www.xi.to
Issued by R3
About this certificate
This digital certificate with serial number 03:10:c1:20:c7:7e:20:66:ab:08:4f:b1:7a:90:6d:bf:fc:22 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.xi.to
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:10:c1:20:c7:7e:20:66:ab:08:4f:b1:7a:90:6d:bf:fc:22Serial Number (int): 267038086868894004475145829630747093236770
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 66:96:0e:29:e8:0a:96:ab:7a:a9:02:47:f4:01:0a:83:a9:8a:f9:e2
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 51:cd:0d:65:0f:74:c7:18:fb:c1:e0:72:29:4d:e2:15:cd:26:c9:6a
Fingerprint (sha256): 1e:2d:16:ab:75:df:30:88:c3:8a:08:2a:6f:12:7d:cd:b0:65:41:05:f3:1d:2b:37:80:2e:26:ac:67:5f:6e:28
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.xi.to
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.xi.to
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.xi.to
xi.to
xi.to
Other certificates including the domain name xi.to
(limited to 100 certificates)
grey.xi.to
blackfridayalltablets2017.xi.to
xi.to
salefoodshop.xi.to
blackfridayallcarspeakers.xi.to
shopcamera.xi.to
cvcv.xi.to
coverlatter.xi.to
ybw.xi.to
sni.cloudflaressl.com
ser1.xi.to
homefurnitureshop.xi.to
salefoodshop.xi.to
blackfridaysale2017.xi.to
cvfino.xi.to
sni.cloudflaressl.com
new.xi.to
sni.cloudflaressl.com
blackfridayallcarspeakers.xi.to
cvvilo.xi.to
newcashloanonline.xi.to
fort22.xi.to
www.xi.to
cvampuh.xi.to
blackfridayforbeautyshop.xi.to
sofaset.xi.to
dietnews.xi.to
blackfridaygamingdesktops.xi.to
getresume.xi.to
blackfridaysale2017.xi.to
blackfridaysalecomputers.xi.to
blackfridaylaptops2017.xi.to
xi.to
blackfridaygamingdesktops.xi.to
sample.xi.to
blackfridaymemorycards.xi.to
paydayloanexpress.xi.to
blackfridaygraphiccards.xi.to
sni.cloudflaressl.com
creditcards.xi.to
grey.xi.to
xao4.xi.to
edu2.xi.to
shopforgame.xi.to
newcashloanonline.xi.to
edu3.xi.to
salefoodshop.xi.to
supersale2017.xi.to
xi.to
cvpink.xi.to
paydayloanexpress.xi.to
easycashnow.xi.to
dietnews.xi.to
law.xi.to
law.xi.to
blackfridaymonitors.xi.to
sofa.xi.to
www.xi.to
newcashloanonline.xi.to
blackfridaysale2017.xi.to
www.ran.xi.to
unitycourses.xi.to
bigshoppingsale.xi.to
cvbumi.xi.to
blackfridaylaptops2017.xi.to
sni.cloudflaressl.com
mitikoman.xi.to
blackfridaymemorycards.xi.to
xao5.xi.to
cheapgoprocameras.xi.to
supersale2017.xi.to
blackfridaygpsnavigation.xi.to
creditcards.xi.to
bigshoppingsale.xi.to
paydayloanexpress.xi.to
blackfridaymemorycards.xi.to
regform.xi.to
mail.xi.to
newcashloanonline.xi.to
bibi.xi.to
regform.xi.to
sofa.xi.to
handsetshop.xi.to
bigshoppingsale.xi.to
printable.xi.to
jobapplication.xi.to
blackfridayprinters.xi.to
resumes.xi.to
ybw.xi.to
eng.xi.to
blackfridaygraphiccards.xi.to
xi.to
cvbumi.xi.to
blackfridayalltablets2017.xi.to
shopforgame.xi.to
blackfridayprinters.xi.to
sni.cloudflaressl.com
easycashnow.xi.to
sni.cloudflaressl.com
blackfridaygpsnavigation.xi.to
blackfridayalltablets2017.xi.to
xi.to
salefoodshop.xi.to
blackfridayallcarspeakers.xi.to
shopcamera.xi.to
cvcv.xi.to
coverlatter.xi.to
ybw.xi.to
sni.cloudflaressl.com
ser1.xi.to
homefurnitureshop.xi.to
salefoodshop.xi.to
blackfridaysale2017.xi.to
cvfino.xi.to
sni.cloudflaressl.com
new.xi.to
sni.cloudflaressl.com
blackfridayallcarspeakers.xi.to
cvvilo.xi.to
newcashloanonline.xi.to
fort22.xi.to
