cms.legacy.com
Issued by R3
About this certificate
This digital certificate with serial number 03:91:08:a6:f1:9b:ba:cb:1e:8e:2d:dc:6d:1e:95:ff:87:24 was issued on by Let's Encrypt.
With 99 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=cms.legacy.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:91:08:a6:f1:9b:ba:cb:1e:8e:2d:dc:6d:1e:95:ff:87:24Serial Number (int): 310689301644460502688256016335630246053668
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3c:9b:17:69:c9:b4:ba:10:23:40:23:3a:6b:36:85:02:6c:d3:c1:d5
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): dd:38:a8:be:5a:fd:73:b2:63:d2:51:e0:4d:d8:4f:d2:2f:26:53:75
Fingerprint (sha256): 1e:40:73:84:05:f9:da:87:8f:c6:68:06:ee:a5:f2:e1:e8:f7:ec:22:34:40:29:01:7e:cd:82:89:c4:42:84:17
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate cms.legacy.com
99
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cms.legacy.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cms.legacy.com
coins.rutgers.edu
confucius.eastasian.ucsb.edu
connect.iadb.org
covid.usmle.org
cqn-erc.arizona.edu
crmtest.eastdunbarton.gov.uk
csc.arizona.edu
d7.cmc.edu
d7store.juilliard.edu
daniela.patch.com
design-engineering.princeton.edu
dev-camdenbase.libraries.rutgers.edu
dev-covid19.chop.edu
dev-lp-jhubsph.edu.help
dev-web-degacc.edu.help
dev-web-jhucareycoop.edu.help
dev-www2.ofx.com
dev.business-services.upenn.edu
dev.cee.cornell.edu
dev.champions-speakers.co.uk
dev.ctd.northwestern.edu
dev.dhsri.yale.edu
dev.ece.cornell.edu
dev.embody.yale.edu
dev.engineering.cornell.edu
dev.mae.cornell.edu
dev.mse.cornell.edu
dev.nebrwesleyan.edu
dev.onlineeducation.psu.edu
dev.shibtest7.isc.upenn.edu
dev.wrightlaboratory.yale.edu
dev.wti.yale.edu
dev1.engineering.ucsb.edu
dev1.si.umich.edu
devdr.azmex.arizona.edu
dial.sralab.org
dlpe.calc.gatech.edu
dmats.spcs.stanford.edu
dmats.stanford.edu
ds.arizona.edu
ebot200.multidevcom.uaf.edu
ecalso.berkeley.edu
ecc.nacha.org
education.ss.pacific.edu
ehs.sph.berkeley.edu
eis.dev.cms1.asa.uw.edu
embody.yale.edu
engaginghumanities.ucsb.edu
engineering.ss.pacific.edu
environment.research.yale.edu
expeditions.sandiegozoo.org
explore.hunterbusinessschool.edu
exploringthecomplexity.ucdavis.edu
faculty.gsm.ucdavis.edu
fecc.nacha.org
flta.cli.asu.edu
gem.business.ucdenver.edu
get.pima.edu
giftcertificates.cookbookcooks.com
gil.engineering.asu.edu
gis.archbalt.org
giveto.shawnee.edu
gpf.nacha.org
gsefilms.gse.upenn.edu
gtpe.pe.gatech.edu
hcii.cs.cmu.edu
healthed.sfsu.edu
healthsciences.ss.pacific.edu
home.earthjustice.org
host2.cenmi.org
host2.openminds.com
host3.cenmi.org
host90.farmermac.com
hr-kiosk.tsu.edu
httpbin.earthjustice.org
iam.earthjustice.org
igert.ucsb.edu
india-test.generation.org
industri40.ida.dk
info-dev.calperformances.org
info.religionnews.com
info.vcfa.edu
infonet.fia.org
inks.govdelivery.com
inside.gc.cuny.edu
inside.kjzz.org
internal.gcir.org
international.research.ucsb.edu
internetcouncil.nacha.org
intranet.olivecrest.org
ipv6.earthjustice.org
it-chat.web.arizona.edu
it.22squared.com
it.uahs.arizona.edu
itcatalyst.sfsu.edu
iteachu.multidevcom.uaf.edu
job.earthjustice.org
jobs.earthjustice.org
coins.rutgers.edu
confucius.eastasian.ucsb.edu
connect.iadb.org
covid.usmle.org
cqn-erc.arizona.edu
