4h.ansci.cornell.edu
Issued by R3
About this certificate
This digital certificate with serial number 04:2b:84:fe:f9:cb:78:a5:95:3d:5b:4f:ee:a3:b4:0b:c2:3f was issued on by Let's Encrypt.
With 66 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=4h.ansci.cornell.edu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:2b:84:fe:f9:cb:78:a5:95:3d:5b:4f:ee:a3:b4:0b:c2:3fSerial Number (int): 363258067509927663935226486400178000216639
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: fa:a7:30:22:60:b8:bb:18:b0:b5:6f:68:a3:cc:39:72:13:cb:22:14
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 91:79:b5:30:2b:1a:d4:3f:f9:e1:79:b7:16:f6:04:ff:70:24:64:68
Fingerprint (sha256): 0b:d1:9d:b0:5a:c2:5e:28:11:b8:e3:de:7f:b6:0c:cf:20:8b:cb:6b:59:a9:9c:bf:24:1c:24:46:f6:2b:e5:91
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate 4h.ansci.cornell.edu
66
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for 4h.ansci.cornell.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
4h.ansci.cornell.edu
aadcawarenessacademy.com
agents.fridayhealthplans.com
astralpower.com
beyondbreakthrough.caltech.edu
blog.francistuttle.edu
breeding.rutgers.edu
ca.devca.eatsmart.net
cf-ns4c-cms.s4c.cymru
clinicaltrials.targetovariancancer.org.uk
colektor.gsm.cornell.edu
community.levelaccess.com
confiscated.sites.ps-pantheon.com
countweb.med.harvard.edu
dev-mtc-www.metrotech.edu
dev.mville.edu
dev.raflearning.org
developerportal.northeastern.edu
digitalscholarship.lsa.umich.edu
domaintest.cals.cornell.edu
domaintest.cce.cornell.edu
domino.gsm.cornell.edu
ftp.construct-a-lead.com
ftp.schmittformissouri.com
ftp.to-engineers.com
h20.stanford.edu
healthy-aging.advanceweb.com
id.multidev.gsm.cornell.edu
info.francistuttle.edu
legacy.centeronaddiction.org
lucky.gsm.cornell.edu
menaconstruction.meed.com
messaging-dev.stanford.edu
mnr.umbro.com
multidev.gsm.cornell.edu
nwkevents.accessintel.com
old.atr.org
ottomanhistorians.fas.harvard.edu
pantheon01.slac.stanford.edu
pantheon02.slac.stanford.edu
pantheon04.slac.stanford.edu
player.krtv.com
preprod.entomology.cals.cornell.edu
preprod.nyfoodsafety.cals.cornell.edu
preprod.producesafetyalliance.cornell.edu
preprod.wri.cals.cornell.edu
profile-updates-agreement.healthgrades.com
redesign.umbro.com
search.nscee.edu
services.natera.com
sexual-respect-md.stanford.edu
smaxwin.advanceweb.com
test.environment.cornell.edu
test.rbwm.gov.uk
testparks.indy.gov
vonza.gbci.org
vonza383.gbci.org
vonzaplay.gbci.org
www-stage.cs.sunysb.edu
www.catalyst.harvard.edu
www.china.umd.edu
www.orientation.smhs.gwu.edu
www.ottomanhistorians.fas.harvard.edu
www.raflearning.org
www.test1.csiamerica.com
wwwnews.ucf.edu
aadcawarenessacademy.com
agents.fridayhealthplans.com
astralpower.com
beyondbreakthrough.caltech.edu
blog.francistuttle.edu
breeding.rutgers.edu
ca.devca.eatsmart.net
cf-ns4c-cms.s4c.cymru
clinicaltrials.targetovariancancer.org.uk
colektor.gsm.cornell.edu
community.levelaccess.com
confiscated.sites.ps-pantheon.com
countweb.med.harvard.edu
dev-mtc-www.metrotech.edu
dev.mville.edu
dev.raflearning.org
developerportal.northeastern.edu
digitalscholarship.lsa.umich.edu
domaintest.cals.cornell.edu
domaintest.cce.cornell.edu
domino.gsm.cornell.edu
ftp.construct-a-lead.com
ftp.schmittformissouri.com
ftp.to-engineers.com
h20.stanford.edu
healthy-aging.advanceweb.com
id.multidev.gsm.cornell.edu
info.francistuttle.edu
legacy.centeronaddiction.org
lucky.gsm.cornell.edu
menaconstruction.meed.com
