blog.marktompkins.me
Issued by StartCom Class 1 DV Server CA
About this certificate
This digital certificate with serial number 48:b3:ea:46:fd:3e:e5:50:aa:aa:16:d0:5a:09:60:56 was issued on by StartCom Ltd..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=blog.marktompkins.me
StartCom Ltd.
Organization:
StartCom Ltd.
Organization unit: StartCom Certification Authority
Organization unit: StartCom Certification Authority
Country:
IL
This certificate has expire since
Certificate Details
Serial Number (hex): 48:b3:ea:46:fd:3e:e5:50:aa:aa:16:d0:5a:09:60:56Serial Number (int): 96638588542386051279542081646320246870
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 52:d3:5a:5e:2c:f0:db:97:80:52:95:72:c6:07:5c:4c:ce:b9:48:a6
AuthorityKeyId: d7:91:4e:01:c4:b0:bf:f8:c8:67:93:44:9c:e7:33:fa:ad:93:0c:af
Fingerprint (sha1): 51:0f:1c:1f:97:5c:31:a3:e9:5b:73:44:37:06:41:04:a2:3a:b5:8d
Fingerprint (sha256): 0b:1d:0a:65:41:bf:a9:d4:10:67:9a:3b:f9:b6:a2:06:d7:fa:0a:69:9d:74:7b:4b:72:83:76:80:23:f3:04:90
Issuing Certificate URL: http://aia.startssl.com/certs/sca.server1.crt
Revocation information
OCSP Server: http://ocsp.startssl.comCRL Distribution Point: http://crl.startssl.com/sca-server1.crl
Check the revocation status for certificate blog.marktompkins.me
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for blog.marktompkins.me
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
blog.marktompkins.me
marktompkins.me
marktompkins.me
Other certificates including the domain name marktompkins.me
(limited to 100 certificates)
oa.marktompkins.me
www.marktompkins.me
www.marktompkins.me
oa.marktompkins.me
*.marktompkins.me
git.marktompkins.me
*.marktompkins.me
marktompkins.me
blog.marktompkins.me
marktompkins.me
handwerker.mobiliar.ch
zeus.marktompkins.me
faq.marktompkins.me
marktompkins.me
marktompkins.me
marktompkins.me
zeus.marktompkins.me
tymodenengelsman.com
oa.marktompkins.me
nuc2.marktompkins.me
blog.marktompkins.me
marktompkins.me
git.marktompkins.me
cacitrak.com
nzb.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
marktompkins.me
zeus.marktompkins.me
marktompkins.me
marktompkins.me
melonseed.media
syno.marktompkins.me
marktompkins.me
marktompkins.me
sni.cloudflaressl.com
*.marktompkins.me
pxe.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
*.marktompkins.me
git.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
turn.marktompkins.me
oa.marktompkins.me
git.marktompkins.me
www.marktompkins.me
*.marktompkins.me
digital.stratton-press.linkmalloc.com
faq.marktompkins.me
marktompkins.me
oa.marktompkins.me
marktompkins.me
marktompkins.me
git.marktompkins.me
marktompkins.me
www.marktompkins.me
plex.marktompkins.me
git.marktompkins.me
git.marktompkins.me
ui.skydropx.com
*.marktompkins.me
git.marktompkins.me
faq.marktompkins.me
marktompkins.me
faq.marktompkins.me
pkgs.marktompkins.me
demo.messehero.de
faq.marktompkins.me
www.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
www.marktompkins.me
marktompkins.me
oa.marktompkins.me
marktompkins.me
marktompkins.me
faq.marktompkins.me
faq.marktompkins.me
nzb.marktompkins.me
*.marktompkins.me
git.marktompkins.me
*.marktompkins.me
git.marktompkins.me
*.marktompkins.me
www.bookfy.app
oa.marktompkins.me
plexpy.marktompkins.me
oa.marktompkins.me
dsm.marktompkins.me
marktompkins.me
marktompkins.me
git.marktompkins.me
www.marktompkins.me
marktompkins.me
www.marktompkins.me
sni.cloudflaressl.com
marktompkins.me
www.marktompkins.me
www.marktompkins.me
www.marktompkins.me
oa.marktompkins.me
*.marktompkins.me
git.marktompkins.me
*.marktompkins.me
marktompkins.me
blog.marktompkins.me
marktompkins.me
handwerker.mobiliar.ch
zeus.marktompkins.me
faq.marktompkins.me
marktompkins.me
