shop.elle.com
Issued by R3
About this certificate
This digital certificate with serial number 04:67:48:0f:b6:79:6e:49:2f:eb:2f:94:30:e2:04:bc:d5:70 was issued on by Let's Encrypt.
With 29 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=shop.elle.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:67:48:0f:b6:79:6e:49:2f:eb:2f:94:30:e2:04:bc:d5:70Serial Number (int): 383594013521066327646271504445254634624368
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 0d:c7:a4:c7:bc:be:60:d0:ea:e4:0b:15:d7:03:1d:90:d9:3f:ea:87
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0b:4b:f7:e5:46:8d:75:eb:66:c3:62:f7:0f:bd:61:b3:b3:3f:20:e5
Fingerprint (sha256): 0b:cb:24:8e:87:ec:4b:0d:9c:6f:ba:af:e9:7c:ec:46:d9:15:5e:f2:ad:3e:c4:2e:d0:0e:cf:fa:e2:86:90:b0
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate shop.elle.com
29
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shop.elle.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
shop.bestproducts.com
shop.bicycling.com
shop.cosmopolitan.com
shop.countryliving.com
shop.elle.com
shop.elledecor.com
shop.esquire.com
shop.goodhousekeeping.com
shop.housebeautiful.com
shop.marieclaire.com
shop.menshealth.com
shop.oprahdaily.com
shop.oprahmag.com
shop.popularmechanics.com
shop.prevention.com
shop.roadandtrack.com
shop.seventeen.com
shop.thefoodnetworkmag.com
shop.thehgtvmag.com
shop.thepioneerwoman.com
shop.townandcountrymag.com
shop.veranda.com
shop.womansday.com
shop.womenshealthmag.com
store.caranddriver.com
store.delish.com
store.harpersbazaar.com
store.runnersworld.com
thehgtvmag.com
shop.bicycling.com
shop.cosmopolitan.com
shop.countryliving.com
shop.elle.com
shop.elledecor.com
shop.esquire.com
shop.goodhousekeeping.com
shop.housebeautiful.com
shop.marieclaire.com
shop.menshealth.com
shop.oprahdaily.com
shop.oprahmag.com
shop.popularmechanics.com
shop.prevention.com
shop.roadandtrack.com
shop.seventeen.com
shop.thefoodnetworkmag.com
shop.thehgtvmag.com
shop.thepioneerwoman.com
shop.townandcountrymag.com
shop.veranda.com
shop.womansday.com
shop.womenshealthmag.com
store.caranddriver.com
store.delish.com
store.harpersbazaar.com
store.runnersworld.com
thehgtvmag.com
Other certificates including the domain name elle.com
(limited to 100 certificates)
*.25ans.jp
dns-vetting1-mims-pawel.map.fastly.net
test.beauty-awards.elle.com
hearst-prod.actioniq.mr-in.com
dns-vetting1-mims-pawel.map.fastly.net
hearst-prod.actioniq.mr-in.com
dns-vetting1-mims-pawel.map.fastly.net
hearst-prod.actioniq.mr-in.com
shop.elle.com
sli.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
cosmopolitan.com
mcstaging-shop.elle.com
hearst-prod.actioniq.mr-in.com
mcstaging-shop.elle.com
beauty-awards.elle.com
shop.elle.com
*.hearstapps.com
dns-vetting1-mims-pawel.map.fastly.net
dns-vetting1-mims-pawel.map.fastly.net
secure.hdmtools.com
dns-vetting1-mims-pawel.map.fastly.net
shop.elle.com
cosmopolitan.com
shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
store.caranddriver.com
dns-vetting1-mims-pawel.map.fastly.net
subscribe.hearstmags.com
sli.esquire.com
sli.esquire.com
mcstaging-shop.elle.com
shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
link.elle.com
hearst-hdm.map.fastly.net
beauty-awards.elle.com
hearst-hdm.map.fastly.net
hearst-hdm.map.fastly.net
shop.cosmopolitan.com
shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
shop-tw.elle.com
service.elle.com
shop-tw.elle.com
hearst-hdm.map.fastly.net
sli.esquire.com
