pharma2022.live.ft.com
Issued by R3
About this certificate
This digital certificate with serial number 04:da:6c:02:04:28:34:83:9f:d5:58:c2:40:bd:01:b6:43:5c was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pharma2022.live.ft.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:da:6c:02:04:28:34:83:9f:d5:58:c2:40:bd:01:b6:43:5cSerial Number (int): 422774266808259076865202288322860457280348
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 62:b3:04:e4:1b:c5:1c:ab:ed:41:bf:e6:df:9f:5c:b1:9f:fb:18:54
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): fb:a6:21:b0:15:21:5b:5a:9e:93:65:71:01:41:dd:f5:95:22:bc:2f
Fingerprint (sha256): 02:6a:e4:2e:0b:c9:3e:9d:70:9c:ff:1f:fc:76:48:b7:e2:33:44:3d:a4:93:aa:6d:1b:d0:fc:ea:04:32:87:9b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate pharma2022.live.ft.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pharma2022.live.ft.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pharma2022.live.ft.com
Other certificates including the domain name ft.com
(limited to 100 certificates)
f4.shared.global.fastly.net
datasovereigntyandthecloud.live.ft.com
h2.shared.global.fastly.net
globalcarbonforum.live.ft.com
dns-vetting1c.map.fastly.net
e.ssl.fastly.net
ft-nbh-ise-01.osb.ft.com
cryptowinter.live.ft.com
o2.shared.global.fastly.net
dns-vetting2.map.fastly.net
akamaisecure3.qualtrics.com
dns-vetting1-mims-pawel.map.fastly.net
o2.shared.global.fastly.net
h2.shared.global.fastly.net
netzero-newyork.live.ft.com
futurecitiessingapore.live.ft.com
int-ic.glb.ft.com
o2.shared.global.fastly.net
r.ssl.fastly.net
www.lantern.ft.com
dns-vetting1f.map.fastly.net
h2.shared.global.fastly.net
luxuryglobal.live.ft.com
energydecadeofdelivery.live.ft.com
dns-vetting1-mims-pawel.map.fastly.net
h2.shared.global.fastly.net
dns-vetting1g.map.fastly.net
dns-vetting1d.map.fastly.net
forums.ft.com
discoverb2b.ft.com
dns-vetting1d.map.fastly.net
marketingservices.ft.com
santander.ft.com
etnotalks.live.ft.com
education.ft.com
www.ftbroadcast2.live.ft.com
luxuryglobal2021.live.ft.com
dns-vetting1-mims-pawel.map.fastly.net
intelligentbusiness2020.live.ft.com
f3.shared.global.fastly.net
banking.live.ft.com
dns-vetting1f.map.fastly.net
commoditiesglobal.live.ft.com
e1p-internal-sandbox.mrooms.net
intelligentdocumentprocessing.live.ft.com
futurecitieslondon.live.ft.com
dns-vetting1.map.fastly.net
indiainvestment.live.ft.com
pharma2022.live.ft.com
o2.shared.global.fastly.net
intelligentdocumentprocessing.live.ft.com
dns-vetting1h.map.fastly.net
heroku-ft-app-remove-long-pres-aiiucp.apps.in.ft.com
pharmaanalytics.live.ft.com
f4.shared.global.fastly.net
dns-vetting1g.map.fastly.net
o2.shared.global.fastly.net
leveragingdigitisation.live.ft.com
womeneurope2024.live.ft.com
dns-vetting1.map.fastly.net
futurecitiesjohannesburg.live.ft.com
industrialinnovation-europe.live.ft.com
climatecapitalfinance.live.ft.com
about.ft.com
r.ssl.fastly.net
eff22.live.ft.com
