tpa.carleton.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:1d:99:bd:ce:7d:50:2e:2a:81:6c:a1:d9:35:30:05:ee:77 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tpa.carleton.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:1d:99:bd:ce:7d:50:2e:2a:81:6c:a1:d9:35:30:05:ee:77Serial Number (int): 271409403851554023869913046320398597484151
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2d:c0:f0:13:6c:1a:af:c2:37:6c:7e:2e:be:4c:bb:46:9b:ac:e9:1f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 84:cd:e8:f9:be:04:ea:4b:eb:90:01:7b:7e:b6:f6:46:0f:a0:68:ad
Fingerprint (sha256): 03:b4:e9:ad:17:50:b6:8b:01:01:6b:3c:18:9f:63:a1:61:5c:90:1d:78:39:34:c9:03:c6:76:55:96:f7:aa:1e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate tpa.carleton.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tpa.carleton.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tpa.carleton.ca
Other certificates including the domain name carleton.ca
(limited to 100 certificates)
atlas-wiki.physics.carleton.ca
finint01.cunet.carleton.ca
*.carleton.ca
planforgood.carleton.ca
timreview.carleton.ca
ccs-casdev3.carleton.ca
sciencedev.physics.carleton.ca
ir.library.carleton.ca
alumnimentors.carleton.ca
mimcufed.carleton.ca
cqads.carleton.ca
*.nwrc.carleton.ca
hotsoft.carleton.ca
gogs.carleton.ca
cas5.carleton.ca
ssscdev2.physics.carleton.ca
ojs.library.carleton.ca
mycareer.carleton.ca
inuktutlexicon.gcrc.carleton.ca
hotsoft.carleton.ca
nextcalendar.carleton.ca
itsgit.carleton.ca
owncloud.carleton.ca
linux.doe.carleton.ca
lakehurontreaties.gcrc.carleton.ca
scienceapps1.carleton.ca
banweb77.cunet.carleton.ca
cas5.carleton.ca
banweb53.cunet.carleton.ca
san-6-s10.tlsprovisioning.exacttarget.com
scienceapps.carleton.ca
journals.carleton.ca
cas5dev.carleton.ca
cg.scs.carleton.ca
sssc.carleton.ca
mvp.soft.carleton.ca
mailhost.math.carleton.ca
tpa.carleton.ca
science.carleton.ca
cas.carleton.ca
*.carleton.ca
gogs.carleton.ca
awc.carleton.ca
cutv.carleton.ca
*.scs.carleton.ca
its-apidev1.carleton.ca
docman.carleton.ca
itsccw02.cunet.carleton.ca
elections.ccss.carleton.ca
*.carleton.ca
mailhost.math.carleton.ca
cas5dev.carleton.ca
chernode.mae.carleton.ca
ssoman.carleton.ca
sssc.carleton.ca
wiki.math.carleton.ca
vlt.carleton.ca
bandoc02.cunet.carleton.ca
cqads-vm01.carleton.ca
tpa.carleton.ca
jupyterhub.physics.carleton.ca
doclib.carleton.ca
cqads-vm01.carleton.ca
simreporting.carleton.ca
banstg01.cunet.carleton.ca
science.carleton.ca
mattermost.carleton.ca
portalclonetest.carleton.ca
ccsadc04.cunet.carleton.ca
sikuatlas.gcrc.carleton.ca
architecture.carleton.ca
deap-radiopurity.physics.carleton.ca
lakehurontreaties.gcrc.carleton.ca
deapdb.physics.carleton.ca
honoursprojects.physics.carleton.ca
dges.carleton.ca
mvp.soft.carleton.ca
itsrds05.cunet.carleton.ca
gracilis.glel.carleton.ca
itsgit.carleton.ca
u-itsadc02.cunet-uat.carleton.ca
enrichment.math.carleton.ca
planforgood.carleton.ca
www.cuol.ca
sprottcareers.carleton.ca
iggrc.carleton.ca
adminweb.carleton.ca
ccss.carleton.ca
webwork.math.carleton.ca
people.math.carleton.ca
cutv.carleton.ca
earthsci.carleton.ca
sssc.carleton.ca
rcsctx.carleton.ca
rcs-citrix5.carleton.ca
