invest.mosreg.ru
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:a9:67:66:0a:4d:77:53:56:ac:1f:86:fc:af:2b:ad:27:4d was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=invest.mosreg.ru
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:a9:67:66:0a:4d:77:53:56:ac:1f:86:fc:af:2b:ad:27:4dSerial Number (int): 406094304043486597815558564503867947296589
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 78:f4:7d:62:b3:5e:83:a3:a5:2e:e8:49:37:f6:97:ad:dd:78:11:88
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 16:3d:41:19:24:00:9d:aa:e7:50:f2:0c:72:63:da:bf:77:d0:ca:7d
Fingerprint (sha256): 09:99:c7:09:fe:f7:16:59:11:f2:ae:ef:d0:07:27:83:5e:e0:44:7f:43:5e:f4:d4:f0:3a:1e:47:d4:c6:a8:44
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate invest.mosreg.ru
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for invest.mosreg.ru
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
invest.mosreg.ru
www.invest.mosreg.ru
www.invest.mosreg.ru
Other certificates including the domain name mosreg.ru
(limited to 100 certificates)
docs.mosreg.ru
guv.mosreg.ru
help.dnevnik.ru
sdc.platform.mosreg.ru
klh.mosreg.ru
*.reb.mosreg.ru
pdks.mosreg.ru
mf.reb.mosreg.ru
msh.mosreg.ru
www.atk.mosreg.ru
*.mef.mosreg.ru
isogd.mosreg.ru
ugd.mosreg.ru
socuslugi.mosreg.ru
ud.mosreg.ru
*.sport.mosreg.ru
mosreg.ru
www.zags.mosreg.ru
isogd.mosreg.ru
monitoring.mosreg.ru
mio.mosreg.ru
*.budget.mosreg.ru
lytkarino.mosreg.ru
tasks.mosreg.ru
www.mef.mosreg.ru
pushchino.mosreg.ru
kadry.mosreg.ru
mail.omsu.mosreg.ru
volokolamsk.mosreg.ru
help.pik.mosreg.ru
auth.elib.mosreg.ru
www.guip.mosreg.ru
mz.mosreg.ru
bal.msr.mosreg.ru
kt.reb.mosreg.ru
www.mo.mosreg.ru
docs.mosreg.ru
www.gatn.mosreg.ru
gorskoe.mosreg.ru
tasks.mosreg.ru
news.mosreg.ru
www.klh.mosreg.ru
remote.mosreg.ru
mf.mosreg.ru
msh.mosreg.ru
gs.mosreg.ru
www.mz.mosreg.ru
upss.mosreg.ru
guv.mosreg.ru
dolgoletie.mosreg.ru
dobrodel.mosreg.ru
news.mosreg.ru
dolgoletie.mosreg.ru
beta.uslugi.mosreg.ru
uzpp.mosreg.ru
lms.gossluzhba.mosreg.ru
mo.mosreg.ru
mst.mosreg.ru
dop.mosreg.ru
invest.mosreg.ru
www.mio.mosreg.ru
certificate.cogu.mosreg.ru
klim.msr.mosreg.ru
vpn.mosreg.ru
isogd.mosreg.ru
roshal.mosreg.ru
subbotnik.mosreg.ru
dolgoletie.mosreg.ru
isoik.mosreg.ru
minenergo.mosreg.ru
ugd.mosreg.ru
pik.mosreg.ru
docs.mosreg.ru
ktc.mosreg.ru
web.mail.mosreg.ru
remote.mosreg.ru
*.msr.mosreg.ru
roshal.mosreg.ru
www.ktc.mosreg.ru
www.mst.mosreg.ru
gs.mosreg.ru
*.reb.mosreg.ru
webconf.mosreg.ru
www.politika.mosreg.ru
tdn.mosreg.ru
*.reb.mosreg.ru
help.dnevnik.ru
renovation.mosreg.ru
www.gzhi.mosreg.ru
pushchino.mosreg.ru
dom.mosreg.ru
ikt.mosreg.ru
112.rm.mosreg.ru
*.secure.mosreg.ru
dev.vmeste.mosreg.ru
chekhov.mosreg.ru
vmeste.mosreg.ru
docreg.reb.mosreg.ru
rgis.mosreg.ru
guv.mosreg.ru
help.dnevnik.ru