crmtest.eastdunbarton.gov.uk
csc.arizona.edu
d7.cmc.edu
d7store.juilliard.edu
daniela.patch.com
design-engineering.princeton.edu
dev-camdenbase.libraries.rutgers.edu
dev-covid19.chop.edu
dev-lp-jhubsph.edu.help
dev-web-degacc.edu.help
dev-web-jhucareycoop.edu.help
dev-www2.ofx.com
dev.business-services.upenn.edu
dev.cee.cornell.edu
dev.champions-speakers.co.uk
dev.ctd.northwestern.edu
dev.dhsri.yale.edu
dev.ece.cornell.edu
dev.embody.yale.edu
dev.engineering.cornell.edu
dev.mae.cornell.edu
dev.mse.cornell.edu
dev.nebrwesleyan.edu
dev.onlineeducation.psu.edu
dev.shibtest7.isc.upenn.edu
dev.wrightlaboratory.yale.edu
dev.wti.yale.edu
dev1.engineering.ucsb.edu
dev1.si.umich.edu
devdr.azmex.arizona.edu
dial.sralab.org
dlpe.calc.gatech.edu
dmats.spcs.stanford.edu
dmats.stanford.edu
ds.arizona.edu
ebot200.multidevcom.uaf.edu
ecalso.berkeley.edu
ecc.nacha.org
education.ss.pacific.edu
ehs.sph.berkeley.edu
eis.dev.cms1.asa.uw.edu
embody.yale.edu
engaginghumanities.ucsb.edu
engineering.ss.pacific.edu
environment.research.yale.edu
expeditions.sandiegozoo.org
explore.hunterbusinessschool.edu
exploringthecomplexity.ucdavis.edu
faculty.gsm.ucdavis.edu
fecc.nacha.org
flta.cli.asu.edu
gem.business.ucdenver.edu
get.pima.edu
giftcertificates.cookbookcooks.com
gil.engineering.asu.edu
gis.archbalt.org
giveto.shawnee.edu
gpf.nacha.org
gsefilms.gse.upenn.edu
gtpe.pe.gatech.edu
hcii.cs.cmu.edu
healthed.sfsu.edu
healthsciences.ss.pacific.edu
home.earthjustice.org
host2.cenmi.org
host2.openminds.com
host3.cenmi.org
host90.farmermac.com
hr-kiosk.tsu.edu
httpbin.earthjustice.org
iam.earthjustice.org
igert.ucsb.edu
india-test.generation.org
industri40.ida.dk
info-dev.calperformances.org
info.religionnews.com
info.vcfa.edu
infonet.fia.org
inks.govdelivery.com
inside.gc.cuny.edu
inside.kjzz.org
internal.gcir.org
international.research.ucsb.edu
internetcouncil.nacha.org
intranet.olivecrest.org
ipv6.earthjustice.org
it-chat.web.arizona.edu
it.22squared.com
it.uahs.arizona.edu
itcatalyst.sfsu.edu
iteachu.multidevcom.uaf.edu
job.earthjustice.org
jobs.earthjustice.org
Other certificates including the domain name legacy.com
(limited to 100 certificates)
carpepm.almonds.com
ssl003.insnw.net
ssl860932.cloudflaressl.com
calendar.sdzsafaripark.org
banking-business-review.com
cdn-test.battlefields.org
citeak.multidevcom.uaf.edu
ssl860932.cloudflaressl.com
chns120.courseresource.yale.edu
*.legacy.com
banking-business-review.com
tls.automattic.com
ssl003.insnw.net
ssl003.insnw.net
sni.cloudflaressl.com
www.legacy.com
chns168.courseresource.yale.edu
uat.legacy.com
club.kjzz.org
legacy.com
memorialwebsites.legacy.com
www.legacy.com
legacy.com
5691967484723200-fe1.pantheonsite.io
160.167.tmcapital.com
160.167.tmcapital.com
brassunion.com
acadmintest.cuofco.org
www.legacy.com
chns168.courseresource.yale.edu
*.legacy.com
acadmintest.cuofco.org
uat.legacy.com
buyersguide.aaps.org
tls.automattic.com
cdi.uga.edu
citeak.multidevcom.uaf.edu
chns168.courseresource.yale.edu
click.alerts.legacy.com
caldesignlab.berkeley.edu
160.167.tmcapital.com
careers.whittier.edu
ssl003.insnw.net
chns130.courseresource.yale.edu
leftwoods.com
sni.cloudflaressl.com
ssl003.insnw.net
cms.legacy.com
live-legacy-cms.pantheonsite.io
citrix.remote.naylor.com
