cso.kmi.open.ac.uk
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:3d:dc:2e:9a:9a:f1:bf:e3:67:c4:42:7b:b8:33:77:05:68 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=cso.kmi.open.ac.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:3d:dc:2e:9a:9a:f1:bf:e3:67:c4:42:7b:b8:33:77:05:68Serial Number (int): 282386754317953194160891091602858686481768
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 95:8b:d2:9e:b8:6f:9c:cd:23:46:d8:6e:09:7c:94:cb:ea:d1:cf:eb
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 75:12:af:ef:65:f3:ca:ec:5c:f0:36:be:2d:a7:5e:53:28:72:73:c7
Fingerprint (sha256): 07:b9:e8:58:7d:69:1b:cd:e5:2a:f5:89:13:dd:ff:ff:fd:86:33:92:ea:6d:e0:38:bc:6c:74:f9:6a:2e:a9:80
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate cso.kmi.open.ac.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cso.kmi.open.ac.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cso.kmi.open.ac.uk
Other certificates including the domain name open.ac.uk
(limited to 100 certificates)
filetransfer.open.ac.uk
san-12-s50.tlsprovisioning.exacttarget.com
xai.kmi.open.ac.uk
blog.cohere.open.ac.uk
*.alumni.open.ac.uk
kmi.open.ac.uk
e1p-internal-sandbox.mrooms.net
dsg.kmi.open.ac.uk
sas-va-test.open.ac.uk
people.kmi.open.ac.uk
internationalfunders.open.ac.uk
technologies.kmi.open.ac.uk
e1p-internal-sandbox.mrooms.net
weblab.open.ac.uk
events.kmi.open.ac.uk
dev-ext.kmi.open.ac.uk
dsg.kmi.open.ac.uk
livestream01-podcast.open.ac.uk
forge.kmi.open.ac.uk
www3.open.ac.uk
hr-myvw-acct.open.ac.uk
impact.kmi.open.ac.uk
e1p-internal-sandbox.mrooms.net
impact.kmi.open.ac.uk
learn7-internal.open.ac.uk
maptesting.kmi.open.ac.uk
skm.kmi.open.ac.uk
msds-acct.open.ac.uk
arvr.kmi.open.ac.uk
blog.cohere.open.ac.uk
internationalfunders-systest.open.ac.uk
css2.open.ac.uk
iserve.kmi.open.ac.uk
hasta.open.ac.uk
www-jime.open.ac.uk
valencia.open.ac.uk
healthwellbeing.kmi.open.ac.uk
connections.kmi.open.ac.uk
osl.open.ac.uk
bigdata.kmi.open.ac.uk
dc-live-c.open.ac.uk
e1p-internal-sandbox.mrooms.net
directaccess-nls-acct.open.ac.uk
healthwellbeing.kmi.open.ac.uk
learn7syst-internal.open.ac.uk
instituteofcoding.open.ac.uk
news.kmi.open.ac.uk
instituteofcoding.open.ac.uk
instituteofcoding.open.ac.uk
oubs-business-exchange.kmi.open.ac.uk
intranet6.open.ac.uk
e1p-internal-sandbox.mrooms.net
*.figshare.com
knowledgemakers.kmi.open.ac.uk
msds-acct.open.ac.uk
live.kmi.open.ac.uk
oubs-business-exchange.kmi.open.ac.uk
www.open.ac.uk
cso.kmi.open.ac.uk
pt-anywhere.kmi.open.ac.uk
50.open.ac.uk
healthwellbeing.kmi.open.ac.uk
led.kmi.open.ac.uk
development.moodlerooms.com
rdswebgwlivea.open.ac.uk
www-dev.open.ac.uk
applaud.open.ac.uk
css2-acct.open.ac.uk
san-12-s50.tlsprovisioning.exacttarget.com
exec-ed.open.ac.uk
skg.kmi.open.ac.uk
mac-mgmt-live.open.ac.uk
www-acct.open.ac.uk
learn4.open.ac.uk
blockchain.kmi.open.ac.uk
e1p-internal-sandbox.mrooms.net
greendata.kmi.open.ac.uk
project-rbz.kmi.open.ac.uk
kmi.open.ac.uk
acqua.kmi.open.ac.uk
dev-ext.kmi.open.ac.uk
blockchain7.kmi.open.ac.uk
evolution-megalab.open.ac.uk
e1p-internal-sandbox.mrooms.net
peermiles-project.kmi.open.ac.uk
san-12-s50.tlsprovisioning.exacttarget.com
soa-admin-acct.open.ac.uk
live.kmi.open.ac.uk
san-12-s50.tlsprovisioning.exacttarget.com
