patriotlife.gmu.edu
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:53:39:7a:8b:fb:5b:77:94:54:30:b5:4e:31:79:f2:80:86 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=patriotlife.gmu.edu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:53:39:7a:8b:fb:5b:77:94:54:30:b5:4e:31:79:f2:80:86Serial Number (int): 289656696544864625258250078618554203275398
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 24:c3:bc:99:c2:52:21:ee:70:69:51:86:04:b6:df:e5:cd:93:86:1c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ee:a2:77:0e:3b:38:7d:27:8c:af:8b:e4:96:aa:24:24:f4:71:51:2a
Fingerprint (sha256): 02:d7:fc:d4:fa:ef:ae:77:49:20:86:dc:a1:c5:6c:4b:9e:66:00:b9:6f:ea:e2:e9:d4:f9:58:55:e1:66:f0:04
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate patriotlife.gmu.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for patriotlife.gmu.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
patriotlife.gmu.edu
Other certificates including the domain name gmu.edu
(limited to 100 certificates)
lynda.gmu.edu
www.gmu.edu
administrativestate.gmu.edu
dshi.gmu.edu
mix.gmu.edu
eaglet.gmu.edu
www2.gmu.edu
surveys.c4i.gmu.edu
us.prod.campusgroups.com
stat.gmu.edu
healthcareers.gmu.edu
malthael.mesa.gmu.edu
club.gmu.edu
mars.gmu.edu
pbk.gmu.edu
corolla.mesa.gmu.edu
www.mix.gmu.edu
chhs.gmu.edu
us.prod.campusgroups.com
tls.automattic.com
*.physics.gmu.edu
ati.gmu.edu
volgenau.gmu.edu
campusimpactforum.gmu.edu
eastgermanposters.gmu.edu
gazette.gmu.edu
provostit.gmu.edu
mats.gmu.edu
qmc.gmu.edu
irr.gmu.edu
welcome2mason.gmu.edu
ularlington.gmu.edu
gec.gmu.edu
fiscal.gmu.edu
coursemedia.gmu.edu
docushare.gmu.edu
securedns.planmygift.org
casper.gmu.edu
jacklab.chss.gmu.edu
ott.gmu.edu
fndtadv1t.mesa.gmu.edu
gazette.gmu.edu
socialcomplexity.gmu.edu
test.gmu.edu
ncbid.gmu.edu
ippp.gmu.edu
anhpham.gmu.edu
computing.gmu.edu
gradfellows.gmu.edu
adr.gmu.edu
tedx.gmu.edu
cashiersoffice.gmu.edu
ready.gmu.edu
orientation.gmu.edu
cie.gmu.edu
publicservice.gmu.edu
greenmachine.gmu.edu
mvets.law.gmu.edu
iflood.vse.gmu.edu
explore.gmu.edu
us.prod.campusgroups.com
learningsolutions.gmu.edu
engage3.campuslabs.com
smfund.gmu.edu
transportation.gmu.edu
socialmedia.gmu.edu
edge-uc2.peopleadmin.com
socialcomplexity.gmu.edu
vision.gmu.edu
patriotlife.gmu.edu
ssac.gmu.edu
randed.gmu.edu
administrativestate.gmu.edu
test.gmu.edu
eip.gmu.edu
calendar.gmu.edu
pbk.gmu.edu
dining.gmu.edu
crdc.gmu.edu
chssweb2.gmu.edu
soa.gmu.edu
securedns.planmygift.org
gstf.gmu.edu
carterschool.gmu.edu
mason.gmu.edu
favs.gmu.edu
scylla.gmu.edu
aubreygrant.gmu.edu
ulbranding.gmu.edu
campusimpactforum.gmu.edu
edge-uc2.peopleadmin.com
robinsonprofessors.gmu.edu
pb.gmu.edu
web.offcampuspartners.com
artsmanagement.gmu.edu
printservices.gmu.edu
ventures.gmu.edu
csps.gmu.edu
call2.gmu.edu
assip.cos.gmu.edu
