*.alliancedefendingfreedom.org
Issued by Go Daddy Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number fd:42:f3:12:f6:23:ab:a8 was issued on by GoDaddy.com, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.alliancedefendingfreedom.org,OU=Domain Control Validated
GoDaddy.com, Inc.
Organization:
GoDaddy.com, Inc.
Organization unit: http://certs.godaddy.com/repository/
Organization unit: http://certs.godaddy.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): fd:42:f3:12:f6:23:ab:a8Serial Number (int): 18249415902823164840
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: e9:4b:0b:24:39:c9:e6:bc:35:d4:55:24:2a:d8:1c:eb:07:22:0d:a4
AuthorityKeyId: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce
Fingerprint (sha1): 76:ee:46:35:ac:bc:0f:8b:76:0c:20:4b:ce:4c:d3:fb:18:8d:92:6d
Fingerprint (sha256): 07:59:d2:6c:fd:c0:35:67:7e:05:c4:6a:4a:b6:14:cc:11:a8:77:68:f6:b4:65:4b:e4:e7:82:23:ae:6a:85:aa
Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt
Revocation information
OCSP Server: http://ocsp.godaddy.com/CRL Distribution Point: http://crl.godaddy.com/gdig2s1-856.crl
Check the revocation status for certificate *.alliancedefendingfreedom.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.alliancedefendingfreedom.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.alliancedefendingfreedom.org
alliancedefendingfreedom.org
alliancedefendingfreedom.org
Other certificates including the domain name alliancedefendingfreedom.org
(limited to 100 certificates)
*.alliancedefendingfreedom.org
alliancedefendingfreedom.org
mail.alliancedefendingfreedom.org
alliancedefendingfreedom.org
alliancedefendingfreedom.org
alliancedefendingfreedom.org
*.alliancedefendingfreedom.org
secure.alliancedefendingfreedom.org
alliancedefendingfreedom.org
alliancedefendingfreedom.org
alliancedefendingfreedom.org
*.alliancedefendingfreedom.org
alliancedefendingfreedom.org
alliancedefendingfreedom.org
mail.alliancedefendingfreedom.org
secure.alliancedefendingfreedom.org
*.alliancedefendingfreedom.org
*.alliancedefendingfreedom.org
secure.alliancedefendingfreedom.org
alliancedefendingfreedom.org
www.alliancedefendingfreedom.org
*.alliancedefendingfreedom.org
alliancedefendingfreedom.org
NLA.alliancedefendingfreedom.org
secure.alliancedefendingfreedom.org
*.alliancedefendingfreedom.org
sv-trc-app02.alliancedefensefund.org
*.alliancedefendingfreedom.org
mail.alliancedefendingfreedom.org
marquee.lighting
alliancedefendingfreedom.org
mail.alliancedefendingfreedom.org
alliancedefendingfreedom.org
alliancedefendingfreedom.org
alliancedefendingfreedom.org
*.alliancedefendingfreedom.org
secure.alliancedefendingfreedom.org
alliancedefendingfreedom.org
alliancedefendingfreedom.org
alliancedefendingfreedom.org
*.alliancedefendingfreedom.org
alliancedefendingfreedom.org
alliancedefendingfreedom.org
mail.alliancedefendingfreedom.org
secure.alliancedefendingfreedom.org
*.alliancedefendingfreedom.org
*.alliancedefendingfreedom.org
secure.alliancedefendingfreedom.org
alliancedefendingfreedom.org
www.alliancedefendingfreedom.org
*.alliancedefendingfreedom.org
alliancedefendingfreedom.org
NLA.alliancedefendingfreedom.org
secure.alliancedefendingfreedom.org
*.alliancedefendingfreedom.org
sv-trc-app02.alliancedefensefund.org
*.alliancedefendingfreedom.org
mail.alliancedefendingfreedom.org
marquee.lighting
Certificate
The complete raw certificate details for *.alliancedefendingfreedom.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGaDCCBVCgAwIBAgIJAP1C8xL2I6uoMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTE4MDgxMDExMjAxNloX DTE5MTAwOTIzMjczOFowTDEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRh dGVkMScwJQYDVQQDDB4qLmFsbGlhbmNlZGVmZW5kaW5nZnJlZWRvbS5vcmcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmvHyuTE0PLrK7rsqYcjam+ECH wpO/hCNHmKw+JHzg0s8Aenso5ddRtroONMQ5xmJApapH1TEz4sQLhG3mXSkwuKx/ qmNmLucrrtvSC+osjQQgP6IUxk2SLZ83CGHRkr2ggm3Ji+3UpuiOAKdii+Z1v5P7 QtXf13ggZxkeOk1Tqxb98KAZuEdqmOVDOgJfLDUBD4oTwY3ndhjUWXUdqi1XdVIJ /2aZ5iWuDvR5sEE3+GJrhbEP5WnU2OVXhQt52d8iCzDR3hXy7+GhFCua758WRwk4 V90i4G1UZDURCW3lPMTeJnsOH5GYsxL2fRa1N52GtrJzekUkM7M0vDQpt2yTAgMB