ssl391365.cloudflaressl.com

Issued by COMODO Domain Validation Legacy Server CA 2

About this certificate

This digital certificate with serial number af:0f:7c:b6:73:77:7f:b9:4b:6b:4e:ff:fb:db:eb:e8 was issued on by COMODO CA Limited.

With 31 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • CAs MUST NOT issue any new Subscriber certificates or Subordinate CA certificates using SHA-1 after 1 January 2016 (BRs: 7.1.3)
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Subscriber certificates using the SHA-1 algorithm SHOULD NOT have an expiration date later than 1 Jan 2017 (BRs: 7.1.3)

Certificate Subject

CN=ssl391365.cloudflaressl.com,OU=Domain Control Validated+OU=Legacy Multi-Domain SSL

COMODO CA Limited

Organization: COMODO CA Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate has expire since

Certificate Details

Serial Number (hex): af:0f:7c:b6:73:77:7f:b9:4b:6b:4e:ff:fb:db:eb:e8
Serial Number (int): 232695313189289972036450530571207830504
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 8c:fa:98:22:d3:bf:59:d0:ee:22:14:d4:f4:b0:d2:26:5d:42:5b:fb
AuthorityKeyId: 99:8e:02:95:c5:1e:55:22:7b:87:70:8b:5e:1c:01:c2:76:c4:ae:e8

Fingerprint (sha1): 6a:e3:12:c0:6a:90:df:16:04:d2:0a:87:fe:48:20:59:cf:35:e5:7d
Fingerprint (sha256): 17:19:e2:61:fd:6b:fb:71:f2:2e:88:a8:54:9a:5f:df:c8:6c:c5:ef:8e:73:11:68:fc:ea:45:ff:55:5f:da:de

Issuing Certificate URL: http://crt.comodoca4.com/COMODODomainValidationLegacyServerCA2.crt

Revocation information

OCSP Server: http://ocsp.comodoca4.com
CRL Distribution Point: http://crl.comodoca4.com/COMODODomainValidationLegacyServerCA2.crl

Check the revocation status for certificate ssl391365.cloudflaressl.com

31

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ssl391365.cloudflaressl.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ssl391365.cloudflaressl.com
*.2-monkeys.nl
*.cambrian.com
*.coloringkidsclub.com
*.elephantandcastle-lendlease.com
*.mainlandcannabis.com
*.nissanseminuevosgarantizados.mx
*.outbreak.games
*.phonesexkingdom.com
*.photofoundation.org
*.playvk.com
*.simplesolutions.org
*.smp.org
*.sportschatplace.com
*.summersolutions.net
*.toosmart.nl
2-monkeys.nl
cambrian.com
coloringkidsclub.com
elephantandcastle-lendlease.com
mainlandcannabis.com
nissanseminuevosgarantizados.mx
outbreak.games
phonesexkingdom.com
photofoundation.org
playvk.com
simplesolutions.org
smp.org
sportschatplace.com
summersolutions.net
toosmart.nl

Other certificates including the domain name cloudflaressl.com

(limited to 100 certificates)
ssl381797.cloudflaressl.com
sni32503.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni115750.cloudflaressl.com
sni.cloudflaressl.com
sni155855.cloudflaressl.com
sni59049.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni211154.cloudflaressl.com
sni.cloudflaressl.com
sni189810.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni856209.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni90611.cloudflaressl.com
sni.cloudflaressl.com
sni178904.cloudflaressl.com
sni26581.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni193995.cloudflaressl.com
sni44161.cloudflaressl.com
sni159804.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni146505.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni227751.cloudflaressl.com
sni240860.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni163960.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ssl829466.cloudflaressl.com
sni.cloudflaressl.com
sni44515.cloudflaressl.com
sni.cloudflaressl.com
sni226824.cloudflaressl.com
sni.cloudflaressl.com
sni238751.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni171982.cloudflaressl.com
sni66010.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni204563.cloudflaressl.com
sni147888.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni70031.cloudflaressl.com
sni59352.cloudflaressl.com
sni165754.cloudflaressl.com
sni.cloudflaressl.com
sni234389.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni188256.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni61492.cloudflaressl.com
sni.cloudflaressl.com
sni110040.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com