2.www.upenn.edu
sni.cloudflaressl.com
banking-business-review.com
160.167.tmcapital.com
sympathy.legacy.com
clc.shawnee.edu
pro.legacy.com
chns150.courseresource.yale.edu
www.legacy.com
160.167.tmcapital.com
sni.cloudflaressl.com
tls.automattic.com
cci520-new.courtinnovation.org
cci520-new.courtinnovation.org
eduhup.com
media2.legacy.com
legacyowa.legacy.com
campaign.ucsc.edu
ssl003.insnw.net
chns130.courseresource.yale.edu
caldesignlab.berkeley.edu
5691967484723200-fe1.pantheonsite.io
eduhup.com
5660980839186432-fe2.pantheonsite.io
lwozzk.legacy.com
census.arizona.edu
tls.automattic.com
pro.legacy.com
chns168.courseresource.yale.edu
ssl003.insnw.net
thepointalehouse.com
lwozzk.legacy.com
sni.cloudflaressl.com
leeanatankersley.com
ssl003.insnw.net
sni.cloudflaressl.com
ssl003.insnw.net
ssl003.insnw.net
ssl003.insnw.net
ssl003.insnw.net
sni.cloudflaressl.com
ssl860932.cloudflaressl.com
ssl003.insnw.net
banking-business-review.com
ssl003.insnw.net
banking-business-review.com
ssl003.insnw.net
www.legacy.com
*.legacy.com
banking-business-review.com
ssl003.insnw.net
ssl860932.cloudflaressl.com
calendar.sdzsafaripark.org
banking-business-review.com
cdn-test.battlefields.org
citeak.multidevcom.uaf.edu
ssl860932.cloudflaressl.com
chns120.courseresource.yale.edu
*.legacy.com
banking-business-review.com
tls.automattic.com
ssl003.insnw.net
ssl003.insnw.net
sni.cloudflaressl.com
www.legacy.com
chns168.courseresource.yale.edu
uat.legacy.com
club.kjzz.org
legacy.com
memorialwebsites.legacy.com
www.legacy.com
legacy.com
5691967484723200-fe1.pantheonsite.io
160.167.tmcapital.com
160.167.tmcapital.com
brassunion.com
acadmintest.cuofco.org
www.legacy.com
chns168.courseresource.yale.edu
*.legacy.com
acadmintest.cuofco.org
uat.legacy.com
buyersguide.aaps.org
tls.automattic.com
cdi.uga.edu
citeak.multidevcom.uaf.edu
chns168.courseresource.yale.edu
click.alerts.legacy.com
caldesignlab.berkeley.edu
160.167.tmcapital.com
careers.whittier.edu
ssl003.insnw.net
chns130.courseresource.yale.edu
leftwoods.com
sni.cloudflaressl.com
ssl003.insnw.net
cms.legacy.com
live-legacy-cms.pantheonsite.io
citrix.remote.naylor.com
2.www.upenn.edu
sni.cloudflaressl.com
banking-business-review.com
160.167.tmcapital.com
sympathy.legacy.com
clc.shawnee.edu
pro.legacy.com
chns150.courseresource.yale.edu
www.legacy.com
160.167.tmcapital.com
sni.cloudflaressl.com
tls.automattic.com
cci520-new.courtinnovation.org
cci520-new.courtinnovation.org
eduhup.com
media2.legacy.com
legacyowa.legacy.com
campaign.ucsc.edu
ssl003.insnw.net
chns130.courseresource.yale.edu
caldesignlab.berkeley.edu
5691967484723200-fe1.pantheonsite.io
eduhup.com
5660980839186432-fe2.pantheonsite.io
lwozzk.legacy.com
census.arizona.edu
tls.automattic.com
pro.legacy.com
chns168.courseresource.yale.edu
ssl003.insnw.net
thepointalehouse.com
lwozzk.legacy.com
sni.cloudflaressl.com
leeanatankersley.com
ssl003.insnw.net
sni.cloudflaressl.com
ssl003.insnw.net
ssl003.insnw.net
ssl003.insnw.net
ssl003.insnw.net
sni.cloudflaressl.com
ssl860932.cloudflaressl.com
ssl003.insnw.net
banking-business-review.com
ssl003.insnw.net
banking-business-review.com
ssl003.insnw.net
www.legacy.com
*.legacy.com
banking-business-review.com
Certificate
