merchlogix.com
Issued by R3
About this certificate
This digital certificate with serial number 03:28:f1:a3:fa:f7:f0:54:2f:8b:b9:b4:ae:52:2e:8a:13:fb was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=merchlogix.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:28:f1:a3:fa:f7:f0:54:2f:8b:b9:b4:ae:52:2e:8a:13:fbSerial Number (int): 275269347853736519611275522228240509441019
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 18:11:90:a0:17:ba:0b:8f:bb:91:46:b2:e9:c4:56:70:9e:99:97:e1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0c:ce:c1:f4:98:cd:49:4e:39:14:39:e9:53:fd:a0:00:19:ad:0a:bc
Fingerprint (sha256): 1f:fe:12:07:7c:7d:24:75:63:44:cb:05:03:68:99:c0:07:59:e2:a6:d1:de:68:e4:c7:45:7e:61:cf:6b:a9:3c
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate merchlogix.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for merchlogix.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
merchlogix.com
www.merchlogix.com
www.merchlogix.com
Other certificates including the domain name merchlogix.com
(limited to 100 certificates)
merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
*.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
*.demo.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
*.merchlogix.com
alpaca.status.merchlogix.com
*.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
*.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
*.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
merchlogix.com
*.demo.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
*.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
*.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
*.demo.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
*.merchlogix.com
alpaca.status.merchlogix.com
*.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
*.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
*.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
merchlogix.com
*.demo.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
*.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
alpaca.status.merchlogix.com
Certificate
The complete raw certificate details for merchlogix.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAyjxo/r38FQvi7m0rlIuihP7MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA2MDQxMDIzMTFaFw0yNDA5MDIxMDIzMTBaMBkxFzAVBgNVBAMT Dm1lcmNobG9naXguY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA 2Lbww/K5l2k3zfrZrHoc7KJi5ckkBsofcCh/jBsRrwe51ncmkULKzq1ieS2NE0sD 4uGvBmCGXg/Olr55HKiTAjA8ICDBg0gZmk8i8irXdf9Gq7ZcmuxTtYXdUf6PbIfM J0bi2g9X1gk+ykoFuGgCDrZzRxZCXdjOfkFB+Id/ZtV6MF44i09ot5gcvr3je8nW yAcQllTVLE9X8aYGWm0a8Y1OCNqHMEdVMYDyVkvg+hmoZ21rXenaKekL1T5QN5km IML7j5rTux957Q5Me9vA8HyrYzEhVBaftIB0/hIEVW2CVR/wWAHb3N0QErgy59t/ yEup4Pna1gQFFolqkAJIJwIDAQABo4ICJTCCAiEwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBQYEZCgF7oLj7uRRrLpxFZwnpmX4TAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzAtBgNVHREEJjAkgg5tZXJjaGxvZ2l4LmNvbYISd3d3Lm1lcmNobG9naXguY29t MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcA SLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGP4v0iSQAABAMASDBG AiEAjUL1Sb0S51OsD1lrbvQBuvmN2JW7G6Mh7D7FDtL5UK8CIQCeMy9yvU/qR+vO 3aHWgyB85IyCspqs2Lu4GxDdUzzvPwB2ABmYEHEJ8NZSLjCA0p4/ZLuDbijM+Q9S ju7fzko/FrTKAAABj+L9IqQAAAQDAEcwRQIhAKsX50g7jHQx1Aa3CIOhTlIQV3/m als4+2VlzjDjHLuIAiAJ+BGle7EPPh1ZBtAEaIoX+P6kNhakT0aVg3xvWkSWSzAN BgkqhkiG9w0BAQsFAAOCAQEAaz+ahsZVwoyqSLoSgU+j8yC2mvLskNptW4dIUxLo laKqy49GuVmd/tNQjqfK7TJDt6j7xQvsebPUH18/mGAn2+rpJApRPWblNLA7AccR lB0dh+yNehPgH9NvOpRV8xEYaoPpA49VNu06JhBPmEHMwYA0jY5cjd6/bV6bJeEV 7IiUZfSwxgFc2smAyddRyFVowKUA1RFKb8HqTVJCZfa8rm0DpqvSfmxGSX6evJ6s lHB8SFNA85HsxWl7X1fVfHt3aULP1LMPdRyaIrL6vCW8IWJPcmbets23YsN/FYAW GCoRVB/4DGY6E6pLPufV023sZq8asi8qRyWXyUGhO95hsg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Lbww/K5l2k3zfrZrHoc 7KJi5ckkBsofcCh/jBsRrwe51ncmkULKzq1ieS2NE0sD4uGvBmCGXg/Olr55HKiT AjA8ICDBg0gZmk8i8irXdf9Gq7ZcmuxTtYXdUf6PbIfMJ0bi2g9X1gk+ykoFuGgC DrZzRxZCXdjOfkFB+Id/ZtV6MF44i09ot5gcvr3je8nWyAcQllTVLE9X8aYGWm0a 8Y1OCNqHMEdVMYDyVkvg+hmoZ21rXenaKekL1T5QN5kmIML7j5rTux957Q5Me9vA 8HyrYzEhVBaftIB0/hIEVW2CVR/wWAHb3N0QErgy59t/yEup4Pna1gQFFolqkAJI JwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 275269347853736519611275522228240509441019 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-04 10:23:11 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-02 10:23:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'merchlogix.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27357685190475695918538047003899902632754236692680495370649842497335849510711800449358127231215360298392095257336763948156596636057251423515967373613405832395786461417766538120430631620501785704317931161395824088219318404578821302181926087954705112115698756962298643810083666038992086461578262556012449046693468153894203071423352595791801260808738369513582143478490902917785435199565881196359737337910173701537774913580206160003186761073479636241758662714177553366031766856270677727871342896898618406316950559753103742700817133181611689130397900837749772054659894792234593964804244477703078719360338962612366438713383 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 181190a017ba0b8fbb9146b2e9c456709e9997e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'merchlogix.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.merchlogix.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018fe2fd224900000403004830460221008d42f549bd12e753ac0f596b6ef401baf98dd895bb1ba321ec3ec50ed2f950af0221009e332f72bd4fea47ebcedda1d683207ce48c82b29aacd8bbb81b10dd533cef3f0076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018fe2fd22a40000040300473045022100ab17e7483b8c7431d406b70883a14e5210577fe66a5b38fb6565ce30e31cbb88022009f811a57bb10f3e1d5906d004688a17f8fea43616a44f4695837c6f5a44964b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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