www.demo.ami.com
Issued by R3
About this certificate
This digital certificate with serial number 04:28:37:c5:85:41:6e:d2:a7:38:85:d7:c3:a3:95:01:ad:b6 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.demo.ami.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:28:37:c5:85:41:6e:d2:a7:38:85:d7:c3:a3:95:01:ad:b6Serial Number (int): 362134571528872432723362792261337714109878
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e2:e6:c3:7c:08:d5:06:ab:75:a3:e7:3b:49:30:d3:78:42:eb:49:f1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 6b:ad:2e:93:3b:d4:04:a0:cf:72:06:3f:dd:bb:f1:23:02:1e:17:c1
Fingerprint (sha256): 0d:71:fc:a1:02:dd:e3:f4:3c:25:90:26:da:29:4e:a9:1b:83:99:f4:22:03:26:85:3b:2e:77:ad:fb:cb:d6:43
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.demo.ami.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.demo.ami.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.demo.ami.com
Other certificates including the domain name ami.com
(limited to 100 certificates)
ami.com
fossgit.ami.com
webmail.ami.com
testgit.ami.com
git2.ami.com
megaracdevnet.ami.com
info.ami.com
doc.ami.com
servicedesk1.adaresec.com
notary.ami.com
blog.ami.com
doc.ami.com
ami.com
www.ami.com
tickets.ec-comptech.com
testgit.ami.com
serviceportal.lbfoster.com
www.demo.ami.com
demo.ami.com
cwsupport.wefreight.com
testgit.ami.com
testgit.ami.com
blogs.ami.com
testgit.ami.com
ami.com
git3.ami.com
blog.ami.com
blog.ami.com
ami.com
git3.ami.com
megaracdevnet.ami.com
blogs.ami.com
notary.ami.com
blog.ami.com
webmail.ami.com
helpdesk.visitbarbados.org
doc.ami.com
helpdesk.anfalservices.com.sa
blogs.ami.com
*.ami.com
fossgit.ami.com
demo.ami.com
testgit.ami.com
*.ami.com
blog.ami.com
doc.ami.com
*.ami.com
ami.com
www.demo.ami.com
megaracdevnet.ami.com
*.ami.com
fossgit.ami.com
fossgit.ami.com
helpdesk.brazos.org
ami.com
servicedesk.melnor.com
blog.ami.com
megaracdevnet.ami.com
ami.com
helpdesk.visitbarbados.org
www.demo.ami.com
helpdesk.porticopm.com
www.ami.com
megaracdevnet.ami.com
ami.com
testgit.ami.com
ami.com
notary.ami.com
notary.ami.com
ami.com
demo.ami.com
clfhelpdesk.clf.uk
testgit.ami.com
megaracdevnet.ami.com
doc.ami.com
notary.ami.com
doc.ami.com
*.ami.com
demo.ami.com
www.ami.com
notary.ami.com
msg.kiwitcms.ami.com
ami.com
demo.ami.com
*.ami.com
www.ami.com
servicedesk1.adaresec.com
*.ami.com
megaracdevnet.ami.com
git3.ami.com
megaracdevnet.ami.com
www.demo.ami.com
notary.ami.com
serviceportal.ami.com
git3.ami.com
megaracdevnet.ami.com
notary.ami.com
notary.ami.com
helpdesk.porticopm.com
testgit.ami.com
fossgit.ami.com
webmail.ami.com
testgit.ami.com
git2.ami.com
megaracdevnet.ami.com
info.ami.com
doc.ami.com
servicedesk1.adaresec.com
notary.ami.com
blog.ami.com
doc.ami.com
ami.com
www.ami.com
tickets.ec-comptech.com
testgit.ami.com
serviceportal.lbfoster.com
www.demo.ami.com
demo.ami.com
cwsupport.wefreight.com
testgit.ami.com
testgit.ami.com
blogs.ami.com
testgit.ami.com
ami.com
git3.ami.com
blog.ami.com
blog.ami.com
ami.com
git3.ami.com
megaracdevnet.ami.com
blogs.ami.com
notary.ami.com
blog.ami.com
webmail.ami.com
helpdesk.visitbarbados.org
