yourlifeiowa.org
Issued by R3
About this certificate
This digital certificate with serial number 04:a0:56:50:41:96:bb:f6:b3:f3:c0:b1:b2:4f:69:80:eb:9b was issued on by Let's Encrypt.
With 80 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=yourlifeiowa.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:a0:56:50:41:96:bb:f6:b3:f3:c0:b1:b2:4f:69:80:eb:9bSerial Number (int): 403009052756076346848802034287093663984539
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d8:72:79:85:35:80:c4:24:78:9d:ed:f0:32:fd:20:ea:6d:99:a2:bc
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): b9:48:2c:f4:2e:08:89:e3:f2:f2:26:31:b0:29:fe:a0:91:8c:52:c1
Fingerprint (sha256): 11:15:1b:25:54:62:e8:64:dd:6b:39:62:89:e1:8a:bd:9b:88:c6:f7:c4:17:0c:fc:e1:88:83:66:9a:9c:b1:11
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate yourlifeiowa.org
80
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for yourlifeiowa.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
1800betsoff.org
casaiowa.org
childsupport.ia.gov
coalitions.drugfreeinfo.org
dpscareers.com
drugfreeinfo.com
drugfreeinfo.net
drugfreeinfo.org
educateiowa.gov
facilitylocator.drugfreeinfo.org
iahealthlink.gov
iaschoolperformance.gov
iaschoolperformance.org
iowaattorneygeneral.org
iowacourtsonline.com
iowacourtsonline.net
iowacourtsonline.org
iowacultureapp.com
iowacultureapp.org
iowadnr.net
iowadot.org
iowahumanitiescouncil.gov
iowaoutdoorsmagazine.com
iowap2interns.com
iowasourcewater.org
iowatitleguaranty.gov
iowaworkforcedevelopment.gov
iowaworks.gov
iowaworks.org
query.iowasexoffender.org
recoveryiowa.org
resources.iowahistory.org
settlements.regents.iowa.gov
skillediowa.org
stophtiowa.org
whatdrivesyouiowa.com
whatdrivesyouiowa.org
www.1800betsoff.org
www.casaiowa.org
www.childsupport.ia.gov
www.cjis.iowa.gov
www.dia-hfd.state.ia.us
www.dom.state.ia.us
www.dpscareers.com
www.food.iowa.gov
www.govelect.iowa.gov
www.governor.state.ia.us
www.ia.gov
www.iaschoolperformance.gov
www.iaschoolperformance.org
www.icn.state.ia.us
www.iid.state.ia.us
www.infoiowa.state.ia.us
www.insuranceca.iowa.gov
www.iowabyways.org
www.iowacleanair.gov
www.iowacourtsonline.com
www.iowacourtsonline.net
www.iowacourtsonline.org
www.iowacultureapp.com
www.iowacultureapp.org
www.iowadnr.com
www.iowadnr.net
www.iowadot.org
www.iowagreatplaces.gov
www.iowagtsb.org
www.iowahistory.org
www.iowahush.com
www.iowap2services.com
www.iowareap.com
www.iowaroadsigns.com
www.iowasexoffender.com
www.iowasexoffender.net
www.iowasexoffender.org
www.iowasexoffenders.com
www.iowasexoffenders.net
www.iowasexoffenders.org
www.stophtiowa.org
www.workforce.iowa.gov
yourlifeiowa.org
casaiowa.org
childsupport.ia.gov
coalitions.drugfreeinfo.org
dpscareers.com
drugfreeinfo.com
drugfreeinfo.net
drugfreeinfo.org
educateiowa.gov
facilitylocator.drugfreeinfo.org
iahealthlink.gov
iaschoolperformance.gov
iaschoolperformance.org
iowaattorneygeneral.org
iowacourtsonline.com
iowacourtsonline.net
iowacourtsonline.org
iowacultureapp.com
iowacultureapp.org
iowadnr.net
iowadot.org
iowahumanitiescouncil.gov
iowaoutdoorsmagazine.com
iowap2interns.com
iowasourcewater.org
iowatitleguaranty.gov
iowaworkforcedevelopment.gov
iowaworks.gov
iowaworks.org
query.iowasexoffender.org
recoveryiowa.org
resources.iowahistory.org
settlements.regents.iowa.gov
skillediowa.org
stophtiowa.org
whatdrivesyouiowa.com
whatdrivesyouiowa.org
www.1800betsoff.org
www.casaiowa.org
www.childsupport.ia.gov
www.cjis.iowa.gov
www.dia-hfd.state.ia.us
www.dom.state.ia.us
www.dpscareers.com
www.food.iowa.gov
www.govelect.iowa.gov
www.governor.state.ia.us
www.ia.gov
www.iaschoolperformance.gov
www.iaschoolperformance.org
www.icn.state.ia.us
www.iid.state.ia.us
www.infoiowa.state.ia.us
www.insuranceca.iowa.gov
www.iowabyways.org
www.iowacleanair.gov
www.iowacourtsonline.com
www.iowacourtsonline.net
www.iowacourtsonline.org
www.iowacultureapp.com
www.iowacultureapp.org
www.iowadnr.com
www.iowadnr.net
www.iowadot.org
www.iowagreatplaces.gov
