good.gsm.cornell.edu
Issued by R3
About this certificate
This digital certificate with serial number 03:ff:42:0d:11:93:40:50:05:ff:1e:b2:e6:10:cb:89:df:16 was issued on by Let's Encrypt.
With 88 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=good.gsm.cornell.edu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ff:42:0d:11:93:40:50:05:ff:1e:b2:e6:10:cb:89:df:16Serial Number (int): 348196658264168420458090399889687220707094
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 04:44:6a:c8:a3:19:d5:b1:4a:73:7c:58:7f:b7:f5:6c:39:01:b2:62
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 8e:d7:8b:cd:2f:bd:6d:39:4a:71:4f:13:41:40:f7:70:58:a4:bb:e2
Fingerprint (sha256): 05:52:1c:f0:ce:9c:a4:13:7f:da:d4:c5:7b:52:df:2d:0c:ac:cb:92:02:c5:6d:0a:cc:7d:66:aa:f9:35:ed:3b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate good.gsm.cornell.edu
88
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for good.gsm.cornell.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
good.gsm.cornell.edu
gpf.nacha.org
gtpe.pe.gatech.edu
gws-uat.earthjustice.org
hcii.cs.cmu.edu
healthsciences.ss.pacific.edu
home.earthjustice.org
host2.openminds.com
host3.fcwa.org
host90.farmermac.com
hr-kiosk.tsu.edu
httpbin.earthjustice.org
hub.meed.com
iam.earthjustice.org
inas2.uga.edu
inbound.govdelivery.com
info-dev.calperformances.org
info.religionnews.com
info.vcfa.edu
infonet.fia.org
inks.govdelivery.com
inside.cityyear.org
inside.gc.cuny.edu
inside.kjzz.org
international.dev.oceana.org
internetcouncil.nacha.org
intranet.olivecrest.org
ip.govdelivery.com
ipv6.earthjustice.org
ipv6.govdelivery.com
it-chat.web.arizona.edu
it.22squared.com
it.uahs.arizona.edu
iteachu.multidevcom.uaf.edu
japan.fia.org
jlinks.govdelivery.com
job.earthjustice.org
journaldev.naeyc.org
jp.mcny.org
jss-dc3.govdelivery.com
junk.dana.org
junk2.dana.org
jwplayer.essence.com
kgqm.kjzz.org
kim.lovelace.shiatsusociety.org
kubernetes.govdelivery.com
laborlabsandbox.aflcio.org
landing.pacific.edu
lasota.multidevcom.uaf.edu
law.ss.pacific.edu
ldap.cscc.unc.edu
legacy.bricartsmedia.org
legacy.hq.philabundance.org
liberalarts.ss.pacific.edu
libre.estadio.com
lindsay.mcny.org
live-embed-atu.edu.help
live.aep.cornell.edu
live.bme.cornell.edu
live.cam.cornell.edu
live.mcgeorge.edu
live.ophd.pantheon.berkeley.edu
live.ucdavis.edu
m.qsrmagazine.com
m.religionnews.com
m.voiceofsandiego.org
macaugaming.gsm.cornell.edu
mailams.ustelecom.org
makinghistory.gwu.edu
marketing.magicsoftware.com
marketingprojects.maryville.edu
mediaroom.livestrong.org
memberauth.audiology.org
microsites.globalwaters.org
mobilize.medika.life
mpo.gsm.cornell.edu
msa2016.berkeley.edu
multidev1.gc.cuny.edu
nartc.fcm.arizona.edu
nartechedge.nar.realtor
news.catholicschoolsbq.org
news.religionnews.com
newsite.as-coa.org
next.warnerpacific.edu
noticias.lared.cl
nrrss.ced.berkeley.edu
null.actorsfund.org
nyild.unionderm.com
gpf.nacha.org
gtpe.pe.gatech.edu
gws-uat.earthjustice.org
hcii.cs.cmu.edu
healthsciences.ss.pacific.edu
home.earthjustice.org
host2.openminds.com
host3.fcwa.org
host90.farmermac.com
hr-kiosk.tsu.edu
httpbin.earthjustice.org
hub.meed.com
iam.earthjustice.org
inas2.uga.edu
inbound.govdelivery.com
info-dev.calperformances.org
info.religionnews.com
info.vcfa.edu
infonet.fia.org
inks.govdelivery.com
inside.cityyear.org
