dep-mobile-staging.af.contentsquare.net
Issued by R3
About this certificate
This digital certificate with serial number 04:78:20:ba:93:59:c4:63:5d:1c:c6:72:34:78:e8:13:83:f1 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=dep-mobile-staging.af.contentsquare.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:78:20:ba:93:59:c4:63:5d:1c:c6:72:34:78:e8:13:83:f1Serial Number (int): 389326531809260704373829474538420364870641
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 26:5b:72:03:d6:77:2a:66:d6:34:9f:49:d8:03:a3:a0:18:e9:44:27
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 5b:1b:13:6c:27:be:13:97:45:0e:e2:26:31:cb:1e:a2:60:cc:81:b9
Fingerprint (sha256): 13:0c:67:4e:70:fc:eb:cd:aa:7f:93:b6:29:e1:ba:b3:74:cf:22:08:38:e6:2c:05:de:3b:fd:0b:e6:4f:ce:c2
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate dep-mobile-staging.af.contentsquare.net
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dep-mobile-staging.af.contentsquare.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dep-mobile-staging.af.contentsquare.net
m-staging.af.contentsquare.net
m1-staging.af.contentsquare.net
m-staging.af.contentsquare.net
m1-staging.af.contentsquare.net
Other certificates including the domain name contentsquare.net
(limited to 100 certificates)
ca.contentsquare.net
q-us1-staging.az.contentsquare.net
k-staging.az.contentsquare.net
c-staging.az.contentsquare.net
dep-staging.af.contentsquare.net
k.az.contentsquare.net
kep-guinness.af.contentsquare.net
*.contentsquare.net
k-us1.az.contentsquare.net
dep-mobile.aa.contentsquare.net
c-wazuh-dev.contentsquare.net
q-staging.ba.contentsquare.net
w-staging.contentsquare.net
c.az.contentsquare.net
m-staging.az.contentsquare.net
m-staging.az.contentsquare.net
ka.af.contentsquare.net
kep-guinness.ba.contentsquare.net
*.contentsquare.net
w-staging.contentsquare.net
ka.af.contentsquare.net
q-staging.af.contentsquare.net
cw.contentsquare.net
dep-bench-dev.ba.contentsquare.net
b-staging.ba.contentsquare.net
*.contentsquare.net
cw.contentsquare.net
kep-mobile.ba.contentsquare.net
srm.af.contentsquare.net
csxd-01.contentsquare.net
kep-web-test.ba.contentsquare.net
ka-staging.af.contentsquare.net
csxd-01.contentsquare.net
c-dof-dev.contentsquare.net
k-aeu-next4.contentsquare.net
q-us1.az.contentsquare.net
k-us1-staging.az.contentsquare.net
c.az.contentsquare.net
k-staging.az.contentsquare.net
c-staging.az.contentsquare.net
q-eu1.az.contentsquare.net
kep-malka.af.contentsquare.net
q-us1.az.contentsquare.net
c-staging.az.contentsquare.net
dep-mobile.aa.contentsquare.net
kep-migr-test-dev.ba.contentsquare.net
csxd-01.contentsquare.net
ka.af.contentsquare.net
c.az.contentsquare.net
c.az.contentsquare.net
*.contentsquare.net
kep-malka-staging.af.contentsquare.net
csxd-01.contentsquare.net
k-eu1.az.contentsquare.net
t.contentsquare.net
ca-dof-dev.contentsquare.net
dep-malka.af.contentsquare.net
dep-revamp-dev.ba.contentsquare.net
k-us1.az.contentsquare.net
k-aus1.contentsquare.net
q-eu1.az.contentsquare.net
dep-malka.af.contentsquare.net
b.af.contentsquare.net
k.az.contentsquare.net
dep-mobile-staging.af.contentsquare.net
dep.aa.contentsquare.net
b.af.contentsquare.net
srm.aa.contentsquare.net
kn-aeu1.contentsquare.net
k-us1.az.contentsquare.net
csxd-01.contentsquare.net
c-staging.az.contentsquare.net
k-eu1.az.contentsquare.net
*.contentsquare.net
dep-malka-mobile.af.contentsquare.net
k-staging.az.contentsquare.net
dep-mobile-staging.af.contentsquare.net
c.az.contentsquare.net
dep-malka-dev.ba.contentsquare.net
b.aa.contentsquare.net
t-staging.contentsquare.net
kep-malka-staging.af.contentsquare.net
