inv3te.oui.sncf
Issued by R3
About this certificate
This digital certificate with serial number 04:20:06:bf:61:44:59:70:ab:d8:ec:a1:5f:b1:13:b0:12:11 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=inv3te.oui.sncf
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:20:06:bf:61:44:59:70:ab:d8:ec:a1:5f:b1:13:b0:12:11Serial Number (int): 359347148537994634046912176549445170631185
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ff:db:5e:78:27:01:92:64:58:6c:fc:d0:44:65:d5:bf:61:ed:9c:8f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 33:95:2b:26:45:7e:08:83:9e:c5:71:36:c3:66:c6:6d:23:52:e0:6b
Fingerprint (sha256): 17:d2:79:98:7f:2d:53:1a:21:c3:7c:5e:7b:38:be:cd:0b:80:1d:3b:f5:ee:9f:e9:ec:c5:8f:02:e1:f8:18:35
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate inv3te.oui.sncf
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for inv3te.oui.sncf
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
inv3te.oui.sncf
Other certificates including the domain name oui.sncf
(limited to 100 certificates)
hiflow.oui.sncf
kwsjy9.oui.sncf
ch.jeu.oui.sncf
allianz-travel.oui.sncf
forms.oui.sncf
mesbagages.oui.sncf
globe-ext2-cnit-gw.oui.sncf
hiflow.oui.sncf
da.oui.sncf
fr.jeu.oui.sncf
kwsjy9.oui.sncf
r1ztni.oui.sncf
zum7cc.oui.sncf
ch.hotel.oui.sncf
sstats.oui.sncf
it.hotel.oui.sncf
forms.oui.sncf
v.oui.sncf
v.oui.sncf
eu.jeu.oui.sncf
kwsjy9.oui.sncf
ch.jeu.oui.sncf
globe-ext2-cnit-gw.oui.sncf
mirror.avis.co.uk
sstats.oui.sncf
autotrain.oui.sncf
mirror.avis.co.uk
hotel.oui.sncf
lu.hotel.oui.sncf
autotrain.oui.sncf
*.fret.sncf.com
forms.oui.sncf
zum7cc.oui.sncf
partenariat.oui.sncf
inv3te.oui.sncf
presse.ouitalk.oui.sncf
*.oui.sncf
v.oui.sncf
abonnement.voyages-sncf.com
ao.oui.sncf
oui.sncf
v.oui.sncf
forms.oui.sncf
eu.jeu.oui.sncf
mirror.avis.co.uk
agence.voyages-sncf.com
zum7cc.oui.sncf
bagages.oui.sncf
es.jeu.oui.sncf
v.oui.sncf
be.hotel.oui.sncf
jobs.oui.sncf
nl.hotel.oui.sncf
tgvpop.oui.sncf
it.hotel.oui.sncf
ao.oui.sncf
mesbagages.oui.sncf
partenariat.oui.sncf
presse.ouitalk.oui.sncf
hiflow.oui.sncf
es.jeu.oui.sncf
ouitalk.oui.sncf
zum7cc.oui.sncf
autotrain.oui.sncf
secure.analytics.voyages-sncf.com
inv3te.oui.sncf
fl5dpe.oui.sncf
monchauffeur.oui.sncf
presse.ouitalk.oui.sncf
oui.sncf
oui.sncf
kwsjy9.oui.sncf
partenariat.oui.sncf
partenariat.oui.sncf
*.avis.fr
fl5dpe.oui.sncf
restaurationabord.oui.sncf
presse.ouitalk.oui.sncf
ch.jeu.oui.sncf
ch.jeu.oui.sncf
bagages.oui.sncf
kwsjy9.oui.sncf
presse.vous.sncf-connect.com
secure.analytics.voyages-sncf.com
r1ztni.oui.sncf
interrail.oui.sncf
lebartgv.oui.sncf
mesbagages.oui.sncf
v.oui.sncf
hiflow.oui.sncf
ch.jeu.oui.sncf
hiflow.oui.sncf
eu.jeu.oui.sncf
oui.sncf
*.fret.sncf.com
globe-cnit-gw.oui.sncf
presse.ouitalk.oui.sncf
mta.evtech.oui.sncf
oui.sncf
it.hotel.oui.sncf
kwsjy9.oui.sncf
ch.jeu.oui.sncf
allianz-travel.oui.sncf
forms.oui.sncf
mesbagages.oui.sncf
globe-ext2-cnit-gw.oui.sncf
hiflow.oui.sncf
da.oui.sncf
fr.jeu.oui.sncf
kwsjy9.oui.sncf
r1ztni.oui.sncf
zum7cc.oui.sncf
ch.hotel.oui.sncf
sstats.oui.sncf
it.hotel.oui.sncf
forms.oui.sncf
v.oui.sncf
v.oui.sncf
eu.jeu.oui.sncf
kwsjy9.oui.sncf
ch.jeu.oui.sncf
globe-ext2-cnit-gw.oui.sncf
mirror.avis.co.uk
sstats.oui.sncf
autotrain.oui.sncf
mirror.avis.co.uk