inside.gc.cuny.edu
inside.kjzz.org
international.dev.oceana.org
internetcouncil.nacha.org
intranet.olivecrest.org
ip.govdelivery.com
ipv6.earthjustice.org
ipv6.govdelivery.com
it-chat.web.arizona.edu
it.22squared.com
it.uahs.arizona.edu
iteachu.multidevcom.uaf.edu
japan.fia.org
jlinks.govdelivery.com
job.earthjustice.org
journaldev.naeyc.org
jp.mcny.org
jss-dc3.govdelivery.com
junk.dana.org
junk2.dana.org
jwplayer.essence.com
kgqm.kjzz.org
kim.lovelace.shiatsusociety.org
kubernetes.govdelivery.com
laborlabsandbox.aflcio.org
landing.pacific.edu
lasota.multidevcom.uaf.edu
law.ss.pacific.edu
ldap.cscc.unc.edu
legacy.bricartsmedia.org
legacy.hq.philabundance.org
liberalarts.ss.pacific.edu
libre.estadio.com
lindsay.mcny.org
live-embed-atu.edu.help
live.aep.cornell.edu
live.bme.cornell.edu
live.cam.cornell.edu
live.mcgeorge.edu
live.ophd.pantheon.berkeley.edu
live.ucdavis.edu
m.qsrmagazine.com
m.religionnews.com
m.voiceofsandiego.org
macaugaming.gsm.cornell.edu
mailams.ustelecom.org
makinghistory.gwu.edu
marketing.magicsoftware.com
marketingprojects.maryville.edu
mediaroom.livestrong.org
memberauth.audiology.org
microsites.globalwaters.org
mobilize.medika.life
mpo.gsm.cornell.edu
msa2016.berkeley.edu
multidev1.gc.cuny.edu
nartc.fcm.arizona.edu
nartechedge.nar.realtor
news.catholicschoolsbq.org
news.religionnews.com
newsite.as-coa.org
next.warnerpacific.edu
noticias.lared.cl
nrrss.ced.berkeley.edu
null.actorsfund.org
nyild.unionderm.com
Other certificates including the domain name cornell.edu
(limited to 100 certificates)
usda-int.library.cornell.edu
island.cnf.cornell.edu
dbme.dyson.cornell.edu
www.llmoverview.law.cornell.edu
dfbs.cornell.edu
engr-cms-multi-ssl.cit.cornell.edu
staticweb.ssit.scl.cornell.edu
atstaticapps.cit.cornell.edu
ubsc.cornell.edu
newstudents.cornell.edu
test-web-lws.edu.help
www.nys4h.cce.cornell.edu
5769623379116032-fe2.pantheonsite.io
carpepm.almonds.com
5693048138760192-fe2.pantheonsite.io
*.givegab.com
dns-vetting1c.map.fastly.net
5686812383117312-fe3.pantheonsite.io
allianceforscience.cornell.edu
scholarship.sha.cornell.edu
vertere.ehs.cornell.edu
llmoverview.law.cornell.edu
5764748591235072-fe2.pantheonsite.io
5747286126624768-fe3.pantheonsite.io
manage.esign.cornell.edu
fs-lb-1.fs.cornell.edu
it.uahs.arizona.edu
www.pryde.bctr.cornell.edu
cluster3.technolutions.net
lingual.phonetics.cornell.edu
apl.cs.cornell.edu
annualreport.cals.cornell.edu
crane.chem.cornell.edu
resumebook.acsu.cornell.edu
scabusa.ag.cornell.edu
5727217287954432-fe1.pantheonsite.io
3cpg.cornell.edu
ucdc.edu
cluster3.technolutions.net
classcouncil.cornell.edu
5693048138760192-fe2.pantheonsite.io
5202656289095680-fe4.pantheonsite.io
kanbur.aem.cornell.edu
cals.cornell.edu
5691420614590464-fe3.pantheonsite.io
aws-110-042.internal.library.cornell.edu
5709068098338816-fe3.pantheonsite.io
5636647567753216-fe1.pantheonsite.io
hdil.human.cornell.edu
nartc.fcm.arizona.edu
sf-lib-lms-018.serverfarm.cornell.edu
legacy.ece.cornell.edu
verne.soc.cornell.edu
blog.johnson.cornell.edu
5730774057746432-fe4.pantheonsite.io
5654672874405888-fe3.pantheonsite.io
avedon.med.cornell.edu
calendar.sdzsafaripark.org
5763210187636736-fe2.pantheonsite.io
engineering.cornell.edu
s001.med.cornell.edu
puppet.coecis.cornell.edu
sullivan.cce.cornell.edu
coffeabase.org
