mazzawear.com
Issued by R3
About this certificate
This digital certificate with serial number 04:1b:4b:6e:d9:03:83:87:42:51:39:f8:48:c6:ea:b5:67:8f was issued on by Let's Encrypt.
With 30 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=mazzawear.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:1b:4b:6e:d9:03:83:87:42:51:39:f8:48:c6:ea:b5:67:8fSerial Number (int): 357737035287805907155915706791221945264015
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 8b:89:8e:56:07:4d:a9:e9:70:7d:5d:30:96:fd:e0:70:d5:9f:48:8d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ab:a2:e9:0b:45:a6:ee:ed:a0:74:73:73:35:0c:68:38:b7:db:39:68
Fingerprint (sha256): 02:cd:0d:bc:4e:c7:da:43:57:13:4d:b8:62:f9:18:23:6e:a4:fd:86:a6:a8:e2:5b:a2:dd:ac:87:87:79:1a:82
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate mazzawear.com
30
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mazzawear.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
altoncann.com
cyprustogo.com
jamesrio.com
klcusa.org
mazzawear.com
orgalla.com
pcsupportaustin.com
promocoaster.com
renostemcellcenter.com
revereimmobilier.com
sarahshapiro.com
trinity-msp.com
www.altoncann.com
www.cyprustogo.com
www.jamesrio.com
www.klcusa.org
www.mazzawear.com
www.orgalla.com
www.pcsupportaustin.com
www.promocoaster.com
www.renostemcellcenter.com
www.revereimmobilier.com
www.sarahshapiro.com
www.trinity-msp.com
www.xn--6dbai0ab.com
www.xn--gebl.com
www.xn--mebo.com
xn--6dbai0ab.com
xn--gebl.com
xn--mebo.com
cyprustogo.com
jamesrio.com
klcusa.org
mazzawear.com
orgalla.com
pcsupportaustin.com
promocoaster.com
renostemcellcenter.com
revereimmobilier.com
sarahshapiro.com
trinity-msp.com
www.altoncann.com
www.cyprustogo.com
www.jamesrio.com
www.klcusa.org
www.mazzawear.com
www.orgalla.com
www.pcsupportaustin.com
www.promocoaster.com
www.renostemcellcenter.com
www.revereimmobilier.com
www.sarahshapiro.com
www.trinity-msp.com
www.xn--6dbai0ab.com
www.xn--gebl.com
www.xn--mebo.com
xn--6dbai0ab.com
xn--gebl.com
xn--mebo.com
Other certificates including the domain name mazzawear.com
(limited to 100 certificates)
www.addizioni.com
mazzawear.com
www.liftlodgecondo.com
weekendmembership.com
www.boostcrypto.com
sportsmedicinevirginiabeach.com
www.greenbaystemcelltreatmentcenter.com
www.workoutsvr.com
vmji.com
www.inmoimo.com
hardonselfies.com
www.pilotpastor.com
lonestarcbdandvapes.com
www.mazzawear.com
wiltshirerealestate.uk
shanrock.com
ritmocaliente.com
www.grandrapidssportsdoctor.com
www.kingrooter.com
www.encuentroselsalvador.com
www.usvisas.com
lbbco.com
www.richmondlistings.com
mazzawear.com
www.liftlodgecondo.com
weekendmembership.com
www.boostcrypto.com
sportsmedicinevirginiabeach.com
www.greenbaystemcelltreatmentcenter.com
www.workoutsvr.com
vmji.com
www.inmoimo.com
hardonselfies.com
www.pilotpastor.com
lonestarcbdandvapes.com
www.mazzawear.com
wiltshirerealestate.uk
shanrock.com
ritmocaliente.com
www.grandrapidssportsdoctor.com
www.kingrooter.com
www.encuentroselsalvador.com
www.usvisas.com
lbbco.com
www.richmondlistings.com
Certificate
The complete raw certificate details for mazzawear.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHEDCCBfigAwIBAgISBBtLbtkDg4dCUTn4SMbqtWePMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MTUxMzI1MjZaFw0yNDA4MTMxMzI1MjVaMBgxFjAUBgNVBAMT DW1henphd2Vhci5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG P6ufGzWhnm8ShmWqZ7cBREYXCgEwv0O1A4tmZWQU13uEOvhUJ8QoRyWrF8VvLdjm FmV4NPXatCsonoSou/AJgEQeDblUNtISX0DO1dfLMa6C5pPAcYZywyQy/12SI20h ZeDQ/sl2+NQUPo+jC3P6aPLAsK4hajpLNY+GCH6ID5z9MIGu2I9UJ5oDwSAiif3k PRiX1uqijaoDmBV72iqqdOraE7PTvXCZRhcQv8hshVez8DRkImguIfZBnoimxixA I8oono6EH1Te0UiwWdUHfzOcFCNFZwP84fdaVjJVPTds7nNJlt/rbYqUuCUKZJ95 tMkQ9vULRng9dbCIteB9AgMBAAGjggQ4MIIENDAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFIuJjlYHTanpcH1dMJb94HDVn0iNMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MIICPwYDVR0RBIICNjCCAjKCDWFsdG9uY2Fubi5jb22CDmN5cHJ1c3RvZ28uY29t ggxqYW1lc3Jpby5jb22CCmtsY3VzYS5vcmeCDW1henphd2Vhci5jb22CC29yZ2Fs bGEuY29tghNwY3N1cHBvcnRhdXN0aW4uY29tghBwcm9tb2NvYXN0ZXIuY29tghZy ZW5vc3RlbWNlbGxjZW50ZXIuY29tghRyZXZlcmVpbW1vYmlsaWVyLmNvbYIQc2Fy YWhzaGFwaXJvLmNvbYIPdHJpbml0eS1tc3AuY29tghF3d3cuYWx0b25jYW5uLmNv bYISd3d3LmN5cHJ1c3RvZ28uY29tghB3d3cuamFtZXNyaW8uY29tgg53d3cua2xj dXNhLm9yZ4IRd3d3Lm1henphd2Vhci5jb22CD3d3dy5vcmdhbGxhLmNvbYIXd3d3 LnBjc3VwcG9ydGF1c3Rpbi5jb22CFHd3dy5wcm9tb2NvYXN0ZXIuY29tghp3d3cu cmVub3N0ZW1jZWxsY2VudGVyLmNvbYIYd3d3LnJldmVyZWltbW9iaWxpZXIuY29t ghR3d3cuc2FyYWhzaGFwaXJvLmNvbYITd3d3LnRyaW5pdHktbXNwLmNvbYIUd3d3 LnhuLS02ZGJhaTBhYi5jb22CEHd3dy54bi0tZ2VibC5jb22CEHd3dy54bi0tbWVi by5jb22CEHhuLS02ZGJhaTBhYi5jb22CDHhuLS1nZWJsLmNvbYIMeG4tLW1lYm8u