*.servicemesh.dh3-1.nebula.ikea.com
Issued by R3
About this certificate
This digital certificate with serial number 03:6d:25:d6:c4:6d:e9:dd:ac:0b:b6:7c:a3:5c:eb:0b:18:ab was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.servicemesh.dh3-1.nebula.ikea.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:6d:25:d6:c4:6d:e9:dd:ac:0b:b6:7c:a3:5c:eb:0b:18:abSerial Number (int): 298477932361095330819929300033544846514347
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f4:82:e4:aa:36:02:11:d1:9d:d3:34:99:69:b3:85:6d:35:82:cf:9a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 47:37:4a:08:27:45:04:e3:90:45:2b:8c:d4:76:3f:94:93:9e:63:9e
Fingerprint (sha256): 02:e6:58:b9:57:44:d3:ea:50:c6:be:f4:cc:7f:08:7c:d1:9d:8d:6e:23:d2:62:d5:91:f7:a4:a4:24:0f:87:fa
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate *.servicemesh.dh3-1.nebula.ikea.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.servicemesh.dh3-1.nebula.ikea.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.servicemesh.dh3-1.nebula.ikea.com
Other certificates including the domain name ikea.com
(limited to 100 certificates)
ikea.com
optiva.food.inter.ikea.com
support.home-design.ikea.com
ja-int-jobs.about.ikea.com
ikea.com
sso.qa.journeys.ikea.com
*.credential-provider.dh3-2.nebula.ikea.com
sv-int-jobs.about.ikea.com
ikea.com
fr-jobs.about.ikea.com
prod.6.slot.cdn.salesforce-communities.com
secure06.stage.lithium.com
ikea.com
franchisor.ikea.com
en-int-jobs.about.ikea.com
gfutils.com
ikea.com
*.glinux.dh3-1.nebula.ikea.com
ikea.com
everyday.ikea.com
es-int-jobs.about.ikea.com
*.om-performancetest-lab1.dh2-2.nebula.ikea.com
franchisor.ikea.com
ikea.com
ikea.com
sso.journeys.ikea.com
hub01.api.ikea.com
no-jobs.about.ikea.com
ikea.com
remote.ap-northeast-2.api.homesmart.ikea.com
ikea.com
*.s3.eun.nebula.ikea.com
hubble.lab.nebula.ikea.com
lt-int-jobs.about.ikea.com
sl-jobs.about.ikea.com
review.symfonisk.ikea.com
publications-ca-fr.ikea.com
sts.ikea.com
ikea.com
eu-west-3.iot.homesmart.ikea.com
sr-jobs.about.ikea.com
isfabdp.ikea.com
*.servicemesh.dh3-1.nebula.ikea.com
filewave.ikea.com
ms-jobs.about.ikea.com
de-ch-jobs.about.ikea.com
ikea.com
www.highlights.ikea.com
filewave.ikea.com
checkout.ua.staging.ikea.com
prod.6.slot.cdn.salesforce-communities.com
ikea.com
dev.t.qr.ikea.com
ikea.com
formularios.ikea.com
sustainableliving.ikea.com
ikea.com
ikea.com
en-global-jobs.about.ikea.com
goto.ikea.com
en-jobs.about.ikea.com
ae.accounts.ikea.com
da-jobs.about.ikea.com
*.credential-provider.dc8-1.nebula.ikea.com
*.ikea.com
*.demo-table1.dc7-1.nebula.ikea.com
secure.services.ikea.com
no-int-jobs.about.ikea.com
api.analytics.homesmart.ikea.com
qr.ikea.com
sr-int-jobs.about.ikea.com
eu-central-1.iot.homesmart.ikea.com
hr-int-jobs.about.ikea.com
dnstrd.ikea.com
api.nebulademo.spitzer.dev.nebula.ikea.com
ru-int-jobs.about.ikea.com
publications-jo-ar.ikea.com
publications-ext.ikea.com
pam-iig.ikea.com
idam.inter.ikea.com
oos.insideworkspaces.ikea.com
ikea.com
ikea.com
ikea.com
ikea.com
ikeadt.com
ikea.com
akamai-san41.exacttarget.com
usinincontact.ikea.com
secure.services.ikea.com
ikea.com
publications-ua-uk.ikea.com
