nomi.netflixstudios.com
Issued by R3
About this certificate
This digital certificate with serial number 03:eb:8b:46:99:64:4f:17:ed:35:ee:9a:91:e9:fc:63:4c:b8 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=nomi.netflixstudios.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:eb:8b:46:99:64:4f:17:ed:35:ee:9a:91:e9:fc:63:4c:b8Serial Number (int): 341488343285051443449429830681343757077688
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 54:9d:75:2a:5f:45:01:53:95:77:b5:1c:4e:05:06:3f:9f:27:c2:2a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 5b:b4:51:bb:3f:33:38:a8:5d:f2:3b:58:c3:d5:6f:63:cf:66:e4:fc
Fingerprint (sha256): 1b:0b:3c:1d:62:a0:5f:79:01:7e:73:77:dc:3e:01:91:49:c2:2a:15:13:71:e9:df:94:4c:99:27:72:30:89:cb
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate nomi.netflixstudios.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nomi.netflixstudios.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nomi.netflixstudios.com
Other certificates including the domain name netflixstudios.com
(limited to 100 certificates)
productionfinance-test.test.netflixstudios.com
gravity-api-uat2.test.finance.netflixstudios.com
mbgitaprod2-api.test.finance.netflixstudios.com
collectionscrudapi.test.netflix.net
npfp.netflixstudios.com
gravity-dev2.test.netflixstudios.com
newprequel.prod.netflixstudios.com
gravity-costcategorysvc-api-dr.prod.finance.netflixstudios.com
barb-uat.test.netflixstudios.com
*.originstory.prod.netflixstudios.com
ctech-flix6-02.prod.prodtech.netflixstudios.com
aryasamajthaltej.com
originstoryol-beta-alb.test.netflixstudios.com
finapp-dev2.test.netflixstudios.com
prodiclewta.test.netflixstudios.com
valuations.prod.netflixstudios.com
appmap.netflixstudios.com
admin.np3.netflixstudios.com
la4s1f1-ad01.nah.la4.netflixstudios.com
finapp-dev1.test.netflixstudios.com
mbjwhitney.test.finance.netflixstudios.com
npfp.prod.netflixstudios.com
np3.netflixstudios.com
SAN-originstoryol-dev-alb.test.netflixstudios.com
orionapi.itp.netflix.net
originstoryworkflowapi.prod.netflixstudios.com
partnerhelp.netflixstudios.com
mbgita5.test.finance.netflixstudios.com
originstoryworkflowapi.prod.netflixstudios.com
prodicle-assets.prod.netflixstudios.com
minerva-beta.itp.netflix.net
finapp-dev2.test.netflixstudios.com
*.prodicledistribution-sre.test.netflixstudios.com
oldprequel.prod.netflixstudios.com
creative-technology-tools.netflixstudios.com
gravity-int-api.prod.finance.netflixstudios.com
help.netflixstudios.com
prequel-beta.test.netflixstudios.com
hubble-staging.prod.netflixstudios.com
sidekiq.prodiclemove.prod.netflixstudios.com
prequel-beta.test.netflixstudios.com
mbdeletetest-int.test.finance.netflixstudios.com
gravity-batch-api-dev.test.finance.netflixstudios.com
gravity-calcservice-api.prod.finance.netflixstudios.com
pse-p4d-svr.prod.prodtech.netflixstudios.com
Ism.netflixstudios.com
sidekiq.prodiclecalendar.prod.netflixstudios.com
events.prodiclemessaging-dev.test.netflixstudios.com
partnerhelp.netflixstudios.com
orionapi-test.test.netflixstudios.com
npv.netflixstudios.com
*.test.netflixstudios.com
*.test.netflixstudios.com
*.originstory.test.netflixstudios.com
norwaysavings.wallit.app
prequel-beta.test.netflixstudios.com
originstoryol-prod-alb.prod.netflixstudios.com