marktompkins.me
marktompkins.me
zeus.marktompkins.me
tymodenengelsman.com
oa.marktompkins.me
nuc2.marktompkins.me
blog.marktompkins.me
marktompkins.me
git.marktompkins.me
cacitrak.com
nzb.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
marktompkins.me
zeus.marktompkins.me
marktompkins.me
marktompkins.me
melonseed.media
syno.marktompkins.me
marktompkins.me
marktompkins.me
sni.cloudflaressl.com
*.marktompkins.me
pxe.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
*.marktompkins.me
git.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
turn.marktompkins.me
oa.marktompkins.me
git.marktompkins.me
www.marktompkins.me
*.marktompkins.me
digital.stratton-press.linkmalloc.com
faq.marktompkins.me
marktompkins.me
oa.marktompkins.me
marktompkins.me
marktompkins.me
git.marktompkins.me
marktompkins.me
www.marktompkins.me
plex.marktompkins.me
git.marktompkins.me
git.marktompkins.me
ui.skydropx.com
*.marktompkins.me
git.marktompkins.me
faq.marktompkins.me
marktompkins.me
faq.marktompkins.me
pkgs.marktompkins.me
demo.messehero.de
faq.marktompkins.me
www.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
www.marktompkins.me
marktompkins.me
oa.marktompkins.me
marktompkins.me
marktompkins.me
faq.marktompkins.me
faq.marktompkins.me
nzb.marktompkins.me
*.marktompkins.me
git.marktompkins.me
*.marktompkins.me
git.marktompkins.me
*.marktompkins.me
www.bookfy.app
oa.marktompkins.me
plexpy.marktompkins.me
oa.marktompkins.me
dsm.marktompkins.me
marktompkins.me
marktompkins.me
git.marktompkins.me
www.marktompkins.me
marktompkins.me
www.marktompkins.me
sni.cloudflaressl.com
marktompkins.me
www.marktompkins.me
Certificate
The complete raw certificate details for blog.marktompkins.me in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8jCCBNqgAwIBAgIQSLPqRv0+5VCqqhbQWglgVjANBgkqhkiG9w0BAQsFADB4 MQswCQYDVQQGEwJJTDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjEpMCcGA1UECxMg U3RhcnRDb20gQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkxJjAkBgNVBAMTHVN0YXJ0 Q29tIENsYXNzIDEgRFYgU2VydmVyIENBMB4XDTE2MDIxMTE0Mjk0OVoXDTE3MDIx MTE0Mjk0OVowHzEdMBsGA1UEAwwUYmxvZy5tYXJrdG9tcGtpbnMubWUwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDpg/zj3ZVffYtf9YyMKlr5XUu5s9oI qYQ2/4YLy2sANJKYQL5G+TNJ/nDDvnFeX0RByS4J1hPKE9dxffsMbmmLhDiRex2L 2S1jQYxwdgX+NuFpJRxyO0sMPPLiLfPMPEXtRO9AlZql0oO9Ez4U5G1j0vHzkFAJ I43uoZ/GcypjA7cVc27SrjHOrfl4h5Az42QR4awtD6OS+BePhsmmU7yKOCbxQA83 Biqeg/xWs+rmQDYdmNfrB+EkOW3dqn7GpaJU1eDr9SOgnH4BjV6KXrRSq++iVN5I 1Fw4Py37NEL34zwhEOnB6LnuAOqoOxnFiCjIlD4zc6+7zPczXV/LwVDs1456kzfC oXXFF6EUbJXxEJHdu+WYSbyUna/vqGxrgd55n1zUAeqg86BKdaJ68wLXWEVclEiu KIZbFNz/uhhvU5pd4ysnqZo2Y18wwFzCFRwgT0mzi3kaRrTi8spFuO0ylBN0NHAH kiYC4xl3RlJfAnU2mikmnrUB7YsLPDavs5R3YVdpXBtLuAuBLMvoa16sA//iRJXF SP73VVolopj3/BnZK7YfbfICt02qG1muY9Iuehf/R/xAxPfBj/dcIAteoRQXB+2N ybqcV1CcRoiSVAEttz18NEO5QNqxDbfkVh0dOrfm0mVFQmCv/UJUn4R5c9BudPMu YGwhmOQF4xB8+wIDAQABo4IBzzCCAcswCwYDVR0PBAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMCBggrBgEFBQcDATAJBgNVHRMEAjAAMB0GA1UdDgQWBBRS01peLPDb l4BSlXLGB1xMzrlIpjAfBgNVHSMEGDAWgBTXkU4BxLC/+Mhnk0Sc5zP6rZMMrzBv BggrBgEFBQcBAQRjMGEwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLnN0YXJ0c3Ns LmNvbTA5BggrBgEFBQcwAoYtaHR0cDovL2FpYS5zdGFydHNzbC5jb20vY2VydHMv c2NhLnNlcnZlcjEuY3J0MDgGA1UdHwQxMC8wLaAroCmGJ2h0dHA6Ly9jcmwuc3Rh cnRzc2wuY29tL3NjYS1zZXJ2ZXIxLmNybDAwBgNVHREEKTAnghRibG9nLm1hcmt0 b21wa2lucy5tZYIPbWFya3RvbXBraW5zLm1lMCMGA1UdEgQcMBqGGGh0dHA6Ly93 d3cuc3RhcnRzc2wuY29tLzBQBgNVHSAESTBHMAgGBmeBDAECATA7BgsrBgEEAYG1 NwECBDAsMCoGCCsGAQUFBwIBFh5odHRwOi8vd3d3LnN0YXJ0c3NsLmNvbS9wb2xp Y3kwDQYJKoZIhvcNAQELBQADggEBAAHkQHYyD+zRasBNW654PayigdvLI4xm7WCN pNJUzG5PWNjgCVB0cA1laK9/L+AkKzA3pWxZnQ8E3oV74ea6TNAU1JpdmTxR++Fn