armsso.ornl.gov
Issued by R3
About this certificate
This digital certificate with serial number 04:79:83:e5:59:38:aa:85:32:f2:69:81:b4:d6:54:a4:6e:3b was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=armsso.ornl.gov
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:79:83:e5:59:38:aa:85:32:f2:69:81:b4:d6:54:a4:6e:3bSerial Number (int): 389798629837526974425632404527636579380795
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 9f:98:f1:70:20:cb:9b:7f:9a:98:fa:97:60:39:95:38:b4:17:4f:ba
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 35:25:68:65:d6:36:d7:e8:fa:32:73:13:c6:53:79:82:28:36:2e:2e
Fingerprint (sha256): 1c:b1:1d:5e:39:15:83:f1:69:e2:86:42:1e:ce:db:8a:69:f0:4d:01:bc:e8:d0:f7:30:8a:59:d4:3f:ea:ef:55
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate armsso.ornl.gov
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for armsso.ornl.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
armsso.ornl.gov
sso.arm.gov
sso.arm.gov
Other certificates including the domain name ornl.gov
(limited to 100 certificates)
5098030885765120-fe4.pantheonsite.io
internal.webmap.ornl.gov
radware.phy.ornl.gov
www.arm.gov
jenkins.ccs.ornl.gov
ccms-cdash.ornl.gov
cades.ornl.gov
Recruiting-tst-internal.ornl.gov
armweb0-stgcms.ornl.gov
5098030885765120-fe4.pantheonsite.io
5098030885765120-fe4.pantheonsite.io
radware.phy.ornl.gov
itsdpro.ornl.gov
ornlsurv02.ornl.gov
radware.phy.ornl.gov
eber.ed.ornl.gov
vpnprod3.ornl.gov
fsnutown.phy.ornl.gov
its2010.ornl.gov
Recruiting-eq2.ornl.gov
LYNCPOOL01.ORNL.GOV
tech-showcase.ornl.gov
sldtransfer.ornl.gov
visitors.ornl.gov
orca.phy.ornl.gov
5664512065667072-fe2.pantheonsite.io
savitar.ornl.gov
cades.ornl.gov
www.isotopes.gov
5721718521856000-fe2.pantheonsite.io
its2010.ornl.gov
infoviz.ornl.gov
tokens.ornl.gov
sapsys-qas.ornl.gov
cyber-wb.ornl.gov
fusion-neutronics.ornl.gov
5664512065667072-fe2.pantheonsite.io
5664512065667072-fe2.pantheonsite.io
geoai.ornl.gov
cem.ornl.gov
thredds.daac.ornl.gov
devintidp.ornl.gov
5721718521856000-fe2.pantheonsite.io
devaprsweb01.ornl.gov
ftp.ornl.gov
inspirebridge.ornl.gov
web.ornl.gov
api.granite.ccs.ornl.gov
smcdatachallenge.ornl.gov
home.rrd.ornl.gov
itsassets.ornl.gov
trac.ornl.gov
cdiacservices.ornl.gov
www.isotopes.gov
itsassets.ornl.gov
saponbase.ornl.gov
itsdeployment.ornl.gov
bptechday.ornl.gov
lp-cfhub01.ornl.gov
isotopes.phy.ornl.gov
g2mobiletest.ornl.gov
udi.ornl.gov
fegtest.ornl.gov
itsassets.ornl.gov
cem.ornl.gov
swc.ornl.gov
ornlaccess.ornl.gov
ornl.gov
LYNCACCESS.ORNL.GOV
g2photosstg.ornl.gov
savitar.ornl.gov
vera.ornl.gov
thredds.daac.ornl.gov
www.olcf.ornl.gov
asc2019.ornl.gov
ready.ornl.gov
sos23.ornl.gov
LYNCPOOL01.ORNL.GOV
innovationcrossroads.ornl.gov
geoai.ornl.gov
bboxaccess.ornl.gov
5631383682678784-fe4.pantheonsite.io
na21dev2.ornl.gov
armftp.ornl.gov
5736126123868160-fe4.pantheonsite.io
web.ornl.gov
pdt.ornl.gov
prod-web4.adc.arm.gov
5713320610889728-fe3.pantheonsite.io
itsdpro.ornl.gov
healthdata.ornl.gov
web.ornl.gov
RSC.ornl.gov
faf.ornl.gov