gravity-api.prod.finance.netflixstudios.com
mbaniruddha4fxupdate-int.test.finance.netflixstudios.com
originstoryworkflowproxy-dev.test.netflixstudios.com
*.crossfire.test.finance.netflixstudios.com
ptap.netflixstudios.com
hubble-adhoc.test.netflixstudios.com
turbo.test.netflixstudios.com
gravity-costcategorysvc-api-dev4.test.finance.netflixstudios.com
prodiclewtb.prod.netflixstudios.com
mbgita4.test.finance.netflixstudios.com
finapp-dev-4.test.netflixstudios.com
releasehub.netflixstudios.com
watson-beta.itp.netflix.net
gravity-api-dev3.test.finance.netflixstudios.com
sherlock-test.netflix.com
sgactionpost.staging.netflixstudios.com
nptap.netflixstudios.com
originstory.prod.netflixstudios.com
mbgitaprod2.test.finance.netflixstudios.com
nomi.netflixstudios.com
gravity-batch-api.prod.finance.netflixstudios.com
*.originstory-dev.test.netflixstudios.com
productionfinance-test.test.netflixstudios.com
finapp-sandbox.test.netflixstudios.com
dr.gravity.prod.netflixstudios.com
originstory-stage.prod.netflixstudios.com
hubble-adhoc.test.netflixstudios.com
prequel-api.test.netflixstudios.com
npv.netflixstudios.com
npfp.test.netflixstudios.com
gravity-costcategorysvc-api.prod.finance.netflixstudios.com
meechum.prod.netflix.net
mb-api.test.finance.netflixstudios.com
gravity-api-dev1.test.finance.netflixstudios.com
siworkstation.int.stable.us-west-2.test.netflixstudios.com
ctech-flix6-04.prod.prodtech.netflixstudios.com
turbo.test.netflixstudios.com
oldprequel.prod.netflixstudios.com
orion-ldsa-api-uat2.test.netflixstudios.com
swordfish.prod.netflix.net
stash.netflixstudios.com
mbaniruddhad3344.test.finance.netflixstudios.com
npfp.test.netflixstudios.com
gravity-api-uat2.test.finance.netflixstudios.com
mbgitaprod2-api.test.finance.netflixstudios.com
collectionscrudapi.test.netflix.net
npfp.netflixstudios.com
gravity-dev2.test.netflixstudios.com
newprequel.prod.netflixstudios.com
gravity-costcategorysvc-api-dr.prod.finance.netflixstudios.com
barb-uat.test.netflixstudios.com
*.originstory.prod.netflixstudios.com
ctech-flix6-02.prod.prodtech.netflixstudios.com
aryasamajthaltej.com
originstoryol-beta-alb.test.netflixstudios.com
finapp-dev2.test.netflixstudios.com
prodiclewta.test.netflixstudios.com
valuations.prod.netflixstudios.com
appmap.netflixstudios.com
admin.np3.netflixstudios.com
la4s1f1-ad01.nah.la4.netflixstudios.com
finapp-dev1.test.netflixstudios.com
mbjwhitney.test.finance.netflixstudios.com
npfp.prod.netflixstudios.com
np3.netflixstudios.com
SAN-originstoryol-dev-alb.test.netflixstudios.com
orionapi.itp.netflix.net
originstoryworkflowapi.prod.netflixstudios.com
partnerhelp.netflixstudios.com
mbgita5.test.finance.netflixstudios.com
originstoryworkflowapi.prod.netflixstudios.com
prodicle-assets.prod.netflixstudios.com
minerva-beta.itp.netflix.net
finapp-dev2.test.netflixstudios.com
*.prodicledistribution-sre.test.netflixstudios.com
oldprequel.prod.netflixstudios.com
creative-technology-tools.netflixstudios.com
gravity-int-api.prod.finance.netflixstudios.com
help.netflixstudios.com
prequel-beta.test.netflixstudios.com
hubble-staging.prod.netflixstudios.com
sidekiq.prodiclemove.prod.netflixstudios.com
prequel-beta.test.netflixstudios.com
mbdeletetest-int.test.finance.netflixstudios.com
gravity-batch-api-dev.test.finance.netflixstudios.com