messaging-dev.stanford.edu
mnr.umbro.com
multidev.gsm.cornell.edu
nwkevents.accessintel.com
old.atr.org
ottomanhistorians.fas.harvard.edu
pantheon01.slac.stanford.edu
pantheon02.slac.stanford.edu
pantheon04.slac.stanford.edu
player.krtv.com
preprod.entomology.cals.cornell.edu
preprod.nyfoodsafety.cals.cornell.edu
preprod.producesafetyalliance.cornell.edu
preprod.wri.cals.cornell.edu
profile-updates-agreement.healthgrades.com
redesign.umbro.com
search.nscee.edu
services.natera.com
sexual-respect-md.stanford.edu
smaxwin.advanceweb.com
test.environment.cornell.edu
test.rbwm.gov.uk
testparks.indy.gov
vonza.gbci.org
vonza383.gbci.org
vonzaplay.gbci.org
www-stage.cs.sunysb.edu
www.catalyst.harvard.edu
www.china.umd.edu
www.orientation.smhs.gwu.edu
www.ottomanhistorians.fas.harvard.edu
www.raflearning.org
www.test1.csiamerica.com
wwwnews.ucf.edu
Other certificates including the domain name cornell.edu
(limited to 100 certificates)
usda-int.library.cornell.edu
island.cnf.cornell.edu
dbme.dyson.cornell.edu
www.llmoverview.law.cornell.edu
dfbs.cornell.edu
engr-cms-multi-ssl.cit.cornell.edu
staticweb.ssit.scl.cornell.edu
atstaticapps.cit.cornell.edu
ubsc.cornell.edu
newstudents.cornell.edu
test-web-lws.edu.help
www.nys4h.cce.cornell.edu
5769623379116032-fe2.pantheonsite.io
carpepm.almonds.com
5693048138760192-fe2.pantheonsite.io
*.givegab.com
dns-vetting1c.map.fastly.net
5686812383117312-fe3.pantheonsite.io
allianceforscience.cornell.edu
scholarship.sha.cornell.edu
vertere.ehs.cornell.edu
llmoverview.law.cornell.edu
5764748591235072-fe2.pantheonsite.io
5747286126624768-fe3.pantheonsite.io
manage.esign.cornell.edu
fs-lb-1.fs.cornell.edu
it.uahs.arizona.edu
www.pryde.bctr.cornell.edu
cluster3.technolutions.net
lingual.phonetics.cornell.edu
apl.cs.cornell.edu
annualreport.cals.cornell.edu
crane.chem.cornell.edu
badwall.cac.cornell.edu
resumebook.acsu.cornell.edu
scabusa.ag.cornell.edu
5727217287954432-fe1.pantheonsite.io
3cpg.cornell.edu
ucdc.edu
cluster3.technolutions.net
classcouncil.cornell.edu
5693048138760192-fe2.pantheonsite.io
5202656289095680-fe4.pantheonsite.io
kanbur.aem.cornell.edu
cals.cornell.edu
5691420614590464-fe3.pantheonsite.io
aws-110-042.internal.library.cornell.edu
5709068098338816-fe3.pantheonsite.io
5636647567753216-fe1.pantheonsite.io
hdil.human.cornell.edu
nartc.fcm.arizona.edu
sf-lib-lms-018.serverfarm.cornell.edu
legacy.ece.cornell.edu
verne.soc.cornell.edu
blog.johnson.cornell.edu
5730774057746432-fe4.pantheonsite.io
5654672874405888-fe3.pantheonsite.io
avedon.med.cornell.edu
calendar.sdzsafaripark.org
5763210187636736-fe2.pantheonsite.io
engineering.cornell.edu
s001.med.cornell.edu
puppet.coecis.cornell.edu
sullivan.cce.cornell.edu
coffeabase.org
5707324073181184-fe2.pantheonsite.io
5700866052980736-fe2.pantheonsite.io
bearinmind.eclipsco.org
gunalert02.ornith.cornell.edu
3fadmin.govdelivery.com
d2.shared.global.fastly.net
tier.dyson.cornell.edu
newfit.cit.cornell.edu
5658962204557312-fe4.pantheonsite.io
5736907271045120-fe1.pantheonsite.io
library.cornell.edu
pryde.bctr.cornell.edu
lassp.cornell.edu
newsletter.research.cornell.edu
5686536431468544-fe1.pantheonsite.io
streetfilms.org
5763210187636736-fe2.pantheonsite.io
5659822271758336-fe3.pantheonsite.io
5654961308303360-fe2.pantheonsite.io
charon.ece.cornell.edu
www.cmm.cornell.edu
delib-cal.qatar-weill.cornell.edu
urmc.cs.cornell.edu
calscomlabs-multi-ssl.cit.cornell.edu
webeditor.dyson.cornell.edu