sdc.platform.mosreg.ru
klh.mosreg.ru
*.reb.mosreg.ru
pdks.mosreg.ru
mf.reb.mosreg.ru
msh.mosreg.ru
www.atk.mosreg.ru
*.mef.mosreg.ru
isogd.mosreg.ru
ugd.mosreg.ru
socuslugi.mosreg.ru
ud.mosreg.ru
*.sport.mosreg.ru
mosreg.ru
www.zags.mosreg.ru
isogd.mosreg.ru
monitoring.mosreg.ru
mio.mosreg.ru
*.budget.mosreg.ru
lytkarino.mosreg.ru
tasks.mosreg.ru
www.mef.mosreg.ru
pushchino.mosreg.ru
kadry.mosreg.ru
mail.omsu.mosreg.ru
volokolamsk.mosreg.ru
help.pik.mosreg.ru
auth.elib.mosreg.ru
www.guip.mosreg.ru
mz.mosreg.ru
bal.msr.mosreg.ru
kt.reb.mosreg.ru
www.mo.mosreg.ru
docs.mosreg.ru
www.gatn.mosreg.ru
gorskoe.mosreg.ru
tasks.mosreg.ru
news.mosreg.ru
www.klh.mosreg.ru
remote.mosreg.ru
mf.mosreg.ru
msh.mosreg.ru
gs.mosreg.ru
www.mz.mosreg.ru
upss.mosreg.ru
guv.mosreg.ru
dolgoletie.mosreg.ru
dobrodel.mosreg.ru
news.mosreg.ru
dolgoletie.mosreg.ru
beta.uslugi.mosreg.ru
uzpp.mosreg.ru
lms.gossluzhba.mosreg.ru
mo.mosreg.ru
mst.mosreg.ru
dop.mosreg.ru
invest.mosreg.ru
www.mio.mosreg.ru
certificate.cogu.mosreg.ru
klim.msr.mosreg.ru
vpn.mosreg.ru
isogd.mosreg.ru
roshal.mosreg.ru
subbotnik.mosreg.ru
dolgoletie.mosreg.ru
isoik.mosreg.ru
minenergo.mosreg.ru
ugd.mosreg.ru
pik.mosreg.ru
docs.mosreg.ru
ktc.mosreg.ru
web.mail.mosreg.ru
remote.mosreg.ru
*.msr.mosreg.ru
roshal.mosreg.ru
www.ktc.mosreg.ru
www.mst.mosreg.ru
gs.mosreg.ru
*.reb.mosreg.ru
webconf.mosreg.ru
www.politika.mosreg.ru
tdn.mosreg.ru
*.reb.mosreg.ru
help.dnevnik.ru
renovation.mosreg.ru
www.gzhi.mosreg.ru
pushchino.mosreg.ru
dom.mosreg.ru
ikt.mosreg.ru
112.rm.mosreg.ru
*.secure.mosreg.ru
dev.vmeste.mosreg.ru
chekhov.mosreg.ru
vmeste.mosreg.ru
docreg.reb.mosreg.ru
rgis.mosreg.ru
Certificate
The complete raw certificate details for invest.mosreg.ru in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgISBKlnZgpNd1NWrB+G/K8rrSdNMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMDIxODMxNDFaFw0y MDAzMDExODMxNDFaMBsxGTAXBgNVBAMTEGludmVzdC5tb3NyZWcucnUwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDXW8xYkFClgNT5rBMHQbPKVEJq16G pm8r743VSmR5l1XDdTPNfYm10sgeIQ0K+A67BzEqu6bot9Xp7oha3MY3zi8wREfP YvWli+gPHrCnhvRva4bP0+ivKhQUYTbQhzwEfneuv8lYLqwCPj0Yq0MgLtLL98zQ P7DBF4wqRKasF0ioCh2WdAop0E0PxGBPIIxHZlxqpCfcGZOLadG0mHVIjh4d7ar+ vMb7Ycr4txuC7sWV1+Yp6vwuYWY81n6VmgFl71hXU1WcUeyn/dp0z0pDohRugex8 dbEDwOiolYHNTkG2LVmqssdQ4rrNqvDKfOHsnanxkmGopVqXLlsrzxLTAgMBAAGj ggJ8MIICeDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHj0fWKzXoOjpS7oSTf2l63d eBGIMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEB BGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZy8wMQYDVR0RBCowKIIQaW52ZXN0Lm1vc3JlZy5ydYIUd3d3LmludmVzdC5t b3NyZWcucnUwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEE AdZ5AgQCBIH2BIHzAPEAdgBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFF WAAAAW7IGNYeAAAEAwBHMEUCIAa/I++kG5teMYmvN0syX4+a5valPuvnqpu9mCBv