b.ba.contentsquare.net
k-eu1.az.contentsquare.net
dep-fb.ba.contentsquare.net
c.az.contentsquare.net
ka.aa.contentsquare.net
l.az.contentsquare.net
dep.af.contentsquare.net
k.az.contentsquare.net
dep.af.contentsquare.net
b.bf.contentsquare.net
guinness-ipa-aeu1-dev.contentsquare.net
ka.af.contentsquare.net
ka-aeu1.contentsquare.net
ka-aeu1-staging.contentsquare.net
csxd-02.contentsquare.net
dep.af.contentsquare.net
ka-staging.af.contentsquare.net
ca-dev.contentsquare.net
q-us1-staging.az.contentsquare.net
k-staging.az.contentsquare.net
c-staging.az.contentsquare.net
dep-staging.af.contentsquare.net
k.az.contentsquare.net
kep-guinness.af.contentsquare.net
*.contentsquare.net
k-us1.az.contentsquare.net
dep-mobile.aa.contentsquare.net
c-wazuh-dev.contentsquare.net
q-staging.ba.contentsquare.net
w-staging.contentsquare.net
c.az.contentsquare.net
m-staging.az.contentsquare.net
m-staging.az.contentsquare.net
ka.af.contentsquare.net
kep-guinness.ba.contentsquare.net
*.contentsquare.net
w-staging.contentsquare.net
ka.af.contentsquare.net
q-staging.af.contentsquare.net
cw.contentsquare.net
dep-bench-dev.ba.contentsquare.net
b-staging.ba.contentsquare.net
*.contentsquare.net
cw.contentsquare.net
kep-mobile.ba.contentsquare.net
srm.af.contentsquare.net
csxd-01.contentsquare.net
kep-web-test.ba.contentsquare.net
ka-staging.af.contentsquare.net
csxd-01.contentsquare.net
c-dof-dev.contentsquare.net
k-aeu-next4.contentsquare.net
q-us1.az.contentsquare.net
k-us1-staging.az.contentsquare.net
c.az.contentsquare.net
k-staging.az.contentsquare.net
c-staging.az.contentsquare.net
q-eu1.az.contentsquare.net
kep-malka.af.contentsquare.net
q-us1.az.contentsquare.net
c-staging.az.contentsquare.net
dep-mobile.aa.contentsquare.net
kep-migr-test-dev.ba.contentsquare.net
csxd-01.contentsquare.net
ka.af.contentsquare.net
c.az.contentsquare.net
c.az.contentsquare.net
*.contentsquare.net
kep-malka-staging.af.contentsquare.net
csxd-01.contentsquare.net
k-eu1.az.contentsquare.net
t.contentsquare.net
ca-dof-dev.contentsquare.net
dep-malka.af.contentsquare.net
dep-revamp-dev.ba.contentsquare.net
k-us1.az.contentsquare.net
k-aus1.contentsquare.net
q-eu1.az.contentsquare.net
dep-malka.af.contentsquare.net
b.af.contentsquare.net
k.az.contentsquare.net
dep-mobile-staging.af.contentsquare.net
dep.aa.contentsquare.net
b.af.contentsquare.net
srm.aa.contentsquare.net
kn-aeu1.contentsquare.net
k-us1.az.contentsquare.net
csxd-01.contentsquare.net
c-staging.az.contentsquare.net
k-eu1.az.contentsquare.net
*.contentsquare.net
dep-malka-mobile.af.contentsquare.net
k-staging.az.contentsquare.net
dep-mobile-staging.af.contentsquare.net
c.az.contentsquare.net
dep-malka-dev.ba.contentsquare.net
b.aa.contentsquare.net
t-staging.contentsquare.net
kep-malka-staging.af.contentsquare.net
b.ba.contentsquare.net
k-eu1.az.contentsquare.net
dep-fb.ba.contentsquare.net
c.az.contentsquare.net
ka.aa.contentsquare.net
l.az.contentsquare.net
dep.af.contentsquare.net
k.az.contentsquare.net
dep.af.contentsquare.net
b.bf.contentsquare.net
guinness-ipa-aeu1-dev.contentsquare.net
ka.af.contentsquare.net
ka-aeu1.contentsquare.net
ka-aeu1-staging.contentsquare.net
csxd-02.contentsquare.net
dep.af.contentsquare.net
ka-staging.af.contentsquare.net
ca-dev.contentsquare.net
Certificate