5769623379116032-fe2.pantheonsite.io
dns-vetting1g.map.fastly.net
5736907271045120-fe1.pantheonsite.io
5740240702537728-fe2.pantheonsite.io
hotelie.sha.cornell.edu
courses1.cit.cornell.edu
5637369860456448-fe1.pantheonsite.io
www.systems.cs.cornell.edu
forms-dev.serverfarm.cornell.edu
werdle.via.cornell.edu
island.cnf.cornell.edu
dbme.dyson.cornell.edu
www.llmoverview.law.cornell.edu
dfbs.cornell.edu
engr-cms-multi-ssl.cit.cornell.edu
staticweb.ssit.scl.cornell.edu
atstaticapps.cit.cornell.edu
ubsc.cornell.edu
newstudents.cornell.edu
test-web-lws.edu.help
www.nys4h.cce.cornell.edu
5769623379116032-fe2.pantheonsite.io
carpepm.almonds.com
5693048138760192-fe2.pantheonsite.io
*.givegab.com
dns-vetting1c.map.fastly.net
5686812383117312-fe3.pantheonsite.io
allianceforscience.cornell.edu
scholarship.sha.cornell.edu
vertere.ehs.cornell.edu
llmoverview.law.cornell.edu
5764748591235072-fe2.pantheonsite.io
5747286126624768-fe3.pantheonsite.io
manage.esign.cornell.edu
fs-lb-1.fs.cornell.edu
it.uahs.arizona.edu
www.pryde.bctr.cornell.edu
cluster3.technolutions.net
lingual.phonetics.cornell.edu
apl.cs.cornell.edu
annualreport.cals.cornell.edu
crane.chem.cornell.edu
badwall.cac.cornell.edu
resumebook.acsu.cornell.edu
scabusa.ag.cornell.edu
5727217287954432-fe1.pantheonsite.io
3cpg.cornell.edu
ucdc.edu
cluster3.technolutions.net
classcouncil.cornell.edu
5693048138760192-fe2.pantheonsite.io
5202656289095680-fe4.pantheonsite.io
kanbur.aem.cornell.edu
cals.cornell.edu
5691420614590464-fe3.pantheonsite.io
aws-110-042.internal.library.cornell.edu
5709068098338816-fe3.pantheonsite.io
5636647567753216-fe1.pantheonsite.io
hdil.human.cornell.edu
nartc.fcm.arizona.edu
sf-lib-lms-018.serverfarm.cornell.edu
legacy.ece.cornell.edu
verne.soc.cornell.edu
blog.johnson.cornell.edu
5730774057746432-fe4.pantheonsite.io
5654672874405888-fe3.pantheonsite.io
avedon.med.cornell.edu
calendar.sdzsafaripark.org
5763210187636736-fe2.pantheonsite.io
engineering.cornell.edu
s001.med.cornell.edu
puppet.coecis.cornell.edu
sullivan.cce.cornell.edu
coffeabase.org
5707324073181184-fe2.pantheonsite.io
5700866052980736-fe2.pantheonsite.io
bearinmind.eclipsco.org
gunalert02.ornith.cornell.edu
3fadmin.govdelivery.com
d2.shared.global.fastly.net
tier.dyson.cornell.edu
newfit.cit.cornell.edu
5658962204557312-fe4.pantheonsite.io
5736907271045120-fe1.pantheonsite.io
library.cornell.edu
pryde.bctr.cornell.edu
lassp.cornell.edu
newsletter.research.cornell.edu
5686536431468544-fe1.pantheonsite.io
streetfilms.org
5763210187636736-fe2.pantheonsite.io
5659822271758336-fe3.pantheonsite.io
5654961308303360-fe2.pantheonsite.io
charon.ece.cornell.edu
www.cmm.cornell.edu
delib-cal.qatar-weill.cornell.edu
urmc.cs.cornell.edu
calscomlabs-multi-ssl.cit.cornell.edu
webeditor.dyson.cornell.edu
5769623379116032-fe2.pantheonsite.io
dns-vetting1g.map.fastly.net
5736907271045120-fe1.pantheonsite.io
5740240702537728-fe2.pantheonsite.io
hotelie.sha.cornell.edu
courses1.cit.cornell.edu
5637369860456448-fe1.pantheonsite.io
www.systems.cs.cornell.edu
forms-dev.serverfarm.cornell.edu
werdle.via.cornell.edu
Certificate