asiagreentech2023.live.ft.com
www.ft.com
ft.map.fastly.net
*.memb.ft.com
e1p-internal-sandbox.mrooms.net
scienceatstake.com
ft.com
dns-vetting1g.map.fastly.net
r.ssl.fastly.net
o2.shared.global.fastly.net
dns-vetting1e.map.fastly.net
dns-vetting2.map.fastly.net
api.workfit.com
sendgrid.trytuesday.com
zenith.ft.com
dns-vetting1e.map.fastly.net
heroku-ft-app-at-4199-remove-c-f4qu5g.apps.in.ft.com
h2.shared.global.fastly.net
dns-vetting1g.map.fastly.net
retirementstrategies.live.ft.com
acceleratingequality.live.ft.com
santander.ft.com
i.subs.ft.com
inboundjapan.live.ft.com
o2.shared.global.fastly.net
r.ssl.fastly.net
app-review-1772.apps.in.ft.com
dns-vetting1-mims-pawel.map.fastly.net
corporateculture.live.ft.com
streamliningbusiness.live.ft.com
dns-vetting1e.map.fastly.net
managingregulationandrisk.live.ft.com
futureinvestmentprofessional.live.ft.com
hcltechatdavosceo.live.ft.com
datasovereigntyandthecloud.live.ft.com
h2.shared.global.fastly.net
globalcarbonforum.live.ft.com
dns-vetting1c.map.fastly.net
e.ssl.fastly.net
ft-nbh-ise-01.osb.ft.com
cryptowinter.live.ft.com
o2.shared.global.fastly.net
dns-vetting2.map.fastly.net
akamaisecure3.qualtrics.com
dns-vetting1-mims-pawel.map.fastly.net
o2.shared.global.fastly.net
h2.shared.global.fastly.net
netzero-newyork.live.ft.com
futurecitiessingapore.live.ft.com
int-ic.glb.ft.com
o2.shared.global.fastly.net
r.ssl.fastly.net
www.lantern.ft.com
dns-vetting1f.map.fastly.net
h2.shared.global.fastly.net
luxuryglobal.live.ft.com
energydecadeofdelivery.live.ft.com
dns-vetting1-mims-pawel.map.fastly.net
h2.shared.global.fastly.net
dns-vetting1g.map.fastly.net
dns-vetting1d.map.fastly.net
forums.ft.com
discoverb2b.ft.com
dns-vetting1d.map.fastly.net
marketingservices.ft.com
santander.ft.com
etnotalks.live.ft.com
education.ft.com
www.ftbroadcast2.live.ft.com
luxuryglobal2021.live.ft.com
dns-vetting1-mims-pawel.map.fastly.net
intelligentbusiness2020.live.ft.com
f3.shared.global.fastly.net
banking.live.ft.com
dns-vetting1f.map.fastly.net
commoditiesglobal.live.ft.com
e1p-internal-sandbox.mrooms.net
intelligentdocumentprocessing.live.ft.com
futurecitieslondon.live.ft.com
dns-vetting1.map.fastly.net
indiainvestment.live.ft.com
pharma2022.live.ft.com
o2.shared.global.fastly.net
intelligentdocumentprocessing.live.ft.com
dns-vetting1h.map.fastly.net
heroku-ft-app-remove-long-pres-aiiucp.apps.in.ft.com
pharmaanalytics.live.ft.com
f4.shared.global.fastly.net
dns-vetting1g.map.fastly.net
o2.shared.global.fastly.net
leveragingdigitisation.live.ft.com
womeneurope2024.live.ft.com
dns-vetting1.map.fastly.net
futurecitiesjohannesburg.live.ft.com
industrialinnovation-europe.live.ft.com
climatecapitalfinance.live.ft.com
about.ft.com
r.ssl.fastly.net
eff22.live.ft.com
asiagreentech2023.live.ft.com
www.ft.com
ft.map.fastly.net
*.memb.ft.com
e1p-internal-sandbox.mrooms.net
scienceatstake.com
ft.com
dns-vetting1g.map.fastly.net
r.ssl.fastly.net
o2.shared.global.fastly.net
