ocs.lib.sfu.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:be:98:f3:61:27:34:65:8e:69:c1:58:25:cb:f9:00:df:f4 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ocs.lib.sfu.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:be:98:f3:61:27:34:65:8e:69:c1:58:25:cb:f9:00:df:f4Serial Number (int): 326193813864254825060521697435790862245876
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 53:4c:74:cc:c9:57:51:9e:50:f2:23:77:b8:71:35:38:63:4d:01:a8
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 2c:d2:83:14:94:c7:8f:c8:2c:c8:20:f4:5e:b5:85:b0:64:ee:f8:7c
Fingerprint (sha256): 04:bc:fc:3a:2f:7d:4f:80:00:b1:0d:ed:fe:51:08:3f:29:83:36:e8:5c:c9:e2:3a:f6:0b:1b:40:32:d8:1b:76
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate ocs.lib.sfu.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ocs.lib.sfu.ca
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ocs.lib.sfu.ca
Other certificates including the domain name sfu.ca
(limited to 100 certificates)
*.sfu.ca
*.bus.sfu.ca
journals.lib.sfu.ca
*.its.sfu.ca
lib-theses.lib.sfu.ca
aldine.lib.sfu.ca
lib-theses.lib.sfu.ca
journals.sfu.ca
idp.sfu.ca
research.wiki.iat.sfu.ca
*.sfu.ca
bfraser-srv01.cmpt.sfu.ca
cmpt165.csil.sfu.ca
*.sfu.ca
athletics.sfu.ca
digital.lib.sfu.ca
git.fits.sfu.ca
globeproject.com
gruvi.cs.sfu.ca
databases.lib.sfu.ca
badas.irmacs.sfu.ca
ibcwg.org
*.its.sfu.ca
docs.pkp.sfu.ca
piwik.lib.sfu.ca
journal.archpress.lib.sfu.ca
*.sfu.ca
community.sfu.ca
journals.lib.sfu.ca
*.its.sfu.ca
*.sfu.ca
ceramicca.ensc.sfu.ca
adler.psyc.sfu.ca
appointment.lib.sfu.ca
athletics.sfu.ca
cas.sfu.ca
*.sfu.ca
www.npatlas.org
*.its.sfu.ca
*.its.sfu.ca
*.its.sfu.ca
*.its.sfu.ca
mikkeo-git-test.bus.sfu.ca
www.lib.sfu.ca
banyanlab.cs.sfu.ca
autonomy.cs.sfu.ca
newmediabusinessblog.org
*.fhs.sfu.ca
lib-search-dev.lib.sfu.ca
olc-dev.its.sfu.ca
calculator.lib.sfu.ca
atom.archives.sfu.ca
static.lib.sfu.ca
*.its.sfu.ca
isea2015.org
ocs.lib.sfu.ca
*.fhs.sfu.ca
vpstest18.lib.sfu.ca
cs-dm-signage.dc.sfu.ca
*.its.sfu.ca
lib-staff.lib.sfu.ca
pathogenomics.sfu.ca
registry.cloud.rcg.sfu.ca
appointment.lib.sfu.ca
bookings.science.sfu.ca
*.its.sfu.ca
npatlas-curate.chem.sfu.ca
api.lib.sfu.ca
*.sfu.ca
mwhs.avalanche.rem.sfu.ca
*.polylab.sfu.ca
cmpt373-lockdown.cs.surrey.sfu.ca
canvas2.tlc.sfu.ca
*.fhs.sfu.ca
digital.lib.sfu.ca
facts.arts.sfu.ca
nsl.cs.sfu.ca
journals.lib.sfu.ca
*.proxy.lib.sfu.ca
*.its.sfu.ca
vpstest23.lib.sfu.ca
advance.science.sfu.ca
conference.pkp.sfu.ca
www.cieedac.sfu.ca
alerts.library.nyu.edu
arago.cprost.sfu.ca
give.sfu.ca
*.lib.sfu.ca
*.ezproxy2.lib.sfu.ca
*.its.sfu.ca
*.fhs.sfu.ca
www.psyc.sfu.ca
rcg-ggt-dash.dcr.sfu.ca
hadar.tlc.sfu.ca
*.sfu.ca
www.psyc.sfu.ca
*.polylab.sfu.ca
my.sfu.ca
banyanlab.cs.sfu.ca
remsurvey.rem.sfu.ca
*.bus.sfu.ca
journals.lib.sfu.ca
*.its.sfu.ca
lib-theses.lib.sfu.ca
aldine.lib.sfu.ca
lib-theses.lib.sfu.ca
journals.sfu.ca
idp.sfu.ca
research.wiki.iat.sfu.ca
*.sfu.ca
bfraser-srv01.cmpt.sfu.ca
cmpt165.csil.sfu.ca
*.sfu.ca
athletics.sfu.ca
digital.lib.sfu.ca
git.fits.sfu.ca
globeproject.com
gruvi.cs.sfu.ca
databases.lib.sfu.ca
badas.irmacs.sfu.ca
ibcwg.org
*.its.sfu.ca
docs.pkp.sfu.ca
piwik.lib.sfu.ca
journal.archpress.lib.sfu.ca