www.iowagtsb.org
www.iowahistory.org
www.iowahush.com
www.iowap2services.com
www.iowareap.com
www.iowaroadsigns.com
www.iowasexoffender.com
www.iowasexoffender.net
www.iowasexoffender.org
www.iowasexoffenders.com
www.iowasexoffenders.net
www.iowasexoffenders.org
www.stophtiowa.org
www.workforce.iowa.gov
yourlifeiowa.org
Other certificates including the domain name yourlifeiowa.org
(limited to 100 certificates)
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
Certificate
The complete raw certificate details for yourlifeiowa.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIILsjCCCpqgAwIBAgISBKBWUEGWu/az88Cxsk9pgOubMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTAxNzEyMjdaFw0yNDA0MDkxNzEyMjZaMBsxGTAXBgNVBAMT EHlvdXJsaWZlaW93YS5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDX060piN1XB0KYB80BdNhOqUEaGWo8A3X0xNK7AP89Ze9fR5LC2dy0gb+DQXAW wv6SweIiVhP00YmHWv1P6S7NRQ64+2w2Wx2nm1HjFO/CwAQ3pBPUDDs9qxqQ+CJb 5lpELhM/Lln3htNlajENmX63htG9JRPCv0EaKre6Db8H71LvT25Z6hsPErS+zNy7 u8qYieYEei9wo4qXGMZddAvIPOEMhcIFutVJ3PLR39Y7K4AZ+fxo67nbF/CyjwKg TjOaz9yqEi6B6mdfkePcbJGWfxLJnTVeb2DSZNct76i4gxsKcS2ppG5PK6/X8xNe tTXyTbQGCnCNwyJuUccHu0r3AgMBAAGjggjXMIII0zAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFNhyeYU1gMQkeJ3t8DL9IOptmaK8MB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMIIG3wYDVR0RBIIG1jCCBtKCDzE4MDBiZXRzb2ZmLm9yZ4IMY2FzYWlvd2Eu b3JnghNjaGlsZHN1cHBvcnQuaWEuZ292ghtjb2FsaXRpb25zLmRydWdmcmVlaW5m by5vcmeCDmRwc2NhcmVlcnMuY29tghBkcnVnZnJlZWluZm8uY29tghBkcnVnZnJl ZWluZm8ubmV0ghBkcnVnZnJlZWluZm8ub3Jngg9lZHVjYXRlaW93YS5nb3aCIGZh Y2lsaXR5bG9jYXRvci5kcnVnZnJlZWluZm8ub3JnghBpYWhlYWx0aGxpbmsuZ292 ghdpYXNjaG9vbHBlcmZvcm1hbmNlLmdvdoIXaWFzY2hvb2xwZXJmb3JtYW5jZS5v cmeCF2lvd2FhdHRvcm5leWdlbmVyYWwub3JnghRpb3dhY291cnRzb25saW5lLmNv bYIUaW93YWNvdXJ0c29ubGluZS5uZXSCFGlvd2Fjb3VydHNvbmxpbmUub3JnghJp b3dhY3VsdHVyZWFwcC5jb22CEmlvd2FjdWx0dXJlYXBwLm9yZ4ILaW93YWRuci5u ZXSCC2lvd2Fkb3Qub3Jnghlpb3dhaHVtYW5pdGllc2NvdW5jaWwuZ292ghhpb3dh b3V0ZG9vcnNtYWdhemluZS5jb22CEWlvd2FwMmludGVybnMuY29tghNpb3dhc291 cmNld2F0ZXIub3JnghVpb3dhdGl0bGVndWFyYW50eS5nb3aCHGlvd2F3b3JrZm9y Y2VkZXZlbG9wbWVudC5nb3aCDWlvd2F3b3Jrcy5nb3aCDWlvd2F3b3Jrcy5vcmeC GXF1ZXJ5Lmlvd2FzZXhvZmZlbmRlci5vcmeCEHJlY292ZXJ5aW93YS5vcmeCGXJl c291cmNlcy5pb3dhaGlzdG9yeS5vcmeCHHNldHRsZW1lbnRzLnJlZ2VudHMuaW93 YS5nb3aCD3NraWxsZWRpb3dhLm9yZ4IOc3RvcGh0aW93YS5vcmeCFXdoYXRkcml2 ZXN5b3Vpb3dhLmNvbYIVd2hhdGRyaXZlc3lvdWlvd2Eub3JnghN3d3cuMTgwMGJl dHNvZmYub3JnghB3d3cuY2FzYWlvd2Eub3Jnghd3d3cuY2hpbGRzdXBwb3J0Lmlh LmdvdoIRd3d3LmNqaXMuaW93YS5nb3aCF3d3dy5kaWEtaGZkLnN0YXRlLmlhLnVz ghN3d3cuZG9tLnN0YXRlLmlhLnVzghJ3d3cuZHBzY2FyZWVycy5jb22CEXd3dy5m b29kLmlvd2EuZ292ghV3d3cuZ292ZWxlY3QuaW93YS5nb3aCGHd3dy5nb3Zlcm5v ci5zdGF0ZS5pYS51c4IKd3d3LmlhLmdvdoIbd3d3Lmlhc2Nob29scGVyZm9ybWFu Y2UuZ292ght3d3cuaWFzY2hvb2xwZXJmb3JtYW5jZS5vcmeCE3d3dy5pY24uc3Rh dGUuaWEudXOCE3d3dy5paWQuc3RhdGUuaWEudXOCGHd3dy5pbmZvaW93YS5zdGF0 ZS5pYS51c4IYd3d3Lmluc3VyYW5jZWNhLmlvd2EuZ292ghJ3d3cuaW93YWJ5d2F5 cy5vcmeCFHd3dy5pb3dhY2xlYW5haXIuZ292ghh3d3cuaW93YWNvdXJ0c29ubGlu ZS5jb22CGHd3dy5pb3dhY291cnRzb25saW5lLm5ldIIYd3d3Lmlvd2Fjb3VydHNv bmxpbmUub3JnghZ3d3cuaW93YWN1bHR1cmVhcHAuY29tghZ3d3cuaW93YWN1bHR1 cmVhcHAub3Jngg93d3cuaW93YWRuci5jb22CD3d3dy5pb3dhZG5yLm5ldIIPd3d3 Lmlvd2Fkb3Qub3Jnghd3d3cuaW93YWdyZWF0cGxhY2VzLmdvdoIQd3d3Lmlvd2Fn dHNiLm9yZ4ITd3d3Lmlvd2FoaXN0b3J5Lm9yZ4IQd3d3Lmlvd2FodXNoLmNvbYIW d3d3Lmlvd2FwMnNlcnZpY2VzLmNvbYIQd3d3Lmlvd2FyZWFwLmNvbYIVd3d3Lmlv d2Fyb2Fkc2lnbnMuY29tghd3d3cuaW93YXNleG9mZmVuZGVyLmNvbYIXd3d3Lmlv d2FzZXhvZmZlbmRlci5uZXSCF3d3dy5pb3dhc2V4b2ZmZW5kZXIub3Jnghh3d3cu aW93YXNleG9mZmVuZGVycy5jb22CGHd3dy5pb3dhc2V4b2ZmZW5kZXJzLm5ldIIY d3d3Lmlvd2FzZXhvZmZlbmRlcnMub3JnghJ3d3cuc3RvcGh0aW93YS5vcmeCFnd3 dy53b3JrZm9yY2UuaW93YS5nb3aCEHlvdXJsaWZlaW93YS5vcmcwEwYDVR0gBAww CjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgBIsONr2qZHNA/l agL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYz0k1zXAAAEAwBHMEUCIG+5xl86C/70 O0TugDVrPxn2CcockXqCFWm8yCfpdeoNAiEAx967iFBRVs4iYIp/JFhiCgNkQGkb