dns-vetting1e.map.fastly.net
dns-vetting2.map.fastly.net
api.workfit.com
sendgrid.trytuesday.com
zenith.ft.com
dns-vetting1e.map.fastly.net
heroku-ft-app-at-4199-remove-c-f4qu5g.apps.in.ft.com
h2.shared.global.fastly.net
dns-vetting1g.map.fastly.net
retirementstrategies.live.ft.com
acceleratingequality.live.ft.com
santander.ft.com
i.subs.ft.com
inboundjapan.live.ft.com
o2.shared.global.fastly.net
r.ssl.fastly.net
app-review-1772.apps.in.ft.com
dns-vetting1-mims-pawel.map.fastly.net
corporateculture.live.ft.com
streamliningbusiness.live.ft.com
dns-vetting1e.map.fastly.net
managingregulationandrisk.live.ft.com
futureinvestmentprofessional.live.ft.com
hcltechatdavosceo.live.ft.com
Certificate
The complete raw certificate details for pharma2022.live.ft.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgISBNpsAgQoNIOf1VjCQL0BtkNcMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMDIwMzA1NTNaFw0yNDA1MDIwMzA1NTJaMCExHzAdBgNVBAMT FnBoYXJtYTIwMjIubGl2ZS5mdC5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAw ggIKAoICAQCv8OLWuD/KfDXBOkkKrTI+hy7cGKXan9DHA++1JVjM4DtC+bsbDnnL 1msoQ2ZboI9vuHJxu/RI6uTGZPzlbboR62sQ6L6pjNZXkcoCq4Tlf+ojzgyBNBbW Z0+N8lVZFApq8Hv5o96WrOjryEPKjGno0HB+AmjKNgdhSzhfKkKJQuDGTPvjiA/y QOLe5x9qJDQLD5N7CVOsESbIQdbAGDG4Sg4T+czILbCkbMPpPWBIv2m5XEfADCGu pF8hGBxl98+AsNjoNAMYUWKI1xbS3Fad/Gm/I9gWbkBA3AkoeySBhPwwie+sNLpp Zjpe5ZmDVXXRRvPtPKuIkxDUP7ZEd+4kUCVykbf7TPWV1ZHMwdYHWZFmdUvPmKso 2IHH+XROjXKkD4WKJqgR0Q7Mvu8B1MMi9yN7YLcuYv+IWNt5cWlNIeFjO2dGzqY8 MmJgZ6J+s+4pbIJDwmRP31wMnYBx9alD3ABDf6uBODQRQbNq0r/yrjySxANLT180 EJxd/1X2gF1LCC9kIJpQAlNU6xFx99kSGmI089crop35MbtTgqMo3IRQFb/3wVtU 7ym0RCq55CKUOI86+EBYPaJM3WRoz6t53IiYX5XEnw8CiCMxEDSHSGvuHXVcu0Ra 0kR+uQo0GxbOpWt45n3JtgfgbYJkiXnYc7vO3aHpo2xWMu/NE0ojEQIDAQABo4IC FzCCAhMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRiswTkG8Ucq+1Bv+bfn1yxn/sY VDAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJ MEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcw AoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAhBgNVHREEGjAYghZwaGFybWEyMDIy LmxpdmUuZnQuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIE AgSB9ASB8QDvAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGN Z/6TcQAABAMARzBFAiEA9yBlIROLwe4ZGPLoNTN8oznkKygBPpBYqsFqqCLSrX0C IDXAOopsswvKeBMrVy6mQWSR+z3bAwONa9M6cOnmApsfAHUASLDja9qmRzQP5WoC +p0w6xxSActW3SyB2bu/qznYhHMAAAGNZ/6TcAAABAMARjBEAiAjYKB3y+0csiIf s1A3SL9c997OHfMTFL5wKRPR2j5A2QIgPx3RWKbNev0ZNGN9uAGwk47iJRxtOTpa 8weU9NJxZj8wDQYJKoZIhvcNAQELBQADggEBAGBXQJZpBzqMfLYjihmZ77y4EQLo XYB3sTpPcka0lpACfo4ItybdOtVch1rCtWsqxNBT1LiZ6PaprMal/oD0vBjVzskp H1NX2ffa2pCue2QvhOw7abMRCHtAR5zaVt4o2Vd0nQ12a3/hncHdzpQj2vuQ5gKu 6WonCYh6xY1X1Fet73VduOs4wdlY4PayVSo/Dn9DUjGCUu0c7ld7dIf6F6IcVeHb 4IRbuw177A1ZXE2ugGad4WRCQfMjKV3hmj4cnNs5gkTWLH7YJkUqUKmStFyQYQsm KI1RIgWqtgATTLMqECsS/PnXniFTcGsRJViKP6luaRbTclL+4LWziK2MvTs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAr/Di1rg/ynw1wTpJCq0y Pocu3Bil2p/QxwPvtSVYzOA7Qvm7Gw55y9ZrKENmW6CPb7hycbv0SOrkxmT85W26 