pioneers.grinnell.edu
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:e0:4b:36:63:0d:0f:5e:b3:85:2d:37:04:fd:ba:2b:81:3f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=pioneers.grinnell.edu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:e0:4b:36:63:0d:0f:5e:b3:85:2d:37:04:fd:ba:2b:81:3fSerial Number (int): 424772368410038705609586684035649860501823
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 88:c5:bf:82:8c:2e:d7:69:6d:59:32:36:3b:19:8e:80:da:05:04:b9
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a8:cb:ae:d0:cc:d4:e0:61:cc:ec:b3:64:9e:48:30:ab:e7:b5:02:ac
Fingerprint (sha256): 08:26:8a:e6:15:0c:6a:c6:70:81:88:64:c2:f6:c9:dc:c0:a9:55:ac:2b:f3:1d:47:8a:d7:3c:cd:44:8d:02:b3
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate pioneers.grinnell.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pioneers.grinnell.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pioneers.grinnell.edu
Other certificates including the domain name grinnell.edu
(limited to 100 certificates)
shiny.grinnell.edu
cluster.technolutions.net
sites.grinnell.edu
lgbtoralhistories.sites.grinnell.edu
www.grinnell.edu
growingbeisbol.sites.grinnell.edu
magazine.grinnell.edu
idp.grinnell.edu
dataweek.sites.grinnell.edu
securedns1.planmygift.org
fall2018.museumstudies.sites.grinnell.edu
labs.grinnell.edu
dansinykin.sites.grinnell.edu
absentshakespeare.sites.grinnell.edu
koreanatgrinnell.sites.grinnell.edu
summer2017.digitalbridgestodance.sites.grinnell.edu
digital.grinnell.edu
MAILFILTER.GRINNELL.EDU
edge-uc2.peopleadmin.com
wilsonspark.sites.grinnell.edu
haenfler.sites.grinnell.edu
golf.grinnell.edu
haenfler.sites.grinnell.edu
confrontinghate.sites.grinnell.edu
hum101.sites.grinnell.edu
deathsexandmoney.sites.grinnell.edu
cluster.technolutions.net
cito.sites.grinnell.edu
travel.global.grinnell.edu
yoosebj.sites.grinnell.edu
cluster.technolutions.net
vpn.grinnell.edu
codecamp.sites.grinnell.edu
uconnectlabs.com
cluster.technolutions.net
comm.sites.grinnell.edu
edge-uc2.peopleadmin.com
toddarmstrong.sites.grinnell.edu
bferguson.sites.grinnell.edu
dla.sites.grinnell.edu
gcdata.sites.grinnell.edu
www-temp.cs.grinnell.edu
maipvu.sites.grinnell.edu
bookstore.grinnell.edu
lewiscar.sites.grinnell.edu
sandbox.digitalbridgestodance.sites.grinnell.edu
absentshakespeare.sites.grinnell.edu
discoveringdiaries.sites.grinnell.edu
golf.grinnell.edu
racingiowa.sites.grinnell.edu
mapping.calebelfenbein.sites.grinnell.edu
cluster.technolutions.net
vostinar.sites.grinnell.edu
remotehelp.grinnell.edu
loganmlee.sites.grinnell.edu
securedns1.planmygift.org
catalog.grinnell.edu
www-temp.cs.grinnell.edu
omeka-s.grinnell.edu
digitalbridgestodance.sites.grinnell.edu
edge_uc2.peopleadmin.com
pioneers.grinnell.edu
securedns1.planmygift.org
anger.sites.grinnell.edu
growingbeisbol.sites.grinnell.edu
isle-stage.grinnell.edu
golf.grinnell.edu
dataweek.sites.grinnell.edu
pioneerweekend.sites.grinnell.edu
summer2017.digitalbridgestodance.sites.grinnell.edu
cluster.technolutions.net
unclesam.sites.grinnell.edu
idp.grinnell.edu
his100.sarahjpurcell.sites.grinnell.edu
mailfilter.grinnell.edu
organicchem.sites.grinnell.edu
eriksimpson.sites.grinnell.edu
securedns1.planmygift.org
pioneers.grinnell.edu
idp.grinnell.edu
absentshakespeare.sites.grinnell.edu
grinnell.edu
unclesam.sites.grinnell.edu
stat2games.sites.grinnell.edu
researchcomputing.sites.grinnell.edu
pioneers.grinnell.edu
dlac.grinnell.edu
cluster.technolutions.net
