blog.marktompkins.me
Issued by StartCom Class 1 DV Server CA
About this certificate
This digital certificate with serial number 47:d2:5b:f2:96:73:b3:58:f1:b2:1c:3a:d7:71:f4:27 was issued on by StartCom Ltd..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=blog.marktompkins.me
StartCom Ltd.
Organization:
StartCom Ltd.
Organization unit: StartCom Certification Authority
Organization unit: StartCom Certification Authority
Country:
IL
This certificate has expire since
Certificate Details
Serial Number (hex): 47:d2:5b:f2:96:73:b3:58:f1:b2:1c:3a:d7:71:f4:27Serial Number (int): 95467434960073226418927350911329236007
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: ab:53:b4:4b:e3:85:9e:61:44:f6:07:96:92:2f:66:21:f4:44:d1:af
AuthorityKeyId: d7:91:4e:01:c4:b0:bf:f8:c8:67:93:44:9c:e7:33:fa:ad:93:0c:af
Fingerprint (sha1): dd:27:a7:8e:ff:9f:ae:7c:39:4a:ec:ea:ad:4a:7c:d8:3e:48:fa:90
Fingerprint (sha256): 20:52:83:d4:39:3a:28:cb:c6:da:42:98:7b:03:85:17:b1:8d:45:62:d6:08:eb:51:21:91:0c:66:77:a7:8c:c1
Issuing Certificate URL: http://aia.startssl.com/certs/sca.server1.crt
Revocation information
OCSP Server: http://ocsp.startssl.comCRL Distribution Point: http://crl.startssl.com/sca-server1.crl
Check the revocation status for certificate blog.marktompkins.me
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for blog.marktompkins.me
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
blog.marktompkins.me
zeus.marktompkins.me
zeus.marktompkins.me
Other certificates including the domain name marktompkins.me
(limited to 100 certificates)
oa.marktompkins.me
www.marktompkins.me
www.marktompkins.me
oa.marktompkins.me
*.marktompkins.me
git.marktompkins.me
*.marktompkins.me
marktompkins.me
blog.marktompkins.me
marktompkins.me
handwerker.mobiliar.ch
zeus.marktompkins.me
faq.marktompkins.me
marktompkins.me
marktompkins.me
marktompkins.me
zeus.marktompkins.me
tymodenengelsman.com
oa.marktompkins.me
nuc2.marktompkins.me
blog.marktompkins.me
marktompkins.me
git.marktompkins.me
cacitrak.com
nzb.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
marktompkins.me
zeus.marktompkins.me
marktompkins.me
marktompkins.me
melonseed.media
syno.marktompkins.me
marktompkins.me
marktompkins.me
sni.cloudflaressl.com
*.marktompkins.me
pxe.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
*.marktompkins.me
git.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
turn.marktompkins.me
oa.marktompkins.me
git.marktompkins.me
www.marktompkins.me
*.marktompkins.me
digital.stratton-press.linkmalloc.com
faq.marktompkins.me
marktompkins.me
oa.marktompkins.me
marktompkins.me
marktompkins.me
git.marktompkins.me
marktompkins.me
www.marktompkins.me
plex.marktompkins.me
git.marktompkins.me
git.marktompkins.me
ui.skydropx.com
*.marktompkins.me
git.marktompkins.me
faq.marktompkins.me
marktompkins.me
faq.marktompkins.me
pkgs.marktompkins.me
demo.messehero.de
faq.marktompkins.me
www.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
www.marktompkins.me
marktompkins.me
oa.marktompkins.me
marktompkins.me
marktompkins.me
faq.marktompkins.me
faq.marktompkins.me
nzb.marktompkins.me
*.marktompkins.me
git.marktompkins.me
*.marktompkins.me
git.marktompkins.me
*.marktompkins.me
www.bookfy.app
oa.marktompkins.me
plexpy.marktompkins.me
oa.marktompkins.me
dsm.marktompkins.me
marktompkins.me
marktompkins.me
git.marktompkins.me
www.marktompkins.me
marktompkins.me
www.marktompkins.me
sni.cloudflaressl.com
marktompkins.me
www.marktompkins.me
www.marktompkins.me
www.marktompkins.me
oa.marktompkins.me
*.marktompkins.me
git.marktompkins.me
*.marktompkins.me
marktompkins.me
blog.marktompkins.me