everyday.ikea.com
ar-jobs.about.ikea.com
goto.ikea.com
Mail15.ikea.com
rana03.ikea.com
franchisor.ikea.com
ikea.com
ikea.com
optiva.food.inter.ikea.com
support.home-design.ikea.com
ja-int-jobs.about.ikea.com
ikea.com
sso.qa.journeys.ikea.com
*.credential-provider.dh3-2.nebula.ikea.com
sv-int-jobs.about.ikea.com
ikea.com
fr-jobs.about.ikea.com
prod.6.slot.cdn.salesforce-communities.com
secure06.stage.lithium.com
ikea.com
franchisor.ikea.com
en-int-jobs.about.ikea.com
gfutils.com
ikea.com
*.glinux.dh3-1.nebula.ikea.com
ikea.com
everyday.ikea.com
es-int-jobs.about.ikea.com
*.om-performancetest-lab1.dh2-2.nebula.ikea.com
franchisor.ikea.com
ikea.com
ikea.com
sso.journeys.ikea.com
hub01.api.ikea.com
no-jobs.about.ikea.com
ikea.com
remote.ap-northeast-2.api.homesmart.ikea.com
ikea.com
*.s3.eun.nebula.ikea.com
hubble.lab.nebula.ikea.com
lt-int-jobs.about.ikea.com
sl-jobs.about.ikea.com
review.symfonisk.ikea.com
publications-ca-fr.ikea.com
sts.ikea.com
ikea.com
eu-west-3.iot.homesmart.ikea.com
sr-jobs.about.ikea.com
isfabdp.ikea.com
*.servicemesh.dh3-1.nebula.ikea.com
filewave.ikea.com
ms-jobs.about.ikea.com
de-ch-jobs.about.ikea.com
ikea.com
www.highlights.ikea.com
filewave.ikea.com
checkout.ua.staging.ikea.com
prod.6.slot.cdn.salesforce-communities.com
ikea.com
dev.t.qr.ikea.com
ikea.com
formularios.ikea.com
sustainableliving.ikea.com
ikea.com
ikea.com
en-global-jobs.about.ikea.com
goto.ikea.com
en-jobs.about.ikea.com
ae.accounts.ikea.com
da-jobs.about.ikea.com
*.credential-provider.dc8-1.nebula.ikea.com
*.ikea.com
*.demo-table1.dc7-1.nebula.ikea.com
secure.services.ikea.com
no-int-jobs.about.ikea.com
api.analytics.homesmart.ikea.com
qr.ikea.com
sr-int-jobs.about.ikea.com
eu-central-1.iot.homesmart.ikea.com
hr-int-jobs.about.ikea.com
dnstrd.ikea.com
api.nebulademo.spitzer.dev.nebula.ikea.com
ru-int-jobs.about.ikea.com
publications-jo-ar.ikea.com
publications-ext.ikea.com
pam-iig.ikea.com
idam.inter.ikea.com
oos.insideworkspaces.ikea.com
ikea.com
ikea.com
ikea.com
ikea.com
ikeadt.com
ikea.com
akamai-san41.exacttarget.com
usinincontact.ikea.com
secure.services.ikea.com
ikea.com
publications-ua-uk.ikea.com
everyday.ikea.com
ar-jobs.about.ikea.com
goto.ikea.com
Mail15.ikea.com
rana03.ikea.com
franchisor.ikea.com
ikea.com
ikea.com
Certificate
The complete raw certificate details for *.servicemesh.dh3-1.nebula.ikea.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgISA20l1sRt6d2sC7Z8o1zrCxirMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMjEwMTEwNzA2NDhaFw0yMzAxMDkwNzA2NDdaMC4xLDAqBgNVBAMM Iyouc2VydmljZW1lc2guZGgzLTEubmVidWxhLmlrZWEuY29tMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0g9QmJgBl4g2HMVE1OaXSWS4GZwhcavP0pZ uYGEjBn3tcS8PnHnIKlknjYlO8a96mQeKhzk7VUqAXh6PphHS0M13WwnP1/wML2l gS0HK9fgEg2D6IcnwaT/MJWeMiAPCKLWoSzwxubnpVyh3jO2BMVaVcWerVXXh269 Z18ygUFCRAusLV4eQRynAE/vm4TQrwpx7HPiRVs03+4hD8sghrNMwaICX7s5A1en efRqKfChalREhsWdAgNwzS/KeeovJUqKioQ4Z6PcNKxnIfo+TgCnSXGfoSOj+4ak rm+iy3UokYfPo671IcZiehh7tfas9xi7IJ0ib02a5yCXLkzdYwIDAQABo4ICXDCC AlgwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT0guSqNgIR0Z3TNJlps4VtNYLPmjAf BgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcw IQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYW aHR0cDovL3IzLmkubGVuY3Iub3JnLzAuBgNVHREEJzAlgiMqLnNlcnZpY2VtZXNo LmRoMy0xLm5lYnVsYS5pa2VhLmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3Bgsr BgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0 Lm9yZzCCAQIGCisGAQQB1nkCBAIEgfMEgfAA7gB1AHoyjFTYty22IOo44FIe6YQW cDIThU070ivBOlejUutSAAABg8YU/mMAAAQDAEYwRAIgbngxneWUljae/vzDUb3r gbbaNUWmo4Ewq9O6zxBUcvICIGlEzTVe7a3QbHYX5bcJBzNL38ZLTnNgf0So8b2I rt6nAHUAtz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGDxhUATAAA BAMARjBEAiBircggtvF7mvX7Q7gd+bjQ9FZi81s4vtDiTVdO/HHRkgIgaVhtycjA hq5wQUD9iR8jQnr+w8GwzwAl1wUdOa2mpjIwDQYJKoZIhvcNAQELBQADggEBAC84 WyF0w5m+aG6Qlj+wZ1YZwGyri3SBGfSvvN2qO/oJZp5JGOj8R42VK4ZK5CcTklVZ BmpsyUHoB/oeGvC9bAUC/Mdy/hBAO3gWorxNR0pjRLuPGMHS902jx96ftOqcQYnJ SUwKIinU/aknC7oDqPwfR8yc0UJ/Z2RMZLv+a78LTA82kocF5WBby0PrrgTCHGyH qAJmVP1nV+WorWibKcBaKV/eVIehLxrZKWcIcq0ki+mf1U6EzCXUkh+Wo1knOZD7 7ElYOh8HO2yq0d18ssXTu9HMI2yZRaPrXiV8+LLyq7R9erYe/j5BRyztIitFX54h bYSGZCy79HG71qn7xNE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0g9QmJgBl4g2HMVE1Oa XSWS4GZwhcavP0pZuYGEjBn3tcS8PnHnIKlknjYlO8a96mQeKhzk7VUqAXh6PphH S0M13WwnP1/wML2lgS0HK9fgEg2D6IcnwaT/MJWeMiAPCKLWoSzwxubnpVyh3jO2 BMVaVcWerVXXh269Z18ygUFCRAusLV4eQRynAE/vm4TQrwpx7HPiRVs03+4hD8sg hrNMwaICX7s5A1enefRqKfChalREhsWdAgNwzS/KeeovJUqKioQ4Z6PcNKxnIfo+ TgCnSXGfoSOj+4akrm+iy3UokYfPo671IcZiehh7tfas9xi7IJ0ib02a5yCXLkzd YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 298477932361095330819929300033544846514347 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-11 07:06:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-09 07:06:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.servicemesh.dh3-1.nebula.ikea.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25157045211882212600718722256862822169480679029435414474735339980037115614098855120502522322849189303530686415257917401215655960713785004312818736117639487253443721892124809646924762548061005580997876130526555395982230209450658507203757689195203053248910022114764691936310311286361391678839485712323904228353199121735058796719817863783406274525532349551794347637011114640931899402671510874736931366782894139947380529498924303975600913153279548809820182648241778037493419086047510155969968123440764964079285607728299710184425532107678409377358449325831152775803691599811571229509029845747288175508720189582028902817123 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f482e4aa360211d19dd3349969b3856d3582cf9a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.servicemesh.dh3-1.nebula.ikea.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000183c614fe63000004030046304402206e78319de59496369efefcc351bdeb81b6da3545a6a38130abd3bacf105472f202206944cd355eedadd06c7617e5b70907334bdfc64b4e73607f44a8f1bd88aedea7007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000183c615004c0000040300463044022062adc820b6f17b9af5fb43b81df9b8d0f45662f35b38bed0e24d574efc71d192022069586dc9c8c086ae704140fd891f23427afec3c1b0cf0025d7051d39ada6a632 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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