Y29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGPfKTO+gAABAMA RzBFAiAvsyKY3xuvNjl2eHCQfC+lfuK35vzhk0xlSjkLOdzWWgIhAPuEzxv4Kk/Z BWJMiKbqk6CCrHGZqufhYkdKcohsD3OJAHYAGZgQcQnw1lIuMIDSnj9ku4NuKMz5 D1KO7t/OSj8WtMoAAAGPfKTW2AAABAMARzBFAiAerhedssg9m6g/zc0BYjEuMGOy r74E+3cZwfJxWWEMIgIhAKXiC9pod/QjApDgSn86y0lPbfeUhlEXQ3eqvI+2xJh7 MA0GCSqGSIb3DQEBCwUAA4IBAQB49Ifp6jo+BIQh6YSARfeacfurnAQd5dlvc3bd kdyEviwy52btrZrGfkp+C36yYerl751QKQziMwqqNn1rvmHBvf+q0quzEYAu3vfb Xb5dh87bncUYvER1i+6uyADOf7VAcy/6bYU+DwTAcHtezaluUpApsiQDTREz6yhR 299YIjbaQbn33EfgwE8fd39M/O4EERdkETx7lykGtVgG+qqBi/z+Li4eYCOKJhQW F0eT5HdANEs9wvyWxE49SLxbJN6uu2cZHRut4UJl6EIQKf+WVN5H83djnTeXdOMO XGStoksZU8HucErq1ycfot6OEg4mfTkc25DSxpKD3aN/FIbC -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxj+rnxs1oZ5vEoZlqme3 AURGFwoBML9DtQOLZmVkFNd7hDr4VCfEKEclqxfFby3Y5hZleDT12rQrKJ6EqLvw CYBEHg25VDbSEl9AztXXyzGuguaTwHGGcsMkMv9dkiNtIWXg0P7JdvjUFD6Powtz +mjywLCuIWo6SzWPhgh+iA+c/TCBrtiPVCeaA8EgIon95D0Yl9bqoo2qA5gVe9oq qnTq2hOz071wmUYXEL/IbIVXs/A0ZCJoLiH2QZ6IpsYsQCPKKJ6OhB9U3tFIsFnV B38znBQjRWcD/OH3WlYyVT03bO5zSZbf622KlLglCmSfebTJEPb1C0Z4PXWwiLXg fQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 357737035287805907155915706791221945264015 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-15 13:25:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-13 13:25:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mazzawear.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25026581425987067787585458307433589208320570617322806603166762392886458146620257715627519703596963040601068010319001816192886188677392525707463705540145876121120671972988376822106352300437006595445013280896919772476590094503330976930830542758648584155521289683101697712452097073141265942638233299791255108080148368339161923859723521985957661696466778782616504595962406243853177642173449972564022970592053464260925143653732602257061505856201768086491737099488060739510215792821085401828129477469892324036123202199611683618157442671984047169267492871638246575174012596153104921586020358645684533720809462635490750881917 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8b898e56074da9e9707d5d3096fde070d59f488d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (566 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'altoncann.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cyprustogo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jamesrio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'klcusa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mazzawear.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orgalla.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pcsupportaustin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'promocoaster.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'renostemcellcenter.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'revereimmobilier.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sarahshapiro.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'trinity-msp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.altoncann.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cyprustogo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jamesrio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.klcusa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mazzawear.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.orgalla.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pcsupportaustin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.promocoaster.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.renostemcellcenter.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.revereimmobilier.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sarahshapiro.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.trinity-msp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xn--6dbai0ab.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xn--gebl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xn--mebo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xn--6dbai0ab.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xn--gebl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xn--mebo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f7ca4cefa000004030047304502202fb32298df1baf3639767870907c2fa57ee2b7e6fce1934c654a390b39dcd65a022100fb84cf1bf82a4fd905624c88a6ea93a082ac7199aae7e162474a72886c0f73890076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018f7ca4d6d8000004030047304502201eae179db2c83d9ba83fcdcd0162312e3063b2afbe04fb7719c1f27159610c22022100a5e20bda6877f4230290e04a7f3acb494f6df7948651174377aabc8fb6c4987b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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