www.thehytte.com
Issued by R3
About this certificate
This digital certificate with serial number 04:06:63:51:e6:17:77:08:01:93:f9:43:44:23:f3:1a:8b:20 was issued on by Let's Encrypt.
With 24 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.thehytte.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:06:63:51:e6:17:77:08:01:93:f9:43:44:23:f3:1a:8b:20Serial Number (int): 350622856743008160332470806912987658095392
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a8:d4:03:87:2e:8d:04:96:dd:b8:8e:70:b4:a7:6b:a3:96:b4:81:39
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 83:bf:7f:f6:4e:3f:30:c8:2d:7a:9b:83:3b:6f:20:e3:ab:77:ee:67
Fingerprint (sha256): 0e:c5:82:a0:42:af:7b:4a:52:b3:00:64:6f:40:e2:4a:a1:71:e0:c6:d5:0d:25:c7:08:91:9d:85:f6:ac:79:b0
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.thehytte.com
24
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.thehytte.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cpanel.iangclark.net
cpcalendars.iangclark.net
cpcontacts.iangclark.net
functional-webdesign.co.uk
functional-webdesign.iangclark.net
iangclark.net
mail.iangclark.net
practical-security.co.uk
practical-security.iangclark.net
thehytte.com
thehytte.iangclark.net
thereadingroomshaydonbridge.co.uk
thereadingroomshaydonbridge.iangclark.net
webdisk.iangclark.net
webmail.iangclark.net
www.functional-webdesign.co.uk
www.functional-webdesign.iangclark.net
www.iangclark.net
www.practical-security.co.uk
www.practical-security.iangclark.net
www.thehytte.com
www.thehytte.iangclark.net
www.thereadingroomshaydonbridge.co.uk
www.thereadingroomshaydonbridge.iangclark.net
cpcalendars.iangclark.net
cpcontacts.iangclark.net
functional-webdesign.co.uk
functional-webdesign.iangclark.net
iangclark.net
mail.iangclark.net
practical-security.co.uk
practical-security.iangclark.net
thehytte.com
thehytte.iangclark.net
thereadingroomshaydonbridge.co.uk
thereadingroomshaydonbridge.iangclark.net
webdisk.iangclark.net
webmail.iangclark.net
www.functional-webdesign.co.uk
www.functional-webdesign.iangclark.net
www.iangclark.net
www.practical-security.co.uk
www.practical-security.iangclark.net
www.thehytte.com
www.thehytte.iangclark.net
www.thereadingroomshaydonbridge.co.uk
www.thereadingroomshaydonbridge.iangclark.net
Other certificates including the domain name thehytte.com
(limited to 100 certificates)
thehytte.com
www.thehytte.com
cpanel.iangclark.net
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
mail.iangclark.net
thehytte.com
thereadingroomshaydonbridge.iangclark.net
thehytte.com
iangclark.net
www.iangclark.net
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
webmail.iangclark.net
www.thehytte.com
cpanel.iangclark.net
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
mail.iangclark.net
thehytte.com
thereadingroomshaydonbridge.iangclark.net
thehytte.com
iangclark.net
www.iangclark.net
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
thehytte.com
webmail.iangclark.net
Certificate
The complete raw certificate details for www.thehytte.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHjzCCBnegAwIBAgISBAZjUeYXdwgBk/lDRCPzGosgMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMjEyMDUwMDhaFw0yNDA1MjEyMDUwMDdaMBsxGTAXBgNVBAMT EHd3dy50aGVoeXR0ZS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjbz8CHzN5D5vA6Oidh6zvJVXAKMey7iBtQEq34KY0GLipCaJIqoUcadkeWpdD St8IGpo2zs0A/VZrBn5wFtRTUteeCU0fI1T8IF2ZQJCFs+68r91RZyv7kIRnK/UH OrHaCW8Q/jmSVfAA1r7LvtLHUVjOYdcNG+DvtvmGEuXq0Lpb8ZfwJcnhfEw2IHjT tng+9V0Wje0gbMOEu3mnaG4p3c9V1Xzi3pJvN4hdm38XQA7NAWRTvQmCy5pDyHVX D+YZnJY9ubJGkA8YxffuVwh0Ce9cDFjX6UwnYTruFyzxe5oD3k5BkjP+RANh7hyt gYN9DcQj+waZavq6oiiURLapAgMBAAGjggS0MIIEsDAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFKjUA4cujQSW3biOcLSna6OWtIE5MB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMIICvAYDVR0RBIICszCCAq+CFGNwYW5lbC5pYW5nY2xhcmsubmV0ghljcGNh bGVuZGFycy5pYW5nY2xhcmsubmV0ghhjcGNvbnRhY3RzLmlhbmdjbGFyay5uZXSC GmZ1bmN0aW9uYWwtd2ViZGVzaWduLmNvLnVrgiJmdW5jdGlvbmFsLXdlYmRlc2ln bi5pYW5nY2xhcmsubmV0gg1pYW5nY2xhcmsubmV0ghJtYWlsLmlhbmdjbGFyay5u ZXSCGHByYWN0aWNhbC1zZWN1cml0eS5jby51a4IgcHJhY3RpY2FsLXNlY3VyaXR5 LmlhbmdjbGFyay5uZXSCDHRoZWh5dHRlLmNvbYIWdGhlaHl0dGUuaWFuZ2NsYXJr Lm5ldIIhdGhlcmVhZGluZ3Jvb21zaGF5ZG9uYnJpZGdlLmNvLnVrgil0aGVyZWFk aW5ncm9vbXNoYXlkb25icmlkZ2UuaWFuZ2NsYXJrLm5ldIIVd2ViZGlzay5pYW5n Y2xhcmsubmV0ghV3ZWJtYWlsLmlhbmdjbGFyay5uZXSCHnd3dy5mdW5jdGlvbmFs LXdlYmRlc2lnbi5jby51a4Imd3d3LmZ1bmN0aW9uYWwtd2ViZGVzaWduLmlhbmdj bGFyay5uZXSCEXd3dy5pYW5nY2xhcmsubmV0ghx3d3cucHJhY3RpY2FsLXNlY3Vy aXR5LmNvLnVrgiR3d3cucHJhY3RpY2FsLXNlY3VyaXR5LmlhbmdjbGFyay5uZXSC EHd3dy50aGVoeXR0ZS5jb22CGnd3dy50aGVoeXR0ZS5pYW5nY2xhcmsubmV0giV3 d3cudGhlcmVhZGluZ3Jvb21zaGF5ZG9uYnJpZGdlLmNvLnVrgi13d3cudGhlcmVh