cosmopolitan.com
subscribe.hearstmags.com
dns-vetting1-mims-pawel.map.fastly.net
magentocloud55.map.fastly.net
subscribe.hearstmags.com
dns-vetting1-mims-pawel.map.fastly.net
subscribe.hearstmags.com
cosmopolitan.com
shop.elle.com
shop.elle.com
hearst-prod.actioniq.mr-in.com
shop.elledecor.com
mcstaging-shop.elle.com
test.beauty-awards.elle.com
mcstaging-shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
subscribe.hearstmags.com
sli.esquire.com
shop.elle.com
hearst-hdm.map.fastly.net
subscribe.hearstmags.com
dns-vetting1-mims-pawel.map.fastly.net
cosmopolitan.com
store.caranddriver.com
shop-tw.elle.com
dns-vetting1-mims-pawel.map.fastly.net
mcstaging-shop.elle.com
test.beauty-awards.elle.com
shop.elle.com
shop.elle.com
sli.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
link.elle.com
test.beauty-awards.elle.com
hearst-hdm.map.fastly.net
subscribe.hearstmags.com
cosmopolitan.com
dns-vetting1-mims-pawel.map.fastly.net
mcstaging-shop.elle.com
mcstaging-shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
shop.elle.com
shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
join.womansday.com
hearst-hdm.map.fastly.net
sli.esquire.com
hearst-hdm.map.fastly.net
hearst-hdm.map.fastly.net
mcstaging-shop.elle.com
shop.elle.com
hearst-hdm.map.fastly.net
hearst-hdm.map.fastly.net
dns-vetting1-mims-pawel.map.fastly.net
test.beauty-awards.elle.com
hearst-prod.actioniq.mr-in.com
dns-vetting1-mims-pawel.map.fastly.net
hearst-prod.actioniq.mr-in.com
dns-vetting1-mims-pawel.map.fastly.net
hearst-prod.actioniq.mr-in.com
shop.elle.com
sli.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
cosmopolitan.com
mcstaging-shop.elle.com
hearst-prod.actioniq.mr-in.com
mcstaging-shop.elle.com
beauty-awards.elle.com
shop.elle.com
*.hearstapps.com
dns-vetting1-mims-pawel.map.fastly.net
dns-vetting1-mims-pawel.map.fastly.net
secure.hdmtools.com
dns-vetting1-mims-pawel.map.fastly.net
shop.elle.com
cosmopolitan.com
shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
store.caranddriver.com
dns-vetting1-mims-pawel.map.fastly.net
subscribe.hearstmags.com
sli.esquire.com
sli.esquire.com
mcstaging-shop.elle.com
shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
link.elle.com
hearst-hdm.map.fastly.net
beauty-awards.elle.com
hearst-hdm.map.fastly.net
hearst-hdm.map.fastly.net
shop.cosmopolitan.com
shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
shop-tw.elle.com
service.elle.com
shop-tw.elle.com
hearst-hdm.map.fastly.net
sli.esquire.com
cosmopolitan.com
subscribe.hearstmags.com
dns-vetting1-mims-pawel.map.fastly.net
magentocloud55.map.fastly.net
subscribe.hearstmags.com
dns-vetting1-mims-pawel.map.fastly.net
subscribe.hearstmags.com
cosmopolitan.com
shop.elle.com
shop.elle.com
hearst-prod.actioniq.mr-in.com
shop.elledecor.com
mcstaging-shop.elle.com
test.beauty-awards.elle.com
mcstaging-shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
subscribe.hearstmags.com
sli.esquire.com
shop.elle.com
hearst-hdm.map.fastly.net
subscribe.hearstmags.com
dns-vetting1-mims-pawel.map.fastly.net
cosmopolitan.com
store.caranddriver.com
shop-tw.elle.com
dns-vetting1-mims-pawel.map.fastly.net
mcstaging-shop.elle.com
test.beauty-awards.elle.com
shop.elle.com
shop.elle.com
sli.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
link.elle.com
test.beauty-awards.elle.com
hearst-hdm.map.fastly.net
subscribe.hearstmags.com
cosmopolitan.com
dns-vetting1-mims-pawel.map.fastly.net