5707324073181184-fe2.pantheonsite.io
5700866052980736-fe2.pantheonsite.io
bearinmind.eclipsco.org
gunalert02.ornith.cornell.edu
3fadmin.govdelivery.com
d2.shared.global.fastly.net
tier.dyson.cornell.edu
newfit.cit.cornell.edu
5658962204557312-fe4.pantheonsite.io
5736907271045120-fe1.pantheonsite.io
library.cornell.edu
pryde.bctr.cornell.edu
lassp.cornell.edu
newsletter.research.cornell.edu
5686536431468544-fe1.pantheonsite.io
streetfilms.org
5763210187636736-fe2.pantheonsite.io
5659822271758336-fe3.pantheonsite.io
5654961308303360-fe2.pantheonsite.io
charon.ece.cornell.edu
www.cmm.cornell.edu
delib-cal.qatar-weill.cornell.edu
urmc.cs.cornell.edu
calscomlabs-multi-ssl.cit.cornell.edu
webeditor.dyson.cornell.edu
5769623379116032-fe2.pantheonsite.io
dns-vetting1g.map.fastly.net
5736907271045120-fe1.pantheonsite.io
5740240702537728-fe2.pantheonsite.io
hotelie.sha.cornell.edu
courses1.cit.cornell.edu
5637369860456448-fe1.pantheonsite.io
www.systems.cs.cornell.edu
forms-dev.serverfarm.cornell.edu
werdle.via.cornell.edu
www.mehta.human.cornell.edu
island.cnf.cornell.edu
dbme.dyson.cornell.edu
www.llmoverview.law.cornell.edu
dfbs.cornell.edu
engr-cms-multi-ssl.cit.cornell.edu
staticweb.ssit.scl.cornell.edu
atstaticapps.cit.cornell.edu
ubsc.cornell.edu
newstudents.cornell.edu
test-web-lws.edu.help
www.nys4h.cce.cornell.edu
5769623379116032-fe2.pantheonsite.io
carpepm.almonds.com
5693048138760192-fe2.pantheonsite.io
*.givegab.com
dns-vetting1c.map.fastly.net
5686812383117312-fe3.pantheonsite.io
allianceforscience.cornell.edu
scholarship.sha.cornell.edu
vertere.ehs.cornell.edu
llmoverview.law.cornell.edu
5764748591235072-fe2.pantheonsite.io
5747286126624768-fe3.pantheonsite.io
manage.esign.cornell.edu
fs-lb-1.fs.cornell.edu
it.uahs.arizona.edu
www.pryde.bctr.cornell.edu
cluster3.technolutions.net
lingual.phonetics.cornell.edu
apl.cs.cornell.edu
annualreport.cals.cornell.edu
crane.chem.cornell.edu
resumebook.acsu.cornell.edu
scabusa.ag.cornell.edu
5727217287954432-fe1.pantheonsite.io
3cpg.cornell.edu
ucdc.edu
cluster3.technolutions.net
classcouncil.cornell.edu
5693048138760192-fe2.pantheonsite.io
5202656289095680-fe4.pantheonsite.io
kanbur.aem.cornell.edu
cals.cornell.edu
5691420614590464-fe3.pantheonsite.io
aws-110-042.internal.library.cornell.edu
5709068098338816-fe3.pantheonsite.io
5636647567753216-fe1.pantheonsite.io
hdil.human.cornell.edu
nartc.fcm.arizona.edu
sf-lib-lms-018.serverfarm.cornell.edu
legacy.ece.cornell.edu
verne.soc.cornell.edu
blog.johnson.cornell.edu
5730774057746432-fe4.pantheonsite.io
5654672874405888-fe3.pantheonsite.io
avedon.med.cornell.edu
calendar.sdzsafaripark.org
5763210187636736-fe2.pantheonsite.io
engineering.cornell.edu
s001.med.cornell.edu
puppet.coecis.cornell.edu
sullivan.cce.cornell.edu
coffeabase.org
5707324073181184-fe2.pantheonsite.io
5700866052980736-fe2.pantheonsite.io
bearinmind.eclipsco.org
gunalert02.ornith.cornell.edu
3fadmin.govdelivery.com
d2.shared.global.fastly.net
tier.dyson.cornell.edu
newfit.cit.cornell.edu
5658962204557312-fe4.pantheonsite.io
5736907271045120-fe1.pantheonsite.io
library.cornell.edu
pryde.bctr.cornell.edu
lassp.cornell.edu
newsletter.research.cornell.edu
5686536431468544-fe1.pantheonsite.io
streetfilms.org
5763210187636736-fe2.pantheonsite.io
5659822271758336-fe3.pantheonsite.io