IWEUh4wCw5JXH7kAdQAp0DobtnSqcRzTA1tlV8FPiqeLT+g4lEnspFP5RL0kaAAA AYz0k12jAAAEAwBGMEQCIBNHnXqkz+6w6ALFvpDeW6NmODIW4VMPk9sbD29yDVk0 AiAgaIYCXtaBlBl+WQZqS0BUHuXIxRYDNCGJweJIDpenwzANBgkqhkiG9w0BAQsF AAOCAQEAp4LLHEhNhLKSwuVIOfseS4jlvFvmtrfb5jyDskFo3n2FJLB/njDOsf6W ubAlKyUILRqjlw928jgSfCN2JmOPc27jFN8FwzkH7Xt0HWVp5gBl48uNpxdVBeDj CrmfsQSPz4VRYqyh3Uda5A4qUXqpQAER6jFmPNUWr5sHPArb75CBNvCD2EoCM6IZ hgzP1psQ2sf3JAnvhzSqOm8OlHUR6iGN4JHeVRQSa2MFxoQUMBp45ziWYZ0UJeN8 U4+P9p99/muaKxT4xS2siUQ/CQ3cWxbGlQZdLSKwTJISDHUmxNVivOq4vdJ1vtaB AYBkcAtu+Xfpq5M2Hlhxr8wOLdAszg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA19OtKYjdVwdCmAfNAXTY TqlBGhlqPAN19MTSuwD/PWXvX0eSwtnctIG/g0FwFsL+ksHiIlYT9NGJh1r9T+ku zUUOuPtsNlsdp5tR4xTvwsAEN6QT1Aw7PasakPgiW+ZaRC4TPy5Z94bTZWoxDZl+ t4bRvSUTwr9BGiq3ug2/B+9S709uWeobDxK0vszcu7vKmInmBHovcKOKlxjGXXQL yDzhDIXCBbrVSdzy0d/WOyuAGfn8aOu52xfwso8CoE4zms/cqhIugepnX5Hj3GyR ln8SyZ01Xm9g0mTXLe+ouIMbCnEtqaRuTyuv1/MTXrU18k20BgpwjcMiblHHB7tK 9wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 403009052756076346848802034287093663984539 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-10 17:12:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-09 17:12:26 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'yourlifeiowa.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27245617098300959914371561159571626889105420221110503123083749017932049460676715319690903431789478137419507448177526741754903129190097852776096574929751307331717936957005984771222317807278674311651699455114672108717713557340606806547579717441637308259701325373401255669555926230751470709443148904338410221824493467006898130468978988436735408575495998678054280584607639120909021904397569753721419224012125763074740637256646287332078797342843462297167909457241223591638945569275322044272964534205409490575587198485595359027589174379213704844806044682795141164092808238196679670114872276181816851647369531148521571044087 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d87279853580c424789dedf032fd20ea6d99a2bc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1750 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '1800betsoff.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'casaiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'childsupport.ia.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coalitions.drugfreeinfo.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dpscareers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'drugfreeinfo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'drugfreeinfo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'drugfreeinfo.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'educateiowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'facilitylocator.drugfreeinfo.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iahealthlink.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iaschoolperformance.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iaschoolperformance.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaattorneygeneral.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowacourtsonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowacourtsonline.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowacourtsonline.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowacultureapp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowacultureapp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowadnr.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowadot.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowahumanitiescouncil.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaoutdoorsmagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowap2interns.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowasourcewater.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowatitleguaranty.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaworkforcedevelopment.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaworks.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaworks.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'query.iowasexoffender.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'recoveryiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resources.iowahistory.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'settlements.regents.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'skillediowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stophtiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'whatdrivesyouiowa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'whatdrivesyouiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.1800betsoff.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.casaiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.childsupport.ia.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cjis.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dia-hfd.state.ia.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dom.state.ia.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dpscareers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.food.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.govelect.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.governor.state.ia.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ia.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iaschoolperformance.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iaschoolperformance.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.icn.state.ia.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iid.state.ia.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.infoiowa.state.ia.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.insuranceca.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowabyways.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowacleanair.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowacourtsonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowacourtsonline.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowacourtsonline.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowacultureapp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowacultureapp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowadnr.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowadnr.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowadot.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowagreatplaces.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowagtsb.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowahistory.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowahush.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowap2services.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowareap.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowaroadsigns.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasexoffender.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasexoffender.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasexoffender.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasexoffenders.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasexoffenders.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasexoffenders.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stophtiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.workforce.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'yourlifeiowa.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cf4935cd7000004030047304502206fb9c65f3a0bfef43b44ee80356b3f19f609ca1c917a821569bcc827e975ea0d022100c7debb88505156ce22608a7f2458620a036440691b216114878c02c392571fb900750029d03a1bb674aa711cd3035b6557c14f8aa78b4fe8389449eca453f944bd24680000018cf4935da30000040300463044022013479d7aa4cfeeb0e802c5be90de5ba366383216e1530f93db1b0f6f720d59340220206886025ed68194197e59066a4b40541ee5c8c51603342189c1e2480e97a7c3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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