mcstaging-shop.elle.com
mcstaging-shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
shop.elle.com
shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
join.womansday.com
hearst-hdm.map.fastly.net
sli.esquire.com
hearst-hdm.map.fastly.net
hearst-hdm.map.fastly.net
mcstaging-shop.elle.com
shop.elle.com
hearst-hdm.map.fastly.net
hearst-hdm.map.fastly.net
Certificate
The complete raw certificate details for shop.elle.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHmzCCBoOgAwIBAgISBGdID7Z5bkkv6y+UMOIEvNVwMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMTAyMDEyMDM0MTlaFw0yMTA1MDIyMDM0MTlaMBgxFjAUBgNVBAMT DXNob3AuZWxsZS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi /Zx2l4k0fTnN4fYbZuDxqcBgGdH3Z52GakFH6U+EZa01bidMCo9yD5BTmhQoBcRj EipdBk2y+gj2kp8gQnc8BIi0FwEJEqMByXJU1YmjIMcJ+z5pt4cTY6+ts9OrYguH yzCVJXOZb2CduxLu66lTUaciUaMJ0bZQhpZnqCwoAYIpxelAvB2gYxpUSeG8peZ1 TT4kKmd25iKUQgOttUY5R8wRCY34c5I+SI/QdnG+wFh1iwm7Jox+Yg9YGa7EHUuv jnUIPkWCHS0bxpGyTkzywSdG/tIS/ts39RSjdGmqVWSf5WwgCvJr+VUQFBz1sDgr QfvA7kgPJ/ZIVl6n0AJZAgMBAAGjggTDMIIEvzAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFA3HpMe8vmDQ6uQLFdcDHZDZP+qHMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MIICkAYDVR0RBIIChzCCAoOCFXNob3AuYmVzdHByb2R1Y3RzLmNvbYISc2hvcC5i aWN5Y2xpbmcuY29tghVzaG9wLmNvc21vcG9saXRhbi5jb22CFnNob3AuY291bnRy eWxpdmluZy5jb22CDXNob3AuZWxsZS5jb22CEnNob3AuZWxsZWRlY29yLmNvbYIQ c2hvcC5lc3F1aXJlLmNvbYIZc2hvcC5nb29kaG91c2VrZWVwaW5nLmNvbYIXc2hv cC5ob3VzZWJlYXV0aWZ1bC5jb22CFHNob3AubWFyaWVjbGFpcmUuY29tghNzaG9w Lm1lbnNoZWFsdGguY29tghNzaG9wLm9wcmFoZGFpbHkuY29tghFzaG9wLm9wcmFo bWFnLmNvbYIZc2hvcC5wb3B1bGFybWVjaGFuaWNzLmNvbYITc2hvcC5wcmV2ZW50 aW9uLmNvbYIVc2hvcC5yb2FkYW5kdHJhY2suY29tghJzaG9wLnNldmVudGVlbi5j b22CGnNob3AudGhlZm9vZG5ldHdvcmttYWcuY29tghNzaG9wLnRoZWhndHZtYWcu Y29tghhzaG9wLnRoZXBpb25lZXJ3b21hbi5jb22CGnNob3AudG93bmFuZGNvdW50 cnltYWcuY29tghBzaG9wLnZlcmFuZGEuY29tghJzaG9wLndvbWFuc2RheS5jb22C GHNob3Aud29tZW5zaGVhbHRobWFnLmNvbYIWc3RvcmUuY2FyYW5kZHJpdmVyLmNv bYIQc3RvcmUuZGVsaXNoLmNvbYIXc3RvcmUuaGFycGVyc2JhemFhci5jb22CFnN0 b3JlLnJ1bm5lcnN3b3JsZC5jb22CDnRoZWhndHZtYWcuY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA9lyU L9F3MCIUVBgIMJRWjuNNExkzv98MLyALzE7xZOMAAAF3X4SRNwAABAMARzBFAiBx uflxVgu6gR2Vknu1QK+HNgFIg1Q3XRhGx8cctlYDIQIhAOyFK3RMWu+ZHT3X4Bgc EaNu8uLPNeYjx2dyhk4krTFNAHcAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2y CJo32RMAAAF3X4SRbgAABAMASDBGAiEApVF7Ijl2eaF1i0mOYmnyMgobMYpETPjS WLlNSGyK2kgCIQC4EFEfe8R2/tjIOiQyLFPgBALJ5519d0YRh0LsJkR/djANBgkq hkiG9w0BAQsFAAOCAQEAfa6OgVkv/XNdhJJXBJBztsmz9M/EgQhIq8jMGrFUvZqP xPQFlY4MHdD5uTROsrYmbVkdz8/APbQtp4Rf/Dfmr02c6S7DqZZTMmAcyZiVLu4u X5vw7S9RSsrizqIDVMF4CkBbVCXStUw9D8rwxUqle8xJzyJKyh/uDWGgsGm8pcbw DE7j0d2VqX2l+qARnWtJQn/j70AlCtuUlISSTt1ZkRrqGFv8gGBggdH96TIWDtZZ T+7NJme9aro0c95igCbYZrjJJ4OX3Pzv90tDm0c0oai68Fiv2xbMQs2d8Th+LVGa 2/VNqQBWxOOY186kj6QE4Kes/SArYEpam012rfccHw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4v2cdpeJNH05zeH2G2bg 8anAYBnR92edhmpBR+lPhGWtNW4nTAqPcg+QU5oUKAXEYxIqXQZNsvoI9pKfIEJ3 PASItBcBCRKjAclyVNWJoyDHCfs+abeHE2OvrbPTq2ILh8swlSVzmW9gnbsS7uup U1GnIlGjCdG2UIaWZ6gsKAGCKcXpQLwdoGMaVEnhvKXmdU0+JCpnduYilEIDrbVG OUfMEQmN+HOSPkiP0HZxvsBYdYsJuyaMfmIPWBmuxB1Lr451CD5Fgh0tG8aRsk5M 8sEnRv7SEv7bN/UUo3RpqlVkn+VsIArya/lVEBQc9bA4K0H7wO5IDyf2SFZep9AC WQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 383594013521066327646271504445254634624368 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-01 20:34:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-02 20:34:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shop.elle.