deap-deltav.physics.carleton.ca
hereforgood.carleton.ca
ngn.sce.carleton.ca
banweb03.cunet.carleton.ca
ccss.carleton.ca
finint01.cunet.carleton.ca
*.carleton.ca
planforgood.carleton.ca
timreview.carleton.ca
ccs-casdev3.carleton.ca
sciencedev.physics.carleton.ca
ir.library.carleton.ca
alumnimentors.carleton.ca
mimcufed.carleton.ca
cqads.carleton.ca
*.nwrc.carleton.ca
hotsoft.carleton.ca
gogs.carleton.ca
cas5.carleton.ca
ssscdev2.physics.carleton.ca
ojs.library.carleton.ca
mycareer.carleton.ca
inuktutlexicon.gcrc.carleton.ca
hotsoft.carleton.ca
nextcalendar.carleton.ca
itsgit.carleton.ca
owncloud.carleton.ca
linux.doe.carleton.ca
lakehurontreaties.gcrc.carleton.ca
scienceapps1.carleton.ca
banweb77.cunet.carleton.ca
cas5.carleton.ca
banweb53.cunet.carleton.ca
san-6-s10.tlsprovisioning.exacttarget.com
scienceapps.carleton.ca
journals.carleton.ca
cas5dev.carleton.ca
cg.scs.carleton.ca
sssc.carleton.ca
mvp.soft.carleton.ca
mailhost.math.carleton.ca
tpa.carleton.ca
science.carleton.ca
cas.carleton.ca
*.carleton.ca
gogs.carleton.ca
awc.carleton.ca
cutv.carleton.ca
*.scs.carleton.ca
its-apidev1.carleton.ca
docman.carleton.ca
itsccw02.cunet.carleton.ca
elections.ccss.carleton.ca
*.carleton.ca
mailhost.math.carleton.ca
cas5dev.carleton.ca
chernode.mae.carleton.ca
ssoman.carleton.ca
sssc.carleton.ca
wiki.math.carleton.ca
vlt.carleton.ca
bandoc02.cunet.carleton.ca
cqads-vm01.carleton.ca
tpa.carleton.ca
jupyterhub.physics.carleton.ca
doclib.carleton.ca
cqads-vm01.carleton.ca
simreporting.carleton.ca
banstg01.cunet.carleton.ca
science.carleton.ca
mattermost.carleton.ca
portalclonetest.carleton.ca
ccsadc04.cunet.carleton.ca
sikuatlas.gcrc.carleton.ca
architecture.carleton.ca
deap-radiopurity.physics.carleton.ca
lakehurontreaties.gcrc.carleton.ca
deapdb.physics.carleton.ca
honoursprojects.physics.carleton.ca
dges.carleton.ca
mvp.soft.carleton.ca
itsrds05.cunet.carleton.ca
gracilis.glel.carleton.ca
itsgit.carleton.ca
u-itsadc02.cunet-uat.carleton.ca
enrichment.math.carleton.ca
planforgood.carleton.ca
www.cuol.ca
sprottcareers.carleton.ca
iggrc.carleton.ca
adminweb.carleton.ca
ccss.carleton.ca
webwork.math.carleton.ca
people.math.carleton.ca
cutv.carleton.ca
earthsci.carleton.ca
sssc.carleton.ca
rcsctx.carleton.ca
rcs-citrix5.carleton.ca
deap-deltav.physics.carleton.ca
hereforgood.carleton.ca
ngn.sce.carleton.ca
banweb03.cunet.carleton.ca
ccss.carleton.ca
Certificate
The complete raw certificate details for tpa.carleton.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgISAx2Zvc59UC4qgWyh2TUwBe53MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MjAwMDE4NTRaFw0x OTExMTgwMDE4NTRaMBoxGDAWBgNVBAMTD3RwYS5jYXJsZXRvbi5jYTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBANBX3wsobTm0aGB3fUv9QZh3XWNbJSyA gyxmNpaeD4dRZVzwcwDz6mUxa1V2iNpPAls2nllZJ6HiDH+WgVLLxkFb4mUoyD0E 9u/z1UvbYkXmhTCN5DT221RH8+g0II7g2Zjgr3yjuXelLCKPj4ek4kthpTToR3jj OH1EjsxFDVtW41KTdGiW5eBZA6mY0ZIHVupCARt3X7Ac8CVW1Njs0+04yvLcKgQr CHs+PD1pv0YT6z8kSWdgrO+JgGzj8/ZY8kgrfmNFiYxa3uce3gFjYbB/XQ1Qijjs zf6I2S3N+3GYhvdeKcxumKgbXPFr/3K2Rm2mF1/2yGNVmvPa+kVG37kCAwEAAaOC AmQwggJgMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULcDwE2war8I3bH4uvky7Rpus 