www.gmu.edu
administrativestate.gmu.edu
dshi.gmu.edu
mix.gmu.edu
eaglet.gmu.edu
www2.gmu.edu
surveys.c4i.gmu.edu
us.prod.campusgroups.com
stat.gmu.edu
healthcareers.gmu.edu
malthael.mesa.gmu.edu
club.gmu.edu
mars.gmu.edu
pbk.gmu.edu
corolla.mesa.gmu.edu
www.mix.gmu.edu
chhs.gmu.edu
us.prod.campusgroups.com
tls.automattic.com
*.physics.gmu.edu
ati.gmu.edu
volgenau.gmu.edu
campusimpactforum.gmu.edu
eastgermanposters.gmu.edu
gazette.gmu.edu
provostit.gmu.edu
mats.gmu.edu
qmc.gmu.edu
irr.gmu.edu
welcome2mason.gmu.edu
ularlington.gmu.edu
gec.gmu.edu
fiscal.gmu.edu
coursemedia.gmu.edu
docushare.gmu.edu
securedns.planmygift.org
casper.gmu.edu
jacklab.chss.gmu.edu
ott.gmu.edu
fndtadv1t.mesa.gmu.edu
gazette.gmu.edu
socialcomplexity.gmu.edu
test.gmu.edu
ncbid.gmu.edu
ippp.gmu.edu
anhpham.gmu.edu
computing.gmu.edu
gradfellows.gmu.edu
adr.gmu.edu
tedx.gmu.edu
cashiersoffice.gmu.edu
ready.gmu.edu
orientation.gmu.edu
cie.gmu.edu
publicservice.gmu.edu
greenmachine.gmu.edu
mvets.law.gmu.edu
iflood.vse.gmu.edu
explore.gmu.edu
us.prod.campusgroups.com
learningsolutions.gmu.edu
engage3.campuslabs.com
smfund.gmu.edu
transportation.gmu.edu
socialmedia.gmu.edu
edge-uc2.peopleadmin.com
socialcomplexity.gmu.edu
vision.gmu.edu
patriotlife.gmu.edu
ssac.gmu.edu
randed.gmu.edu
administrativestate.gmu.edu
test.gmu.edu
eip.gmu.edu
calendar.gmu.edu
pbk.gmu.edu
dining.gmu.edu
crdc.gmu.edu
chssweb2.gmu.edu
soa.gmu.edu
securedns.planmygift.org
gstf.gmu.edu
carterschool.gmu.edu
mason.gmu.edu
favs.gmu.edu
scylla.gmu.edu
aubreygrant.gmu.edu
ulbranding.gmu.edu
campusimpactforum.gmu.edu
edge-uc2.peopleadmin.com
robinsonprofessors.gmu.edu
pb.gmu.edu
web.offcampuspartners.com
artsmanagement.gmu.edu
printservices.gmu.edu
ventures.gmu.edu
csps.gmu.edu
call2.gmu.edu
assip.cos.gmu.edu
Certificate
The complete raw certificate details for patriotlife.gmu.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgISA1M5eov7W3eUVDC1TjF58oCGMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjA5MDMwMTA3MDBaFw0x NjEyMDIwMTA3MDBaMB4xHDAaBgNVBAMTE3BhdHJpb3RsaWZlLmdtdS5lZHUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH0817t3uTWCuFhpsGn2riQ0Lq rRGOXx0k8YWjXcZH7C8Hnu0BPLk6ZlCgI12cLONTmh9UwHO1fTbxWq5opyXBRTZd TaWmYxHRYlW5/p+qib0Tq9pRjxzUzzbw0kp7UZWYyKtRAppjhCL0+sKtGfQTxr/u jYjRZteNtmV5zBJX26vk6IRT0DoA2N0XyNjRx/0YTfqa+p6YKbD7DwSU9X0yFWNp Jhc7ewJEXj6v4csoXl7D7GS6OaiBMXqluKi1V50N2U+7qy/LpqD3yoEvw27rRlPH zZqL9P7AAGd04NhnTkfrw4sMFjUPJ3OaJVtRH89BzWnFrOvDKDOmE8nsVXYbAgMB AAGjggIUMIICEDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFCTDvJnCUiHucGlRhgS2 3+XNk4YcMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMHAGCCsGAQUF BwEBBGQwYjAvBggrBgEFBQcwAYYjaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNy eXB0Lm9yZy8wLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5j