riksbanken.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:9b:d5:8b:de:aa:7b:80:60:8e:ec:56:ac:f1:89:15:7b:34 was issued on by Let's Encrypt.
With 100 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=riksbanken.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9b:d5:8b:de:aa:7b:80:60:8e:ec:56:ac:f1:89:15:7b:34Serial Number (int): 314364476476593666691455996928678333610804
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ed:2a:2e:89:cc:df:39:04:c6:2e:bf:5b:32:5f:57:d1:d2:8f:76:79
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 23:64:d5:0b:a1:f7:2d:48:67:e6:ae:c4:1b:3a:44:77:6c:fb:88:85
Fingerprint (sha256): 1c:5f:aa:1e:85:05:16:d9:33:b0:81:a0:8a:1b:bb:d1:b1:8b:87:c7:50:16:6a:35:7c:3b:f7:63:22:7b:e1:82
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate riksbanken.com
100
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for riksbanken.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.aerogym.com
*.alergija.com
*.alumaxbath.com
*.amazighia.com
*.apook.com
*.assurancewirelless.com
*.avonrespresentative.com
*.capitaloneaccountonline.com
*.caracasfc.com
*.celebertycruises.com
*.chifang.com
*.comofficemax.com
*.cursosdefarmacia.com
*.dufford.com
*.elshaheed.com
*.espncrinfo.com
*.expomisxv.com
*.fotobomb.com
*.kabanos.com
*.laribera.com
*.nikeink.com
*.noyolk.com
*.preslava.com
*.restaurantelajugueteria.com
*.retroxotique.com
*.rettenmaier.com
*.revellin.com
*.rewordmypaper.com
*.richmondcc.com
*.riksbanken.com
*.riteaidpharmacy.com
*.roadlons.com
*.roboticdog.com
*.rockofage.com
*.rollblock.com
*.rosena.com
*.rosim.com
*.roubidoux.com
*.rougon.com
*.royol.com
*.sellingtimeshare.com
*.serieslonuevo.com
*.spex-courier.com
*.stsuer.com
*.thoma.com
*.toyotawatertown.com
*.tudrnatural.com
*.unitedcountryrealty.com
*.westrernunion.com
*.xichuang.com
aerogym.com
alergija.com
alumaxbath.com
amazighia.com
apook.com
assurancewirelless.com
avonrespresentative.com
capitaloneaccountonline.com
caracasfc.com
celebertycruises.com
chifang.com
comofficemax.com
cursosdefarmacia.com
dufford.com
elshaheed.com
espncrinfo.com
expomisxv.com
fotobomb.com
kabanos.com
laribera.com
nikeink.com
noyolk.com
preslava.com
restaurantelajugueteria.com
retroxotique.com
rettenmaier.com
revellin.com
rewordmypaper.com
richmondcc.com
riksbanken.com
riteaidpharmacy.com
roadlons.com
roboticdog.com
rockofage.com
rollblock.com
rosena.com
rosim.com
roubidoux.com
rougon.com
royol.com
sellingtimeshare.com
serieslonuevo.com
spex-courier.com
stsuer.com
thoma.com
toyotawatertown.com
tudrnatural.com
unitedcountryrealty.com
westrernunion.com
xichuang.com
*.alergija.com
*.alumaxbath.com
*.amazighia.com
*.apook.com
*.assurancewirelless.com
*.avonrespresentative.com
*.capitaloneaccountonline.com
*.caracasfc.com
*.celebertycruises.com
*.chifang.com
*.comofficemax.com
*.cursosdefarmacia.com
*.dufford.com
*.elshaheed.com
*.espncrinfo.com
*.expomisxv.com
*.fotobomb.com
*.kabanos.com
*.laribera.com
*.nikeink.com
*.noyolk.com
*.preslava.com
*.restaurantelajugueteria.com
*.retroxotique.com
*.rettenmaier.com
*.revellin.com
*.rewordmypaper.com
*.richmondcc.com
*.riksbanken.com
*.riteaidpharmacy.com
*.roadlons.com
*.roboticdog.com
*.rockofage.com
*.rollblock.com
*.rosena.com
*.rosim.com
*.roubidoux.com
*.rougon.com
*.royol.com
*.sellingtimeshare.com
*.serieslonuevo.com
*.spex-courier.com
*.stsuer.com
*.thoma.com
*.toyotawatertown.com
*.tudrnatural.com
*.unitedcountryrealty.com
*.westrernunion.com
*.xichuang.com
aerogym.com
alergija.com
alumaxbath.com
amazighia.com
apook.com
assurancewirelless.com
avonrespresentative.com
capitaloneaccountonline.com
caracasfc.com
celebertycruises.com
chifang.com
comofficemax.com