LCLcAiEAhUlxPZtQ6IUzrMd/j1gMrt9O7QCE37B4cqmGgmZV3ewAdwCyHgXMi6LN iiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAW7IGNYPAAAEAwBIMEYCIQDdmR3F IME6NkqpEXcQmCShiIrsvFwcmyXrVyALsNoqmAIhAMAzlWZnFdnVVakbFTOTIDod sv/4nURmJTgQarDLEs84MA0GCSqGSIb3DQEBCwUAA4IBAQBBRwi/IupTTTKil40v hJt6AAQdm/h4p6NHTO0pWS/Ru3qmHN/lVwd7oshTMUMWtRm0hqN2Zdk982kE9yhj tBfbhQxCgBgyAP6w2LFzvecxXeAwlxdMCeezmHfE14IsbaG9OVih8TVWnASzOBd3 xtsWS5BRIvg+GC5b9lHBtPJHQB4oiIctr7aCQvQd6AwU+LttzcA1FOnCZfjHeyoA izlqQMif1/EhOEBZNlqB2rSDc8g6c0tUwJSthJqK4lKrvCVqoRdoeu3R61fw7mIt L13lqvNtWHLbfuQEhv+R588AFWKyhpKDGNFOITLE6PiVC3Ax1QJbqBltj+QmHBrZ 9H1P -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw11vMWJBQpYDU+awTB0G zylRCatehqZvK++N1UpkeZdVw3UzzX2JtdLIHiENCvgOuwcxKrum6LfV6e6IWtzG N84vMERHz2L1pYvoDx6wp4b0b2uGz9PoryoUFGE20Ic8BH53rr/JWC6sAj49GKtD IC7Sy/fM0D+wwReMKkSmrBdIqAodlnQKKdBND8RgTyCMR2ZcaqQn3BmTi2nRtJh1 SI4eHe2q/rzG+2HK+Lcbgu7FldfmKer8LmFmPNZ+lZoBZe9YV1NVnFHsp/3adM9K Q6IUboHsfHWxA8DoqJWBzU5Bti1ZqrLHUOK6zarwynzh7J2p8ZJhqKValy5bK88S 0wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 406094304043486597815558564503867947296589 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-02 18:31:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-01 18:31:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'invest.mosreg.ru' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24662543662237428624463632514354374676090016871018046802535692223840081998480103704732074133557321712045225541599689341451607454617812934292581129246032025056641215492899357617378191284771882205347934940837055228491733848296290966850844728406612813569028268345424027279415944083837185930675699264708457101763236096483359381576497387616183138261862963017625229373615555471096222387678217838719796578125452317901077787259106572144248626278951362601170150474652008425086750266805082671992583462880750405255069521746170231780567709694392323396602089269905675721408080133342269165586377586949572392229076890161578060485331 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 78f47d62b35e83a3a52ee84937f697addd781188 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'invest.mosreg.ru' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.invest.mosreg.ru' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016ec818d61e0000040300473045022006bf23efa41b9b5e3189af374b325f8f9ae6f6a53eebe7aa9bbd98206f2c22dc0221008549713d9b50e88533acc77f8f580caedf4eed0084dfb07872a986826655ddec007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016ec818d60f0000040300483046022100dd991dc520c13a364aa91177109824a1888aecbc5c1c9b25eb57200bb0da2a98022100c03395666715d9d555a91b153393203a1db2fff89d44662538106ab0cb12cf38 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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