5654961308303360-fe2.pantheonsite.io
charon.ece.cornell.edu
www.cmm.cornell.edu
delib-cal.qatar-weill.cornell.edu
urmc.cs.cornell.edu
calscomlabs-multi-ssl.cit.cornell.edu
webeditor.dyson.cornell.edu
5769623379116032-fe2.pantheonsite.io
dns-vetting1g.map.fastly.net
5736907271045120-fe1.pantheonsite.io
5740240702537728-fe2.pantheonsite.io
hotelie.sha.cornell.edu
courses1.cit.cornell.edu
5637369860456448-fe1.pantheonsite.io
www.systems.cs.cornell.edu
forms-dev.serverfarm.cornell.edu
werdle.via.cornell.edu
www.mehta.human.cornell.edu
Certificate
The complete raw certificate details for good.gsm.cornell.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIM3TCCC8WgAwIBAgISA/9CDRGTQFAF/x6y5hDLid8WMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA0MDEyMTE4MTBaFw0yMzA2MzAyMTE4MDlaMB8xHTAbBgNVBAMT FGdvb2QuZ3NtLmNvcm5lbGwuZWR1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAw46iRMF7hwNtVI+uKl5UF0CD5U3UkQMeBF8svfU9dGopQU40Ing2QVq1 B+BFMG1Mn7ICzhEdYaQd/8z2o4yCSvEOruHHbvRx9j8NrkB2VDdThoomFKEa0Ycr +N7Jt9BiGuqfFFcgkf3J61GgtdOfeb3u1E1vLfFD14HJmJGlDtvFwp7KtZmSuKnU DvttZApeghzlw1S+QrS7sZo5epN5As25V4MVnW5dTJFTfmhnbB9vkhJDh+O6DeLY szX0dSxVrsGI66gIDvk8vwZ1a2islILGQ2WDC/2oWV2R+PvWHZuUKqzLGtROWGuv ZLR0QziNDryF+cVGICsOtMyOuvv4ZQIDAQABo4IJ/jCCCfowDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBQERGrIoxnVsUpzfFh/t/VsOQGyYjAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzCCB8oGA1UdEQSCB8Ewgge9ghRnb29kLmdzbS5jb3JuZWxsLmVkdYIN Z3BmLm5hY2hhLm9yZ4ISZ3RwZS5wZS5nYXRlY2guZWR1ghhnd3MtdWF0LmVhcnRo anVzdGljZS5vcmeCD2hjaWkuY3MuY211LmVkdYIdaGVhbHRoc2NpZW5jZXMuc3Mu cGFjaWZpYy5lZHWCFWhvbWUuZWFydGhqdXN0aWNlLm9yZ4ITaG9zdDIub3Blbm1p bmRzLmNvbYIOaG9zdDMuZmN3YS5vcmeCFGhvc3Q5MC5mYXJtZXJtYWMuY29tghBo ci1raW9zay50c3UuZWR1ghhodHRwYmluLmVhcnRoanVzdGljZS5vcmeCDGh1Yi5t ZWVkLmNvbYIUaWFtLmVhcnRoanVzdGljZS5vcmeCDWluYXMyLnVnYS5lZHWCF2lu Ym91bmQuZ292ZGVsaXZlcnkuY29tghxpbmZvLWRldi5jYWxwZXJmb3JtYW5jZXMu b3JnghVpbmZvLnJlbGlnaW9ubmV3cy5jb22CDWluZm8udmNmYS5lZHWCD2luZm9u ZXQuZmlhLm9yZ4IUaW5rcy5nb3ZkZWxpdmVyeS5jb22CE2luc2lkZS5jaXR5eWVh ci5vcmeCEmluc2lkZS5nYy5jdW55LmVkdYIPaW5zaWRlLmtqenoub3JnghxpbnRl cm5hdGlvbmFsLmRldi5vY2VhbmEub3JnghlpbnRlcm5ldGNvdW5jaWwubmFjaGEu b3JnghdpbnRyYW5ldC5vbGl2ZWNyZXN0Lm9yZ4ISaXAuZ292ZGVsaXZlcnkuY29t ghVpcHY2LmVhcnRoanVzdGljZS5vcmeCFGlwdjYuZ292ZGVsaXZlcnkuY29tghdp dC1jaGF0LndlYi5hcml6b25hLmVkdYIQaXQuMjJzcXVhcmVkLmNvbYITaXQudWFo cy5hcml6b25hLmVkdYIbaXRlYWNodS5tdWx0aWRldmNvbS51YWYuZWR1gg1qYXBh bi5maWEub3JnghZqbGlua3MuZ292ZGVsaXZlcnkuY29tghRqb2IuZWFydGhqdXN0 aWNlLm9yZ4IUam91cm5hbGRldi5uYWV5Yy5vcmeCC2pwLm1jbnkub3Jnghdqc3Mt ZGMzLmdvdmRlbGl2ZXJ5LmNvbYINanVuay5kYW5hLm9yZ4IOanVuazIuZGFuYS5v cmeCFGp3cGxheWVyLmVzc2VuY2UuY29tgg1rZ3FtLmtqenoub3Jngh9raW0ubG92 ZWxhY2Uuc2hpYXRzdXNvY2lldHkub3JnghprdWJlcm5ldGVzLmdvdmRlbGl2ZXJ5 LmNvbYIabGFib3JsYWJzYW5kYm94LmFmbGNpby5vcmeCE2xhbmRpbmcucGFjaWZp Yy5lZHWCGmxhc290YS5tdWx0aWRldmNvbS51YWYuZWR1ghJsYXcuc3MucGFjaWZp Yy5lZHWCEWxkYXAuY3NjYy51bmMuZWR1ghhsZWdhY3kuYnJpY2FydHNtZWRpYS5v cmeCG2xlZ2FjeS5ocS5waGlsYWJ1bmRhbmNlLm9yZ4IabGliZXJhbGFydHMuc3Mu cGFjaWZpYy5lZHWCEWxpYnJlLmVzdGFkaW8uY29tghBsaW5kc2F5Lm1jbnkub3Jn ghdsaXZlLWVtYmVkLWF0dS5lZHUuaGVscIIUbGl2ZS5hZXAuY29ybmVsbC5lZHWC FGxpdmUuYm1lLmNvcm5lbGwuZWR1ghRsaXZlLmNhbS5jb3JuZWxsLmVkdYIRbGl2 ZS5tY2dlb3JnZS5lZHWCH2xpdmUub3BoZC5wYW50aGVvbi5iZXJrZWxleS5lZHWC