lavermark.sites.grinnell.edu
sga.grinnell.edu
oxs.grinnell.edu
digital-crossroads.fredorivera.sites.grinnell.edu
qualdata.sites.grinnell.edu
securedns1.planmygift.org
eriksimpson.sites.grinnell.edu
pioneers.grinnell.edu
uconnectlabs.com
steveandrews.sites.grinnell.edu
dansinykin.sites.grinnell.edu
BBLMSTEST.grinnell.edu
cluster.technolutions.net
sites.grinnell.edu
lgbtoralhistories.sites.grinnell.edu
www.grinnell.edu
growingbeisbol.sites.grinnell.edu
magazine.grinnell.edu
idp.grinnell.edu
dataweek.sites.grinnell.edu
securedns1.planmygift.org
fall2018.museumstudies.sites.grinnell.edu
labs.grinnell.edu
dansinykin.sites.grinnell.edu
absentshakespeare.sites.grinnell.edu
koreanatgrinnell.sites.grinnell.edu
summer2017.digitalbridgestodance.sites.grinnell.edu
digital.grinnell.edu
MAILFILTER.GRINNELL.EDU
edge-uc2.peopleadmin.com
wilsonspark.sites.grinnell.edu
haenfler.sites.grinnell.edu
golf.grinnell.edu
haenfler.sites.grinnell.edu
confrontinghate.sites.grinnell.edu
hum101.sites.grinnell.edu
deathsexandmoney.sites.grinnell.edu
cluster.technolutions.net
cito.sites.grinnell.edu
travel.global.grinnell.edu
yoosebj.sites.grinnell.edu
cluster.technolutions.net
vpn.grinnell.edu
codecamp.sites.grinnell.edu
uconnectlabs.com
cluster.technolutions.net
comm.sites.grinnell.edu
edge-uc2.peopleadmin.com
toddarmstrong.sites.grinnell.edu
bferguson.sites.grinnell.edu
dla.sites.grinnell.edu
gcdata.sites.grinnell.edu
www-temp.cs.grinnell.edu
maipvu.sites.grinnell.edu
bookstore.grinnell.edu
lewiscar.sites.grinnell.edu
sandbox.digitalbridgestodance.sites.grinnell.edu
absentshakespeare.sites.grinnell.edu
discoveringdiaries.sites.grinnell.edu
golf.grinnell.edu
racingiowa.sites.grinnell.edu
mapping.calebelfenbein.sites.grinnell.edu
cluster.technolutions.net
vostinar.sites.grinnell.edu
remotehelp.grinnell.edu
loganmlee.sites.grinnell.edu
securedns1.planmygift.org
catalog.grinnell.edu
www-temp.cs.grinnell.edu
omeka-s.grinnell.edu
digitalbridgestodance.sites.grinnell.edu
edge_uc2.peopleadmin.com
pioneers.grinnell.edu
securedns1.planmygift.org
anger.sites.grinnell.edu
growingbeisbol.sites.grinnell.edu
isle-stage.grinnell.edu
golf.grinnell.edu
dataweek.sites.grinnell.edu
pioneerweekend.sites.grinnell.edu
summer2017.digitalbridgestodance.sites.grinnell.edu
cluster.technolutions.net
unclesam.sites.grinnell.edu
idp.grinnell.edu
his100.sarahjpurcell.sites.grinnell.edu
mailfilter.grinnell.edu
organicchem.sites.grinnell.edu
eriksimpson.sites.grinnell.edu
securedns1.planmygift.org
pioneers.grinnell.edu
idp.grinnell.edu
absentshakespeare.sites.grinnell.edu
grinnell.edu
unclesam.sites.grinnell.edu
stat2games.sites.grinnell.edu
researchcomputing.sites.grinnell.edu
pioneers.grinnell.edu
dlac.grinnell.edu
cluster.technolutions.net
lavermark.sites.grinnell.edu
sga.grinnell.edu
oxs.grinnell.edu
digital-crossroads.fredorivera.sites.grinnell.edu
qualdata.sites.grinnell.edu
securedns1.planmygift.org
eriksimpson.sites.grinnell.edu
pioneers.grinnell.edu
uconnectlabs.com
steveandrews.sites.grinnell.edu
dansinykin.sites.grinnell.edu
BBLMSTEST.grinnell.edu
Certificate