The complete raw certificate details for 4h.ansci.cornell.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIILpzCCCo+gAwIBAgISBCuE/vnLeKWVPVtP7qO0C8I/MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDUxMzM4NDVaFw0yNDA3MDQxMzM4NDRaMB8xHTAbBgNVBAMT FDRoLmFuc2NpLmNvcm5lbGwuZWR1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAwHSnemv0wZzcXAgMkBQXztwjNHFrHpIs5axrzzrdlw7T+GZAQLPiUvSZ mF3ScRQ1Ni77M7wvvj8WKgEm6kmkIGsqEr1NwVO/9M+bfL4ePy1ywV87Wx7ZOVVK 4JWJMqctOtWZynJz3jX67Nda0+9B++4/N4TAaLpUnxu83mMaTL+l/8yYin0iItxx Z3YRMvL8oMO9BWqFighCSszfIpRufGHjpEeodJZe7aLi7DcePvwyXZWi/al1YQeC dFkrpkcgk8myhP/APzQjk3bdKAlwKQDdvQR4Y3b+bMJVibDWVrVqjLz+ybpaAJiO jKOmp9NDC6LZPJujVsE+mvYR8y2ZVQIDAQABo4IIyDCCCMQwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBT6pzAiYLi7GLC1b2ijzDlyE8siFDAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzCCBtAGA1UdEQSCBscwggbDghQ0aC5hbnNjaS5jb3JuZWxsLmVkdYIY YWFkY2F3YXJlbmVzc2FjYWRlbXkuY29tghxhZ2VudHMuZnJpZGF5aGVhbHRocGxh bnMuY29tgg9hc3RyYWxwb3dlci5jb22CHmJleW9uZGJyZWFrdGhyb3VnaC5jYWx0 ZWNoLmVkdYIWYmxvZy5mcmFuY2lzdHV0dGxlLmVkdYIUYnJlZWRpbmcucnV0Z2Vy cy5lZHWCFWNhLmRldmNhLmVhdHNtYXJ0Lm5ldIIVY2YtbnM0Yy1jbXMuczRjLmN5 bXJ1giljbGluaWNhbHRyaWFscy50YXJnZXRvdmFyaWFuY2FuY2VyLm9yZy51a4IY Y29sZWt0b3IuZ3NtLmNvcm5lbGwuZWR1ghljb21tdW5pdHkubGV2ZWxhY2Nlc3Mu Y29tgiFjb25maXNjYXRlZC5zaXRlcy5wcy1wYW50aGVvbi5jb22CGGNvdW50d2Vi Lm1lZC5oYXJ2YXJkLmVkdYIZZGV2LW10Yy13d3cubWV0cm90ZWNoLmVkdYIOZGV2 Lm12aWxsZS5lZHWCE2Rldi5yYWZsZWFybmluZy5vcmeCIGRldmVsb3BlcnBvcnRh bC5ub3J0aGVhc3Rlcm4uZWR1giBkaWdpdGFsc2Nob2xhcnNoaXAubHNhLnVtaWNo LmVkdYIbZG9tYWludGVzdC5jYWxzLmNvcm5lbGwuZWR1ghpkb21haW50ZXN0LmNj ZS5jb3JuZWxsLmVkdYIWZG9taW5vLmdzbS5jb3JuZWxsLmVkdYIYZnRwLmNvbnN0 cnVjdC1hLWxlYWQuY29tghpmdHAuc2NobWl0dGZvcm1pc3NvdXJpLmNvbYIUZnRw LnRvLWVuZ2luZWVycy5jb22CEGgyMC5zdGFuZm9yZC5lZHWCHGhlYWx0aHktYWdp bmcuYWR2YW5jZXdlYi5jb22CG2lkLm11bHRpZGV2LmdzbS5jb3JuZWxsLmVkdYIW aW5mby5mcmFuY2lzdHV0dGxlLmVkdYIcbGVnYWN5LmNlbnRlcm9uYWRkaWN0aW9u Lm9yZ4IVbHVja3kuZ3NtLmNvcm5lbGwuZWR1ghltZW5hY29uc3RydWN0aW9uLm1l ZWQuY29tghptZXNzYWdpbmctZGV2LnN0YW5mb3JkLmVkdYINbW5yLnVtYnJvLmNv bYIYbXVsdGlkZXYuZ3NtLmNvcm5lbGwuZWR1ghlud2tldmVudHMuYWNjZXNzaW50 ZWwuY29tggtvbGQuYXRyLm9yZ4Ihb3R0b21hbmhpc3RvcmlhbnMuZmFzLmhhcnZh cmQuZWR1ghxwYW50aGVvbjAxLnNsYWMuc3RhbmZvcmQuZWR1ghxwYW50aGVvbjAy LnNsYWMuc3RhbmZvcmQuZWR1ghxwYW50aGVvbjA0LnNsYWMuc3RhbmZvcmQuZWR1 gg9wbGF5ZXIua3J0di5jb22CI3ByZXByb2QuZW50b21vbG9neS5jYWxzLmNvcm5l bGwuZWR1giVwcmVwcm9kLm55Zm9vZHNhZmV0eS5jYWxzLmNvcm5lbGwuZWR1gilw cmVwcm9kLnByb2R1Y2VzYWZldHlhbGxpYW5jZS5jb3JuZWxsLmVkdYIccHJlcHJv ZC53cmkuY2Fscy5jb3JuZWxsLmVkdYIqcHJvZmlsZS11cGRhdGVzLWFncmVlbWVu dC5oZWFsdGhncmFkZXMuY29tghJyZWRlc2lnbi51bWJyby5jb22CEHNlYXJjaC5u c2NlZS5lZHWCE3NlcnZpY2VzLm5hdGVyYS5jb22CHnNleHVhbC1yZXNwZWN0LW1k LnN0YW5mb3JkLmVkdYIWc21heHdpbi5hZHZhbmNld2ViLmNvbYIcdGVzdC5lbnZp cm9ubWVudC5jb3JuZWxsLmVkdYIQdGVzdC5yYndtLmdvdi51a4ISdGVzdHBhcmtz LmluZHkuZ292gg52b256YS5nYmNpLm9yZ4IRdm9uemEzODMuZ2JjaS5vcmeCEnZv bnphcGxheS5nYmNpLm9yZ4IXd3d3LXN0YWdlLmNzLnN1bnlzYi5lZHWCGHd3dy5j YXRhbHlzdC5oYXJ2YXJkLmVkdYIRd3d3LmNoaW5hLnVtZC5lZHWCHHd3dy5vcmll bnRhdGlvbi5zbWhzLmd3dS5lZHWCJXd3dy5vdHRvbWFuaGlzdG9yaWFucy5mYXMu aGFydmFyZC5lZHWCE3d3dy5yYWZsZWFybmluZy5vcmeCGHd3dy50ZXN0MS5jc2lh bWVyaWNhLmNvbYIPd3d3bmV3cy51Y2YuZWR1MBMGA1UdIAQMMAowCAYGZ4EMAQIB MIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAPxdLT9ciR1iUHWUchL4NEu2QN38f hWrrwb8ohez4ZG4AAAGOrrKhdQAABAMARzBFAiA9Iz8XQQrFk0W7Qzh4nQNsqlt6 cQ0Cs77OXBdOvAwnMgIhAMFLZUjt/+TKlgvdwi4DY4rFy3ftONKYpCOGT5awqyvX AHUASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGOrrKhcAAABAMA RjBEAiAsaxA3gb/n6uBrlBC3DWpeSXAw2odIZ3zL8iDyio6FGgIgNj9Pdw6NzgOs PuDjQxt/0BsIeVeGN5U2v1POxTZgw14wDQYJKoZIhvcNAQELBQADggEBADW9gneT vNVn1HvwtPEsOv3XWJSa1g485pZskwKN0DRmLpxv4GbaujRnhk8ctYQ9Pp4gP1sz UgPljzJcxKrpsdfcwHB9UXc02gtc0a/zOYhCxSJ5Iy9zIlop7JfgeYkPjOL20Fgl 3qf/5+iWUV4J0pxs5+bz6c87cWHtTtFTcGvSJNunqNdzRYuAIScDVRLXho7rToAK