www.xi.to
cvampuh.xi.to
blackfridayforbeautyshop.xi.to
sofaset.xi.to
dietnews.xi.to
blackfridaygamingdesktops.xi.to
getresume.xi.to
blackfridaysale2017.xi.to
blackfridaysalecomputers.xi.to
blackfridaylaptops2017.xi.to
xi.to
blackfridaygamingdesktops.xi.to
sample.xi.to
blackfridaymemorycards.xi.to
paydayloanexpress.xi.to
blackfridaygraphiccards.xi.to
sni.cloudflaressl.com
creditcards.xi.to
grey.xi.to
xao4.xi.to
edu2.xi.to
shopforgame.xi.to
newcashloanonline.xi.to
edu3.xi.to
salefoodshop.xi.to
supersale2017.xi.to
xi.to
cvpink.xi.to
paydayloanexpress.xi.to
easycashnow.xi.to
dietnews.xi.to
law.xi.to
law.xi.to
blackfridaymonitors.xi.to
sofa.xi.to
www.xi.to
newcashloanonline.xi.to
blackfridaysale2017.xi.to
www.ran.xi.to
unitycourses.xi.to
bigshoppingsale.xi.to
cvbumi.xi.to
blackfridaylaptops2017.xi.to
sni.cloudflaressl.com
mitikoman.xi.to
blackfridaymemorycards.xi.to
xao5.xi.to
cheapgoprocameras.xi.to
supersale2017.xi.to
blackfridaygpsnavigation.xi.to
creditcards.xi.to
bigshoppingsale.xi.to
paydayloanexpress.xi.to
blackfridaymemorycards.xi.to
regform.xi.to
mail.xi.to
newcashloanonline.xi.to
bibi.xi.to
regform.xi.to
sofa.xi.to
handsetshop.xi.to
bigshoppingsale.xi.to
printable.xi.to
jobapplication.xi.to
blackfridayprinters.xi.to
resumes.xi.to
ybw.xi.to
eng.xi.to
blackfridaygraphiccards.xi.to
xi.to
cvbumi.xi.to
blackfridayalltablets2017.xi.to
shopforgame.xi.to
blackfridayprinters.xi.to
sni.cloudflaressl.com
easycashnow.xi.to
sni.cloudflaressl.com
blackfridaygpsnavigation.xi.to
Certificate
The complete raw certificate details for www.xi.to in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5TCCBM2gAwIBAgISAxDBIMd+IGarCE+xepBtv/wiMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMzAyMjI3MDBaFw0yNDAzMjkyMjI2NTlaMBQxEjAQBgNVBAMT CXd3dy54aS50bzCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAL5FqqwE N64/qT7FCAU2QUYs19qOnX0qXnh59Y3wztbHeEW0bWpVWre1f6BT2ivGAZ6Leo9Q XVcCalzQqNr9RbHg7iGfPoZROwmLwjHATa2R01wx0xQwVPkA0l9PxVgfGbEx34kw S9vXeWTMeH3o//EHPUMQbMi1+AZrZw6MpJtsIUdPQroQRS51kT1X31exYTCGr9US i5DIq3x9k05RFVr3ZtQijSwpMw/hGLX16TrJh4JK2J2jSj0icXxVX4cztxGwar1v qYgOUmqEsE8fnGeHvUwVaBnvGUbW3bun5+7chYDLvdFLOcV1h4fFF7TKhLXIkma+ oqWRAZiBMIx+cfki7WdrpjG8RC87+WYu+Gl9c/dL4WU101lVm4zw/nhDqbemI7qI j4ZCwZU1JdnoY3NiPgt0BTTCK0pqv6JDQFuKQP9xgqij4hjTjhtDyuqd5aXHkiak N5dfnYJTTVf9c0Ipg+htTSPkeP/WIxKQ0LdTtNH1AsFHP5EUBecLs0rg+Y5Twa0X d8WjqcEyhaK0HqPmFEhGtlfdzIEDHl6fe0XM7JgmunHGR5+NyPAbdWxoJ8Tm211n ibbvGeddCxHOamwvdPZca364ctZtM469DUeMxOcGRN1lvaS1XmsFR8aR8j4GsKmf DHJ4277RC00hjHXxwv6TlAUKC3bBQGEgft8xAgMBAAGjggIRMIICDTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFGaWDinoCpareqkCR/QBCoOpivniMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMBsGA1UdEQQUMBKCCXd3dy54aS50b4IFeGkudG8wEwYDVR0g BAwwCjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQA7U3d1Pi25 gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYy9DWPKAAAEAwBGMEQCIAZSztO8 rPiOse1RJDTF0Os7NQxzmt06PXZ1vEY4xMgaAiBOmkU1ObDqUswdZl+iyeXKsQTH hGrpXW7HY/csoIKiLgB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7Wb AAABjL0NY7oAAAQDAEcwRQIgPP4k00Rz2NjbCm6LwhYCl/o3D1cotf9yTt3zZDe8 x9MCIQCHIaEvSDIIgCCN/X/QQ6LQmrfXSks/HbvK6skwezgcWjANBgkqhkiG9w0B AQsFAAOCAQEAk794BZDX2nXh6tG/tCfiked24PWrOhZFx/sDlkInuipAiGzO3IXS lK+qjdYisYSmC8qmkRlZbksl3qJ2YHNU5l6aXBOn/01ov6kZtUJtBk/IPWtYXIjy