cnlwdC5vcmcvMB4GA1UdEQQXMBWCE3BhdHJpb3RsaWZlLmdtdS5lZHUwgf4GA1Ud IASB9jCB8zAIBgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtU aGlzIENlcnRpZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlp bmcgUGFydGllcyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRp ZmljYXRlIFBvbGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9y ZXBvc2l0b3J5LzANBgkqhkiG9w0BAQsFAAOCAQEAdcGuxBnbMcetzeslzNCSd1tW sUb5UcQM/2O22eUXfnExWJSEahVZe6B1DQq7SNjzfzGd7eOkZfbL7XkN3f4nUO0E 74f4LjBMXSKkCtlMWtzeJG3Oi59j6bMzuLBJT1Ok4my1d4oRcz6Aq9v9Ao3fCWyH 1NABeeg6GFXqxgcMgTuav493ekS0fzLW8DxpWNsvw9bVJwblAYwVPQp9dQ+Vsekc SerOT5+6M5SUG03VCnur9XPkAKu1mNLfpQ9wQQkChTtN8PklLpxUkLbkYxTcKkYw SO6WcVwgff/zO0XkJREzw+JTA5NGFDiUNpH8s/Q34khPoePqJqQNOb9SleLYgQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9PNe7d7k1grhYabBp9q 4kNC6q0Rjl8dJPGFo13GR+wvB57tATy5OmZQoCNdnCzjU5ofVMBztX028VquaKcl wUU2XU2lpmMR0WJVuf6fqom9E6vaUY8c1M828NJKe1GVmMirUQKaY4Qi9PrCrRn0 E8a/7o2I0WbXjbZlecwSV9ur5OiEU9A6ANjdF8jY0cf9GE36mvqemCmw+w8ElPV9 MhVjaSYXO3sCRF4+r+HLKF5ew+xkujmogTF6pbiotVedDdlPu6svy6ag98qBL8Nu 60ZTx82ai/T+wABndODYZ05H68OLDBY1DydzmiVbUR/PQc1pxazrwygzphPJ7FV2 GwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 289656696544864625258250078618554203275398 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-03 01:07:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-02 01:07:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'patriotlife.gmu.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25225866477011499502235755092337496472968791026228935005967539105076107573987436225206826676957716837513575248907700135682762342948879338250959023686996140901230566648205047220596508091692612151217169758640405439163493700119338071931507762931602083434670390919285574602586724661313367073231810271682343439156805357675247584867111810751279532734694553028071062216788507866967998953925992318352395883925318661400485781382130859959908490676185876066218818246686379375358139475793994715974968753688022132603567846550439025831000379959582293618058629205727974355909696531519319240100890628308068046487283441118463627982363 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 24c3bc99c25221ee7069518604b6dfe5cd93861c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'patriotlife.gmu.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0075c1aec419db31c7adcdeb25ccd092775b56b146f951c40cff63b6d9e5177e71315894846a15597ba0750d0abb48d8f37f319dede3a465f6cbed790dddfe2750ed04ef87f82e304c5d22a40ad94c5adcde246dce8b9f63e9b333b8b0494f53a4e26cb5778a11733e80abdbfd028ddf096c87d4d00179e83a1855eac6070c813b9abf8f777a44b47f32d6f03c6958db2fc3d6d52706e5018c153d0a7d750f95b1e91c49eace4f9fba3394941b4dd50a7babf573e400abb598d2dfa50f70410902853b4df0f9252e9c5490b6e46314dc2a463048ee96715c207dfff33b45e4251133c3e2530393461438943691fcb3f437e2484fa1e3ea26a40d39bf5295e2d881