cursosdefarmacia.com
dufford.com
elshaheed.com
espncrinfo.com
expomisxv.com
fotobomb.com
kabanos.com
laribera.com
nikeink.com
noyolk.com
preslava.com
restaurantelajugueteria.com
retroxotique.com
rettenmaier.com
revellin.com
rewordmypaper.com
richmondcc.com
riksbanken.com
riteaidpharmacy.com
roadlons.com
roboticdog.com
rockofage.com
rollblock.com
rosena.com
rosim.com
roubidoux.com
rougon.com
royol.com
sellingtimeshare.com
serieslonuevo.com
spex-courier.com
stsuer.com
thoma.com
toyotawatertown.com
tudrnatural.com
unitedcountryrealty.com
westrernunion.com
xichuang.com
Other certificates including the domain name riksbanken.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for riksbanken.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIINHzCCDAegAwIBAgISA5vVi96qe4BgjuxWrPGJFXs0MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MTkxMTE3NTNaFw0x OTEyMTgxMTE3NTNaMBkxFzAVBgNVBAMTDnJpa3NiYW5rZW4uY29tMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnTYGUm2GORBF/hGps1udehmEZXVsORJF TGdJVM1ERQkd7FOJhVlyk/dW3r9wpL8DH0aEQiSjf5Mj5KvWFx8sO81nxC226IfE II3GE0decTgk3qbabApeN21R5n2E3Xj3B7bhCX+7LoHvDDMU4jwrGnviDGlSdP8K qfKoAlDlga6icESnhed6Mpu1h0gtqa6veavD/yqiUcyjIqEIGrP/R/TuZLhH6W9h zhoiGA1QTiNQlFeDFjftD12XpFkiX/E6+EEti6YdkUJupjMx3mARhNYMX3oQx4vT va5eHQc3oVOVC7cpxweN1K0+9qmVV2YitkuWYzUIDDHvJyLlPGfh/iHBBw5mYi8J r6CGJNvR+gfDEW2bR4ut4+kPBWTbxEF53FEc2N9NBE+p7Mjlp7pbmk94hFJOU/2V GjQsU1JBQBfiDXIQf8Ap/gGcAbTlkpzKNlWpde/BqxCdpc5h3/+Gh6Xh6b1JB9BU tHf68DR8jr+qQUV7tuqkyod9GyW+acRcy+cQ+QHsQ28OiCc0n9xNc/v55Un+F5D9 /vhDlg5X/KcSxIOPDTTxSGFktqR9DwcxVOSxGPMqAE3zW7iCM7njrvkK8mO6Zfmx k0etan7/hwUPV2n5HfV3ByBPky7BxI9rRdTbtdLox5v933JSw3lFZ6iHrHR9sIWm e6yR4k1slRkCAwEAAaOCCS4wggkqMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU7Sou iczfOQTGLr9bMl9X0dKPdnkwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzCCBuMGA1UdEQSCBtowggbWgg0qLmFlcm9neW0u Y29tgg4qLmFsZXJnaWphLmNvbYIQKi5hbHVtYXhiYXRoLmNvbYIPKi5hbWF6aWdo aWEuY29tggsqLmFwb29rLmNvbYIYKi5hc3N1cmFuY2V3aXJlbGxlc3MuY29tghkq LmF2b25yZXNwcmVzZW50YXRpdmUuY29tgh0qLmNhcGl0YWxvbmVhY2NvdW50b25s aW5lLmNvbYIPKi5jYXJhY2FzZmMuY29tghYqLmNlbGViZXJ0eWNydWlzZXMuY29t gg0qLmNoaWZhbmcuY29tghIqLmNvbW9mZmljZW1heC5jb22CFiouY3Vyc29zZGVm YXJtYWNpYS5jb22CDSouZHVmZm9yZC5jb22CDyouZWxzaGFoZWVkLmNvbYIQKi5l c3BuY3JpbmZvLmNvbYIPKi5leHBvbWlzeHYuY29tgg4qLmZvdG9ib21iLmNvbYIN Ki5rYWJhbm9zLmNvbYIOKi5sYXJpYmVyYS5jb22CDSoubmlrZWluay5jb22CDCou bm95b2xrLmNvbYIOKi5wcmVzbGF2YS5jb22CHSoucmVzdGF1cmFudGVsYWp1Z3Vl dGVyaWEuY29tghIqLnJldHJveG90aXF1ZS5jb22CESoucmV0dGVubWFpZXIuY29t gg4qLnJldmVsbGluLmNvbYITKi5yZXdvcmRteXBhcGVyLmNvbYIQKi5yaWNobW9u ZGNjLmNvbYIQKi5yaWtzYmFua2VuLmNvbYIVKi5yaXRlYWlkcGhhcm1hY3kuY29t gg4qLnJvYWRsb25zLmNvbYIQKi5yb2JvdGljZG9nLmNvbYIPKi5yb2Nrb2ZhZ2Uu Y29tgg8qLnJvbGxibG9jay5jb22CDCoucm9zZW5hLmNvbYILKi5yb3NpbS5jb22C Dyoucm91Ymlkb3V4LmNvbYIMKi5yb3Vnb24uY29tggsqLnJveW9sLmNvbYIWKi5z ZWxsaW5ndGltZXNoYXJlLmNvbYITKi5zZXJpZXNsb251ZXZvLmNvbYISKi5zcGV4 LWNvdXJpZXIuY29tggwqLnN0c3Vlci5jb22CCyoudGhvbWEuY29tghUqLnRveW90 YXdhdGVydG93bi5jb22CESoudHVkcm5hdHVyYWwuY29tghkqLnVuaXRlZGNvdW50 cnlyZWFsdHkuY29tghMqLndlc3RyZXJudW5pb24uY29tgg4qLnhpY2h1YW5nLmNv bYILYWVyb2d5bS5jb22CDGFsZXJnaWphLmNvbYIOYWx1bWF4YmF0aC5jb22CDWFt YXppZ2hpYS5jb22CCWFwb29rLmNvbYIWYXNzdXJhbmNld2lyZWxsZXNzLmNvbYIX YXZvbnJlc3ByZXNlbnRhdGl2ZS5jb22CG2NhcGl0YWxvbmVhY2NvdW50b25saW5l LmNvbYINY2FyYWNhc2ZjLmNvbYIUY2VsZWJlcnR5Y3J1aXNlcy5jb22CC2NoaWZh bmcuY29tghBjb21vZmZpY2VtYXguY29tghRjdXJzb3NkZWZhcm1hY2lhLmNvbYIL ZHVmZm9yZC5jb22CDWVsc2hhaGVlZC5jb22CDmVzcG5jcmluZm8uY29tgg1leHBv bWlzeHYuY29tggxmb3RvYm9tYi5jb22CC2thYmFub3MuY29tggxsYXJpYmVyYS5j b22CC25pa2VpbmsuY29tggpub3lvbGsuY29tggxwcmVzbGF2YS5jb22CG3Jlc3Rh