EetrEOi+qYzWV5HKAquE5X/qI84MgTQW1mdPjfJVWRQKavB7+aPelqzo68hDyoxp 6NBwfgJoyjYHYUs4XypCiULgxkz744gP8kDi3ucfaiQ0Cw+TewlTrBEmyEHWwBgx uEoOE/nMyC2wpGzD6T1gSL9puVxHwAwhrqRfIRgcZffPgLDY6DQDGFFiiNcW0txW nfxpvyPYFm5AQNwJKHskgYT8MInvrDS6aWY6XuWZg1V10Ubz7TyriJMQ1D+2RHfu JFAlcpG3+0z1ldWRzMHWB1mRZnVLz5irKNiBx/l0To1ypA+FiiaoEdEOzL7vAdTD Ivcje2C3LmL/iFjbeXFpTSHhYztnRs6mPDJiYGeifrPuKWyCQ8JkT99cDJ2AcfWp Q9wAQ3+rgTg0EUGzatK/8q48ksQDS09fNBCcXf9V9oBdSwgvZCCaUAJTVOsRcffZ EhpiNPPXK6Kd+TG7U4KjKNyEUBW/98FbVO8ptEQqueQilDiPOvhAWD2iTN1kaM+r edyImF+VxJ8PAogjMRA0h0hr7h11XLtEWtJEfrkKNBsWzqVreOZ9ybYH4G2CZIl5 2HO7zt2h6aNsVjLvzRNKIxECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 422774266808259076865202288322860457280348 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-02 03:05:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-02 03:05:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pharma2022.live.ft.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 717776499026562731019495868493515580201604195758216957012945264494574504496195230608107421529243592802067482050868103017768311026546613109670719014425913169046867319174846621014465381978784218104968644484459895982134957125471636109868059636123533678621740980866849475006447094908392757130282961229162195965922642002509671399837837743855759886608418596245411767682313820552815607152125037595517154867344218317495839087594329304668745683926694782116759174593028199815660847692529338478214871874024748748576317163576236793428689033064614912462210936720773811863074996830896824207092245879997882253478245120522298554025990688067912768974746892798169316975959540448668309953877671040862082185388067452472467953526585933382632039954170129159831992608709166489266867989490144472738866507682202472481370785890666216579997884753306879659178765629158711997566329050273284062798214527412331231123763011852006621151196949373046807458272724914761846314721223351928640175684616487340576155904801106129111027376131149621151227588201006371683977046561005455629069713105885474806160084068843858778723694911123210933630248782746619332680750161729604028176490962190278518722890049320894729879990091978283549345963379566490934431007658284505972693672721 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 62b304e41bc51cabed41bfe6df9f5cb19ffb1854 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pharma2022.live.ft.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d67fe93710000040300473045022100f7206521138bc1ee1918f2e835337ca339e42b28013e9058aac16aa822d2ad7d022035c03a8a6cb30bca78132b572ea6416491fb3ddb03038d6bd33a70e9e6029b1f00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d67fe9370000004030046304402202360a077cbed1cb2221fb3503748bf5cf7dece1df31314be702913d1da3e40d902203f1dd158a6cd7afd1934637db801b0938ee2251c6d393a5af30794f4d271663f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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