intranet6.open.ac.uk
e1p-internal-sandbox.mrooms.net
exec-ed.open.ac.uk
e1p-internal-sandbox.mrooms.net
blockchain.kmi.open.ac.uk
people.kmi.open.ac.uk
e1p-internal-sandbox.mrooms.net
dsg.kmi.open.ac.uk
css2.open.ac.uk
library-analytics.open.ac.uk
iet.open.ac.uk
san-12-s50.tlsprovisioning.exacttarget.com
xai.kmi.open.ac.uk
blog.cohere.open.ac.uk
*.alumni.open.ac.uk
kmi.open.ac.uk
e1p-internal-sandbox.mrooms.net
dsg.kmi.open.ac.uk
sas-va-test.open.ac.uk
people.kmi.open.ac.uk
internationalfunders.open.ac.uk
technologies.kmi.open.ac.uk
e1p-internal-sandbox.mrooms.net
weblab.open.ac.uk
events.kmi.open.ac.uk
dev-ext.kmi.open.ac.uk
dsg.kmi.open.ac.uk
livestream01-podcast.open.ac.uk
forge.kmi.open.ac.uk
www3.open.ac.uk
hr-myvw-acct.open.ac.uk
impact.kmi.open.ac.uk
e1p-internal-sandbox.mrooms.net
impact.kmi.open.ac.uk
learn7-internal.open.ac.uk
maptesting.kmi.open.ac.uk
skm.kmi.open.ac.uk
msds-acct.open.ac.uk
arvr.kmi.open.ac.uk
blog.cohere.open.ac.uk
internationalfunders-systest.open.ac.uk
css2.open.ac.uk
iserve.kmi.open.ac.uk
hasta.open.ac.uk
www-jime.open.ac.uk
valencia.open.ac.uk
healthwellbeing.kmi.open.ac.uk
connections.kmi.open.ac.uk
osl.open.ac.uk
bigdata.kmi.open.ac.uk
dc-live-c.open.ac.uk
e1p-internal-sandbox.mrooms.net
directaccess-nls-acct.open.ac.uk
healthwellbeing.kmi.open.ac.uk
learn7syst-internal.open.ac.uk
instituteofcoding.open.ac.uk
news.kmi.open.ac.uk
instituteofcoding.open.ac.uk
instituteofcoding.open.ac.uk
oubs-business-exchange.kmi.open.ac.uk
intranet6.open.ac.uk
e1p-internal-sandbox.mrooms.net
*.figshare.com
knowledgemakers.kmi.open.ac.uk
msds-acct.open.ac.uk
live.kmi.open.ac.uk
oubs-business-exchange.kmi.open.ac.uk
www.open.ac.uk
cso.kmi.open.ac.uk
pt-anywhere.kmi.open.ac.uk
50.open.ac.uk
healthwellbeing.kmi.open.ac.uk
led.kmi.open.ac.uk
development.moodlerooms.com
rdswebgwlivea.open.ac.uk
www-dev.open.ac.uk
applaud.open.ac.uk
css2-acct.open.ac.uk
san-12-s50.tlsprovisioning.exacttarget.com
exec-ed.open.ac.uk
skg.kmi.open.ac.uk
mac-mgmt-live.open.ac.uk
www-acct.open.ac.uk
learn4.open.ac.uk
blockchain.kmi.open.ac.uk
e1p-internal-sandbox.mrooms.net
greendata.kmi.open.ac.uk
project-rbz.kmi.open.ac.uk
kmi.open.ac.uk
acqua.kmi.open.ac.uk
dev-ext.kmi.open.ac.uk
blockchain7.kmi.open.ac.uk
evolution-megalab.open.ac.uk
e1p-internal-sandbox.mrooms.net
peermiles-project.kmi.open.ac.uk
san-12-s50.tlsprovisioning.exacttarget.com
soa-admin-acct.open.ac.uk
live.kmi.open.ac.uk
san-12-s50.tlsprovisioning.exacttarget.com
intranet6.open.ac.uk
e1p-internal-sandbox.mrooms.net
exec-ed.open.ac.uk
e1p-internal-sandbox.mrooms.net
blockchain.kmi.open.ac.uk
people.kmi.open.ac.uk
e1p-internal-sandbox.mrooms.net
dsg.kmi.open.ac.uk
css2.open.ac.uk
library-analytics.open.ac.uk
iet.open.ac.uk
Certificate
The complete raw certificate details for cso.kmi.open.ac.