hotel.oui.sncf
lu.hotel.oui.sncf
autotrain.oui.sncf
*.fret.sncf.com
forms.oui.sncf
zum7cc.oui.sncf
partenariat.oui.sncf
inv3te.oui.sncf
presse.ouitalk.oui.sncf
*.oui.sncf
v.oui.sncf
abonnement.voyages-sncf.com
ao.oui.sncf
oui.sncf
v.oui.sncf
forms.oui.sncf
eu.jeu.oui.sncf
mirror.avis.co.uk
agence.voyages-sncf.com
zum7cc.oui.sncf
bagages.oui.sncf
es.jeu.oui.sncf
v.oui.sncf
be.hotel.oui.sncf
jobs.oui.sncf
nl.hotel.oui.sncf
tgvpop.oui.sncf
it.hotel.oui.sncf
ao.oui.sncf
mesbagages.oui.sncf
partenariat.oui.sncf
presse.ouitalk.oui.sncf
hiflow.oui.sncf
es.jeu.oui.sncf
ouitalk.oui.sncf
zum7cc.oui.sncf
autotrain.oui.sncf
secure.analytics.voyages-sncf.com
inv3te.oui.sncf
fl5dpe.oui.sncf
monchauffeur.oui.sncf
presse.ouitalk.oui.sncf
oui.sncf
oui.sncf
kwsjy9.oui.sncf
partenariat.oui.sncf
partenariat.oui.sncf
*.avis.fr
fl5dpe.oui.sncf
restaurationabord.oui.sncf
presse.ouitalk.oui.sncf
ch.jeu.oui.sncf
ch.jeu.oui.sncf
bagages.oui.sncf
kwsjy9.oui.sncf
presse.vous.sncf-connect.com
secure.analytics.voyages-sncf.com
r1ztni.oui.sncf
interrail.oui.sncf
lebartgv.oui.sncf
mesbagages.oui.sncf
v.oui.sncf
hiflow.oui.sncf
ch.jeu.oui.sncf
hiflow.oui.sncf
eu.jeu.oui.sncf
oui.sncf
*.fret.sncf.com
globe-cnit-gw.oui.sncf
presse.ouitalk.oui.sncf
mta.evtech.oui.sncf
oui.sncf
it.hotel.oui.sncf
Certificate
The complete raw certificate details for inv3te.oui.sncf in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGIjCCBQqgAwIBAgISBCAGv2FEWXCr2OyhX7ETsBIRMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMTA4MDgyMTExMjNaFw0yMTExMDYyMTExMjFaMBoxGDAWBgNVBAMT D2ludjN0ZS5vdWkuc25jZjCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB ANZUCygeF1JF72SsTFJFAUrdFFdZdZ6bJbKkJYXlHKAQphIDD9ojncFpsqhRscEG 1W8XG/k81YnEiL5RcKBOG03x3iqXEVHw89EkHOyHg0q0iKBtT4q7pNHO7diMECIm uoKeBwZA1Uv1g7lSySxIwSFkmPB9IyX/aR8Lf4cNkwv9Swi+sFsDj50v2QZzad4o bnxzab6rCmeolLE1+8O7+6DHZZHVTW2+Hf3tVsRuEQxTXwpW6B2g43z+82sicFgY K9Ymk7DceRz5jOWpG3bn0qesm4FFMZUjilCtcYQdyd1eZpLlEPJfMdfOvG2+NXDs v4NMw+s0qr60f8v0rHDPHORF6NLgFaQlemIcnY6MCCTN/YtX23p/7wGTXTjzxqPB qiZtSzPmvBad8cS+deZ5V8HtOF5Sgrbr5xB+aGuWXPfcQBnqrX30+sazwnRo5f7B eNB+0qbNjKZx99lyXAUf66hh2H9TB4MmnflV/sEQbx3TOAw7oeJ9cmvyBG6tYTC1 rU3vdDB5e476F01Q2z3X/g2GmEyNiNwe9fTrjJ5vZHb3UowVVuS6egAabJExN4Uu 4g2Vu15Gq+dDHG0+gNEGj9hJDHiDYkaq3c/Epehb5pfW9RLO6MxwvOgHCGvW7NxU 2AptAP1ue9M/NRQldzi58cUCSpTQ/7dSpMPPmHC+gsWFAgMBAAGjggJIMIICRDAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFP/bXngnAZJkWGz80ERl1b9h7ZyPMB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMBoGA1UdEQQTMBGCD2ludjN0ZS5vdWkuc25jZjBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQIGCisGAQQB1nkCBAIEgfME gfAA7gB1AESUZS6w7s6vxEAH2Kj+KMDa5oK+2MsxtT/TM5a1toGoAAABeyfSEhoA AAQDAEYwRAIgRDmh4MF2R4ey2qvBZl0fZkER3sWL6NJCnW+J4SbUUJQCIAeVK61U 4biXMl/tvfmOGtDog3pVsDof+a7Z+LYQ1wfaAHUAfT7y+I//iFVoJMLAyp5SiXkr xQ54CX8uapdomX4i8NcAAAF7J9ISIwAABAMARjBEAiB1VeriGSNXH5bXDUJa0ATM bBGUfbth4TMiY3lRBUA9cwIgemjcTux5WFTgtVY/lIHtOFnjWLg5sRboffhCjrHx 79QwDQYJKoZIhvcNAQELBQADggEBAJYr6otNGGWKeqvy4j3BB/ItFS2KjkPR61wD RtQIz9QktMoVQFAjX1y0jvrXJTIX6z6Fa80idr8AvrBwSxRoAT5kVLJcKa7Tknyg zi8W+Qw4K0Cvoo92ohV0VHxyEyslGAg/6PnSRNbGU2B8Vxfy63kUr9LcYLPj7zSQ ecX3TouLtgfosRRuWhSnbWzcTF9mdkcLYKYyJazJDIhRYCQ1l7IwemC5Jb7PhPH2 