*.sfu.ca
community.sfu.ca
journals.lib.sfu.ca
*.its.sfu.ca
*.sfu.ca
ceramicca.ensc.sfu.ca
adler.psyc.sfu.ca
appointment.lib.sfu.ca
athletics.sfu.ca
cas.sfu.ca
*.sfu.ca
www.npatlas.org
*.its.sfu.ca
*.its.sfu.ca
*.its.sfu.ca
*.its.sfu.ca
mikkeo-git-test.bus.sfu.ca
www.lib.sfu.ca
banyanlab.cs.sfu.ca
autonomy.cs.sfu.ca
newmediabusinessblog.org
*.fhs.sfu.ca
lib-search-dev.lib.sfu.ca
olc-dev.its.sfu.ca
calculator.lib.sfu.ca
atom.archives.sfu.ca
static.lib.sfu.ca
*.its.sfu.ca
isea2015.org
ocs.lib.sfu.ca
*.fhs.sfu.ca
vpstest18.lib.sfu.ca
cs-dm-signage.dc.sfu.ca
*.its.sfu.ca
lib-staff.lib.sfu.ca
pathogenomics.sfu.ca
registry.cloud.rcg.sfu.ca
appointment.lib.sfu.ca
bookings.science.sfu.ca
*.its.sfu.ca
npatlas-curate.chem.sfu.ca
api.lib.sfu.ca
*.sfu.ca
mwhs.avalanche.rem.sfu.ca
*.polylab.sfu.ca
cmpt373-lockdown.cs.surrey.sfu.ca
canvas2.tlc.sfu.ca
*.fhs.sfu.ca
digital.lib.sfu.ca
facts.arts.sfu.ca
nsl.cs.sfu.ca
journals.lib.sfu.ca
*.proxy.lib.sfu.ca
*.its.sfu.ca
vpstest23.lib.sfu.ca
advance.science.sfu.ca
conference.pkp.sfu.ca
www.cieedac.sfu.ca
alerts.library.nyu.edu
arago.cprost.sfu.ca
give.sfu.ca
*.lib.sfu.ca
*.ezproxy2.lib.sfu.ca
*.its.sfu.ca
*.fhs.sfu.ca
www.psyc.sfu.ca
rcg-ggt-dash.dcr.sfu.ca
hadar.tlc.sfu.ca
*.sfu.ca
www.psyc.sfu.ca
*.polylab.sfu.ca
my.sfu.ca
banyanlab.cs.sfu.ca
remsurvey.rem.sfu.ca
Certificate
The complete raw certificate details for ocs.lib.sfu.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVjCCBT6gAwIBAgISA76Y82EnNGWOacFYJcv5AN/0MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMjQwOTIxMDVaFw0y MDA2MjIwOTIxMDVaMBkxFzAVBgNVBAMTDm9jcy5saWIuc2Z1LmNhMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAno/9FFIlXyqlhUkz81bq/dAEFIz5KA9g aM1d1FCE4u8fHxtzRd6kTi0Y7iPazuI8LkhgPVUsFUYMiVfr16hawjpksyD9Zb1v WZ4rYgYrQw1q+xDgpXI+JzaCVHiQQYN8dNTqY4F0WzW5Kcsj2V/gHS/BT2Mf6wm9 jr/xa37ygM47IFDTvRcAn/bXiunKaBr7ju+NMnE6aV1VkAYobOLRbLVKbZm1+iXx RSRiwjNkEPhbPiIwPWye1/gNc0FP20ysKktfBlqbSWg9LnpUDcCfhcfjJCtx9eky MfjdFnpbOoIvacSU7WjpLlb3Qv6GD0INedhyi8MgDNMyFE75zewiYBjr+I0XXvU7 VAgaltXLPNXEhbJEVJ20LW/8Ovm497ixowulat5cc/uRVJYLplBgyTSKp90BRNwr 3DkqXKkWV2hw9VFqYLaDMRqCioaU4DxfaKnUjspmPUCf3jBKlZIgOSDNCQNU9lvN JCqCNrlbxL9nqo+yafVxVgLU6maFkIPbgshOIfmGd04h5PPnXqNplmeK/XL0FEsb 0Jm2g9qOlqWTjLoTKK/qgCb+FrCQrHZSS2Rsyg6EJiox2FUxwjKXdNoC79cILoAR eczz+4mUuVdifMN7YCqfhRQbKtr6uDvpaG2MR6CHfpxNRufkoP55T6ON7we72TQT vjOiHB8REPkCAwEAAaOCAmUwggJhMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUU0x0 zMlXUZ5Q8iN3uHE1OGNNAagwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg5vY3MubGliLnNmdS5jYTBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQYGCisGAQQB1nkCBAIEgfcE gfQA8gB3AOcS8rA3fhpi+47JDGGE8ep7N8tWHREmW/Pg80vyQVRuAAABcQwPXhYA AAQDAEgwRgIhAM18zDIwq11IDY5/z787VdfJ/6rlkQV12RPuMIj8O53rAiEAkykj r46f4pEtpD0xQc8tpePQEdwwM7lrA4CTUYqp9asAdwAHt1wb5X1o//Gwxh0jFce6 5ld8V5S3au68YToaadOiHAAAAXEMD15MAAAEAwBIMEYCIQD4p9UXC6TC1oj0ZbAh v3zYfRGX5GQNUFben5x6rLH+0wIhALChyKlzg9sn9VtmDLi11aSV4FzQ8+JlE1SC MHX3gm8zMA0GCSqGSIb3DQEBCwUAA4IBAQCDyiYwgUKzlhMO84EVvUQjvuIou+sb Kchxxe6jytB8i5fJp4U4QtPKQO8Rx5fBOCfmwh6hM6qcaU+bHB14hopL3zgVG3pu Di7hxMHm9X+2+fAk8Cge9443LakLBfxbAchlE3cjsBswuI5GOPWfNKQQAPkWbsIM bu5Zq5Yxskcw2/uPIx0d2yhjD2mKluTOJVV/veqYXhBdmaDQ9mFqWFvMXDGV9oSl