presstoopen.com
Issued by R3
About this certificate
This digital certificate with serial number 04:be:a9:ed:8a:4a:fb:0f:45:b5:95:04:4f:29:f7:95:0f:8a was issued on by Let's Encrypt.
With 30 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=presstoopen.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:be:a9:ed:8a:4a:fb:0f:45:b5:95:04:4f:29:f7:95:0f:8aSerial Number (int): 413328666352575526711736895651114655223690
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d8:e9:4c:f8:ee:0d:04:33:aa:0b:9f:85:6c:c6:62:c0:27:a7:3b:2b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 6d:e2:5a:63:31:ef:3f:a5:4d:3c:dc:53:e6:83:d2:b1:46:85:13:3c
Fingerprint (sha256): 11:b1:8f:b7:a9:2f:d9:31:6c:de:eb:7c:ea:6d:1f:01:1d:d6:b6:53:0f:c3:9f:ab:24:c4:d6:9c:f5:df:ed:83
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate presstoopen.com
30
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for presstoopen.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aevolvehealth.com
amybowen.com
auctionitquick.com
conserve-wildlife.com
dakotaoil.com
folkdom.com
longkelvyuan.com
mycroft.org
packedandprepared.com
preserveourchildren.com
presstoopen.com
ratwm.com
solutionogen.com
www.aevolvehealth.com
www.amybowen.com
www.auctionitquick.com
www.conserve-wildlife.com
www.dakotaoil.com
www.folkdom.com
www.longkelvyuan.com
www.mycroft.org
www.packedandprepared.com
www.preserveourchildren.com
www.presstoopen.com
www.ratwm.com
www.solutionogen.com
www.xn--9dbhjb5cc.com
www.xn--9dbngfg.com
xn--9dbhjb5cc.com
xn--9dbngfg.com
amybowen.com
auctionitquick.com
conserve-wildlife.com
dakotaoil.com
folkdom.com
longkelvyuan.com
mycroft.org
packedandprepared.com
preserveourchildren.com
presstoopen.com
ratwm.com
solutionogen.com
www.aevolvehealth.com
www.amybowen.com
www.auctionitquick.com
www.conserve-wildlife.com
www.dakotaoil.com
www.folkdom.com
www.longkelvyuan.com
www.mycroft.org
www.packedandprepared.com
www.preserveourchildren.com
www.presstoopen.com
www.ratwm.com
www.solutionogen.com
www.xn--9dbhjb5cc.com
www.xn--9dbngfg.com
xn--9dbhjb5cc.com
xn--9dbngfg.com
Other certificates including the domain name presstoopen.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for presstoopen.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHLjCCBhagAwIBAgISBL6p7YpK+w9FtZUETyn3lQ+KMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MDgxMTE2NTZaFw0yNDA4MDYxMTE2NTVaMBoxGDAWBgNVBAMT D3ByZXNzdG9vcGVuLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AL06hF9bqRtzFGfPWLY166Fpe3g9RV0WSNE7gM6kwEPKCvyn0xt7s0lXEjNE2OMV 7gDwaW4t/WuczekQ2SCgGxjBX+VR+CcClwnr6+ZyDVbpv+WaAg6txSw254S7wFUG 6aTta3ZhMszg2jSalSYp8in2EGNE5FHKerC8F/fri3BWnUteupOsQH+p3APvL57b KnoH2FER4+Y6gBHt2z0+6qKqQxiN8ApZAzbQ+1Ct93aP9Qhh2E2GMOLWBdonaQuK 7rNvb/Bt4qR+/7iakuu2rtgXffHu9c4RR6SkeEFu/rLgxF2K2sNIzRAGrnh0Yx6x z49i3fvUp365GVrbgmXwQ+0CAwEAAaOCBFQwggRQMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQU2OlM+O4NBDOqC5+FbMZiwCenOyswHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wggJbBgNVHREEggJSMIICToIRYWV2b2x2ZWhlYWx0aC5jb22CDGFteWJvd2Vu LmNvbYISYXVjdGlvbml0cXVpY2suY29tghVjb25zZXJ2ZS13aWxkbGlmZS5jb22C DWRha290YW9pbC5jb22CC2ZvbGtkb20uY29tghBsb25na2Vsdnl1YW4uY29tggtt eWNyb2Z0Lm9yZ4IVcGFja2VkYW5kcHJlcGFyZWQuY29tghdwcmVzZXJ2ZW91cmNo aWxkcmVuLmNvbYIPcHJlc3N0b29wZW4uY29tgglyYXR3bS5jb22CEHNvbHV0aW9u b2dlbi5jb22CFXd3dy5hZXZvbHZlaGVhbHRoLmNvbYIQd3d3LmFteWJvd2VuLmNv bYIWd3d3LmF1Y3Rpb25pdHF1aWNrLmNvbYIZd3d3LmNvbnNlcnZlLXdpbGRsaWZl LmNvbYIRd3d3LmRha290YW9pbC5jb22CD3d3dy5mb2xrZG9tLmNvbYIUd3d3Lmxv bmdrZWx2eXVhbi5jb22CD3d3dy5teWNyb2Z0Lm9yZ4IZd3d3LnBhY2tlZGFuZHBy ZXBhcmVkLmNvbYIbd3d3LnByZXNlcnZlb3VyY2hpbGRyZW4uY29tghN3d3cucHJl c3N0b29wZW4uY29tgg13d3cucmF0d20uY29tghR3d3cuc29sdXRpb25vZ2VuLmNv bYIVd3d3LnhuLS05ZGJoamI1Y2MuY29tghN3d3cueG4tLTlkYm5nZmcuY29tghF4 bi0tOWRiaGpiNWNjLmNvbYIPeG4tLTlkYm5nZmcuY29tMBMGA1UdIAQMMAowCAYG Z4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcAdv+IPwq2+5VRwmHM9Ye6 NLSkzbsp3GhCCp/mZ0xaOnQAAAGPWCKk/gAABAMASDBGAiEA75JwiFOvHMuD1Mep hjFeZQPrhQqv4r887LOeQRwGbA8CIQDIprZ2EFHdIZxCEu0NyIv1lVKtwMvBwQRW wiGZkjRmsAB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABj1gi pKMAAAQDAEYwRAIgdtCqDEfnwWy90BvcI083nTqEBjIMOIgj6JiVk0WqdfQCIE4H x1jtpRTSaoUbgZSQHkbFj06LF3V2LGhWVq/NlcbWMA0GCSqGSIb3DQEBCwUAA4IB AQBgYv2qGQs8dGYIGHQPoUZkZhxI8TrmFdOTctaL5tSuqzIYs0CWf7taGUIsXwTH 