EGxpdmUudWNkYXZpcy5lZHWCEW0ucXNybWFnYXppbmUuY29tghJtLnJlbGlnaW9u bmV3cy5jb22CFW0udm9pY2VvZnNhbmRpZWdvLm9yZ4IbbWFjYXVnYW1pbmcuZ3Nt LmNvcm5lbGwuZWR1ghVtYWlsYW1zLnVzdGVsZWNvbS5vcmeCFW1ha2luZ2hpc3Rv cnkuZ3d1LmVkdYIbbWFya2V0aW5nLm1hZ2ljc29mdHdhcmUuY29tgh9tYXJrZXRp bmdwcm9qZWN0cy5tYXJ5dmlsbGUuZWR1ghhtZWRpYXJvb20ubGl2ZXN0cm9uZy5v cmeCGG1lbWJlcmF1dGguYXVkaW9sb2d5Lm9yZ4IbbWljcm9zaXRlcy5nbG9iYWx3 YXRlcnMub3JnghRtb2JpbGl6ZS5tZWRpa2EubGlmZYITbXBvLmdzbS5jb3JuZWxs LmVkdYIUbXNhMjAxNi5iZXJrZWxleS5lZHWCFW11bHRpZGV2MS5nYy5jdW55LmVk dYIVbmFydGMuZmNtLmFyaXpvbmEuZWR1ghduYXJ0ZWNoZWRnZS5uYXIucmVhbHRv coIabmV3cy5jYXRob2xpY3NjaG9vbHNicS5vcmeCFW5ld3MucmVsaWdpb25uZXdz LmNvbYISbmV3c2l0ZS5hcy1jb2Eub3JnghZuZXh0Lndhcm5lcnBhY2lmaWMuZWR1 ghFub3RpY2lhcy5sYXJlZC5jbIIWbnJyc3MuY2VkLmJlcmtlbGV5LmVkdYITbnVs bC5hY3RvcnNmdW5kLm9yZ4ITbnlpbGQudW5pb25kZXJtLmNvbTBMBgNVHSAERTBD MAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8v Y3BzLmxldHNlbmNyeXB0Lm9yZzCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3AHoy jFTYty22IOo44FIe6YQWcDIThU070ivBOlejUutSAAABhz7mRBEAAAQDAEgwRgIh AMgvQxTS8Mn7w2VHYDbSyTKZMq5ZzBLZFmtcVikG24YXAiEApiOxwnXco0lyBlpb 80XwvjkUBLEXeLZr4kH5XLZdS9AAdwC3Pvsk35xNunXyOcW6WPRsXfxCz3qfNcSe HQmBJe20mQAAAYc+5kQIAAAEAwBIMEYCIQD1BfiKo/beZo2YiGs5vdM5tOA+SXBr ZadRuEODqTEu9QIhANthJIi9un65TLlU3aEQ81dPoWS9MmVGWLWqeC9H3iazMA0G CSqGSIb3DQEBCwUAA4IBAQBp0tm+m7GbGq9/Gmd8rDd8HtpsMJVxnxbLItYQyepE pD3ApwLq5b3nBeAO9g6SX/Du6fsuhPRWN1SvpYRkuCTrWbec8l52AhT+ztzhkbeZ 5HYRKToggonfaNno9WX+x2ZVyvH/Ro4jpODrE3p4ES2w8BCpm984+Acj6CpVo5Ho OnI9wSfVji91R7djL6Sh68u7MCPM1iF1IwCFgjymnC1XHxTthVboI55mA3kf0vlk DijfKtZLOlwr3LkPEqN+nL0GSgYGrDu+U8KT30aOhfr/PS5XhxNMD03UIK4YGS2/ pA0y0sqMFBLHrz/6V/EbzIb7pbkHPKhZyfacKu5v8yV8 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw46iRMF7hwNtVI+uKl5U F0CD5U3UkQMeBF8svfU9dGopQU40Ing2QVq1B+BFMG1Mn7ICzhEdYaQd/8z2o4yC SvEOruHHbvRx9j8NrkB2VDdThoomFKEa0Ycr+N7Jt9BiGuqfFFcgkf3J61GgtdOf eb3u1E1vLfFD14HJmJGlDtvFwp7KtZmSuKnUDvttZApeghzlw1S+QrS7sZo5epN5 As25V4MVnW5dTJFTfmhnbB9vkhJDh+O6DeLYszX0dSxVrsGI66gIDvk8vwZ1a2is lILGQ2WDC/2oWV2R+PvWHZuUKqzLGtROWGuvZLR0QziNDryF+cVGICsOtMyOuvv4 ZQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 348196658264168420458090399889687220707094 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-01 21:18:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-30 21:18:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'good.gsm.cornell.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24686804846986700463286235473113579310640311389133520587690101062602581528438869452339616892952701902849061179936484875175962958584343852540185544183047237885328788321992471394861784671407872629842251491403749912828485536459849583589245555154424957554500881276697578384568150008763221433348736210875490343848174039032910683409070497266386346837523561884554602537558352214849828580677730541219147370984863199779155273255284942666036956568962165193514919553059246300356407560953783348314569168119667241859434381348711752591025577632034019588909291610597210916265772008296336673389410930207470033159467095714263857887333 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 04446ac8a319d5b14a737c587fb7f56c3901b262 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1985 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'good.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gpf.nacha.