docs.excl.ornl.gov
apps.ornl.gov
dtrack2013.ornl.gov
pdt.ornl.gov
cloud.cees.ornl.gov
excl.ornl.gov
internal.webmap.ornl.gov
radware.phy.ornl.gov
www.arm.gov
jenkins.ccs.ornl.gov
ccms-cdash.ornl.gov
cades.ornl.gov
Recruiting-tst-internal.ornl.gov
armweb0-stgcms.ornl.gov
5098030885765120-fe4.pantheonsite.io
5098030885765120-fe4.pantheonsite.io
radware.phy.ornl.gov
itsdpro.ornl.gov
ornlsurv02.ornl.gov
radware.phy.ornl.gov
eber.ed.ornl.gov
vpnprod3.ornl.gov
fsnutown.phy.ornl.gov
its2010.ornl.gov
Recruiting-eq2.ornl.gov
LYNCPOOL01.ORNL.GOV
tech-showcase.ornl.gov
sldtransfer.ornl.gov
visitors.ornl.gov
orca.phy.ornl.gov
5664512065667072-fe2.pantheonsite.io
savitar.ornl.gov
cades.ornl.gov
www.isotopes.gov
5721718521856000-fe2.pantheonsite.io
its2010.ornl.gov
infoviz.ornl.gov
tokens.ornl.gov
sapsys-qas.ornl.gov
cyber-wb.ornl.gov
fusion-neutronics.ornl.gov
5664512065667072-fe2.pantheonsite.io
5664512065667072-fe2.pantheonsite.io
geoai.ornl.gov
cem.ornl.gov
thredds.daac.ornl.gov
devintidp.ornl.gov
5721718521856000-fe2.pantheonsite.io
devaprsweb01.ornl.gov
ftp.ornl.gov
inspirebridge.ornl.gov
web.ornl.gov
api.granite.ccs.ornl.gov
smcdatachallenge.ornl.gov
home.rrd.ornl.gov
itsassets.ornl.gov
trac.ornl.gov
cdiacservices.ornl.gov
www.isotopes.gov
itsassets.ornl.gov
saponbase.ornl.gov
itsdeployment.ornl.gov
bptechday.ornl.gov
lp-cfhub01.ornl.gov
isotopes.phy.ornl.gov
g2mobiletest.ornl.gov
udi.ornl.gov
fegtest.ornl.gov
itsassets.ornl.gov
cem.ornl.gov
swc.ornl.gov
ornlaccess.ornl.gov
ornl.gov
LYNCACCESS.ORNL.GOV
g2photosstg.ornl.gov
savitar.ornl.gov
vera.ornl.gov
thredds.daac.ornl.gov
www.olcf.ornl.gov
asc2019.ornl.gov
ready.ornl.gov
sos23.ornl.gov
LYNCPOOL01.ORNL.GOV
innovationcrossroads.ornl.gov
geoai.ornl.gov
bboxaccess.ornl.gov
5631383682678784-fe4.pantheonsite.io
na21dev2.ornl.gov
armftp.ornl.gov
5736126123868160-fe4.pantheonsite.io
web.ornl.gov
pdt.ornl.gov
prod-web4.adc.arm.gov
5713320610889728-fe3.pantheonsite.io
itsdpro.ornl.gov
healthdata.ornl.gov
web.ornl.gov
RSC.ornl.gov
faf.ornl.gov
docs.excl.ornl.gov
apps.ornl.gov
dtrack2013.ornl.gov
pdt.ornl.gov
cloud.cees.ornl.gov
excl.ornl.gov
Certificate
The complete raw certificate details for armsso.ornl.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgISBHmD5Vk4qoUy8mmBtNZUpG47MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMTAyMDcwNDAzMzJaFw0yMTA1MDgwNDAzMzJaMBoxGDAWBgNVBAMT D2FybXNzby5vcm5sLmdvdjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AOHsGG7oOF40rjOhIJSGjqChrJ8AG8568QRNfTgMNdmykRPshXA/G4+ly8fQ+0IG 8q2z6NSXJliwhFTev7ROV4EU0vq1kIfr5ZqX3GFxcboZ14+Z4UdyaEAlfOFug9Kz 64GfXjg2zF0uWw3M8vUE41iJX+q9UiNPwhwq1+l0jhHTL1C2iFbL8dVjROPRM2NK wBAwjD/EPDeZNcFCZ5zgohgK04sllzBOzO476FFBOOtWLDruaOqNADWXhgiOpK1R 4mL4hYRRlEIGtmSVzZI7CAQ/x+13wzUldjbZmoKx9JCHE/K2ssFRn7jQyMxeeDMI 2GjEHKoQBOQ6+GWJDVluEQ8CAwEAAaOCAlcwggJTMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUn5jxcCDLm3+amPqXYDmVOLQXT7owHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wJwYDVR0RBCAwHoIPYXJtc3NvLm9ybmwuZ292ggtzc28uYXJtLmdvdjBMBgNV HSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpo dHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA 8AB1AESUZS6w7s6vxEAH2Kj+KMDa5oK+2MsxtT/TM5a1toGoAAABd3rfoh4AAAQD AEYwRAIgVPszXf1obVTo2uXdivzFtRYuXoDr6p3cxet1O/KJ9ssCIGt/jFG8UII0 ybi7tnKxl4ih5V8v6pG+xQ0WAjv/J+QQAHcA9lyUL9F3MCIUVBgIMJRWjuNNExkz v98MLyALzE7xZOMAAAF3et+iFQAABAMASDBGAiEAnO6FHW7Cunk8SsGxdlvA0/ry HhG1qSQaNyA9Oza8/AsCIQDRaj6z5Mo7NKb38BzSntwx0J6HuG4UgLB4DMGUqZib KDANBgkqhkiG9w0BAQsFAAOCAQEAkI3oMPwXrnfXPxJADm+BQRqgYqTARhV/UXSS LYZMEGfiC3P/dNhQbblV4i7vj10GP5P+IwtBiybTAuoQq5QGLViqpnhiqeohvCbU Bf5qmwLMJUq3iVlf5f2aDuIq/8+z/M9SKyV+p4ZDJGZF+hxyJiFTqn5PK9tOEzAx gzn3MiZOPp6/UN9aV7Z6E9sdERGwOqceg1UuFx7nr0cQMkfXum9zAZ3ZDDz4FHpa sXa+jFPqiyAkCkhc+Atyw/HLwj6BeQn7EZ6kKzavXi5KYDqTs+bcE7Fq7Dp+8rfr gy5/cUWvjQ3Zq3mz0a8JxeuhLCjvGWbqezQ9EsjsrazswpQnNg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4ewYbug4XjSuM6EglIaO oKGsnwAbznrxBE19OAw12bKRE+yFcD8bj6XLx9D7QgbyrbPo1JcmWLCEVN6/tE5X gRTS+rWQh+vlmpfcYXFxuhnXj5nhR3JoQCV84W6D0rPrgZ9eODbMXS5bDczy9QTj WIlf6r1SI0/CHCrX6XSOEdMvULaIVsvx1WNE49EzY0rAEDCMP8Q8N5k1wUJnnOCi GArTiyWXME7M7jvoUUE461YsOu5o6o0ANZeGCI6krVHiYviFhFGUQga2ZJXNkjsI BD/H7XfDNSV2NtmagrH0kIcT8raywVGfuNDIzF54MwjYaMQcqhAE5Dr4ZYkNWW4R DwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 389798629837526974425632404527636579380795 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-07 04:03:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-08 04:03:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'armsso.ornl.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28520041619110060641942085434923940863948520116820711503915015407164045065011183454764906710800617423709798307579079017595770411062318195331323634414842281538032083909599057797953135452818415953335722485816789639409889110272411206570179628816838039047550603341751079738797008449893680436308608200272030001348050429069799696009398583595345642273767701031856798494143364625090627988615785405861909545098671043974577798490028383870051174221710374780542803081206088115556992947510738155820792228109701267797147920657984722400884716440849168025870965604500379777444957911262528820874919381510950405300490660904739621703951 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9f98f17020cb9b7f9a98fa9760399538b4174fba . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'armsso.ornl.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sso.arm.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00075004494652eb0eeceafc44007d8a8fe28c0dae682bed8cb31b53fd33396b5b681a8000001777adfa21e0000040300463044022054fb335dfd686d54e8dae5dd8afcc5b5162e5e80ebea9ddcc5eb753bf289f6cb02206b7f8c51bc508234c9b8bbb672b19788a1e55f2fea91bec50d16023bff27e410007700f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e3000001777adfa21500000403004830460221009cee851d6ec2ba793c4ac1b1765bc0d3faf21e11b5a9241a37203d3b36bcfc0b022100d16a3eb3e4ca3b34a6f7f01cd29edc31d09e87b86e1480b0780cc194a9989b28 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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