Zm3fQ5QQelsI2/tk+ZanbMZveEx0+xYYYrHBpPbY2qg3itcjojC4VuDRR7CnhPfN 4yun7MqRQcuKcq97MYlONNSWfrBA0GFsFGIlEBr1hscKPmbu1hjI3vFbkcmKcaC2 brfNkZIP6naQNSk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHSnemv0wZzcXAgMkBQX ztwjNHFrHpIs5axrzzrdlw7T+GZAQLPiUvSZmF3ScRQ1Ni77M7wvvj8WKgEm6kmk IGsqEr1NwVO/9M+bfL4ePy1ywV87Wx7ZOVVK4JWJMqctOtWZynJz3jX67Nda0+9B ++4/N4TAaLpUnxu83mMaTL+l/8yYin0iItxxZ3YRMvL8oMO9BWqFighCSszfIpRu fGHjpEeodJZe7aLi7DcePvwyXZWi/al1YQeCdFkrpkcgk8myhP/APzQjk3bdKAlw KQDdvQR4Y3b+bMJVibDWVrVqjLz+ybpaAJiOjKOmp9NDC6LZPJujVsE+mvYR8y2Z VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 363258067509927663935226486400178000216639 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-05 13:38:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-04 13:38:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '4h.ansci.cornell.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24295278889261962340330570593076765092564594026629510040566849443941721212705222905469227342749655760761925628146467776896918161669177237506061638055976839317974540229085566909601290432792766688540743857041618507082302908209321494362376641574366690514136936988276436757394515726000349835912320682069511736058985263380188984941851626522348036976567257123937402752130277851931257557691396509910741392947845349707974538616547869499133806197294376341097227039876415788275764051935080580783290065738507278734728703160147978353048962982659390140744073959855669537306275821116832669307766091573181749448001568724078979553621 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) faa7302260b8bb18b0b56f68a3cc397213cb2214 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1735 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '4h.ansci.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aadcawarenessacademy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'agents.fridayhealthplans.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'astralpower.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'beyondbreakthrough.caltech.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.francistuttle.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'breeding.rutgers.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ca.devca.eatsmart.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cf-ns4c-cms.s4c.cymru' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clinicaltrials.targetovariancancer.org.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'colektor.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'community.levelaccess.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'confiscated.sites.ps-pantheon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'countweb.med.harvard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-mtc-www.metrotech.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.mville.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.raflearning.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'developerportal.northeastern.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digitalscholarship.lsa.umich.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domaintest.cals.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domaintest.cce.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domino.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ftp.construct-a-lead.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ftp.schmittformissouri.