lehti.karkkainen.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:df:6d:a7:85:7c:26:5d:4c:18:ac:ea:12:c1:eb:63:8c:07 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=lehti.karkkainen.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:df:6d:a7:85:7c:26:5d:4c:18:ac:ea:12:c1:eb:63:8c:07Serial Number (int): 337365581291162591095835129394853721639943
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: be:98:bd:7d:e7:e4:5f:eb:14:17:5e:93:28:74:06:79:07:9f:7f:73
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 5d:e2:f9:8d:48:16:a7:c4:f5:67:dd:13:6e:69:43:39:23:8c:79:db
Fingerprint (sha256): 06:32:9c:ae:e3:06:e7:72:bc:01:de:a5:bc:4f:e4:97:11:c8:92:ac:90:dc:1f:84:48:60:22:f1:a8:10:29:34
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate lehti.karkkainen.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lehti.karkkainen.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kauppasuomi.fi
ksprod.anders.fi
lehti.karkkainen.com
www.kauppasuomi.fi
ksprod.anders.fi
lehti.karkkainen.com
www.kauppasuomi.fi
Other certificates including the domain name karkkainen.com
(limited to 100 certificates)
fw.karkkainen.com
kuvat.karkkainen.com
kuvat.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
lehti.karkkainen.com
lehti.karkkainen.com
s3-san.cloudinary.com
fw.karkkainen.com
autohuolto.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
lehti.karkkainen.com
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
arvonta.karkkainen.com
s3-san.cloudinary.com
webmail.karkkainen.com
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
*.karkkainen.com
kuvat.karkkainen.com
s3-san.cloudinary.com
yritysmyynti.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
a.hwstatic.com
tuki.karkkainen.com
tuki.karkkainen.com
s3-san.cloudinary.com
lehti.karkkainen.com
kuvat.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-san.cloudinary.com
fw.karkkainen.com
kuvat.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
kuvat.karkkainen.com
*.karkkainen.com
s3-cloudinary-pin.map.fastly.net
link.uutiskirje.karkkainen.com
s3-cloudinary-pin.map.fastly.net
webmail.karkkainen.com
webmail.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
lehti.karkkainen.com
link.uutiskirje.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
lehti.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
a.hwstatic.com
yritysmyynti.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
arvonta.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
tuki.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
kuvat.karkkainen.com
s3-cloudinary-pin.map.fastly.net
kuvat.karkkainen.com
kuvat.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
lehti.karkkainen.com
lehti.karkkainen.com
s3-san.cloudinary.com
fw.karkkainen.com
autohuolto.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
lehti.karkkainen.com
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
arvonta.karkkainen.com
s3-san.cloudinary.com
webmail.karkkainen.com
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
*.karkkainen.com
kuvat.karkkainen.com
s3-san.cloudinary.com
yritysmyynti.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
a.hwstatic.com
tuki.karkkainen.com
tuki.karkkainen.com
s3-san.cloudinary.com
lehti.karkkainen.com
kuvat.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-san.cloudinary.com
fw.karkkainen.com
kuvat.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
kuvat.karkkainen.com
*.karkkainen.com
s3-cloudinary-pin.map.fastly.net
link.uutiskirje.karkkainen.com
s3-cloudinary-pin.map.fastly.net
webmail.karkkainen.com
webmail.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
lehti.karkkainen.com
link.uutiskirje.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
lehti.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
a.hwstatic.com
yritysmyynti.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
arvonta.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
tuki.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
kuvat.karkkainen.com
s3-cloudinary-pin.map.fastly.net
Certificate
