www.mesa.ucop.edu
Issued by R3
About this certificate
This digital certificate with serial number 04:b8:74:23:26:94:bc:6e:89:b1:15:5c:60:5d:2c:0e:9f:05 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.mesa.ucop.edu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:b8:74:23:26:94:bc:6e:89:b1:15:5c:60:5d:2c:0e:9f:05Serial Number (int): 411215472200910412628772355585223498309381
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 31:cd:6b:d3:c6:07:30:66:73:54:06:2b:18:39:94:dd:74:dc:f0:13
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 79:9b:71:22:98:86:6b:be:d7:e9:86:c6:0d:8e:1d:0d:e3:27:f2:78
Fingerprint (sha256): 08:b0:10:0a:6b:22:86:61:52:25:92:01:63:7e:93:4f:64:53:0d:e7:17:17:75:40:82:3b:fc:c2:dd:46:86:ee
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.mesa.ucop.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.mesa.ucop.edu
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.mesa.ucop.edu
Other certificates including the domain name ucop.edu
(limited to 100 certificates)
firm.ucop.edu
ucars.ucop.edu
doscodes.ucop.edu
ucengage2014.ucop.edu
biprod.ucop.edu
ermd.ucop.edu
ajsqa.ucop.edu
danr.ucop.edu
climatechampions.ucop.edu
nartc.fcm.arizona.edu
ottwebapps.ucop.edu
5654831519760384-fe2.pantheonsite.io
5664902681198592-fe4.pantheonsite.io
iws-ucpath.ucop.edu
www.design-engineering.princeton.edu
ucs-ucb-prod.ucop.edu
isedev.ucop.edu
secure.ucop.edu
ucleads.ucop.edu
nxterra.ucop.edu
5737350726418432-fe4.pantheonsite.io
i9complete.ucop.edu
ajsdev.ucop.edu
5738275486564352-fe1.pantheonsite.io
www.blogs.earthjustice.org
cognos-training.ucop.edu
pts.ucop.edu
2021convention.ncte.org
its-skhalil-9.ucop.edu
webdev.colorado.edu
qa.eias.ucop.edu
virtual2.unlv.edu
5688160465977344-fe4.pantheonsite.io
qa.csg.ucop.edu
cognos-training.ucop.edu
keys.ucop.edu
accessqa.ucop.edu
vml.ucop.edu
ucop-system-notification.ucop.edu
dev.wellness.yale.edu
staging-secure.ucop.edu
ucpathmon.ucop.edu
vmp.ucop.edu
csgqa.ucop.edu
info-dev.calperformances.org
agd.nebrwesleyan.edu
timelogdev.ucop.edu
doorways.ucop.edu
dcsstage.ucop.edu
beta.ucop.edu
agd.nebrwesleyan.edu
5688160465977344-fe4.pantheonsite.io
roots.ucop.edu
5684666375864320-fe2.pantheonsite.io
nistmep.blogs.govdelivery.com
5738275486564352-fe1.pantheonsite.io
dev.embody.yale.edu
ucannualwagedev.ucop.edu
policy.ucop.edu
voip-edge.ucop.edu
siteimprove.ucop.edu
dev.wellness.yale.edu
tes.ucop.edu
ugappinfo.ucop.edu
uccoronc2019project.ucop.edu
*.was.devops.ucop.edu
cicsdev-ca-signed.ucop.edu
5737350726418432-fe4.pantheonsite.io
ois.ucop.edu
www.esc.rutgers.edu
safe.ucop.edu
giannini.ucop.edu
5654831519760384-fe2.pantheonsite.io
ise.dev.finapps.aws.ucop.edu
5742387179552768-fe1.pantheonsite.io
www.mesa.ucop.edu
hybrid.ucop.edu
dmsuat.ucop.edu
ca-ecology.ucnrs.org
www.bodywerks-medspa.com
rsamldev.ucop.edu
sp.ucop.edu
dev.irapinfocenter.ucop.edu
5742387179552768-fe1.pantheonsite.io
ottwebapps.ucop.edu
*.negotiators-handbook.ucop.edu
sas112.ucop.edu
5738275486564352-fe1.pantheonsite.io
5737350726418432-fe4.pantheonsite.io
pts.ucop.edu
ucimmtoolkit.ucop.edu
itinnovate.ucop.edu
www.extension.ucdavis.edu
2fadmin.govdelivery.com
5742387179552768-fe1.pantheonsite.io
cl.ucop.edu
qa.rgpodonate.ucop.edu
ppsqa.ucop.edu
ugappinfo.ucop.edu
agd.nebrwesleyan.edu
ucars.ucop.edu
