www.kolibri.ca
Issued by R3
About this certificate
This digital certificate with serial number 03:73:ef:fc:68:d4:08:b6:44:64:d4:f5:81:dc:9f:e7:08:0b was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.kolibri.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:73:ef:fc:68:d4:08:b6:44:64:d4:f5:81:dc:9f:e7:08:0bSerial Number (int): 300788326067159274368702622774735082555403
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 03:a5:87:19:46:0e:3c:b5:43:86:18:47:81:fb:e1:34:bd:93:9a:d3
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 63:0f:d5:65:97:7a:1f:92:94:d9:38:53:4d:b8:d8:51:c8:13:d3:5e
Fingerprint (sha256): 0b:f3:0f:7e:cc:07:43:ef:3c:89:a8:94:ba:cb:64:fd:23:ec:7b:a8:ea:5d:e6:23:93:3c:3c:0e:f1:77:df:7a
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.kolibri.ca
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.kolibri.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kolibri.ca
mail.kolibri.ca
www.kolibri.ca
mail.kolibri.ca
www.kolibri.ca
Other certificates including the domain name kolibri.ca
(limited to 100 certificates)
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
www.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
az-3cxftp.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
spamportal.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
clients.kolibri.ca
kolibri.ca
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
livicare.liviathome.com
kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
www.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
helpdesk.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
support.designkarigor.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
www.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
helpdesk.kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
support.designkarigor.com
sni247930.cloudflaressl.com
kolibri.ca
www.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
clients.kolibri.ca
kolibri.ca
helpdesk.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
www.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
az-3cxftp.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
spamportal.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
clients.kolibri.ca
kolibri.ca
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
livicare.liviathome.com
kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
www.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
helpdesk.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
support.designkarigor.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
www.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
helpdesk.kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
support.designkarigor.com
sni247930.cloudflaressl.com
kolibri.ca
www.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
clients.kolibri.ca
kolibri.ca
helpdesk.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
Certificate
The complete raw certificate details for www.kolibri.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgISA3Pv/GjUCLZEZNT1gdyf5wgLMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAyMjgwMzAyMThaFw0yMzA1MjkwMzAyMTdaMBkxFzAVBgNVBAMT Dnd3dy5rb2xpYnJpLmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA yrYIL4WBzlLg9BTZLyAaqYVHev1/DTrboOR++LVubXZ0dxmDpHlZKZkxYRcrYYe5 5+WYkeRAJ0Bn8DC025Va01HR9n0sJQuYMULS4pr9QN7rjBlgOF+nPtX1Z4+WFu7I Z0bRJlXBrMFt1QSdfUDvcx4RqPLCtzHQNALt9yw55wBFk1qlNay7/ZIpgoknOmOL Qg+bxnAGTGshFJNbddNGI1bQFoFA7kvdwi2OXJUhKdVpcxAcN9e7Q8Ar3LM39rU7 8+X4UDEETtnmu8oQQS51hl3JwGqb4HPV2yd7PrO+eqpyFd7itdDfHz7qwTPqW8T3 v1yhl7TeJnR52vlkei48QwIDAQABo4ICZTCCAmEwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBQDpYcZRg48tUOGGEeB++E0vZOa0zAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzA2BgNVHREELzAtggprb2xpYnJpLmNhgg9tYWlsLmtvbGlicmkuY2GCDnd3dy5r b2xpYnJpLmNhMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgw JgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYB BAHWeQIEAgSB9ASB8QDvAHUAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS 61IAAAGGli94+AAABAMARjBEAiB4pAHtEPnaoOF8FCv9yA10W6NThcuFFrEC1UDi /3FFYAIgdU+IzoyDo1rz6DXmUgCd4RBhvaUsqJL0VbCg6YMC+UsAdgCt9776fP8Q yIudPZwePhhqtGcpXc+xDCTKhYY069yCigAAAYaWL3mvAAAEAwBHMEUCIA3GE+Lh 793MbcIJSWizTQ7b090WaN885Q3erEVugR9rAiEA/0GWjnqztW7iV56dEJA3JXta JNjzoWoZiyEaKg0o5pcwDQYJKoZIhvcNAQELBQADggEBABATsTVKITRNLebDS2mn Vzku3QPnxCe4I/k1WJSMcWp2fYIx/5i/6wrMeebI8pEfpoPchQCUYYXKHyRDrsdZ A98Y8tJDWoGk6KfgM07cagNMdzUBDIdH84IxsPFpRp2dtSfvNrMRPLpSyarsXKFV KXZzI6JjKOTLqUXC1Kel8ZbctjloeWL2azR0da8cOuiW9o3iZLVX4zFa7zbWmIuE 6VyQh2knNzyw1sSNT1SOjj+tw2yc6UWsTYAH4njuPZO2OZIWlDySEtF+Nb0yIb3i 8rD8vw062y3VpIoE+UxgA6dxmTMVyZ2oVFj3eUS5xxZdGRcH2exR2d+Uq1mvOYln vhY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyrYIL4WBzlLg9BTZLyAa qYVHev1/DTrboOR++LVubXZ0dxmDpHlZKZkxYRcrYYe55+WYkeRAJ0Bn8DC025Va 01HR9n0sJQuYMULS4pr9QN7rjBlgOF+nPtX1Z4+WFu7IZ0bRJlXBrMFt1QSdfUDv cx4RqPLCtzHQNALt9yw55wBFk1qlNay7/ZIpgoknOmOLQg+bxnAGTGshFJNbddNG I1bQFoFA7kvdwi2OXJUhKdVpcxAcN9e7Q8Ar3LM39rU78+X4UDEETtnmu8oQQS51 hl3JwGqb4HPV2yd7PrO+eqpyFd7itdDfHz7qwTPqW8T3v1yhl7TeJnR52vlkei48 QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 300788326067159274368702622774735082555403 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-28 03:02:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-29 03:02:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.kolibri.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25589900915600342741963497483393223356655556478077231450101989929088897167827872938421281435111416010927207962279265284086302080206141219394600502014361562120308755537073582911844076170293884978778761560117357720500917788832825673023756242546896662025647113938815359908715979742313047469246441926008260756223309513383716152414459938949061128632843286261880449783935596850367949769970909499450628815015506965748375621233381667590457450169992253390443261102696424597724567666317564628258786224376682144738510677265728318076202207198061146491838597406229350323167892496758593332131944965047664844822980480585204753120323 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 03a58719460e3cb54386184781fbe134bd939ad3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kolibri.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.kolibri.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kolibri.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000186962f78f80000040300463044022078a401ed10f9daa0e17c142bfdc80d745ba35385cb8516b102d540e2ff7145600220754f88ce8c83a35af3e835e652009de11061bda52ca892f455b0a0e98302f94b007600adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a00000186962f79af000004030047304502200dc613e2e1efddcc6dc2094968b34d0edbd3dd1668df3ce50ddeac456e811f6b022100ff41968e7ab3b56ee2579e9d109037257b5a24d8f3a16a198b211a2a0d28e697 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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