zqXcjNbomr58ZNyHJyqCfXL8hW7fzEjVtWhTLEIPUdUMy3JtgdsjrvmL+V9jgKQf zJtSL3Cfs52K71ViTYlbPDigt16sdSwUjK/2Z3eoPk2n5AQP74QgQwhlBYy2oqHS H/QJowDD6K0vp8xDVhCebtVTn+Mvs4Tt13PJfr5udq/ckFvMeRQrL9mjjVk3Wc5x Sf+zo8Cl1EnBYCI2+nAiLRtOAVZBWA8Xlw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvkWqrAQ3rj+pPsUIBTZB RizX2o6dfSpeeHn1jfDO1sd4RbRtalVat7V/oFPaK8YBnot6j1BdVwJqXNCo2v1F seDuIZ8+hlE7CYvCMcBNrZHTXDHTFDBU+QDSX0/FWB8ZsTHfiTBL29d5ZMx4fej/ 8Qc9QxBsyLX4BmtnDoykm2whR09CuhBFLnWRPVffV7FhMIav1RKLkMirfH2TTlEV Wvdm1CKNLCkzD+EYtfXpOsmHgkrYnaNKPSJxfFVfhzO3EbBqvW+piA5SaoSwTx+c Z4e9TBVoGe8ZRtbdu6fn7tyFgMu90Us5xXWHh8UXtMqEtciSZr6ipZEBmIEwjH5x +SLtZ2umMbxELzv5Zi74aX1z90vhZTXTWVWbjPD+eEOpt6YjuoiPhkLBlTUl2ehj c2I+C3QFNMIrSmq/okNAW4pA/3GCqKPiGNOOG0PK6p3lpceSJqQ3l1+dglNNV/1z QimD6G1NI+R4/9YjEpDQt1O00fUCwUc/kRQF5wuzSuD5jlPBrRd3xaOpwTKForQe o+YUSEa2V93MgQMeXp97RczsmCa6ccZHn43I8Bt1bGgnxObbXWeJtu8Z510LEc5q bC909lxrfrhy1m0zjr0NR4zE5wZE3WW9pLVeawVHxpHyPgawqZ8McnjbvtELTSGM dfHC/pOUBQoLdsFAYSB+3zECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 267038086868894004475145829630747093236770 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-30 22:27:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-29 22:26:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.xi.to' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 776242588890353521920249549993724618369250004585704636916933631537310152358272339992273360300707173968237740633684404623548289551494240135123786282751768949634106691674994846710793055969485474113692452864764685072541784610756310986028529107247395903763912237885884125029805704084201225779936369295354729507587961800363964861887408237768027182321598755589676995412725533466314312043131729944124786193799589876791155694056353970752259153956803771342025163795701833746526631969106404232866129043320734225939004366966059583398826158560836554120378811147167058900257117036399070114230695423553271523194436792527138558538753384793433037545531212528704237973584538725301864875592984593185954815598708905451932323356576374998521800630948854310549358840081059539595507005497128424945990614515823443775255935620388300370056166900894753957615398936684243517546861595972208454986685287473326185723553180258774319145861536387300299118033404186487037864341570750339065848396090131159323339368259099370060739027616936542018680134358888581201631914918071798777160186665713890749180661145476311121844290579193579580853155755291604321411976555581935109862666765348349921895214551094950833252135672956502573753224211086447599285874593809242823614979889 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 66960e29e80a96ab7aa90247f4010a83a98af9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xi.to' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xi.to' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018cbd0d63ca000004030046304402200652ced3bcacf88eb1ed512434c5d0eb3b350c739add3a3d7675bc4638c4c81a02204e9a453539b0ea52cc1d665fa2c9e5cab104c7846ae95d6ec763f72ca082a22e007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018cbd0d63ba000004030047304502203cfe24d34473d8d8db0a6e8bc2160297fa370f5728b5ff724eddf36437bcc7d30221008721a12f48320880208dfd7fd043a2d09ab7d74a4b3f1dbbcaeac9307b381c5a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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