VkWxecIqwtFZGim2kb/C9maCPHfIXB91O2eIRBQpbV1nFdx0YRZPEPf68flFsqef oQKa9o5InB2jwXuF85SMAbY4sNMjhe0RitG2aY+sA32hjHneWus= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1lQLKB4XUkXvZKxMUkUB St0UV1l1npslsqQlheUcoBCmEgMP2iOdwWmyqFGxwQbVbxcb+TzVicSIvlFwoE4b TfHeKpcRUfDz0SQc7IeDSrSIoG1Piruk0c7t2IwQIia6gp4HBkDVS/WDuVLJLEjB IWSY8H0jJf9pHwt/hw2TC/1LCL6wWwOPnS/ZBnNp3ihufHNpvqsKZ6iUsTX7w7v7 oMdlkdVNbb4d/e1WxG4RDFNfClboHaDjfP7zayJwWBgr1iaTsNx5HPmM5akbdufS p6ybgUUxlSOKUK1xhB3J3V5mkuUQ8l8x1868bb41cOy/g0zD6zSqvrR/y/SscM8c 5EXo0uAVpCV6YhydjowIJM39i1fben/vAZNdOPPGo8GqJm1LM+a8Fp3xxL515nlX we04XlKCtuvnEH5oa5Zc99xAGeqtffT6xrPCdGjl/sF40H7Sps2MpnH32XJcBR/r qGHYf1MHgyad+VX+wRBvHdM4DDuh4n1ya/IEbq1hMLWtTe90MHl7jvoXTVDbPdf+ DYaYTI2I3B719OuMnm9kdvdSjBVW5Lp6ABpskTE3hS7iDZW7Xkar50McbT6A0QaP 2EkMeINiRqrdz8Sl6Fvml9b1Es7ozHC86AcIa9bs3FTYCm0A/W570z81FCV3OLnx xQJKlND/t1Kkw8+YcL6CxYUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 359347148537994634046912176549445170631185 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-08 21:11:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-11-06 21:11:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'inv3te.oui.sncf' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 874383158276049337702236559188443431205839121378797264242792983406875620366174488555891005209081807834381545343212234399006511044524414271715090667625839431894056610310329320221031163370838175400754459496051222113602560057840398781973972602064194209673447716516063146918333792206003542417425746403128106983895993955049195372561506707455960326508709698902923137890509686348060104278720619035430565401294099736618489542179387094038554174265710084565109012826975452157851453255919580403656388225453444864923461715213578554190995119518022024913123013634529337562371085508496592660176891249209908176263820375153108160831243592601244233491381229294467373636384292843723090794697474126188000574468678563727578937822279010146809894614807662750708937809109299999128405127556846969707917865413822583101632161116048667484361481628162505805637392813802455540388453392383501112545787126320693226252759688885038569283732902884790217384861353124017856868451506289812776010378794897866667961756411713786186408938954394948950705184487562858735672344516708396791270092899464735555028222461828849326496547486597955871357738823519579872991859342246439308505389142684901412755808428988790010683990318954894794635258155774725048544211498455461876006569349 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ffdb5e7827019264586cfcd04465d5bf61ed9c8f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inv3te.oui.sncf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075004494652eb0eeceafc44007d8a8fe28c0dae682bed8cb31b53fd33396b5b681a80000017b27d2121a000004030046304402204439a1e0c1764787b2daabc1665d1f664111dec58be8d2429d6f89e126d45094022007952bad54e1b897325fedbdf98e1ad0e8837a55b03a1ff9aed9f8b610d707da0075007d3ef2f88fff88556824c2c0ca9e5289792bc50e78097f2e6a9768997e22f0d70000017b27d21223000004030046304402207555eae21923571f96d70d425ad004cc6c11947dbb61e1332263795105403d7302207a68dc4eec795854e0b5563f9481ed3859e358b839b116e87df8428eb1f1efd4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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