ZGluZ3Jvb21zaGF5ZG9uYnJpZGdlLmlhbmdjbGFyay5uZXQwEwYDVR0gBAwwCjAI BgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQBIsONr2qZHNA/lagL6 nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY3NpcLmAAAEAwBGMEQCIGpYoPE0TYpDptCt O165ZR9EPWhlGPi3TEM1RgO9A4D+AiBP1yDjcx+de5r2zE30WYLxtzl1fUZ+EMi6 5pnKzZyZ0wB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjc2l w/EAAAQDAEcwRQIgE1SQtcNdGQAWuKgvezZPyXJpnOoijrdK2PWhJwlF/k4CIQCi bM26C5dnda3o+b+aXCsu1Wf4dJCQIImM4dvbRZutXjANBgkqhkiG9w0BAQsFAAOC AQEAQBshASJree5EU06uLxtVbPjq94R7q52sC63587zUreJbRimxgkiD0SMv9TIC JOSFoWJyQDGxqo4zKk+gpFHdW3u6Yhzi1spJC48DGnlA8NWz2CtvTMWE4CyBTf+L apuQn1bC/YvUqT4NVfOC53RN3sHeei6IFmSaTAZs++5WQy2tI0OSXJiRFmscTPy1 GjlYgdBSDK5KfHq3fgHyaUxobSwcKcjJl9EOw2pxmS+wgXTDS+1egncU84J7O6k9 UvSAW32acygCH4ni/MFljAIBdK4VIHajRAymonggorRqpHxCTKhL0lY9xxkyMzID C7RnezDN8R67ZF2swyJjSiho5g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo28/Ah8zeQ+bwOjonYes 7yVVwCjHsu4gbUBKt+CmNBi4qQmiSKqFHGnZHlqXQ0rfCBqaNs7NAP1WawZ+cBbU U1LXnglNHyNU/CBdmUCQhbPuvK/dUWcr+5CEZyv1Bzqx2glvEP45klXwANa+y77S x1FYzmHXDRvg77b5hhLl6tC6W/GX8CXJ4XxMNiB407Z4PvVdFo3tIGzDhLt5p2hu Kd3PVdV84t6SbzeIXZt/F0AOzQFkU70JgsuaQ8h1Vw/mGZyWPbmyRpAPGMX37lcI dAnvXAxY1+lMJ2E67hcs8XuaA95OQZIz/kQDYe4crYGDfQ3EI/sGmWr6uqIolES2 qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 350622856743008160332470806912987658095392 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-21 20:50:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-21 20:50:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.thehytte.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20631701218828303672363475448238182489812048905641648640494641949697083965530450259415704060164212459043413021916583100899400296020104422548741316378347030720766559632469948786709520887213576491240333712645506580681176674100900642389659685408080387879290409754454697095323123768348280884020733135063387634537399706907134100363356390554615318592134345892754260644394240207194052513040235676180396667795721836186686081200034548203101751444697490055486742874311885278351432077037618385598008118956241933246649016617435740849761551217797612091144288175914363122394864029221068321334628475830463293967305144777402688517801 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a8d403872e8d0496ddb88e70b4a76ba396b48139 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (691 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcalendars.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcontacts.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'functional-webdesign.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'functional-webdesign.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'practical-security.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'practical-security.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thehytte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thehytte.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thereadingroomshaydonbridge.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thereadingroomshaydonbridge.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.functional-webdesign.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.functional-webdesign.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.practical-security.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.practical-security.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thehytte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thehytte.iangclark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thereadingroomshaydonbridge.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thereadingroomshaydonbridge.iangclark.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018dcda5c2e6000004030046304402206a58a0f1344d8a43a6d0ad3b5eb9651f443d686518f8b74c43354603bd0380fe02204fd720e3731f9d7b9af6cc4df45982f1b739757d467e10c8bae699cacd9c99d300760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018dcda5c3f100000403004730450220135490b5c35d190016b8a82f7b364fc972699cea228eb74ad8f5a1270945fe4e022100a26ccdba0b976775ade8f9bf9a5c2b2ed567f874909020898ce1dbdb459bad5e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00401b2101226b79ee44534eae2f1b556cf8eaf7847bab9dac0badf9f3bcd4ade25b4629b1824883d1232ff5320224e485a162724031b1aa8e332a4fa0a451dd5b7bba621ce2d6ca490b8f031a7940f0d5b3d82b6f4cc584e02c814dff8b6a9b909f56c2fd8bd4a93e0d55f382e7744ddec1de7a2e8816649a4c066cfbee56432dad2343925c9891166b1c4cfcb51a395881d0520cae4a7c7ab77e01f2694c686d2c1c29c8c997d10ec36a71992fb08174c34bed5e827714f3827b3ba93d52f4805b7d9a7328021f89e2fcc1658c020174ae152076a3440ca6a27820a2b46aa47c424ca84bd2563dc719323332030bb4677b30cdf11ebb645dacc322634a2868e6