net
h2.shared.global.fastly.net
netzero-newyork.live.ft.com
futurecitiessingapore.live.ft.com
int-ic.glb.ft.com
o2.shared.global.fastly.net
r.ssl.fastly.net
www.lantern.ft.com
dns-vetting1f.map.fastly.net
h2.shared.global.fastly.net
luxuryglobal.live.ft.com
energydecadeofdelivery.live.ft.com
dns-vetting1-mims-pawel.map.fastly.net
h2.shared.global.fastly.net
dns-vetting1g.map.fastly.net
dns-vetting1d.map.fastly.net
forums.ft.com
discoverb2b.ft.com
dns-vetting1d.map.fastly.net
marketingservices.ft.com
santander.ft.com
etnotalks.live.ft.com
education.ft.com
www.ftbroadcast2.live.ft.com
luxuryglobal2021.live.ft.com
dns-vetting1-mims-pawel.map.fastly.net
intelligentbusiness2020.live.ft.com
f3.shared.global.fastly.net
banking.live.ft.com
dns-vetting1f.map.fastly.net
commoditiesglobal.live.ft.com
e1p-internal-sandbox.mrooms.net
intelligentdocumentprocessing.live.ft.com
futurecitieslondon.live.ft.com
dns-vetting1.map.fastly.net
indiainvestment.live.ft.com
pharma2022.live.ft.com
o2.shared.global.fastly.net
intelligentdocumentprocessing.live.ft.com
dns-vetting1h.map.fastly.net
heroku-ft-app-remove-long-pres-aiiucp.apps.in.ft.com
pharmaanalytics.live.ft.com
f4.shared.global.fastly.net
dns-vetting1g.map.fastly.net
o2.shared.global.fastly.net
leveragingdigitisation.live.ft.com
womeneurope2024.live.ft.com
dns-vetting1.map.fastly.net
futurecitiesjohannesburg.live.ft.com
industrialinnovation-europe.live.ft.com
climatecapitalfinance.live.ft.com
about.ft.com
r.ssl.fastly.net
eff22.live.ft.com
asiagreentech2023.live.ft.com
www.ft.com
ft.map.fastly.net
*.memb.ft.com
e1p-internal-sandbox.mrooms.net
scienceatstake.com
ft.com
dns-vetting1g.map.fastly.net
r.ssl.fastly.net
o2.shared.global.fastly.net
dns-vetting1e.map.fastly.net
dns-vetting2.map.fastly.net
api.workfit.com
sendgrid.trytuesday.com
zenith.ft.com
dns-vetting1e.map.fastly.net
heroku-ft-app-at-4199-remove-c-f4qu5g.apps.in.ft.com
h2.shared.global.fastly.net
dns-vetting1g.map.fastly.net
retirementstrategies.live.ft.com
acceleratingequality.live.ft.com
santander.ft.com
i.subs.ft.com
inboundjapan.live.ft.com
o2.shared.global.fastly.net
r.ssl.fastly.net
app-review-1772.apps.in.ft.com
dns-vetting1-mims-pawel.map.fastly.net
corporateculture.live.ft.com
streamliningbusiness.live.ft.com
dns-vetting1e.map.fastly.net
managingregulationandrisk.live.ft.com
futureinvestmentprofessional.live.ft.com
hcltechatdavosceo.live.ft.com
Certificate
The complete raw certificate details for futurecitieslondon.live.ft.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGCTCCBPGgAwIBAgISBLI395ZyfbuKxym8ICvjMAB+MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjkwOTAxMTRaFw0yNDAyMjcwOTAxMTNaMCkxJzAlBgNVBAMT HmZ1dHVyZWNpdGllc2xvbmRvbi5saXZlLmZ0LmNvbTCCAiIwDQYJKoZIhvcNAQEB BQADggIPADCCAgoCggIBAOL2iPrOXH6ObdX/s49Jk446Lm5Pvq3xU6N1a/qi3Zf6 847ferZ12DP8IbwZbhI4fmX19if7qBFoW9pJ2+78tPbYeq/8SvkZetc03XIBMQHI QaFkJOhCpWn2SMDU52nc+LPk7cWgMpWqFRW7aqx2WyeljZlo8L5QVgDV7FGiaLOn HBUbJZcvrpb0dMrrfHg0YTU4hxpEMEtRWp5b0c8sUCAOMBVu0SLkWiTEtVyy3WLB 6WYyP5H5dR3SzzLsUgwsl3Yl9ElXacWhLGOlTkhkFFnHUfoIR+DDy/ddCUBfTK9g IZYbA7n5VruRS7SotZlwSFlduyPGPyMV90tfte8NyXWLGfq8vxRI8+9wUjkNnUHR dvye+uZNFkI55nL9uML0K51DnNh0xzYi3IjwJpiVCaURa2jy0BjKegw7Q88TgOkI ihbihAP//tzxowSybx1EO7uUTdJIlF0hCGFEknRTYlbCqzKr9fkv5LhF//mmT1AI W5xttCfd0vipWy8aaqpyQ6OtSOuGNKt1f2VqHrgGAC4saUGS44z1OJvri1GsIk9J FQafcO4WxIJSEMX2j7ewIYZS6h1UolAaWY9njkrWmcUzfarWIVfMQGnswRf0XH1l gCdf38EfZwerDv2H/n82G0wqSaGOYS91fqrr534YJbs94RZYYEVJgxk39/96BaOr AgMBAAGjggIgMIICHDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFAPdAU5iHv1qoxJP OBPZZslqiPNsMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsG AQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIG CCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCkGA1UdEQQiMCCCHmZ1 dHVyZWNpdGllc2xvbmRvbi5saXZlLmZ0LmNvbTATBgNVHSAEDDAKMAgGBmeBDAEC ATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AEiw42vapkc0D+VqAvqdMOscUgHL Vt0sgdm7v6s52IRzAAABjBqGjIgAAAQDAEcwRQIgbw2R07ZljbTKI3H0MyOvbCO1 MF8OKpM88L+QXNiwdIcCIQCuNK3bclzBUNGaNsKNMrlTyLvcy23xjSEiFegLA4LP 9wB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjBqGjewAAAQD AEcwRQIgM5DdBlpj2HY4/FXez11IPIH/bqHX7EF90poxztVWkVYCIQCnOhdbJgNJ NchbkgM/PC9Bd4emK+NiOR44yEszukNOMjANBgkqhkiG9w0BAQsFAAOCAQEAF5Ir 6Cks1ZwnHXLgB5drmJxajvqekiRIkrwE61CrTPRi0CgtNO/3NBVEoZK/4kgTEG5Z zv9XNjgYHdv2l2iH5rl71OoQdjntOt08wk/TPdSY9c1SHwKo14p5hRr1fscWEXpg QrQPdWu3lGzxTQpLF+FkQQeIkHiereyMBZtyRd9Ygr5zM5eAOj7k7jZXDx5TtumH z9b76z7bHXwoLa+DIqATtiOYoFssh0m/nDeimym1Q5gRE87mA5QDaJKzY/WmC9OK QSgRU/U6TDmzQzR5jpMzG6P3MSIY+ya0ZkHXHwh+s7DHtOWWtDUnAV39HJhWbkSY 0EZEU7/diVUv/s0tnA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4vaI+s5cfo5t1f+zj0mT jjoubk++rfFTo3Vr+qLdl/rzjt96tnXYM/whvBluEjh+ZfX2J/uoEWhb2knb7vy0 9th6r/xK+Rl61zTdcgExAchBoWQk6EKlafZIwNTnadz4s+TtxaAylaoVFbtqrHZb J6WNmWjwvlBWANXsUaJos6ccFRslly+ulvR0yut8eDRhNTiHGkQwS1FanlvRzyxQ IA4wFW7RIuRaJMS1XLLdYsHpZjI/kfl1HdLPMuxSDCyXdiX0SVdpxaEsY6VOSGQU WcdR+ghH4MPL910JQF9Mr2AhlhsDuflWu5FLtKi1mXBIWV27I8Y/IxX3S1+17w3J dYsZ+ry/FEjz73BSOQ2dQdF2/J765k0WQjnmcv24wvQrnUOc2HTHNiLciPAmmJUJ pRFraPLQGMp6DDtDzxOA6QiKFuKEA//+3PGjBLJvHUQ7u5RN0kiUXSEIYUSSdFNi VsKrMqv1+S/kuEX/+aZPUAhbnG20J93S+KlbLxpqqnJDo61I64Y0q3V/ZWoeuAYA LixpQZLjjPU4m+uLUawiT0kVBp9w7hbEglIQxfaPt7AhhlLqHVSiUBpZj2eOStaZ xTN9qtYhV8xAaezBF/RcfWWAJ1/fwR9nB6sO/Yf+fzYbTCpJoY5hL3V+quvnfhgl uz3hFlhgRUmDGTf3/3oFo6sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 409093798127492624983503352721595381579902 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-29 09:01:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-27 09:01:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'futurecitieslondon.live.ft.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 925928369389857903179216967273284949031115635696999228984579788115181181102108069741450611527586331650569210620155652019613670369455029388307904677709827431581623032340580772309380025136158205978358267824190131708450794693849575715287643550128017819799395238797898866368049717760449320608416402298597435534253210002711379915678711411878394166465949176206297485278478894025375069741630694073197922468287570282986548324467055195795675268203053964366860045862450423740981577162029931729466108165549026674897027462121048765326334080993413121414033012595385061365510585588510309085091148043275432303138809920436253426276105222219146827106883749206585424202390302649598483194751280658689584507682632792959034166736801879696952152296509640918279600725824254774544114902383874728397343004819906480686662852389711714686597371912875937685669082301927380876433869096967839587959591911133834015051471071584844396201622113958349816286386694837477757254344466304594503404865138033017466168832767490701784977883727485628367619053293456620868814401369877161405877649960062592335122954618981357554124741451933356736442711394845034773832694103919756653515219084727424934949642302002239357924972864449769867924372834176827117206570109837917080495956907 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 03dd014e621efd6aa3124f3813d966c96a88f36c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'futurecitieslondon.live.ft.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c1a868c88000004030047304502206f0d91d3b6658db4ca2371f43323af6c23b5305f0e2a933cf0bf905cd8b07487022100ae34addb725cc150d19a36c28d32b953c8bbdccb6df18d212215e80b0382cff700760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c1a868dec000004030047304502203390dd065a63d87638fc55decf5d483c81ff6ea1d7ec417dd29a31ced5569156022100a73a175b26034935c85b92033f3c2f417787a62be362391e38c84b33ba434e32 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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