doscodes.ucop.edu
ucengage2014.ucop.edu
biprod.ucop.edu
ermd.ucop.edu
ajsqa.ucop.edu
danr.ucop.edu
climatechampions.ucop.edu
nartc.fcm.arizona.edu
ottwebapps.ucop.edu
5654831519760384-fe2.pantheonsite.io
5664902681198592-fe4.pantheonsite.io
iws-ucpath.ucop.edu
www.design-engineering.princeton.edu
ucs-ucb-prod.ucop.edu
isedev.ucop.edu
secure.ucop.edu
ucleads.ucop.edu
nxterra.ucop.edu
5737350726418432-fe4.pantheonsite.io
i9complete.ucop.edu
ajsdev.ucop.edu
5738275486564352-fe1.pantheonsite.io
www.blogs.earthjustice.org
cognos-training.ucop.edu
pts.ucop.edu
2021convention.ncte.org
its-skhalil-9.ucop.edu
webdev.colorado.edu
qa.eias.ucop.edu
virtual2.unlv.edu
5688160465977344-fe4.pantheonsite.io
qa.csg.ucop.edu
cognos-training.ucop.edu
keys.ucop.edu
accessqa.ucop.edu
vml.ucop.edu
ucop-system-notification.ucop.edu
dev.wellness.yale.edu
staging-secure.ucop.edu
ucpathmon.ucop.edu
vmp.ucop.edu
csgqa.ucop.edu
info-dev.calperformances.org
agd.nebrwesleyan.edu
timelogdev.ucop.edu
doorways.ucop.edu
dcsstage.ucop.edu
beta.ucop.edu
agd.nebrwesleyan.edu
5688160465977344-fe4.pantheonsite.io
roots.ucop.edu
5684666375864320-fe2.pantheonsite.io
nistmep.blogs.govdelivery.com
5738275486564352-fe1.pantheonsite.io
dev.embody.yale.edu
ucannualwagedev.ucop.edu
policy.ucop.edu
voip-edge.ucop.edu
siteimprove.ucop.edu
dev.wellness.yale.edu
tes.ucop.edu
ugappinfo.ucop.edu
uccoronc2019project.ucop.edu
*.was.devops.ucop.edu
cicsdev-ca-signed.ucop.edu
5737350726418432-fe4.pantheonsite.io
ois.ucop.edu
www.esc.rutgers.edu
safe.ucop.edu
giannini.ucop.edu
5654831519760384-fe2.pantheonsite.io
ise.dev.finapps.aws.ucop.edu
5742387179552768-fe1.pantheonsite.io
www.mesa.ucop.edu
hybrid.ucop.edu
dmsuat.ucop.edu
ca-ecology.ucnrs.org
www.bodywerks-medspa.com
rsamldev.ucop.edu
sp.ucop.edu
dev.irapinfocenter.ucop.edu
5742387179552768-fe1.pantheonsite.io
ottwebapps.ucop.edu
*.negotiators-handbook.ucop.edu
sas112.ucop.edu
5738275486564352-fe1.pantheonsite.io
5737350726418432-fe4.pantheonsite.io
pts.ucop.edu
ucimmtoolkit.ucop.edu
itinnovate.ucop.edu
www.extension.ucdavis.edu
2fadmin.govdelivery.com
5742387179552768-fe1.pantheonsite.io
cl.ucop.edu
qa.rgpodonate.ucop.edu
ppsqa.ucop.edu
ugappinfo.ucop.edu
agd.nebrwesleyan.edu
Certificate
The complete raw certificate details for www.mesa.ucop.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISBLh0IyaUvG6JsRVcYF0sDp8FMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDMyMzIyNTRaFw0yNDA3MDIyMzIyNTNaMBwxGjAYBgNVBAMT EXd3dy5tZXNhLnVjb3AuZWR1MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC AgEAynNut6XbA1IqEvDDz9023DMWk4RR6j+LiqY7sdyOp9WdiyM4OWemzxotuQKT +y7BpuydwCy3L16SxWuEQ/VkfR7fnSocz4YSwA8/J857UruQgWjkE60HzDcuEqwf BYAOpb0u0texPRejUKl+i1UYeCnUfTT/6Kyh5rEzW74/v781a/wnBOV4zxMl12bv h3nWuopfXTm0rwKXuyMTMhg1jkJOBMhCd0s0dl+/lLP4Iy2Cj5jD7aSeEJwiBmx/ zPq5mF/AVp+6rdbf+31Yx1ClNfM/U3UI6fcFdaiv3EbotwAxTq0ViNDKWLpWxfkt 1NRGMUckuhbKS6oxFUs+deUg8ArZ8E0481dbLabynua22eY4mqjr7bpCIBM9P2Nu HceLG+q6Q5J3tMngqlHjQRKVeb5dmLdBdgIJgD/FlRgw//97MykSRlL7bDwZjJK1 gQprMkmYVGiv2kmwAyDDVzGsQpHqEePxA0XmHacgdKaT5horQwEr9OAxg1gkYwjy jHWK2KGfLwxsD553NMQtda7yCqGejYC7zsMaKJFxpMMGOGNQoIyZSvqtVX/v04z8 7Ge/CqVQmJLBB7RtptB4dR4w7FJcloCCz1Yx4TiZxxUWPbaJcNzw8Z6AO/fWAa/H AvBYtlLhBecWjxKwBVTQMeh1c7+c59USgDI3UuUjo1wS3DsCAwEAAaOCASAwggEc MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUMc1r08YHMGZzVAYrGDmU3XTc8BMwHwYD VR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEG CCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0 dHA6Ly9yMy5pLmxlbmNyLm9yZy8wHAYDVR0RBBUwE4IRd3d3Lm1lc2EudWNvcC5l ZHUwEwYDVR0gBAwwCjAIBgZngQwBAgEwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJ KoZIhvcNAQELBQADggEBABbsaODV2gy2Um2/p7CFjV2afk8KE6tFepoCwBX1ejhW IZ04TpGm7yiQy6MfGhAbSPeevgrFFkfAT6x7alUXLAltZ/eVWQQ09c8kopkz7U+o 6yNV8rBIeGtc/7xRf8STSV+GrHib2rOm513Zxir9WVCm9wlV/qlnHQVxguJi36sa t87OctuhVLOMnxVEhivuMKcSIUWKUA1PTzBMNo7ibBk7Qe0lhgEzY+R3cc7cJWRh DOVd8jgd7n+d7/rgl8NjNR5L6VjLqCGOLTMuLn+pKebRRnyIM8MEMJZCtpprHQTL VXfIzVBLOHfEMtl9lfIy/MzbZc/I7mK62TbWda98jZw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAynNut6XbA1IqEvDDz902 3DMWk4RR6j+LiqY7sdyOp9WdiyM4OWemzxotuQKT+y7BpuydwCy3L16SxWuEQ/Vk fR7fnSocz4YSwA8/J857UruQgWjkE60HzDcuEqwfBYAOpb0u0texPRejUKl+i1UY eCnUfTT/6Kyh5rEzW74/v781a/wnBOV4zxMl12bvh3nWuopfXTm0rwKXuyMTMhg1 jkJOBMhCd0s0dl+/lLP4Iy2Cj5jD7aSeEJwiBmx/zPq5mF/AVp+6rdbf+31Yx1Cl NfM/U3UI6fcFdaiv3EbotwAxTq0ViNDKWLpWxfkt1NRGMUckuhbKS6oxFUs+deUg 8ArZ8E0481dbLabynua22eY4mqjr7bpCIBM9P2NuHceLG+q6Q5J3tMngqlHjQRKV eb5dmLdBdgIJgD/FlRgw//97MykSRlL7bDwZjJK1gQprMkmYVGiv2kmwAyDDVzGs QpHqEePxA0XmHacgdKaT5horQwEr9OAxg1gkYwjyjHWK2KGfLwxsD553NMQtda7y CqGejYC7zsMaKJFxpMMGOGNQoIyZSvqtVX/v04z87Ge/CqVQmJLBB7RtptB4dR4w 7FJcloCCz1Yx4TiZxxUWPbaJcNzw8Z6AO/fWAa/HAvBYtlLhBecWjxKwBVTQMeh1 c7+c59USgDI3UuUjo1wS3DsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 411215472200910412628772355585223498309381 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-03 23:22:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-02 23:22:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.mesa.ucop.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 825927646552727944098464084761471105524801334386823697924057250112011460709918932038135490555946851705186812796337710103671781904553083409913311398321427153521343835279378016407994094599947247858187651281103060877348287251254590478730305531763713247605898203491208951311523890764927676960954011711189125899334946311246182938317894956662794564496573803039956779076883722317999589311474714312695511338236052124607046000450864756826061737215523771027864552945060376611656235866266639689592319766644572761859637437469112697648700871324629081353863961895944334584312304806556543587794583675618312269496555403087065011264588543081474563540526112654372334527339369167326916633052070912967798333459349172034541147770982149909049993711752094450601877509708149840976418617268969918061112216750342290051879527249487288973096327115995048676237260212882834717524808722918223398898119539120731328077843334023462686157537286876731655660242594089413695098356437840140573282969332797788853074875902276458376905134414092299014190338616234195288806288917542965425297148704783269902127270287828701159045732299970044097525143339521515370157926866470444268402012262683796795263532291480760133009036051163708395896844495332197127022733174803724492755622971 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 31cd6bd3c60730667354062b183994dd74dcf013 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mesa.ucop.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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