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgISAz3cLpqa8b/jZ8RCe7gzdwVoMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MjUxMjA0NTRaFw0x OTA5MjMxMjA0NTRaMB0xGzAZBgNVBAMTEmNzby5rbWkub3Blbi5hYy51azCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMqogsxnv7jWDu1JMxZLFPx2/Dcu CCMy1KaRA8XF8OIGspgXVUOXBodPZ1LudXDAgbuKJ42Y2lmx113EM0ppjy6L0tYv JuoNUNpuaZuYRrHl9Ttzzlebk5Z/JB51q3BNQ/gk0kzaO46LQtAmSU5Lt/YnaI0A 5w8iaqEYD+9pKMlA737kCHn5sjKrH0uE2un1PLtiMd2U5o0qWGsSKWX5Yk4VSMwD vIRCZFSPwdolz0gAo7bZ26CdxE3vc9AJYmYuEZiD2b7muTLnsZI6gUh+EDxRQ02j KoG/OYeFmkxQ4i56eVLljSwPMSFf4i5O5fUpxyk0SEoNYDyEwqW38Zat7y0CAwEA AaOCAmcwggJjMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUlYvSnrhvnM0jRthuCXyU y+rRz+swHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzAdBgNVHREEFjAUghJjc28ua21pLm9wZW4uYWMudWswTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgAp PFGWVMg5ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAWuOvTtVAAAEAwBHMEUC IQCO7ijpIowlcI2X/w823J/sVZBoScewGLBEzzdBCky05gIgYKPYNx0qPjTfutyp RNNjui29bBaxZxPAGVF5yROwx/wAdgB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3 NXnmEHvMVgAAAWuOvT1vAAAEAwBHMEUCIQCsXwqS9/7PJZz78HB9XXsB02iywaNb GrqDWKUqQp7UOQIgHEiPbDPUWzGSa8IPwKhAnmRxoDmzXcZLEvZKtvnfL4cwDQYJ KoZIhvcNAQELBQADggEBADmPlmrQfx2L8goeKoUiLvz/7uoBt2Pll7UlS83A4xdN eabHGSFZjRz5NHUbG32PHrsiMlHjC5diVQs5gs6b7qfl8ADxtZ13rg9PlARDOp8K JEtCl9lYKwLZrJqVMBtFE9/BEx2it8s3ZOGRgbzw0Edl8wa8U66I1+tE6vj28Vok 4zDlqx/2+v5zSIf1anCB+OEWqIZKc3rUKciJSc5ASHS65A/yfhsC9W0EopVC1dPo gdbT+pBjsq3smJ2JHYYQjNk1UPPfjePicqd3LJuB1rpKaUkCFV1zKwoBEIjdP39h xZIS66IbqdzKo7HOy+UDsF5ItvNSph2IkXZqxtsatl4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqiCzGe/uNYO7UkzFksU /Hb8Ny4IIzLUppEDxcXw4gaymBdVQ5cGh09nUu51cMCBu4onjZjaWbHXXcQzSmmP LovS1i8m6g1Q2m5pm5hGseX1O3POV5uTln8kHnWrcE1D+CTSTNo7jotC0CZJTku3 9idojQDnDyJqoRgP72koyUDvfuQIefmyMqsfS4Ta6fU8u2Ix3ZTmjSpYaxIpZfli ThVIzAO8hEJkVI/B2iXPSACjttnboJ3ETe9z0AliZi4RmIPZvua5MuexkjqBSH4Q PFFDTaMqgb85h4WaTFDiLnp5UuWNLA8xIV/iLk7l9SnHKTRISg1gPITCpbfxlq3v LQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 282386754317953194160891091602858686481768 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-25 12:04:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-23 12:04:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cso.kmi.open.ac.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25583233440479364090151551262638376496001378871976968076878610790824323374251142906843370465379487791243875116380478094458259491952889002821046840017782308106043107358377076832010978687968714630625723829281566634561479133161410478645934215101307388381386392947410601639895972626656206305199939088114234525666613047665184037443645964340244427778958684139256109306052030422414441695421589327187431167105012692585702346117209480363628511774940655923840404117035857020241830345542708458878120993085655615997958305684132882930438287110059622469874140707384128462603309036607979532609842599418028632052361655758733391556397 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 958bd29eb86f9ccd2346d86e097c94cbead1cfeb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cso.kmi.open.ac.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b8ebd3b5500000403004730450221008eee28e9228c25708d97ff0f36dc9fec55906849c7b018b044cf37410a4cb4e6022060a3d8371d2a3e34dfbadca944d363ba2dbd6c16b16713c0195179c913b0c7fc007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016b8ebd3d6f0000040300473045022100ac5f0a92f7fecf259cfbf0707d5d7b01d368b2c1a35b1aba8358a52a429ed43902201c488f6c33d45b31926bc20fc0a8409e6471a039b35dc64b12f64ab6f9df2f87 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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