dXJhbnRlbGFqdWd1ZXRlcmlhLmNvbYIQcmV0cm94b3RpcXVlLmNvbYIPcmV0dGVu bWFpZXIuY29tggxyZXZlbGxpbi5jb22CEXJld29yZG15cGFwZXIuY29tgg5yaWNo bW9uZGNjLmNvbYIOcmlrc2Jhbmtlbi5jb22CE3JpdGVhaWRwaGFybWFjeS5jb22C DHJvYWRsb25zLmNvbYIOcm9ib3RpY2RvZy5jb22CDXJvY2tvZmFnZS5jb22CDXJv bGxibG9jay5jb22CCnJvc2VuYS5jb22CCXJvc2ltLmNvbYINcm91Ymlkb3V4LmNv bYIKcm91Z29uLmNvbYIJcm95b2wuY29tghRzZWxsaW5ndGltZXNoYXJlLmNvbYIR c2VyaWVzbG9udWV2by5jb22CEHNwZXgtY291cmllci5jb22CCnN0c3Vlci5jb22C CXRob21hLmNvbYITdG95b3Rhd2F0ZXJ0b3duLmNvbYIPdHVkcm5hdHVyYWwuY29t ghd1bml0ZWRjb3VudHJ5cmVhbHR5LmNvbYIRd2VzdHJlcm51bmlvbi5jb22CDHhp Y2h1YW5nLmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAo MCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisG AQQB1nkCBAIEgfQEgfEA7wB2AOJpS64m6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d 8dv+AAABbUl1F44AAAQDAEcwRQIhAN/oTtXO6/atMa5vgQp11XjvGmGcayZAOUN5 oqLNXqC/AiBVXup5lZV6s5EyBs9h5zjlR9hURbiWv0pDGyliSSNAHQB1AGPy283o O8wszwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABbUl1GaEAAAQDAEYwRAIgJRK4 YyJbBFhrPa1IlE5v594ktNkdvAIKqsskqgbJbaQCID6+6sLrYFwNePiLi3hG1IN5 +eHdNQp8BBZKk8rOShrGMA0GCSqGSIb3DQEBCwUAA4IBAQASbHA+iBI8EbH7Ubec Qkl0kIGVmDnnag6YsuGrPUv60YovN2+NRYmdsAxRTBfrIjtMYm6PX/l61vCb0KU/ P3pgmKSQndZBU/TODMmRZ2GTdb5W0iKPmpX7LCc6KLDpEUdqty5v4ZDXXVBzVHGW zMO8hYcSMtDmIpRd0hh3WRSSMusUss/9X/y1+AiwE9thzfuk+gYVHlv6HOIOaOvc UE5jz8zL8GBXNX7stUSFeYr1Pl8cieqZyva/Z4ly9nFaLuyXnUgiXKbrfgZcJrz1 PET/6AeZkgxiJn0Pqf6tGu4aeNq2kuiwyt6M1JBphFChIEwwa41Bv+8pZxIeY7u2 Vjba -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnTYGUm2GORBF/hGps1ud ehmEZXVsORJFTGdJVM1ERQkd7FOJhVlyk/dW3r9wpL8DH0aEQiSjf5Mj5KvWFx8s O81nxC226IfEII3GE0decTgk3qbabApeN21R5n2E3Xj3B7bhCX+7LoHvDDMU4jwr GnviDGlSdP8KqfKoAlDlga6icESnhed6Mpu1h0gtqa6veavD/yqiUcyjIqEIGrP/ R/TuZLhH6W9hzhoiGA1QTiNQlFeDFjftD12XpFkiX/E6+EEti6YdkUJupjMx3mAR hNYMX3oQx4vTva5eHQc3oVOVC7cpxweN1K0+9qmVV2YitkuWYzUIDDHvJyLlPGfh /iHBBw5mYi8Jr6CGJNvR+gfDEW2bR4ut4+kPBWTbxEF53FEc2N9NBE+p7Mjlp7pb mk94hFJOU/2VGjQsU1JBQBfiDXIQf8Ap/gGcAbTlkpzKNlWpde/BqxCdpc5h3/+G h6Xh6b1JB9BUtHf68DR8jr+qQUV7tuqkyod9GyW+acRcy+cQ+QHsQ28OiCc0n9xN c/v55Un+F5D9/vhDlg5X/KcSxIOPDTTxSGFktqR9DwcxVOSxGPMqAE3zW7iCM7nj rvkK8mO6Zfmxk0etan7/hwUPV2n5HfV3ByBPky7BxI9rRdTbtdLox5v933JSw3lF Z6iHrHR9sIWme6yR4k1slRkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 314364476476593666691455996928678333610804 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-19 11:17:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-18 11:17:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'riksbanken.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 641365062145951378433802880909638963841426000953582812722340695750013000959131461521495770244452917261490057911556343917149486994180314475653069883792496269711110183255956916488310026748902582386368099343868723112567590863959767618011733909289522300164877837965385255900044528405565413734802515698189158765865767283939963362098129282568981179796172680996934166187436334007191732873206432666151481675036332557527588257371163866043854362003787761222252506835589899727370526854423263148019835137709894620867506888848014441108183478806523475045588482873738510884570090841345993588587111118013366052678644676755768559962672849730794339350373944024225255894472627361064664440835546497032650437985451749507780079759923408784467798628247776403251495577364385583523161083021952933450535426564869534993611975752589357004537560204365710407780596910806629806854903157518808787512092663318252533812676996346798218151732966440178714363347778467307508816150787148835169925149017782095923821817148362776878393983872845962261875869052395802200768206167936106679976476164876739830328489375674105482321231460915479534296901092629268584991130042423053050865277844802793686385309760519787069293915196107651108820914038696423139032837348145782408621102361 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ed2a2e89ccdf3904c62ebf5b325f57d1d28f7679 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1754 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aerogym.