The complete raw certificate details for cms.legacy.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIINEDCCC/igAwIBAgISA5EIpvGbusseji3cbR6V/4ckMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMjEwMTUxMDI2MTBaFw0yMzAxMTMxMDI2MDlaMBkxFzAVBgNVBAMT DmNtcy5sZWdhY3kuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA 1krLGiY5HNM9z1M9B6W2UNhLd2WZcE7Ab8LMerrbL5ObALLn0OLp4EIbW8wLwcdv d/xXMmLRnD5tHfXIx4bEkxRPEJq/B+Umz1zj1k5u2KFKZSGGxOo17wRnySJoBgFw 12LqUUIW5WmEfmixCFv4WDN4aM+UViwYBqGw2bS603ztm0/tWWOawxyvqtuyPYvr sMB0YyTmajCvs31KB5j7sG9Q1uKht5y3xHXa/BWCFlY7/9ruvWlqFchDDVjl7/BL DWEeHBRj3PKStyWz8xPMDYyfcezFJ+RZkN3oc2zJug5B/Letkjbcg94uEGbKyXug 9y/DogVW8AiksfMfagbAxQIDAQABo4IKNzCCCjMwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBQ8mxdpybS6ECNAIzprNoUCbNPB1TAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzCCCPgGA1UdEQSCCO8wggjrgg5jbXMubGVnYWN5LmNvbYIRY29pbnMucnV0Z2Vy cy5lZHWCHGNvbmZ1Y2l1cy5lYXN0YXNpYW4udWNzYi5lZHWCEGNvbm5lY3QuaWFk Yi5vcmeCD2NvdmlkLnVzbWxlLm9yZ4ITY3FuLWVyYy5hcml6b25hLmVkdYIcY3Jt dGVzdC5lYXN0ZHVuYmFydG9uLmdvdi51a4IPY3NjLmFyaXpvbmEuZWR1ggpkNy5j bWMuZWR1ghVkN3N0b3JlLmp1aWxsaWFyZC5lZHWCEWRhbmllbGEucGF0Y2guY29t giBkZXNpZ24tZW5naW5lZXJpbmcucHJpbmNldG9uLmVkdYIkZGV2LWNhbWRlbmJh c2UubGlicmFyaWVzLnJ1dGdlcnMuZWR1ghRkZXYtY292aWQxOS5jaG9wLmVkdYIX ZGV2LWxwLWpodWJzcGguZWR1LmhlbHCCF2Rldi13ZWItZGVnYWNjLmVkdS5oZWxw gh1kZXYtd2ViLWpodWNhcmV5Y29vcC5lZHUuaGVscIIQZGV2LXd3dzIub2Z4LmNv bYIfZGV2LmJ1c2luZXNzLXNlcnZpY2VzLnVwZW5uLmVkdYITZGV2LmNlZS5jb3Ju ZWxsLmVkdYIcZGV2LmNoYW1waW9ucy1zcGVha2Vycy5jby51a4IYZGV2LmN0ZC5u b3J0aHdlc3Rlcm4uZWR1ghJkZXYuZGhzcmkueWFsZS5lZHWCE2Rldi5lY2UuY29y bmVsbC5lZHWCE2Rldi5lbWJvZHkueWFsZS5lZHWCG2Rldi5lbmdpbmVlcmluZy5j b3JuZWxsLmVkdYITZGV2Lm1hZS5jb3JuZWxsLmVkdYITZGV2Lm1zZS5jb3JuZWxs LmVkdYIUZGV2Lm5lYnJ3ZXNsZXlhbi5lZHWCG2Rldi5vbmxpbmVlZHVjYXRpb24u cHN1LmVkdYIbZGV2LnNoaWJ0ZXN0Ny5pc2MudXBlbm4uZWR1gh1kZXYud3JpZ2h0 bGFib3JhdG9yeS55YWxlLmVkdYIQZGV2Lnd0aS55YWxlLmVkdYIZZGV2MS5lbmdp bmVlcmluZy51Y3NiLmVkdYIRZGV2MS5zaS51bWljaC5lZHWCF2RldmRyLmF6bWV4 LmFyaXpvbmEuZWR1gg9kaWFsLnNyYWxhYi5vcmeCFGRscGUuY2FsYy5nYXRlY2gu ZWR1ghdkbWF0cy5zcGNzLnN0YW5mb3JkLmVkdYISZG1hdHMuc3RhbmZvcmQuZWR1 gg5kcy5hcml6b25hLmVkdYIbZWJvdDIwMC5tdWx0aWRldmNvbS51YWYuZWR1ghNl Y2Fsc28uYmVya2VsZXkuZWR1gg1lY2MubmFjaGEub3JnghhlZHVjYXRpb24uc3Mu cGFjaWZpYy5lZHWCFGVocy5zcGguYmVya2VsZXkuZWR1ghdlaXMuZGV2LmNtczEu YXNhLnV3LmVkdYIPZW1ib2R5LnlhbGUuZWR1ghtlbmdhZ2luZ2h1bWFuaXRpZXMu dWNzYi5lZHWCGmVuZ2luZWVyaW5nLnNzLnBhY2lmaWMuZWR1gh1lbnZpcm9ubWVu dC5yZXNlYXJjaC55YWxlLmVkdYIbZXhwZWRpdGlvbnMuc2FuZGllZ296b28ub3Jn giBleHBsb3JlLmh1bnRlcmJ1c2luZXNzc2Nob29sLmVkdYIiZXhwbG9yaW5ndGhl Y29tcGxleGl0eS51Y2RhdmlzLmVkdYIXZmFjdWx0eS5nc20udWNkYXZpcy5lZHWC DmZlY2MubmFjaGEub3JnghBmbHRhLmNsaS5hc3UuZWR1ghlnZW0uYnVzaW5lc3Mu dWNkZW52ZXIuZWR1ggxnZXQucGltYS5lZHWCImdpZnRjZXJ0aWZpY2F0ZXMuY29v a2Jvb2tjb29rcy5jb22CF2dpbC5lbmdpbmVlcmluZy5hc3UuZWR1ghBnaXMuYXJj aGJhbHQub3JnghJnaXZldG8uc2hhd25lZS5lZHWCDWdwZi5uYWNoYS5vcmeCFmdz ZWZpbG1zLmdzZS51cGVubi5lZHWCEmd0cGUucGUuZ2F0ZWNoLmVkdYIPaGNpaS5j cy5jbXUuZWR1ghFoZWFsdGhlZC5zZnN1LmVkdYIdaGVhbHRoc2NpZW5jZXMuc3Mu cGFjaWZpYy5lZHWCFWhvbWUuZWFydGhqdXN0aWNlLm9yZ4IPaG9zdDIuY2VubWku b3JnghNob3N0Mi5vcGVubWluZHMuY29tgg9ob3N0My5jZW5taS5vcmeCFGhvc3Q5 MC5mYXJtZXJtYWMuY29tghBoci1raW9zay50c3UuZWR1ghhodHRwYmluLmVhcnRo anVzdGljZS5vcmeCFGlhbS5lYXJ0aGp1c3RpY2Uub3Jngg5pZ2VydC51Y3NiLmVk