royalafricansafaris.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:93:53:bf:a2:13:fe:a8:ec:1b:52:a6:74:4b:45:ac:60:68 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=royalafricansafaris.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:93:53:bf:a2:13:fe:a8:ec:1b:52:a6:74:4b:45:ac:60:68Serial Number (int): 311469686672343326524872286732409864216680
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 68:58:1f:64:29:38:c8:1a:f5:3a:e1:26:33:f5:79:44:26:c6:26:7e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 30:39:31:6b:a4:62:55:8e:df:4f:a4:ab:2e:62:e5:3a:3a:78:ae:b1
Fingerprint (sha256): 1a:3b:ce:83:4e:24:d6:f4:b8:98:77:0b:c0:04:3c:ad:16:01:b1:b7:83:8d:39:11:87:1e:52:03:97:05:4a:8a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate royalafricansafaris.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for royalafricansafaris.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
royalafricansafaris.com
www.royalafricansafaris.com
www.royalafricansafaris.com
Other certificates including the domain name royalafricansafaris.com
(limited to 100 certificates)
tagesspiegel.kiosk.plus
start.andernach-wirtschaft.de
kiosk.am-weststrand.com
magazine.suncoastergroup.com
royalafricansafaris.com
kiosk.vidaglobal.de
kiosk.am-weststrand.com
media.hirschmann-automotive.com
magazine.legacylighthouse.org
kiosk.der-kleine-georg.de
royalafricansafaris.com
downloads.yspi.ie
magazine.legacylighthouse.org
kiosk.vidaglobal.de
kiosk.der-kleine-georg.de
quals.truebeck.com
www.digital.britishtraveljournal.com
kiosk.vidaglobal.de
magazin.tellz.me
royalafricansafaris.com
kiosk.vidaglobal.de
quals.truebeck.com
emag.indianjeweller.in
publikationen.contipark.de
royalafricansafaris.com
magazine.legacylighthouse.org
royalafricansafaris.com
magazine.legacylighthouse.org
royalafricansafaris.com
books.royalafricansafaris.com
magazine.roarkidsmagazine.com
royalafricansafaris.com
kiosk.vidaglobal.de
news.vdmno.de
kiosk.vidaglobal.de
magazines.somethinggoodmagazines.com
webkiosk.alpenpark.de
onlinecatalog.custom-chrome-europe.com
kiosk.vidaglobal.de
publikationen.contipark.de
magazine.elektropraktiker.de
webkiosk.alpenpark.de
magazine.elektropraktiker.de
magazine.inversionesciel.com
magazine.legacylighthouse.org
magazine.legacylighthouse.org
www.magbooks.icsl.org.in
kiosk.der-kleine-georg.de
kiosk.der-kleine-georg.de
brochure.ntpwarranty.com
wirbeicontipark.contipark.de
www.magbooks.icsl.org.in
royalafricansafaris.com
magazine.cioa.com
webkiosk.alpenpark.de
kataloge.weilermoebel.at
magazine.legacylighthouse.org
downloads.yspi.ie
magazines.somethinggoodmagazines.com
katalog.erima.de
publikationen.jugend-bildung.landkreis.gr
katalog.gartenmode.de
royalafricansafaris.com
royalafricansafaris.com
webkiosk.alpenpark.de
brochure.ntpwarranty.com
magazine.legacylighthouse.org
brochure.ntpwarranty.com
quals.truebeck.com
magazine.legacylighthouse.org
magazine.legacylighthouse.org
magazine.legacylighthouse.org
onlinecatalog.custom-chrome-europe.com
magazines.somethinggoodmagazines.com
brochures.keepmoat.com
kiosk.vidaglobal.de
books.royalafricansafaris.com
magazine.cioa.com
magazine.legacylighthouse.org
wirbeicontipark.contipark.de
magazine.legacylighthouse.org
magazine.elektropraktiker.de
webkiosk.alpenpark.de
magazine.ausemergencyservices.com.au
kiosk.vidaglobal.de
kataloge.teppich-stark.de
books.royalafricansafaris.com
webkiosk.alpenpark.de
ebook.frcemexambookstore.co.uk
onlinecatalog.custom-chrome-europe.com
royalafricansafaris.com
ebooks.royalafricansafaris.com
bkdmno.vdmno.de
webkiosk.alpenpark.de
kiosk.der-kleine-georg.de
webkiosks.corshamprint.co.uk
webkiosk.alpenpark.de
emag.indianjeweller.in
kiosk.der-kleine-georg.de
emag.indianjeweller.in