AAGjggLiMIIC3jAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjAOBgNVHQ8BAf8EBAMCBaAwNwYDVR0fBDAwLjAsoCqgKIYmaHR0cDov L2NybC5nb2RhZGR5LmNvbS9nZGlnMnMxLTg1Ni5jcmwwXQYDVR0gBFYwVDBIBgtg hkgBhv1tAQcXATA5MDcGCCsGAQUFBwIBFitodHRwOi8vY2VydGlmaWNhdGVzLmdv ZGFkZHkuY29tL3JlcG9zaXRvcnkvMAgGBmeBDAECATB2BggrBgEFBQcBAQRqMGgw JAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmdvZGFkZHkuY29tLzBABggrBgEFBQcw AoY0aHR0cDovL2NlcnRpZmljYXRlcy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5L2dk aWcyLmNydDAfBgNVHSMEGDAWgBRAwr0njsw0gzCiM9f7bLPwtCyAzjBHBgNVHREE QDA+gh4qLmFsbGlhbmNlZGVmZW5kaW5nZnJlZWRvbS5vcmeCHGFsbGlhbmNlZGVm ZW5kaW5nZnJlZWRvbS5vcmcwHQYDVR0OBBYEFOlLCyQ5yea8NdRVJCrYHOsHIg2k MIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcApLkJkLQYWBSHuxOizGdwCjw1mAT5 G9+443fNDsgN3BAAAAFlI5MVXQAABAMASDBGAiEA7ay/1Def7eDp5x6YPzZgMpCH I8ne+eOvPlJmePlqXzMCIQDQbpcZZ2CrvsyutiRWTbfdy9U6Z1TnHwO+AmrXJXS2 dQB1AHR+2oMxrTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABZSOTKUsAAAQD AEYwRAIgUFE+IGHf6La3hTUZNx8QVeCmadLz6pPtYHY2kjHJAXwCIEvIph+uUOGt SJYZ7su7/pQTjaM+2kmuPYczfQvnHNw6MA0GCSqGSIb3DQEBCwUAA4IBAQAfmHnf Gbte911YPXVwuDkyXlnSmzVXMypCXz4noqT0+tbr6nX6YYAvX+1Ycmc8M+FNJJD0 tS6zMwQX7RKW1KaVNo0lykPbXcZIZuSAuRQHedXFmJuwqb9kFYhx1/X+/ejxhE0s Wd6kHaFXU7eq0/6dqwUgZxWtBkskkobofgW+UJ+ppLSh6XShv3NGuuT0MbRs4cu0 3yca0rlH+dGcM2gFfQir4GnFWAYrIH7oTO5ainMrvOaM+3I3R886ZCEDZBIW84pH u45CDVgWLqpaKg5TsaA4kn/NUvSB0tvWlbXJOyvFyr68aOm8VlJKSG0SNrxZuub4 xOjyxTyANQvg4A3j -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5rx8rkxNDy6yu67KmHI2 pvhAh8KTv4QjR5isPiR84NLPAHp7KOXXUba6DjTEOcZiQKWqR9UxM+LEC4Rt5l0p MLisf6pjZi7nK67b0gvqLI0EID+iFMZNki2fNwhh0ZK9oIJtyYvt1KbojgCnYovm db+T+0LV39d4IGcZHjpNU6sW/fCgGbhHapjlQzoCXyw1AQ+KE8GN53YY1Fl1Haot V3VSCf9mmeYlrg70ebBBN/hia4WxD+Vp1NjlV4ULednfIgsw0d4V8u/hoRQrmu+f FkcJOFfdIuBtVGQ1EQlt5TzE3iZ7Dh+RmLMS9n0WtTedhrayc3pFJDOzNLw0Kbds kwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18249415902823164840 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-10 11:20:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-09 23:27:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.alliancedefendingfreedom.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29127756563104043884978148385186207209708674031812485311696427795685854080781744122329339740671025811609000743219110441971280052363391540035663504924176616009323671495668412716969978592551758559354458446225742478883330054866265125375997544532492434809849747404924574534011079211769268547911020553522463733126475181815252547802524024193953523084797876827794579836377904197509315580753478631657314988624735360831654697930868611282756534016201921657409149136159624644340473406433862162367617574323215374507297328628963740587078886606059850926066040155507309125224297650882760092703138396486541920781572615358328035830931 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-856.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (64 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.alliancedefendingfreedom.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alliancedefendingfreedom.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e94b0b2439c9e6bc35d455242ad81ceb07220da4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc10000001652393155d0000040300483046022100edacbfd4379fede0e9e71e983f366032908723c9def9e3af3e526678f96a5f33022100d06e97196760abbeccaeb624564db7ddcbd53a6754e71f03be026ad72574b675007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc56000001652393294b0000040300463044022050513e2061dfe8b6b7853519371f1055e0a669d2f3ea93ed6076369231c9017c02204bc8a61fae50e1ad489619eecbbbfe94138da33eda49ae3d87337d0be71cdc3a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001f9879df19bb5ef75d583d7570b839325e59d29b3557332a425f3e27a2a4f4fad6ebea75fa61802f5fed5872673c33e14d2490f4b52eb3330417ed1296d4a695368d25ca43db5dc64866e480b9140779d5c5989bb0a9bf64158871d7f5fefde8f1844d2c59dea41da15753b7aad3fe9dab05206715ad064b249286e87e05be509fa9a4b4a1e974a1bf7346bae4f431b46ce1cbb4df271ad2b947f9d19c3368057d08abe069c558062b207ee84cee5a8a732bbce68cfb723747cf3a642103641216f38a47bb8e420d58162eaa5a2a0e53b1a038927fcd52f481d2dbd695b5c93b2bc5cabebc68e9bc56524a486d1236bc59bae6f8c4e8f2c53c80350be0e00de3