The complete raw certificate details for lehti.karkkainen.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGQTCCBSmgAwIBAgISA99tp4V8Jl1MGKzqEsHrY4wHMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzEyMzEyMTAxMDBaFw0x ODAzMzEyMTAxMDBaMB8xHTAbBgNVBAMTFGxlaHRpLmthcmtrYWluZW4uY29tMIIC IjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAseCzhNflU5xpgu+D8sftHU+S 739WXUJHD9wXigJoJVu+uXkt2xiBpc2BCz+aScBRCvO31B23b970Zi8NICr6G2e2 gdRcAcoYF2O06DdUgGgBHxtwbgX6KnD0Sqw3pfcATIS7KYIhcv6wDWygVO5prlCN Q+hv4O4R2E1Y27DO5x+tTj20G0iW3j0ZhtpNjlLe9HtAbe5EJ2sJTs9ndGswqCSY r5WkAi0o1IE305OnRnwiX+AIpgyIm2bKzxgyqk/Z2ntkklU5JMa2uo8Gqh1/xbZR DobHFiRM8cwgqNmSHV7f8E8RAc1yz2LA9xqa2XQ3cxy1K/L42BR4FhJpDQfuJamv 6fzWnu/fbfIhV88o5iHl4k/t0zghZZf5jfVSCqnziQOFJWbH7e7b57t7JbjwnMHl NOkpWA6D5PHKkomoKd46Iv+QEStXKaU1LT+y9QjkVntfcYsFWK6J4vIfgZ5fhvco vrFfzUbxBF0KmIeg5nLLfNpEBbtdS9xNUGgc7X7jdKCE+EiJbsCEhG78eE/OGr7L kD2VAY8U2JUfEafO8deNfUrpd1toWXJim/vgyC6rmhvasA8DNjyoEJ2Lub2sOdZS QLdc0cxDDU2ccjxFGS9lyoSGK1ieFfBbEtwdK8vq1RpG1fGNZkbK5DAIugnP/+9N Nh6rXqwDANQTv00OYj0CAwEAAaOCAkowggJGMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUvpi9fefkX+sUF16TKHQGeQeff3MwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3 pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2Nz cC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2Vy dC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzBVBgNVHREETjBMgg5rYXVwcGFzdW9t aS5maYIQa3Nwcm9kLmFuZGVycy5maYIUbGVodGkua2Fya2thaW5lbi5jb22CEnd3 dy5rYXVwcGFzdW9taS5maTCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYB BAGC3xMBAQEwgdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQu b3JnMIGrBggrBgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkg YmUgcmVsaWVkIHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFj Y29yZGFuY2Ugd2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0 dHBzOi8vbGV0c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMA0GCSqGSIb3DQEBCwUA A4IBAQBfNF/imEqf930gRkDLCC0eOKatz1ueTZbajYiKXD4Oj3PTpe0mXFEWyuqR 8V0gUrRNhdmiaFPRFH9wnVZVLPBVwOTRABPXhFb0LeBjFR1giVxkGx4a/Fm1zJv5 b3vqv4WCXjclcHucKR2xByfEo+ZjUi0nFPrlP/JWYfx8HFTsKCOxcmDPRMnSF/k8 RFI70tT27oOn6/WqtmbjyyWzdCgfMsb349mWXWmFKGSbuslK43a+5vC+Yi66ICom bHWao74Fk9iGsUyQVPedDBhh+2wvOUBB+EHS0mLqbffU/A58PS7tqr7KOOm9WDSd GIvPdFvap+1zg8pTRKSB/BOE2ddD -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAseCzhNflU5xpgu+D8sft HU+S739WXUJHD9wXigJoJVu+uXkt2xiBpc2BCz+aScBRCvO31B23b970Zi8NICr6 G2e2gdRcAcoYF2O06DdUgGgBHxtwbgX6KnD0Sqw3pfcATIS7KYIhcv6wDWygVO5p rlCNQ+hv4O4R2E1Y27DO5x+tTj20G0iW3j0ZhtpNjlLe9HtAbe5EJ2sJTs9ndGsw qCSYr5WkAi0o1IE305OnRnwiX+AIpgyIm2bKzxgyqk/Z2ntkklU5JMa2uo8Gqh1/ xbZRDobHFiRM8cwgqNmSHV7f8E8RAc1yz2LA9xqa2XQ3cxy1K/L42BR4FhJpDQfu Jamv6fzWnu/fbfIhV88o5iHl4k/t0zghZZf5jfVSCqnziQOFJWbH7e7b57t7Jbjw nMHlNOkpWA6D5PHKkomoKd46Iv+QEStXKaU1LT+y9QjkVntfcYsFWK6J4vIfgZ5f hvcovrFfzUbxBF0KmIeg5nLLfNpEBbtdS9xNUGgc7X7jdKCE+EiJbsCEhG78eE/O Gr7LkD2VAY8U2JUfEafO8deNfUrpd1toWXJim/vgyC6rmhvasA8DNjyoEJ2Lub2s OdZSQLdc0cxDDU2ccjxFGS9lyoSGK1ieFfBbEtwdK8vq1RpG1fGNZkbK5DAIugnP /+9NNh6rXqwDANQTv00OYj0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 337365581291162591095835129394853721639943 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-31 21:01:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-31 21:01:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lehti.karkkainen.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 725677863728692126068928038568345612884091773438269027521561529635599590994010509881306692481121284122893228585893782758632701304991324610759814976727984839631942226145325276628510111292542737857615112151795697798996262503580478096972259198595297467736789853769913270240756158666676969060451317381024434387575674546054238603357093149849759274786421829969050228370908809494618010519002100392354330349782993019897476011305523908699236559387134358124923671423049783640221128709401956315867724601496332396522260333983402972709143937688702421020353532223159218642725946399462359404126987845123392204165402569613579706290143928960396179506485687661147368292384479699464945117107111814742128074990625720000292520970544158823429044255871513663953450444461802813279521274621335954447223897104080947360801013964183050822982968193422016576420481563616754017478893678283468148338169801517334738168019870285706735833052239690246438961500880656304421179404159224966531054161344970354522036729441574372630304286531147400462928270300038398223803236193431882832607104079289897781002895714238007484582172294996147197062109070694988091870499102668835581850145732994800398055430522085598215183086492666633101276808859021516679093590112689438411694432829 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) be98bd7de7e45feb14175e9328740679079f7f73 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (78 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kauppasuomi.fi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ksprod.anders.fi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lehti.karkkainen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kauppasuomi.fi' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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