6mCSbgwIGR39pnIGfsbLBNxrZ78ssUEvOj4LXrTM8fhPWY02v77v9SJxhahXhxaY NsFNiOwKNLcpONClB0uG041rsepVOi91/cf2qzzEQJgjm9Upbu+q2nswz7Xpbqv0 BYejQYaNNNbLC6GoxvanqTapZ6cQG5H+BYlGbKCBannZ4hZZSzwim8XAkdvU9zQR ycpfAga1/d/8CMMi/39j6NeIjDUc849ciw39AnbWWYuxsHDFSZFGbqKM9g4zvFo3 2BTBWxmk9M98kHqW6h3Xhehf -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvTqEX1upG3MUZ89YtjXr oWl7eD1FXRZI0TuAzqTAQ8oK/KfTG3uzSVcSM0TY4xXuAPBpbi39a5zN6RDZIKAb GMFf5VH4JwKXCevr5nINVum/5ZoCDq3FLDbnhLvAVQbppO1rdmEyzODaNJqVJiny KfYQY0TkUcp6sLwX9+uLcFadS166k6xAf6ncA+8vntsqegfYURHj5jqAEe3bPT7q oqpDGI3wClkDNtD7UK33do/1CGHYTYYw4tYF2idpC4rus29v8G3ipH7/uJqS67au 2Bd98e71zhFHpKR4QW7+suDEXYraw0jNEAaueHRjHrHPj2Ld+9SnfrkZWtuCZfBD 7QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 413328666352575526711736895651114655223690 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-08 11:16:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-06 11:16:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'presstoopen.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23887895486229094256573915909518932502407754482790553357624095497031060960008000624570319052710845493339519317851709607794502503434868521856227141482341530927505381914384608171205480721842106904620674127325792988980656756795751775942212840934539343918504362891428883207132636275740413405093442649080009853932293301510866137973943195123215878250885386464834639847230357066385195061388735717011965574637897264399728728402341132172216310280931544982775380140330064628105720983833222483960331503300700446377419580098989553299005306666154370271592648688499678672466794405625481656334159198745602933259227462832131813688301 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d8e94cf8ee0d0433aa0b9f856cc662c027a73b2b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (594 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aevolvehealth.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amybowen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'auctionitquick.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'conserve-wildlife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dakotaoil.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'folkdom.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'longkelvyuan.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mycroft.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'packedandprepared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preserveourchildren.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'presstoopen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ratwm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'solutionogen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aevolvehealth.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.amybowen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.auctionitquick.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.conserve-wildlife.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dakotaoil.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.folkdom.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.longkelvyuan.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mycroft.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.packedandprepared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.preserveourchildren.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.presstoopen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ratwm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.solutionogen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xn--9dbhjb5cc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xn--9dbngfg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xn--9dbhjb5cc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xn--9dbngfg.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f5822a4fe0000040300483046022100ef92708853af1ccb83d4c7a986315e6503eb850aafe2bf3cecb39e411c066c0f022100c8a6b6761051dd219c4212ed0dc88bf59552adc0cbc1c10456c22199923466b000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f5822a4a30000040300463044022076d0aa0c47e7c16cbdd01bdc234f379d3a8406320c388823e898959345aa75f402204e07c758eda514d26a851b8194901e46c58f4e8b1775762c685656afcd95c6d6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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