dYIZaW5kaWEtdGVzdC5nZW5lcmF0aW9uLm9yZ4IRaW5kdXN0cmk0MC5pZGEuZGuC HGluZm8tZGV2LmNhbHBlcmZvcm1hbmNlcy5vcmeCFWluZm8ucmVsaWdpb25uZXdz LmNvbYINaW5mby52Y2ZhLmVkdYIPaW5mb25ldC5maWEub3JnghRpbmtzLmdvdmRl bGl2ZXJ5LmNvbYISaW5zaWRlLmdjLmN1bnkuZWR1gg9pbnNpZGUua2p6ei5vcmeC EWludGVybmFsLmdjaXIub3Jngh9pbnRlcm5hdGlvbmFsLnJlc2VhcmNoLnVjc2Iu ZWR1ghlpbnRlcm5ldGNvdW5jaWwubmFjaGEub3JnghdpbnRyYW5ldC5vbGl2ZWNy ZXN0Lm9yZ4IVaXB2Ni5lYXJ0aGp1c3RpY2Uub3JnghdpdC1jaGF0LndlYi5hcml6 b25hLmVkdYIQaXQuMjJzcXVhcmVkLmNvbYITaXQudWFocy5hcml6b25hLmVkdYIT aXRjYXRhbHlzdC5zZnN1LmVkdYIbaXRlYWNodS5tdWx0aWRldmNvbS51YWYuZWR1 ghRqb2IuZWFydGhqdXN0aWNlLm9yZ4IVam9icy5lYXJ0aGp1c3RpY2Uub3JnMEwG A1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEW Gmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMBMGCisGAQQB1nkCBAMBAf8EAgUA MA0GCSqGSIb3DQEBCwUAA4IBAQA/mcgtVbWDcBCgA9+XwXMFwPZCjEn2XFnWrmOo e4ojWAHt9xM5q/FuLZSBYn3t8bG/aOvjdSjO8GiHIbApFHp+hTc1sNEwLBLJGoVm oTrQl19iP3NyFH/5T0TxXS7LGObwWwhIFlluHEcYphyMVm20afqDgejV4zM7grzN 0UvIXNyYNFuInHnAMZDeCn2MZrfmjNmCHTNqt/vYC3WUTujZ2hkoNh+AKuNlpHvT YYvxnLhBVi8sOnTZKAzXLjYKGWW058nq271wHIiZ2Nq8xvLve9zp2ixaTc6LzETG f/zDGcLn1F2bAFeTNz4W/Gkff//A16XTSPHno6qN4mzfPLMO -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1krLGiY5HNM9z1M9B6W2 UNhLd2WZcE7Ab8LMerrbL5ObALLn0OLp4EIbW8wLwcdvd/xXMmLRnD5tHfXIx4bE kxRPEJq/B+Umz1zj1k5u2KFKZSGGxOo17wRnySJoBgFw12LqUUIW5WmEfmixCFv4 WDN4aM+UViwYBqGw2bS603ztm0/tWWOawxyvqtuyPYvrsMB0YyTmajCvs31KB5j7 sG9Q1uKht5y3xHXa/BWCFlY7/9ruvWlqFchDDVjl7/BLDWEeHBRj3PKStyWz8xPM DYyfcezFJ+RZkN3oc2zJug5B/Letkjbcg94uEGbKyXug9y/DogVW8AiksfMfagbA xQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 310689301644460502688256016335630246053668 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-15 10:26:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-13 10:26:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cms.legacy.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27051879246987795918157081769347786029824013987700245685560176012398829669503593988997576235999467454977596675908360519638508980077350079336112409203867887727642438593859768977446738982811852850099879588124549084837490706516863948085138562804710317219100975431354198450260867336150813707970202119549657800635690121467230306050136335514175761311036955160170311563565205511445699445407394949305874757645720485424970784043326347561440200864835028841555106339193173754098299937616706943111062387923638637767080897885730749002880630516324177652134287523824852860717849020271190392257327165031828926344633865049263745450181 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3c9b1769c9b4ba102340233a6b3685026cd3c1d5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2287 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms.legacy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coins.rutgers.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'confucius.eastasian.ucsb.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'connect.iadb.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'covid.usmle.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cqn-erc.arizona.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'crmtest.eastdunbarton.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'csc.arizona.