start.andernach-wirtschaft.de
kiosk.am-weststrand.com
magazine.suncoastergroup.com
royalafricansafaris.com
kiosk.vidaglobal.de
kiosk.am-weststrand.com
media.hirschmann-automotive.com
magazine.legacylighthouse.org
kiosk.der-kleine-georg.de
royalafricansafaris.com
downloads.yspi.ie
magazine.legacylighthouse.org
kiosk.vidaglobal.de
kiosk.der-kleine-georg.de
quals.truebeck.com
www.digital.britishtraveljournal.com
kiosk.vidaglobal.de
magazin.tellz.me
royalafricansafaris.com
kiosk.vidaglobal.de
quals.truebeck.com
emag.indianjeweller.in
publikationen.contipark.de
royalafricansafaris.com
magazine.legacylighthouse.org
royalafricansafaris.com
magazine.legacylighthouse.org
royalafricansafaris.com
books.royalafricansafaris.com
magazine.roarkidsmagazine.com
royalafricansafaris.com
kiosk.vidaglobal.de
news.vdmno.de
kiosk.vidaglobal.de
magazines.somethinggoodmagazines.com
webkiosk.alpenpark.de
onlinecatalog.custom-chrome-europe.com
kiosk.vidaglobal.de
publikationen.contipark.de
magazine.elektropraktiker.de
webkiosk.alpenpark.de
magazine.elektropraktiker.de
magazine.inversionesciel.com
magazine.legacylighthouse.org
magazine.legacylighthouse.org
www.magbooks.icsl.org.in
kiosk.der-kleine-georg.de
kiosk.der-kleine-georg.de
brochure.ntpwarranty.com
wirbeicontipark.contipark.de
www.magbooks.icsl.org.in
royalafricansafaris.com
magazine.cioa.com
webkiosk.alpenpark.de
kataloge.weilermoebel.at
magazine.legacylighthouse.org
downloads.yspi.ie
magazines.somethinggoodmagazines.com
katalog.erima.de
publikationen.jugend-bildung.landkreis.gr
katalog.gartenmode.de
royalafricansafaris.com
royalafricansafaris.com
webkiosk.alpenpark.de
brochure.ntpwarranty.com
magazine.legacylighthouse.org
brochure.ntpwarranty.com
quals.truebeck.com
magazine.legacylighthouse.org
magazine.legacylighthouse.org
magazine.legacylighthouse.org
onlinecatalog.custom-chrome-europe.com
magazines.somethinggoodmagazines.com
brochures.keepmoat.com
kiosk.vidaglobal.de
books.royalafricansafaris.com
magazine.cioa.com
magazine.legacylighthouse.org
wirbeicontipark.contipark.de
magazine.legacylighthouse.org
magazine.elektropraktiker.de
webkiosk.alpenpark.de
magazine.ausemergencyservices.com.au
kiosk.vidaglobal.de
kataloge.teppich-stark.de
books.royalafricansafaris.com
webkiosk.alpenpark.de
ebook.frcemexambookstore.co.uk
onlinecatalog.custom-chrome-europe.com
royalafricansafaris.com
ebooks.royalafricansafaris.com
bkdmno.vdmno.de
webkiosk.alpenpark.de
kiosk.der-kleine-georg.de
webkiosks.corshamprint.co.uk
webkiosk.alpenpark.de
emag.indianjeweller.in
kiosk.der-kleine-georg.de
emag.indianjeweller.in
Certificate
The complete raw certificate details for royalafricansafaris.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGNTCCBR2gAwIBAgISA5NTv6IT/qjsG1KmdEtFrGBoMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA0MTAxODAwMTJaFw0x ODA3MDkxODAwMTJaMCIxIDAeBgNVBAMTF3JveWFsYWZyaWNhbnNhZmFyaXMuY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4GBUywJ4Ex254zL9yAp mZBftmylaYIbb1EWjKIoTksVlFDJXO842mppq8Swq2odYu6oMa2Bo5JWFtepzpFg 9t1cck8LvkVkyLLJOt/fFYNSvGjKF3T8dPS0GroCpV06hxjJuoeiKk/abyX8j8ZV TODYhBb2gvgHsM4tSslVcxB9LuLDTDPCA59Ds6jeocEaOfMlUg4FesqwvtCmpk0R pl2w5vbuJ/MA2wMv47v48EdG4h5aDBfcMYC8hUb75SmFwchSvslRrwLvr/htMy3F COMcuo5qKEdCiIlBTJKs/93FfzukavLSeQL6/ZTaPJ/yqXcw4OTwOMxs+hJnKbH3 ywIDAQABo4IDOzCCAzcwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRoWB9kKTjIGvU6 4SYz9XlEJsYmfjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggr BgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRz ZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRz ZW5jcnlwdC5vcmcvMD8GA1UdEQQ4MDaCF3JveWFsYWZyaWNhbnNhZmFyaXMuY29t ght3d3cucm95YWxhZnJpY2Fuc2FmYXJpcy5jb20wgf4GA1UdIASB9jCB8zAIBgZn gQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpodHRwOi8vY3Bz LmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlzIENlcnRpZmlj YXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcgUGFydGllcyBh bmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRpZmljYXRlIFBvbGlj eSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9yZXBvc2l0b3J5LzCC AQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2ANt0r+7LKeyx/so+cW0s5bmquzb3hHGD x12dTze2H79kAAABYrDuCWoAAAQDAEcwRQIhAIekFHPktLj18mS5x8WxDXEE5aNb abfSGP7g13bqVwmaAiAnqDEshu1LiHEVHyf/zpPdQ2vFL7eGfe8y8iARCfpBIQB1 ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAABYrDuCXQAAAQDAEYw RAIgM6JlzLZGsFpehpbU6C5JQNr/td74cko77B5fuNWMgtYCIAC00ccHMxOgSHaV vuP7Ow83Pbl553CkIeYA9tqysk1cMA0GCSqGSIb3DQEBCwUAA4IBAQBFmxLgMhTw CKb5VE4xhxJFLyVP4dSYuvdR+lI5aQxNnAYBbzk2MzGs9qcY2AFwNZ0l2T5L7dLG b3NmbsKGQB6nAMlTTfvYlTbfq5yB8254F7y2gtTfjEtYluWGkJsFolB/TG0DVZvx XwZQ4IY7aNu01xG8LZlJFcbVaANAP5BHr5tJlzCOZILHwGgh0MypfIe7TQcr+EkE CCPOYZu2wwQu7OKcGk6L4z+V9531ioM3x7jltrb2ngBGeClR+1kj7DnC9h2QzwdU 9Ral21lwE0tC6zJJ1L3TB1vlBzZpRCAcRvCzRv9bsfBfcbVsKXcsud6rNEf5eDYh UJBR8ciGtvZy -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4GBUywJ4Ex254zL9yAp mZBftmylaYIbb1EWjKIoTksVlFDJXO842mppq8Swq2odYu6oMa2Bo5JWFtepzpFg 9t1cck8LvkVkyLLJOt/fFYNSvGjKF3T8dPS0GroCpV06hxjJuoeiKk/abyX8j8ZV TODYhBb2gvgHsM4tSslVcxB9LuLDTDPCA59Ds6jeocEaOfMlUg4FesqwvtCmpk0R pl2w5vbuJ/MA2wMv47v48EdG4h5aDBfcMYC8hUb75SmFwchSvslRrwLvr/htMy3F COMcuo5qKEdCiIlBTJKs/93FfzukavLSeQL6/ZTaPJ/yqXcw4OTwOMxs+hJnKbH3 ywIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 311469686672343326524872286732409864216680 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-10 18:00:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-09 18:00:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'royalafricansafaris.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21650611531309583569181864418793460738956793849279133960972983437783544161227692556828511878418238622804877016560642897558846666347859761317111412453060944323716685739396096655244946093490740152994235136803534042059589385635412425337388910255896327638388426847989457495113734174300560750825712141400072176385692538644980112016829847815247633726235479263259706728470658191096138994843562648671660283751102101838979214449815539639377563414019483126901634740103835187912636919220071572826924628496622605922898719818472306608269137069029334122020843249536221598418417459157955966943131526008125117914066525664119562041291 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 68581f642938c81af53ae12633f5794426c6267e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'royalafricansafaris.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.royalafricansafaris.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf6400000162b0ee096a000004030047304502210087a41473e4b4b8f5f264b9c7c5b10d7104e5a35b69b7d218fee0d776ea57099a022027a8312c86ed4b8871151f27ffce93dd436bc52fb7867def32f2201109fa4121007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000162b0ee09740000040300463044022033a265ccb646b05a5e8696d4e82e4940daffb5def8724a3bec1e5fb8d58c82d6022000b4d1c7073313a0487695bee3fb3b0f373db979e770a421e600f6dab2b24d5c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00459b12e03214f008a6f9544e318712452f254fe1d498baf751fa5239690c4d9c06016f39363331acf6a718d80170359d25d93e4bedd2c66f73666ec286401ea700c9534dfbd89536dfab9c81f36e7817bcb682d4df8c4b5896e586909b05a2507f4c6d03559bf15f0650e0863b68dbb4d711bc2d994915c6d56803403f9047af9b4997308e6482c7c06821d0cca97c87bb4d072bf849040823ce619bb6c3042eece29c1a4e8be33f95f79df58a8337c7b8e5b6b6f69e0046782951fb5923ec39c2f61d90cf0754f516a5db5970134b42eb3249d4bdd3075be507366944201c46f0b346ff5bb1f05f71b56c29772cb9deab3447f9783621509051f1c886b6f672