The complete raw certificate details for pioneers.grinnell.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgISBOBLNmMND16zhS03BP26K4E/MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MTUwNjA5MTBaFw0x OTA5MTMwNjA5MTBaMCAxHjAcBgNVBAMTFXBpb25lZXJzLmdyaW5uZWxsLmVkdTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJ6X7im2PUwL1XHF81P+dZ9l PKkNsxc5haeDFF7PAj801mmFsHdCWyBWz349kcdfIqMiuqQX3quCBOtP2X5cGVN2 dZKQbQ2ncDsHgLsiL9BUKXuN+WLmauGom8eEIhOGf9Su3mWBob0T13Hm9Pgfo4Xv 4bO2l4JQ8Kdr/lpykfcSvWr03ofOptxTFVragVdhgiqA78Wn/jMwDwm31SlcJnJV 59j8IphaOuSsbs5cbEw4Ql9FA18IRwY427Yman1hTdNTj+QrM5xYyuFSDChr1z9w 3RGn/co/VAcjx9fYOqzkO01eF7LCP0sclJ6b5WpvC4KXfp0ajCQRPyv1MxnFIGcC AwEAAaOCAmswggJnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUiMW/gowu12ltWTI2 OxmOgNoFBLkwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYB BQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2Vu Y3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2Vu Y3J5cHQub3JnLzAgBgNVHREEGTAXghVwaW9uZWVycy5ncmlubmVsbC5lZHUwTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHz APEAdgBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAWtZ9/RtAAAE AwBHMEUCID5jAL5xEffAE03cF0+eMWJvjmzFlSEoYyJm5piTkWBKAiEAnhtgnKGF Q6snYJoq6d1moXEMflRFzGESFRRXlRjiAO0AdwApPFGWVMg5ZbqqUPxYB9S3b79Y eily3KTDDPTlRUf0eAAAAWtZ9/TLAAAEAwBIMEYCIQDCY7HSXsGkhy2O8hiCSkyq fksQl9HofS41yBX2VCVubgIhAJBvMv8gxW+QSH38j75yFOExCmVZsP6OWVta+0/2 BkxaMA0GCSqGSIb3DQEBCwUAA4IBAQAK8ODBjn4PUoy3qWdX27vi7U3X+lZBG/iE 6cpxPmtkAJ5DLkfq30177dUL1oG/J4+IxQbuOfNX+xjxwNrLEYoT/iI85J4+SNy7 YTccllryBRhYc5wGXDAdNomPc530w8sBy6D2sxsNkkFHvqr7Jvw4v5MS/4zoM6Zp BOG6tkYhUuL3xJSfsEl5eeg/E+2NF77fA4HWHqGm8A1WUjGMdylJLuLu+FrEDYoK RU/LB+8gJ1eTQCMxFGKurH/YLAO6s0tKTId03uKfd5sAqkRou7RPppOtjJxev2p8 mrPs3Rza1MyhbifiZT153007rTKYoiZgOIUBqgGYu4xvlH6ZROvZ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpfuKbY9TAvVccXzU/51 n2U8qQ2zFzmFp4MUXs8CPzTWaYWwd0JbIFbPfj2Rx18ioyK6pBfeq4IE60/ZflwZ U3Z1kpBtDadwOweAuyIv0FQpe435YuZq4aibx4QiE4Z/1K7eZYGhvRPXceb0+B+j he/hs7aXglDwp2v+WnKR9xK9avTeh86m3FMVWtqBV2GCKoDvxaf+MzAPCbfVKVwm clXn2PwimFo65KxuzlxsTDhCX0UDXwhHBjjbtiZqfWFN01OP5CsznFjK4VIMKGvX P3DdEaf9yj9UByPH19g6rOQ7TV4XssI/SxyUnpvlam8Lgpd+nRqMJBE/K/UzGcUg ZwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 424772368410038705609586684035649860501823 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-15 06:09:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-13 06:09:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pioneers.grinnell.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20020571819681222647004734654657145656955035699677764891058830582713279177632007271074761388048963750782864113809016639746754927272690215861242965150877036644539478316933247841539704385209728856840626402801593574722258929491345729582101210379822787940870253893841436204451085291556413137813949011014666517778064023491163124956383996079701936527801858755740208472003577078583057073897722482635940013613020546966404313893538312150266450165769183441492927870111857815678928611056335889610097553397924036995171469970372486696589822788525925078282130651671750848362286668836141709945699825194800885228352513947132143935591 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 88c5bf828c2ed7696d5932363b198e80da0504b9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pioneers.grinnell.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016b59f7f46d000004030047304502203e6300be7111f7c0134ddc174f9e31626f8e6cc5952128632266e6989391604a0221009e1b609ca18543ab27609a2ae9dd66a1710c7e5445cc61121514579518e200ed007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b59f7f4cb0000040300483046022100c263b1d25ec1a4872d8ef218824a4caa7e4b1097d1e87d2e35c815f654256e6e022100906f32ff20c56f90487dfc8fbe7214e1310a6559b0fe8e595b5afb4ff6064c5a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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