alohaactive.net
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:0e:59:05:03:65:63:2f:24:38:1a:e5:92:63:31:02:e3:35 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=alohaactive.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:0e:59:05:03:65:63:2f:24:38:1a:e5:92:63:31:02:e3:35Serial Number (int): 266219138254162997846607218078258332623669
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5d:cf:10:3e:c1:40:dc:f0:39:a6:e5:99:0c:7e:f9:b6:fb:41:4a:30
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 81:4b:ef:07:11:cb:2e:ab:32:eb:b8:c5:79:7c:19:c3:85:a0:94:98
Fingerprint (sha256): 10:89:da:25:b0:e4:60:fe:18:03:de:0f:59:a8:11:0c:25:46:6b:af:12:f6:f4:42:37:7b:b0:51:77:cc:5b:bb
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate alohaactive.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for alohaactive.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
alohaactive.net
www.alohaactive.net
www.alohaactive.net
Other certificates including the domain name alohaactive.net
(limited to 100 certificates)
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
alohaactive.net
Certificate
The complete raw certificate details for alohaactive.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGFjCCBP6gAwIBAgISAw5ZBQNlYy8kOBrlkmMxAuM1MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA3MjMxODEyMDBaFw0x NzEwMjExODEyMDBaMBoxGDAWBgNVBAMTD2Fsb2hhYWN0aXZlLm5ldDCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBALEyXzE7e7hiSKT7fwdkO9naxIZCXcnf DAfJJrMonyisY90PUALWMlL5cJ0CmDAH38eH0RsP5KNeLIRv+8g+0M0XuTXFCRkM i6vji4lPhZPrVOdFIloJ4VzOgaD1/HoyKqcLSb4uB4wL5M0cF8gV3d/SHd4hj9hV zdssHg7+1OS37GJMPqs0F09hr2FQzkNMGQ9mHSr3kKGibBfXKg9KOEpUYxC/B9YJ OZjCjhVrHF4iqqs5XmsXW5dR3EHAiTYfIYmzyqsQS1GYf/iOrwC/0M54+/EM+BQl RR6EgCg9Ev+3m0PO6s6VDdpA3d6guBWp+qNsiR6kIUUH2aqELMpEVsAW+gEaCgcG lFAOjdcqVJsHZgnZA7opc/Z21vz2owj0PeOCRYWKjSr6U1HahEZLYisNitD+eDZF N2drHFp56N5nb/PxqBkAEa1FJ0vhVVzVCrgjV3mkmTz35a5CcVTb3Mg9B//RiUho 84xDm5lcxO7lWmplhN+1NaA1qqf5+4zvskZBxKftHvid8qpbL52l0vmXzf4VQKt3 kanFnEdzEoVMlLJpKSFKbD+gQZcNIVNLmfo3lWIiqFnHM5Abwm2VxdCWi0ZLWl5N 0tTh8/EK178R9G30apRSS8N7jgCfstESet5ZbXIWguuvXl3CLRVF1Ymo2NZaqT04 IVdpim+56sRJAgMBAAGjggIkMIICIDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFF3P ED7BQNzwOablmQx++bb7QUowMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wLwYDVR0RBCgwJoIPYWxvaGFhY3RpdmUubmV0 ghN3d3cuYWxvaGFhY3RpdmUubmV0MIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHm BgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5j cnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkg b25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkg aW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQg YXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcN AQELBQADggEBAIHc7S71rr0GnVaVVKmp/9frVtu9IFUDsGR82EDVy4Q4ot0pwSPR ISkYcFEuKhfgGhRElU4J5ymeRkOmTHcrSU9CSE+K9nUSrO+E1dgTZd79JqjyBDcm c0LvKsLuz3ZFNU1h5VuM0zP7fEUtIb5qTIjaufnwT3iImy7tRPlk82VyoxPgRl6y 9tO8bVH1kOu45jWcfVcRVM5+n2V2qXV3KymU4tg9SEG8fgF6PmuOPhGj9mF0IIA2 oX6LviYtvZ0ZhoTHjK+f0LFK5rKruhYw2uqDeFHd1UFBUBl0xmtqC9VQrvBN4KAj JzfAvUy78Fbk7LXnAOKtB8AQrdlBKApb7DU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsTJfMTt7uGJIpPt/B2Q7 2drEhkJdyd8MB8kmsyifKKxj3Q9QAtYyUvlwnQKYMAffx4fRGw/ko14shG/7yD7Q zRe5NcUJGQyLq+OLiU+Fk+tU50UiWgnhXM6BoPX8ejIqpwtJvi4HjAvkzRwXyBXd 39Id3iGP2FXN2yweDv7U5LfsYkw+qzQXT2GvYVDOQ0wZD2YdKveQoaJsF9cqD0o4 SlRjEL8H1gk5mMKOFWscXiKqqzleaxdbl1HcQcCJNh8hibPKqxBLUZh/+I6vAL/Q znj78Qz4FCVFHoSAKD0S/7ebQ87qzpUN2kDd3qC4Fan6o2yJHqQhRQfZqoQsykRW wBb6ARoKBwaUUA6N1ypUmwdmCdkDuilz9nbW/PajCPQ944JFhYqNKvpTUdqERkti Kw2K0P54NkU3Z2scWnno3mdv8/GoGQARrUUnS+FVXNUKuCNXeaSZPPflrkJxVNvc yD0H/9GJSGjzjEObmVzE7uVaamWE37U1oDWqp/n7jO+yRkHEp+0e+J3yqlsvnaXS +ZfN/hVAq3eRqcWcR3MShUyUsmkpIUpsP6BBlw0hU0uZ+jeVYiKoWcczkBvCbZXF 0JaLRktaXk3S1OHz8QrXvxH0bfRqlFJLw3uOAJ+y0RJ63lltchaC669eXcItFUXV iajY1lqpPTghV2mKb7nqxEkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 266219138254162997846607218078258332623669 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-23 18:12:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-21 18:12:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'alohaactive.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 722899731283906831502657283004397284425710052728872786237165128525737168841787166479925249304095838626103586159149724239702681411844806831017526816869538678267558966451528606419962099045146303297906013190563429359443023181882416135012091568602062400084726604607849192173188842069289478511736761688435241163296105590426133652349693050416462551978640584423066897224121413996490432731516169594779485305814219958118610896505308279476305477813223651678388930376822136325611402084703916699976271797703955421756467908555702867075812753784614709975671580257793853633559915290335936670899185290604800323872576621644559950030263573390381745348078180288991452868007897875941277047965836742460684169092503929880635964239749205378930258899126374420161904642803128566281968185530173182391642973078652305449649820538692549757763050934558745217736995172912111922739034425491558580702165981192442871412096469451028209052496523596500432581859085664123910492345475544072292193912624963102514358060901232467747754199653636224787145427863927892347533784046692142694437972841809909445377004124594650423200756065942801853904648439639591319377182450514678998187391496830595450180787178823119770490851434671524364814606478021001472833847063317433873471292489 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5dcf103ec140dcf039a6e5990c7ef9b6fb414a30 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alohaactive.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.alohaactive.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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