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ftp.to-engineers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'h20.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthy-aging.advanceweb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'id.multidev.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'info.francistuttle.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legacy.centeronaddiction.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lucky.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'menaconstruction.meed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'messaging-dev.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mnr.umbro.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'multidev.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nwkevents.accessintel.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'old.atr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ottomanhistorians.fas.harvard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pantheon01.slac.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pantheon02.slac.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pantheon04.slac.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'player.krtv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.entomology.cals.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.nyfoodsafety.cals.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.producesafetyalliance.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.wri.cals.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'profile-updates-agreement.healthgrades.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redesign.umbro.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'search.nscee.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'services.natera.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sexual-respect-md.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smaxwin.advanceweb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.environment.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.rbwm.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'testparks.indy.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vonza.gbci.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vonza383.gbci.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vonzaplay.gbci.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-stage.cs.sunysb.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.catalyst.harvard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.china.umd.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.orientation.smhs.gwu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ottomanhistorians.fas.harvard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.raflearning.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.test1.csiamerica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwwnews.ucf.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018eaeb2a175000004030047304502203d233f17410ac59345bb4338789d036caa5b7a710d02b3bece5c174ebc0c2732022100c14b6548edffe4ca960bddc22e03638ac5cb77ed38d298a423864f96b0ab2bd700750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018eaeb2a170000004030046304402202c6b103781bfe7eae06b9410b70d6a5e497030da8748677ccbf220f28a8e851a0220363f4f770e8dce03ac3ee0e3431b7fd01b08795786379536bf53cec53660c35e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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