vi0bzdXHopLAIjmMmyhUoOTipOa1PQAthkMKCL9EV6RCRiKa4JoIeGD0cGDkKTHB w742naiVhGldU60R7Hvsrpnn2j+dkirWdSgQxUC77xF/yGREz62WVy58 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAno/9FFIlXyqlhUkz81bq /dAEFIz5KA9gaM1d1FCE4u8fHxtzRd6kTi0Y7iPazuI8LkhgPVUsFUYMiVfr16ha wjpksyD9Zb1vWZ4rYgYrQw1q+xDgpXI+JzaCVHiQQYN8dNTqY4F0WzW5Kcsj2V/g HS/BT2Mf6wm9jr/xa37ygM47IFDTvRcAn/bXiunKaBr7ju+NMnE6aV1VkAYobOLR bLVKbZm1+iXxRSRiwjNkEPhbPiIwPWye1/gNc0FP20ysKktfBlqbSWg9LnpUDcCf hcfjJCtx9ekyMfjdFnpbOoIvacSU7WjpLlb3Qv6GD0INedhyi8MgDNMyFE75zewi YBjr+I0XXvU7VAgaltXLPNXEhbJEVJ20LW/8Ovm497ixowulat5cc/uRVJYLplBg yTSKp90BRNwr3DkqXKkWV2hw9VFqYLaDMRqCioaU4DxfaKnUjspmPUCf3jBKlZIg OSDNCQNU9lvNJCqCNrlbxL9nqo+yafVxVgLU6maFkIPbgshOIfmGd04h5PPnXqNp lmeK/XL0FEsb0Jm2g9qOlqWTjLoTKK/qgCb+FrCQrHZSS2Rsyg6EJiox2FUxwjKX dNoC79cILoAReczz+4mUuVdifMN7YCqfhRQbKtr6uDvpaG2MR6CHfpxNRufkoP55 T6ON7we72TQTvjOiHB8REPkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 326193813864254825060521697435790862245876 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-24 09:21:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-22 09:21:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ocs.lib.sfu.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 646878380725498931157608054662835587717502268615729812811094524289303704377856281269198972910652916665814790652907706186658327421827709822766373666195528373378213675786106053167474272592997790702611330232060192485268864152913664439058585393578860631976216926017875221034790545341031031493416590194517445548230013248049542817262202314270736756804273588036661882902708809387381920028863213338293317407269782723509628547040949677758554479760147018761353004407976641212157224879022989151323476700293971665667699820981526847841153673346682934117163850340967652584012973830551485610421924732511627071848781891751203495133002658667651309152211718947665108176332945084967539813583833035563694497865379060346210903484759198950107154458897776973185961244822169391746937470709032583462564384987898883154063553298784218160393961524683983993501435305118314609350191504297363292860841614469566650313660339468687217506319750922938854873899381260786803726667836273858197797150358833472881477730400569338342387228479442964838467666532290312749011315599160929532093475360485984568543566912310090581259521145898713464679025127027868439937981798105846457291055080936611893702065352228222350089501054499416022545818548375002143632032318852353305758208249 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 534c74ccc957519e50f22377b8713538634d01a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ocs.lib.sfu.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e000001710c0f5e160000040300483046022100cd7ccc3230ab5d480d8e7fcfbf3b55d7c9ffaae5910575d913ee3088fc3b9deb022100932923af8e9fe2912da43d3141cf2da5e3d011dc3033b96b038093518aa9f5ab00770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c000001710c0f5e4c0000040300483046022100f8a7d5170ba4c2d688f465b021bf7cd87d1197e4640d5056de9f9c7aacb1fed3022100b0a1c8a97383db27f55b660cb8b5d5a495e05cd0f3e2651354823075f7826f33 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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