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gtpe.pe.gatech.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gws-uat.earthjustice.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hcii.cs.cmu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthsciences.ss.pacific.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'home.earthjustice.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'host2.openminds.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'host3.fcwa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'host90.farmermac.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hr-kiosk.tsu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'httpbin.earthjustice.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hub.meed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iam.earthjustice.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inas2.uga.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inbound.govdelivery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'info-dev.calperformances.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'info.religionnews.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'info.vcfa.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'infonet.fia.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inks.govdelivery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inside.cityyear.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inside.gc.cuny.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inside.kjzz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'international.dev.oceana.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'internetcouncil.nacha.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intranet.olivecrest.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ip.govdelivery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ipv6.earthjustice.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ipv6.govdelivery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'it-chat.web.arizona.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'it.22squared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'it.uahs.arizona.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iteachu.multidevcom.uaf.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'japan.fia.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jlinks.govdelivery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'job.earthjustice.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'journaldev.naeyc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jp.mcny.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jss-dc3.govdelivery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'junk.dana.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'junk2.dana.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jwplayer.essence.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kgqm.kjzz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kim.lovelace.shiatsusociety.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kubernetes.govdelivery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'laborlabsandbox.aflcio.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'landing.pacific.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lasota.multidevcom.uaf.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'law.ss.pacific.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ldap.cscc.unc.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legacy.bricartsmedia.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legacy.hq.philabundance.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'liberalarts.ss.pacific.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'libre.estadio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lindsay.mcny.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live-embed-atu.edu.help' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.aep.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.bme.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.cam.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.mcgeorge.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.ophd.pantheon.berkeley.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.ucdavis.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm.qsrmagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm.religionnews.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm.voiceofsandiego.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'macaugaming.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mailams.ustelecom.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'makinghistory.gwu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marketing.magicsoftware.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marketingprojects.maryville.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mediaroom.livestrong.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'memberauth.audiology.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'microsites.globalwaters.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mobilize.medika.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mpo.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'msa2016.berkeley.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'multidev1.gc.cuny.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nartc.fcm.arizona.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nartechedge.nar.realtor' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'news.catholicschoolsbq.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'news.religionnews.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newsite.as-coa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'next.warnerpacific.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'noticias.lared.cl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nrrss.ced.berkeley.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'null.actorsfund.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nyild.unionderm.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb52000001873ee644110000040300483046022100c82f4314d2f0c9fbc365476036d2c9329932ae59cc12d9166b5c562906db8617022100a623b1c275dca34972065a5bf345f0be391404b11778b66be241f95cb65d4bd0007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb499000001873ee644080000040300483046022100f505f88aa3f6de668d98886b39bdd339b4e03e49706b65a751b84383a9312ef5022100db612488bdba7eb94cb954dda110f3574fa164bd32654658b5aa782f47de26b3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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