doc.ami.com
helpdesk.anfalservices.com.sa
blogs.ami.com
*.ami.com
fossgit.ami.com
demo.ami.com
testgit.ami.com
*.ami.com
blog.ami.com
doc.ami.com
*.ami.com
ami.com
www.demo.ami.com
megaracdevnet.ami.com
*.ami.com
fossgit.ami.com
fossgit.ami.com
helpdesk.brazos.org
ami.com
servicedesk.melnor.com
blog.ami.com
megaracdevnet.ami.com
ami.com
helpdesk.visitbarbados.org
www.demo.ami.com
helpdesk.porticopm.com
www.ami.com
megaracdevnet.ami.com
ami.com
testgit.ami.com
ami.com
notary.ami.com
notary.ami.com
ami.com
demo.ami.com
clfhelpdesk.clf.uk
testgit.ami.com
megaracdevnet.ami.com
doc.ami.com
notary.ami.com
doc.ami.com
*.ami.com
demo.ami.com
www.ami.com
notary.ami.com
msg.kiwitcms.ami.com
ami.com
demo.ami.com
*.ami.com
www.ami.com
servicedesk1.adaresec.com
*.ami.com
megaracdevnet.ami.com
git3.ami.com
megaracdevnet.ami.com
www.demo.ami.com
notary.ami.com
serviceportal.ami.com
git3.ami.com
megaracdevnet.ami.com
notary.ami.com
notary.ami.com
helpdesk.porticopm.com
testgit.ami.com
Certificate
The complete raw certificate details for www.demo.ami.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGJzCCBQ+gAwIBAgISBCg3xYVBbtKnOIXXw6OVAa22MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMjAzMDUxODM2MjVaFw0yMjA2MDMxODM2MjRaMBsxGTAXBgNVBAMT EHd3dy5kZW1vLmFtaS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC AQDOSs5SMttFSMTBNoH8gLBGE1LndQiDEn1v9Omn4iy0I0dGuQ2TrNKJ6Ihy7lqs 5jq+LGZ+lk7K0XOgXKdeJHNop45uHcHyuBtmvBlTscHAtWDFAyAgh2Wz5pVkL9mq 1mgZ4hCtj+RChGhxQtLCB1NAXdQv14rdt8n+s6IWdGSYB8o8wONxUYwMNwSmK8QC /wEu5S0ilzIcWP6ck6Gg/s+tYD0y/OJtWkBZ6m2OOicbLDIE7wvpvR0MtRK6AP+U oBOcErKsQ/448BNt0J1dnl36gmxopN7EqMrTGtWrFfcZ0tF8eRmFGtOc5yQyiXZF n/JSKCeUxlCZN8iwZMK0zo2Nh8FFP/G5lEz+uZpLeBGuVleGL41lct0hzg9r+J+y RQgOYq/KPFjqQ5MGJvPFexV5cvwmdrSWODYqj5CnDcanV11DokVHotAzTZtVIqZ3 DuZALSU8jZReUKtWGOii0kIXn5gkDAPgowIeNuZTRUaHcJj43YHfEWMO5am+u7YE /ke06jKCfd9D3EBGvJBkDOFD2fEwg1v7nNVlcz88/9PyPTym/HTwJzXCUsrFv1AK iPERaVartImA00rcIzw0V3Tpt4OiAZBGf9hyUl0oA8wlueLo2aJ4RRlGhRQM0OYg BItE/49FONoZePqyRYDWaB5owAQsiCoW1qMgtji7HRFJAQIDAQABo4ICTDCCAkgw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTi5sN8CNUGq3Wj5ztJMNN4QutJ8TAfBgNV HSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYI KwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0 cDovL3IzLmkubGVuY3Iub3JnLzAbBgNVHREEFDASghB3d3cuZGVtby5hbWkuY29t MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB 9gSB8wDxAHcA36Veq2iCTx9sre64X04+WurNohKkal6OOxLAIERcKnMAAAF/W5VN SAAABAMASDBGAiEA99CU8Kk2RK8V7a8m+936cmn2mUK3p3pM+0dBgGh5qRkCIQCm SmiHpFEZ8yA6KJZHFbV9l9Ed+Ghncq8btZPmO18HkQB2AEalVet1+pEgMLWiiWn0 830RLEF0vv1JuIWr8vxw/m1HAAABf1uVTW0AAAQDAEcwRQIhAMb0Dt3DZeX+5SHQ pBX9NGDEYWbgGJ1iJmpl2uRYfKKOAiB/LruW2q3llGnw0rQnu04DOy4iUoo4vOt3 gXTPUe28/TANBgkqhkiG9w0BAQsFAAOCAQEAifIkplW1k6q24nmfD9tP6F2vcAGb wI1KQkeBLasQqSPnCsEOwlyjdH+xP2gy+G3pzid5NXy0seJhtfNmrUNIzcx43D/t p8cAZMHSjxAyuqwQfd5iV7jsPy4oo6VnB5HU3f823iVrxcPbOxZlQovzime9E87R 4pguQuhJB2qHATqqxtyNFfUKn5ldSbHPXlC2qkcpullL0HOuXsgEhmVzMufyZarN Y5EYlB77yzf/V+eep06p+qIGdPDq/2TgEZjkjXOMX5p84ZRQIcvfNAemHNlLZlRl S7SN9drM1ph7aIUUmlz5ydlwNbMooYJTZo9iiSYoNC7UMi9Qn2Pa3fWxvQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzkrOUjLbRUjEwTaB/ICw RhNS53UIgxJ9b/Tpp+IstCNHRrkNk6zSieiIcu5arOY6vixmfpZOytFzoFynXiRz aKeObh3B8rgbZrwZU7HBwLVgxQMgIIdls+aVZC/ZqtZoGeIQrY/kQoRocULSwgdT QF3UL9eK3bfJ/rOiFnRkmAfKPMDjcVGMDDcEpivEAv8BLuUtIpcyHFj+nJOhoP7P rWA9MvzibVpAWeptjjonGywyBO8L6b0dDLUSugD/lKATnBKyrEP+OPATbdCdXZ5d +oJsaKTexKjK0xrVqxX3GdLRfHkZhRrTnOckMol2RZ/yUignlMZQmTfIsGTCtM6N jYfBRT/xuZRM/rmaS3gRrlZXhi+NZXLdIc4Pa/ifskUIDmKvyjxY6kOTBibzxXsV eXL8Jna0ljg2Ko+Qpw3Gp1ddQ6JFR6LQM02bVSKmdw7mQC0lPI2UXlCrVhjootJC F5+YJAwD4KMCHjbmU0VGh3CY+N2B3xFjDuWpvru2BP5HtOoygn3fQ9xARryQZAzh Q9nxMINb+5zVZXM/PP/T8j08pvx08Cc1wlLKxb9QCojxEWlWq7SJgNNK3CM8NFd0 6beDogGQRn/YclJdKAPMJbni6NmieEUZRoUUDNDmIASLRP+PRTjaGXj6skWA1mge aMAELIgqFtajILY4ux0RSQECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 362134571528872432723362792261337714109878 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-05 18:36:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-03 18:36:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.demo.ami.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 841598793701681931812795081494621180494992006211105524136494692777464129220528340965552985167521911197418898247915841052547733225754506655608150031846787255584224883519253344500543575546801567870782945444057154630751753185522068473874294694634656653485080742650971908424346054798745386855053445721404948366696292304973955877900734564359842827224303155831789196641291129770201475287929165426386100344595720818590232534214845797473576556529081103257928989172778000110346807888475995003210961840415911295348319034313584490439126137400688654412828597319481612360146426689140555960543232434163451669885758972612590643523963233261613779309317476814289473384331992954950036363387521806154436556697445734103966234572646404403910661120227157069504453392889511353365773368956063968389361441913686095882134090212880079054207928341929634498423543380298832825600331122957905037087833495028976339183121741186174554940846111597885241424583587827669901926131873879326879749196744883421710998915045474429675215230485710758256202362174105827639610720167639464849807278910599923949237991157465191364916619804328919966852136829302328965485654067580843670626696769961088970128595650670511576778091031946058215883813939159355706959120415311831787170253057 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e2e6c37c08d506ab75a3e73b4930d37842eb49f1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.demo.ami.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700dfa55eab68824f1f6cadeeb85f4e3e5aeacda212a46a5e8e3b12c020445c2a730000017f5b954d480000040300483046022100f7d094f0a93644af15edaf26fbddfa7269f69942b7a77a4cfb4741806879a919022100a64a6887a45119f3203a28964715b57d97d11df8686772af1bb593e63b5f079100760046a555eb75fa912030b5a28969f4f37d112c4174befd49b885abf2fc70fe6d470000017f5b954d6d0000040300473045022100c6f40eddc365e5fee521d0a415fd3460c46166e0189d62266a65dae4587ca28e02207f2ebb96daade59469f0d2b427bb4e033b2e22528a38bceb778174cf51edbcfd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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