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28654917258502958702260493877438752961368764702686023197094192890545013953051452745173295378589990264496219617280984675710752856911001674903517018305259571699809460687204433171447719679668710014764081919486171650588176566259609785673181914397137093130463713579810051883563691583090719807526282722521379424700987524106399641447223176451087292276982322968530844680144785141981201515342929251246703718595857213185737044738486099156330797027603282181219322432792771815010886745904032236466599647016630640997145772903963044846006519870202359784837866366321542841117115211337229847551555646996912024797967654224453813928537 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0dc7a4c7bcbe60d0eae40b15d7031d90d93fea87 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (647 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.bestproducts.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.bicycling.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.cosmopolitan.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.countryliving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.elle.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.elledecor.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.esquire.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.goodhousekeeping.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.housebeautiful.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.marieclaire.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.menshealth.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.oprahdaily.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.oprahmag.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.popularmechanics.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.prevention.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.roadandtrack.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.seventeen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.thefoodnetworkmag.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.thehgtvmag.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.thepioneerwoman.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.townandcountrymag.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.veranda.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.womansday.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.womenshealthmag.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.caranddriver.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.delish.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.harpersbazaar.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.runnersworld.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thehgtvmag.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e3000001775f8491370000040300473045022071b9f971560bba811d95927bb540af873601488354375d1846c7c71cb6560321022100ec852b744c5aef991d3dd7e0181c11a36ef2e2cf35e623c76772864e24ad314d0077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001775f84916e0000040300483046022100a5517b22397679a1758b498e6269f2320a1b318a444cf8d258b94d486c8ada48022100b810511f7bc476fed8c83a24322c53e00402c9e79d7d7746118742ec26447f76 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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