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'd7.cmc.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'd7store.juilliard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daniela.patch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'design-engineering.princeton.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-camdenbase.libraries.rutgers.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-covid19.chop.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-lp-jhubsph.edu.help' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-web-degacc.edu.help' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-web-jhucareycoop.edu.help' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-www2.ofx.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.business-services.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.cee.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.champions-speakers.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.ctd.northwestern.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.dhsri.yale.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.ece.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.embody.yale.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.engineering.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.mae.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.mse.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.nebrwesleyan.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.onlineeducation.psu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.shibtest7.isc.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.wrightlaboratory.yale.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.wti.yale.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev1.engineering.ucsb.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev1.si.umich.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'devdr.azmex.arizona.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dial.sralab.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dlpe.calc.gatech.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dmats.spcs.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dmats.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ds.arizona.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ebot200.multidevcom.uaf.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ecalso.berkeley.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ecc.nacha.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'education.ss.pacific.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ehs.sph.berkeley.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eis.dev.cms1.asa.uw.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'embody.yale.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'engaginghumanities.ucsb.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'engineering.ss.pacific.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'environment.research.yale.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'expeditions.sandiegozoo.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'explore.hunterbusinessschool.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exploringthecomplexity.ucdavis.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'faculty.gsm.ucdavis.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fecc.nacha.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flta.cli.asu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gem.business.ucdenver.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'get.pima.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giftcertificates.cookbookcooks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gil.engineering.asu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gis.archbalt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giveto.shawnee.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gpf.nacha.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gsefilms.gse.upenn.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gtpe.pe.gatech.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hcii.cs.cmu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthed.sfsu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthsciences.ss.pacific.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'home.earthjustice.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'host2.cenmi.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'host2.openminds.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'host3.cenmi.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'host90.farmermac.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hr-kiosk.tsu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'httpbin.earthjustice.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iam.earthjustice.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'igert.ucsb.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'india-test.generation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'industri40.ida.dk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'info-dev.calperformances.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'info.religionnews.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'info.vcfa.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'infonet.fia.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inks.govdelivery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inside.gc.cuny.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inside.kjzz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'internal.gcir.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'international.research.ucsb.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'internetcouncil.nacha.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intranet.olivecrest.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ipv6.earthjustice.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'it-chat.web.arizona.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'it.22squared.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'it.uahs.arizona.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'itcatalyst.sfsu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iteachu.multidevcom.uaf.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'job.earthjustice.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jobs.earthjustice.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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