6R8wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEE YzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQu b3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQu b3JnLzAaBgNVHREEEzARgg90cGEuY2FybGV0b24uY2EwTAYDVR0gBEUwQzAIBgZn gQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5s ZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgB0ftqDMa0z EJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWysmwCjAAAEAwBHMEUCIDjmyLzC qEOCEMboefIUheQhYzi8uBRE7nGBAUgfW+5rAiEAvVnKTwzowIazeXIPCRPc9LQ1 FTm7gteQIAkXhZ/TvDsAdgBj8tvN6DvMLM8LcoQnV2szpI1hd4+9daY4scdoVEvY jQAAAWysmv6uAAAEAwBHMEUCIQDz+sqA4Z2p4LIdqNaCjf5RSkBa6Fkr03L2gtO9 Vb3nkAIgWNLvzLeHjqlwSKyEc6jnrvSgEt+Wl8CHurtOnseJsFYwDQYJKoZIhvcN AQELBQADggEBAGsbmjFDhqexhAoVgWKCN+T1vs6pCz7nGFwAOVt/BvWfx29qeBhn ZwNF9avRLJTNaydwrM+Zd/jGO17cdtmnO3uIbr3+/Wqz1NmtT8AezyurhkqfQUiB P0P01oJHIK29Ap4md1thNrFAn62h4CSFPEzE3quiIQupp4UlI7x9m0BH+AlCXwbP gE1ApckTopg2ISrv5CcJ4a4Sr8TAzfqJGYA87GO0apDdokytS+ZvAFpXGz5q3HdE wqdN6KZjxq3ZbIfSenuSBAbWTXhFzT1lcKdtQDlb341A1iHeS+zUq0omi23pBg+b LgBI2/W4vAQ2+Vsa7bQKszqYUS6ntisPXKA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FffCyhtObRoYHd9S/1B mHddY1slLICDLGY2lp4Ph1FlXPBzAPPqZTFrVXaI2k8CWzaeWVknoeIMf5aBUsvG QVviZSjIPQT27/PVS9tiReaFMI3kNPbbVEfz6DQgjuDZmOCvfKO5d6UsIo+Ph6Ti S2GlNOhHeOM4fUSOzEUNW1bjUpN0aJbl4FkDqZjRkgdW6kIBG3dfsBzwJVbU2OzT 7TjK8twqBCsIez48PWm/RhPrPyRJZ2Cs74mAbOPz9ljySCt+Y0WJjFre5x7eAWNh sH9dDVCKOOzN/ojZLc37cZiG914pzG6YqBtc8Wv/crZGbaYXX/bIY1Wa89r6RUbf uQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 271409403851554023869913046320398597484151 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-20 00:18:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-18 00:18:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tpa.carleton.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26300898368187771196776754297390651010275080418882457845865439775153714091291747062371798756291169192939427065376996762462742362704346850124708362958070497598398889200496535714901775598066703656269946750191531862421185828174319508781606334086998967284557768304529268353270732371233965461325769248030422912094517945220647478513220456008006594232217794676582002987418350079634309523123945198427148955049586098601642973750352898903135753536465812514785709963339060546757828570876536942781568646551831483858273643452779517671907730950978721343240254461023722248310834613883858633164120942108312660128961220436304928890809 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2dc0f0136c1aafc2376c7e2ebe4cbb469bace91f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tpa.carleton.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016cac9b00a30000040300473045022038e6c8bcc2a8438210c6e879f21485e4216338bcb81444ee718101481f5bee6b022100bd59ca4f0ce8c086b379720f0913dcf4b4351539bb82d790200917859fd3bc3b00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016cac9afeae0000040300473045022100f3faca80e19da9e0b21da8d6828dfe514a405ae8592bd372f682d3bd55bde790022058d2efccb7878ea97048ac8473a8e7aef4a012df9697c087babb4e9ec789b056 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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