The complete raw certificate details for dep-mobile-staging.af.contentsquare.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEaTCCA1GgAwIBAgISBHggupNZxGNdHMZyNHjoE4PxMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA3MzExMTQ0MTJaFw0yMzEwMjkxMTQ0MTFaMDIxMDAuBgNVBAMT J2RlcC1tb2JpbGUtc3RhZ2luZy5hZi5jb250ZW50c3F1YXJlLm5ldDCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBANHzDHBovEbF399DgdXgd0RINaA1m/2X Ut+cfPqrODSWqOKwuS5RZXdRdKPrUV8L5YBkOeXow/cJLyU+e+Uj7G3mrlGkPC+b cAk/5ScfJOlatmdON10P+4rufnDj6f3UGEoUFJuoNhj8jiIQJosM0RKOZVNsso2z 2fpLTcYLJWP7keRJoKaLNMnhwmD/e0RYfOb/XFJw4ECEUNoBkWR8HnnBWPbKLiRn 1OwQUNxZemPkMvDz2fBseD1ANCjAzjLB3ilpGJxiVJ1T1goDjQPMLEwMtcTpGZF4 pxOI3XAi1dXAAyVdbY7T3uVpQQ/tWvnqV0VW74p99CyOtPE1/uoiRyECAwEAAaOC AXcwggFzMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUJltyA9Z3KmbWNJ9J2AOjoBjp RCcwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEE STBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUH MAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wcwYDVR0RBGwwaoInZGVwLW1vYmls ZS1zdGFnaW5nLmFmLmNvbnRlbnRzcXVhcmUubmV0gh5tLXN0YWdpbmcuYWYuY29u dGVudHNxdWFyZS5uZXSCH20xLXN0YWdpbmcuYWYuY29udGVudHNxdWFyZS5uZXQw EwYDVR0gBAwwCjAIBgZngQwBAgEwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZI hvcNAQELBQADggEBABuGdwTCZd6EjkD0Al9JDujRTkADclo7qBmqalfuVYp/DqWm RULWKoWa197iQHClNOMBrEpW/ug692Yth7njbRY93WXRpaxLwRjxfTcfpUEISSyH SRnxw7yDlEvAYXbEHH+XyqjvNP7Npb8J4NVAzBUlAXmX8ZMvwpATono691axR88J DymkEbw+nJB0uPQ1iHp8/EhnzIO1B0nEqRYuiq7zx3tlPV//u8T4gTRXVOaXt2tR qOFh9S0f/NNAeOKBNpLzs1ZEEomyOY0yfNK7QWKQ80EMn8J6UVvrQ0jAzoP14taV KXWk4hKXkSUEqIDu8isNx86RywC4N616aQDKqrk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0fMMcGi8RsXf30OB1eB3 REg1oDWb/ZdS35x8+qs4NJao4rC5LlFld1F0o+tRXwvlgGQ55ejD9wkvJT575SPs beauUaQ8L5twCT/lJx8k6Vq2Z043XQ/7iu5+cOPp/dQYShQUm6g2GPyOIhAmiwzR Eo5lU2yyjbPZ+ktNxgslY/uR5Emgpos0yeHCYP97RFh85v9cUnDgQIRQ2gGRZHwe ecFY9souJGfU7BBQ3Fl6Y+Qy8PPZ8Gx4PUA0KMDOMsHeKWkYnGJUnVPWCgONA8ws TAy1xOkZkXinE4jdcCLV1cADJV1tjtPe5WlBD+1a+epXRVbvin30LI608TX+6iJH IQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 389326531809260704373829474538420364870641 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-31 11:44:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-29 11:44:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dep-mobile-staging.af.contentsquare.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26503657464682262138126204613435571915869620695729074235064329043537474172036860920192283432343335611275184201199706770245810138740610681882414219543800468866278573661646750716732370493214099938225481131455706175707572755623877672759825948559046076580347814732348087032480619350103894624753401303336096499391459760664501148068752316300307510243372006279206017260151066451524586658134195426771314658009042319713176556928350130054060887442482629569473802498319801739565903804919875097619465985895705855581801098842577778551962026172799700646072330710131230311848140511460013408992930379938978170318609934688355554051873 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 265b7203d6772a66d6349f49d803a3a018e94427 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dep-mobile-staging.af.contentsquare.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm-staging.af.contentsquare.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm1-staging.af.contentsquare.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001b867704c265de848e40f4025f490ee8d14e4003725a3ba819aa6a57ee558a7f0ea5a64542d62a859ad7dee24070a534e301ac4a56fee83af7662d87b9e36d163ddd65d1a5ac4bc118f17d371fa54108492c874919f1c3bc83944bc06176c41c7f97caa8ef34fecda5bf09e0d540cc1525017997f1932fc29013a27a3af756b147cf090f29a411bc3e9c9074b8f435887a7cfc4867cc83b50749c4a9162e8aaef3c77b653d5fffbbc4f881345754e697b76b51a8e161f52d1ffcd34078e2813692f3b356441289b2398d327cd2bb416290f3410c9fc27a515beb4348c0ce83f5e2d6952975a4e21297912504a880eef22b0dc7ce91cb00b837ad7a6900caaab9