gravity-calcservice-api.prod.finance.netflixstudios.com
pse-p4d-svr.prod.prodtech.netflixstudios.com
Ism.netflixstudios.com
sidekiq.prodiclecalendar.prod.netflixstudios.com
events.prodiclemessaging-dev.test.netflixstudios.com
partnerhelp.netflixstudios.com
orionapi-test.test.netflixstudios.com
npv.netflixstudios.com
*.test.netflixstudios.com
*.test.netflixstudios.com
*.originstory.test.netflixstudios.com
norwaysavings.wallit.app
prequel-beta.test.netflixstudios.com
originstoryol-prod-alb.prod.netflixstudios.com
gravity-api.prod.finance.netflixstudios.com
mbaniruddha4fxupdate-int.test.finance.netflixstudios.com
originstoryworkflowproxy-dev.test.netflixstudios.com
*.crossfire.test.finance.netflixstudios.com
ptap.netflixstudios.com
hubble-adhoc.test.netflixstudios.com
turbo.test.netflixstudios.com
gravity-costcategorysvc-api-dev4.test.finance.netflixstudios.com
prodiclewtb.prod.netflixstudios.com
mbgita4.test.finance.netflixstudios.com
finapp-dev-4.test.netflixstudios.com
releasehub.netflixstudios.com
watson-beta.itp.netflix.net
gravity-api-dev3.test.finance.netflixstudios.com
sherlock-test.netflix.com
sgactionpost.staging.netflixstudios.com
nptap.netflixstudios.com
originstory.prod.netflixstudios.com
mbgitaprod2.test.finance.netflixstudios.com
nomi.netflixstudios.com
gravity-batch-api.prod.finance.netflixstudios.com
*.originstory-dev.test.netflixstudios.com
productionfinance-test.test.netflixstudios.com
finapp-sandbox.test.netflixstudios.com
dr.gravity.prod.netflixstudios.com
originstory-stage.prod.netflixstudios.com
hubble-adhoc.test.netflixstudios.com
prequel-api.test.netflixstudios.com
npv.netflixstudios.com
npfp.test.netflixstudios.com
gravity-costcategorysvc-api.prod.finance.netflixstudios.com
meechum.prod.netflix.net
mb-api.test.finance.netflixstudios.com
gravity-api-dev1.test.finance.netflixstudios.com
siworkstation.int.stable.us-west-2.test.netflixstudios.com
ctech-flix6-04.prod.prodtech.netflixstudios.com
turbo.test.netflixstudios.com
oldprequel.prod.netflixstudios.com
orion-ldsa-api-uat2.test.netflixstudios.com
swordfish.prod.netflix.net
stash.netflixstudios.com
mbaniruddhad3344.test.finance.netflixstudios.com
npfp.test.netflixstudios.com
Certificate
The complete raw certificate details for nomi.netflixstudios.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgISA+uLRplkTxftNe6aken8Y0y4MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA1MDQxNzM3NTJaFw0yMzA4MDIxNzM3NTFaMCIxIDAeBgNVBAMT F25vbWkubmV0ZmxpeHN0dWRpb3MuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAsDTNbTMyB/9WJuoq8zphvcJkKCFGbvrCT26bW2EGBiocLrw8cYSa bz4UvfVj0jlvkk+RYDtnC/DsA8dt2FElPzvknbeuJL1+3LMKCqRLSYkeVuqqAK2+ 6BT35zX++BRSucY3NS1daANRYX6xXqtsDDIfTJtRXn23vQXF656CsroYGOqKgyft LTGbp4rkWS8AaU01hYIkAW29mMVB2gqHTq0yLGYYp+InWnciL9G9eQMJmg/dBLIz 7M+XwDjKj3KMwpMPN9+JQfconHBvQRn675dPkcbTGj5/29P43XJwYf1adQdvKZgn VP5CboFvDoptp23cP86y+0qy5Teub2D0MwIDAQABo4ICUTCCAk0wDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8E AjAAMB0GA1UdDgQWBBRUnXUqX0UBU5V3tRxOBQY/nyfCKjAfBgNVHSMEGDAWgBQU LrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGG FWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmku bGVuY3Iub3JnLzAiBgNVHREEGzAZghdub21pLm5ldGZsaXhzdHVkaW9zLmNvbTBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQE gfEA7wB1ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABh+gObaQA AAQDAEYwRAIgf+uoyMOVi1ePfyE71+SE9APLOp/BdQoZyfXs14ubczECIFVsH8Co 5seKCzJgS6s6OSqpGeqB1OzAA44VZfvhD5zyAHYArfe++nz/EMiLnT2cHj4YarRn KV3PsQwkyoWGNOvcgooAAAGH6A5uNQAABAMARzBFAiEA6mr9TI/A0RMEJIV2bcYQ R7qAgNt+fRisoZ641XRp/SQCIGBskZ6nGX+GvKfNuRq9u+TKPgero4iiPVClYwzI qbcTMA0GCSqGSIb3DQEBCwUAA4IBAQALFcYVNYrufRXgbDW5/r8mLiSyR/ssa0d7 BGNYn0dCL42927BjPGyk51odh3v3YTb2jFLOqIMjsYeXQyL78UW818vurr5W//+R C5aBSL0c8rbn5YkL10fR2mvVwXYip0KHl2gtkkG9mo3i+qxLmGkHgr416YmNByq/ Q1UB8MftVw39Kr2re7TJzpcS39YFnTV3ruTc4L84esl15K5bYI/kH/Oy+3P5MqX7 utkI6Imv8RpClQeZw/gZjRYAryioPzHWC5MVekLlKXPOGvfgo8fLZ+Oer0vPR0Do 2ARJ5Ozq9+BPnv3jfOgBEiZLiVo+owF3CL6A/TNUYRqo34M/3iPf -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDTNbTMyB/9WJuoq8zph vcJkKCFGbvrCT26bW2EGBiocLrw8cYSabz4UvfVj0jlvkk+RYDtnC/DsA8dt2FEl PzvknbeuJL1+3LMKCqRLSYkeVuqqAK2+6BT35zX++BRSucY3NS1daANRYX6xXqts DDIfTJtRXn23vQXF656CsroYGOqKgyftLTGbp4rkWS8AaU01hYIkAW29mMVB2gqH Tq0yLGYYp+InWnciL9G9eQMJmg/dBLIz7M+XwDjKj3KMwpMPN9+JQfconHBvQRn6 75dPkcbTGj5/29P43XJwYf1adQdvKZgnVP5CboFvDoptp23cP86y+0qy5Teub2D0 MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 341488343285051443449429830681343757077688 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-04 17:37:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-02 17:37:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nomi.netflixstudios.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22243979531337480578863446023706402931870820198915193844129304213489474295375765439241846957747925289861387438214017325259403822606375282851453326894366992335438137818665376732123131442166900050062903202264767165562710273827457737261370556573086260129383957575441608287109356923599744525261037261675380250014727281449382709802049310753701362233003433253458922461202756529019042151403359632856287545310913718361280846962548784125982539438691554811146243756214860659957748684627946279737666448719424757810516971248553301239083387852824172545728071485048415948732910207487143257325359484125208436326867448819379777631283 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 549d752a5f4501539577b51c4e05063f9f27c22a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nomi.netflixstudios.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000187e80e6da4000004030046304402207feba8c8c3958b578f7f213bd7e484f403cb3a9fc1750a19c9f5ecd78b9b73310220556c1fc0a8e6c78a0b32604bab3a392aa919ea81d4ecc0038e1565fbe10f9cf2007600adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a00000187e80e6e350000040300473045022100ea6afd4c8fc0d113042485766dc61047ba8080db7e7d18aca19eb8d57469fd240220606c919ea7197f86bca7cdb91abdbbe4ca3e07aba388a23d50a5630cc8a9b713 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 000b15c615358aee7d15e06c35b9febf262e24b247fb2c6b477b0463589f47422f8dbddbb0633c6ca4e75a1d877bf76136f68c52cea88323b187974322fbf145bcd7cbeeaebe56ffff910b968148bd1cf2b6e7e5890bd747d1da6bd5c17622a7428797682d9241bd9a8de2faac4b98690782be35e9898d072abf435501f0c7ed570dfd2abdab7bb4c9ce9712dfd6059d3577aee4dce0bf387ac975e4ae5b608fe41ff3b2fb73f932a5fbbad908e889aff11a42950799c3f8198d1600af28a83f31d60b93157a42e52973ce1af7e0a3c7cb67e39eaf4bcf4740e8d80449e4eceaf7e04f9efde37ce80112264b895a3ea3017708be80fd3354611aa8df833fde23df