Certificate

The complete raw certificate details for ssl391365.cloudflaressl.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApB93xv4+jTFIwD78o65R
fnbtQI0IqcZ5v4e5ZvxEWsOJcv5zEHl1p2RAM735/gUnitpgY1qAZt/BiusYJDVa
tjmZKvkFvO3CehMKvCXFU9XQSqe8Z55LPXR3Eb2vsHkFVs+srAkJJNNuc8XNyZZZ
gkaeayLlMww/Na4YKz7fSmfXWFc/6WuWP9hDguohXFSfc6HrBUtm5D28BtIRJjBB
mgrBRi8yjTyRgbSsMiHhMhpNXYzFPUU6hAV2XQ2QzfJWZzVRu0lZKUs3Dx8tkKwi
lWR7sTGOt3uTeysdVMXwtKArzMogu2g9ugkg59dTifLp1ejuObbcDeAkjR2pfuzb
GQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 232695313189289972036450530571207830504
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO CA Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO Domain Validation Legacy Server CA 2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-31 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-09 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Legacy Multi-Domain SSL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ssl391365.cloudflaressl.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20718599404473853812106269413362893858106800701037878238387269643457895038204452527983962373659648777036847483008743534075416959549211696276367897808909716143817387995124455047887019682494855833874820827729962286532972062830372280168488811100643808106980502170037525638634870634328604751964486779282771543639299651639370844167091267406001696527840960439070283218429094217558942800647270324814401221491788944763376627740058293155309150281589085878451853726127869132498836816507603839931824905245974476365768623762930648106736075433340501903420432547565888893852569884483769941545833402526017541816669645688939119172377
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 998e0295c51e55227b87708b5e1c01c276c4aee8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							8cfa9822d3bf59d0ee2214d4f4b0d2265d425bfb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (76 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca4.com/COMODODomainValidationLegacyServerCA2.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca4.com/COMODODomainValidationLegacyServerCA2.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca4.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (649 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ssl391365.cloudflaressl.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.2-monkeys.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cambrian.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.coloringkidsclub.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.elephantandcastle-lendlease.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mainlandcannabis.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.nissanseminuevosgarantizados.mx'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.outbreak.games'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.phonesexkingdom.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.photofoundation.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.playvk.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.simplesolutions.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.smp.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sportschatplace.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.summersolutions.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.toosmart.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '2-monkeys.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cambrian.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coloringkidsclub.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'elephantandcastle-lendlease.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mainlandcannabis.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nissanseminuevosgarantizados.mx'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'outbreak.games'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'phonesexkingdom.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'photofoundation.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'playvk.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'simplesolutions.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smp.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sportschatplace.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'summersolutions.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'toosmart.nl'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		005cef447d9cf096dc3a8a1519148afe65f95b5fbb537c4ba273279a7fcfe58e9f64db6d5ffd4d91713e033621fc1a9bfc3a4c51742bb6bae014d9bacca166c5ef21541ebac0b77900deeee4cb984b0e4f4f32b382fe7929fd02122a9d6d4aeb893d8f657de68bab27f1d1060f20f81584eabc3ecae33803e3dc52d0ce3067a9bdf9a9d36d6835f19ff36ab9d13e6c0b10248652e2d6198ae92adf4391382607c65d1d4eb283b6b4f3e06a8327bbaf550a7522b7de4e17d124fc78163289822f8842c9d19964dceadd1c8e343f317c8772e68c9a2adc2d1692c8dfc4630ab797341f972dc8d01ce4aaab63f957a9ef6841390e7df834517cc4ba39c4cdc458c497