Kawa6MErkuJ4Sns4tfk/GHb4Wu94DBHOKwDm+/p5WgElSQvnrkkrIJzk0PeuyfR/ 44LsI5Awci6qN9ADbyPN4vDeAexnHevZWdNout7QBZmLB9V+Rllp2Z9avJUDO6RU Z13tSwQpmhApsUKC1PEskWuO3B2NimMEceKx/K4RTc29ZfUT3ka+/la5oojpnPqh CeciAjojy9ltgvBB6dH3eY+1IBGQxTBMiiXjQeaJTXK2px7VIbU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6YP8492VX32LX/WMjCpa +V1LubPaCKmENv+GC8trADSSmEC+RvkzSf5ww75xXl9EQckuCdYTyhPXcX37DG5p i4Q4kXsdi9ktY0GMcHYF/jbhaSUccjtLDDzy4i3zzDxF7UTvQJWapdKDvRM+FORt Y9Lx85BQCSON7qGfxnMqYwO3FXNu0q4xzq35eIeQM+NkEeGsLQ+jkvgXj4bJplO8 ijgm8UAPNwYqnoP8VrPq5kA2HZjX6wfhJDlt3ap+xqWiVNXg6/UjoJx+AY1eil60 UqvvolTeSNRcOD8t+zRC9+M8IRDpwei57gDqqDsZxYgoyJQ+M3Ovu8z3M11fy8FQ 7NeOepM3wqF1xRehFGyV8RCR3bvlmEm8lJ2v76hsa4HeeZ9c1AHqoPOgSnWievMC 11hFXJRIriiGWxTc/7oYb1OaXeMrJ6maNmNfMMBcwhUcIE9Js4t5Gka04vLKRbjt MpQTdDRwB5ImAuMZd0ZSXwJ1NpopJp61Ae2LCzw2r7OUd2FXaVwbS7gLgSzL6Gte rAP/4kSVxUj+91VaJaKY9/wZ2Su2H23yArdNqhtZrmPSLnoX/0f8QMT3wY/3XCAL XqEUFwftjcm6nFdQnEaIklQBLbc9fDRDuUDasQ235FYdHTq35tJlRUJgr/1CVJ+E eXPQbnTzLmBsIZjkBeMQfPsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 96638588542386051279542081646320246870 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Certification Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Class 1 DV Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-02-11 14:29:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-11 14:29:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'blog.marktompkins.me' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 952660440728645938990851308109148971981730142569468833084567908477320455645811247196571931425844040846044121314547186367239955699138183180483160343734173748940932806885825878458862604622884552512937222869418084349177676937537239500543472236153517967607571428764643006686419080260186295081042477075884689346307605727595664871468445775400530803712885147395622830873900247616515814000308123789810914476590992103020435391368577843834142068137838571764255899340397664789162229953576324535876009377936662380340750077428726346739774036077723341668696788892928915223087977767436957620229308422967905027456528957845820214422991416070041182696520470252143681252683993979262375024283096527732492260839204170049079541309024077456479300467422892856747316670281023764969475406654872958481262177380606328731446301904160831004775651708641809932751152025333391791421765300418108506346194084655616353952919418741058515910176998957779653001478049252816858408131957259864087754579439012114774528073294133452840733222124929396616739272604021225148016699183648239681715349690523270828362098147793099753526643935386026463780672097894102136864831386520748409720451296538771594607297384237375663090635259334326374029379501398874923002660941430552223886114043 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 52d35a5e2cf0db9780529572c6075c4cceb948a6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d7914e01c4b0bff8c86793449ce733faad930caf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.startssl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.startssl.com/certs/sca.server1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.startssl.com/sca-server1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (41 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.marktompkins.me' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marktompkins.me' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.18 (issuerAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.startssl.com/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23223.1.2.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.startssl.com/policy' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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