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.alergija.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.alumaxbath.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.amazighia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.apook.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.assurancewirelless.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.avonrespresentative.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.capitaloneaccountonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.caracasfc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.celebertycruises.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.chifang.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.comofficemax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cursosdefarmacia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dufford.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.elshaheed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.espncrinfo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.expomisxv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.fotobomb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kabanos.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.laribera.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.nikeink.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.noyolk.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.preslava.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.restaurantelajugueteria.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.retroxotique.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rettenmaier.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.revellin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rewordmypaper.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.richmondcc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.riksbanken.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.riteaidpharmacy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.roadlons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.roboticdog.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rockofage.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rollblock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rosena.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rosim.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.roubidoux.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rougon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.royol.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sellingtimeshare.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.serieslonuevo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.spex-courier.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stsuer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.thoma.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.toyotawatertown.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tudrnatural.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.unitedcountryrealty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.westrernunion.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.xichuang.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aerogym.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alergija.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alumaxbath.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amazighia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apook.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assurancewirelless.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avonrespresentative.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'capitaloneaccountonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'caracasfc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'celebertycruises.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chifang.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'comofficemax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cursosdefarmacia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dufford.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'elshaheed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'espncrinfo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'expomisxv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fotobomb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kabanos.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'laribera.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nikeink.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'noyolk.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preslava.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'restaurantelajugueteria.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'retroxotique.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rettenmaier.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'revellin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rewordmypaper.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'richmondcc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'riksbanken.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'riteaidpharmacy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roadlons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roboticdog.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rockofage.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rollblock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rosena.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rosim.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roubidoux.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rougon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'royol.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sellingtimeshare.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'serieslonuevo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'spex-courier.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stsuer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thoma.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'toyotawatertown.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tudrnatural.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'unitedcountryrealty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'westrernunion.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xichuang.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d4975178e0000040300473045022100dfe84ed5ceebf6ad31ae6f810a75d578ef1a619c6b2640394379a2a2cd5ea0bf0220555eea7995957ab3913206cf61e738e547d85445b896bf4a431b29624923401d00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d497519a1000004030046304402202512b863225b04586b3dad48944e6fe7de24b4d91dbc020aaacb24aa06c96da402203ebeeac2eb605c0d78f88b8b7846d48379f9e1dd350a7c04164a93cace4a1ac6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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