marktompkins.me
handwerker.mobiliar.ch
zeus.marktompkins.me
faq.marktompkins.me
marktompkins.me
marktompkins.me
marktompkins.me
zeus.marktompkins.me
tymodenengelsman.com
oa.marktompkins.me
nuc2.marktompkins.me
blog.marktompkins.me
marktompkins.me
git.marktompkins.me
cacitrak.com
nzb.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
marktompkins.me
zeus.marktompkins.me
marktompkins.me
marktompkins.me
melonseed.media
syno.marktompkins.me
marktompkins.me
marktompkins.me
sni.cloudflaressl.com
*.marktompkins.me
pxe.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
*.marktompkins.me
git.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
turn.marktompkins.me
oa.marktompkins.me
git.marktompkins.me
www.marktompkins.me
*.marktompkins.me
digital.stratton-press.linkmalloc.com
faq.marktompkins.me
marktompkins.me
oa.marktompkins.me
marktompkins.me
marktompkins.me
git.marktompkins.me
marktompkins.me
www.marktompkins.me
plex.marktompkins.me
git.marktompkins.me
git.marktompkins.me
ui.skydropx.com
*.marktompkins.me
git.marktompkins.me
faq.marktompkins.me
marktompkins.me
faq.marktompkins.me
pkgs.marktompkins.me
demo.messehero.de
faq.marktompkins.me
www.marktompkins.me
faq.marktompkins.me
www.marktompkins.me
www.marktompkins.me
marktompkins.me
oa.marktompkins.me
marktompkins.me
marktompkins.me
faq.marktompkins.me
faq.marktompkins.me
nzb.marktompkins.me
*.marktompkins.me
git.marktompkins.me
*.marktompkins.me
git.marktompkins.me
*.marktompkins.me
www.bookfy.app
oa.marktompkins.me
plexpy.marktompkins.me
oa.marktompkins.me
dsm.marktompkins.me
marktompkins.me
marktompkins.me
git.marktompkins.me
www.marktompkins.me
marktompkins.me
www.marktompkins.me
sni.cloudflaressl.com
marktompkins.me
www.marktompkins.me
Certificate
The complete raw certificate details for blog.marktompkins.me in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGEDCCBPigAwIBAgIQR9Jb8pZzs1jxshw613H0JzANBgkqhkiG9w0BAQsFADB4 MQswCQYDVQQGEwJJTDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjEpMCcGA1UECxMg U3RhcnRDb20gQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkxJjAkBgNVBAMTHVN0YXJ0 Q29tIENsYXNzIDEgRFYgU2VydmVyIENBMB4XDTE2MDUxNzAwMDgwNVoXDTE3MDUx NzAwMDgwNVowHzEdMBsGA1UEAwwUYmxvZy5tYXJrdG9tcGtpbnMubWUwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDvDl6N/rSaEkfxJ+KWoruWcDpFBR+m Xv3bH9OT1sY8mgwpVv3tg4ul3NMlynukg1UoUoYh49GLCB0zQYiWnRQGqzWjSk1J +IZISmd9J1cxbb4zQ/hVwVm/DFclVRZU7DCuMuqsl59wTGkQauZmjmWXbyPewj9t 8qizhEYc2uHn974hVrUMUTyDPJTVCnAfcCy2U2hcjY5bwu7PI9AZUWaBOqxXhXgj gz98u5YOVOkpO6XN8RTllimznOk1cmX4s8awqdjBxOecKJIVQqfFlNN4q0kB73+V UZDV0RMNJqbMAyeGYBP1mB6lf/vnA1wfUtMoLHPHAvrt8Q/1kChbVqlOeJDgRn9w LclYPmHvV5EUaLq2ZDqKhYRrsl7ctzMiOYYFSsAxAS/EtfuHEKNXJqeqj7R5ocYF 6c2q+ZVfl+QarjTJeK/OTAuxgCrCJbUfkNbwiiridJ69L08cs9GBFpbx37nKKzfp NhvvE3O3rPlIda2fSAM6GYn+eIY3ekmFRmLCdbCpphDkPEeblwkAu0M88ZPLdVxy 7q+KrUQxwARdMNatNF8K8rWwAcrpvKjDE3IhObK3YptyJoC02v3mLfRxuO5hmUlO 0PQAb4xiaQ3+qiS8E49xAhSx23hvUNwJ6X2mJhHhM4eDY1kewyQcLpUBAhQ2hudj r1Mu3Qi7xEL0TwIDAQABo4IB7TCCAekwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMCBggrBgEFBQcDATAJBgNVHRMEAjAAMB0GA1UdDgQWBBSrU7RL 44WeYUT2B5aSL2Yh9ETRrzAfBgNVHSMEGDAWgBTXkU4BxLC/+Mhnk0Sc5zP6rZMM rzBvBggrBgEFBQcBAQRjMGEwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLnN0YXJ0 c3NsLmNvbTA5BggrBgEFBQcwAoYtaHR0cDovL2FpYS5zdGFydHNzbC5jb20vY2Vy dHMvc2NhLnNlcnZlcjEuY3J0MDgGA1UdHwQxMC8wLaAroCmGJ2h0dHA6Ly9jcmwu c3RhcnRzc2wuY29tL3NjYS1zZXJ2ZXIxLmNybDA1BgNVHREELjAsghRibG9nLm1h cmt0b21wa2lucy5tZYIUemV1cy5tYXJrdG9tcGtpbnMubWUwIwYDVR0SBBwwGoYY aHR0cDovL3d3dy5zdGFydHNzbC5jb20vMFEGA1UdIARKMEgwCAYGZ4EMAQIBMDwG CysGAQQBgbU3AQIFMC0wKwYIKwYBBQUHAgEWH2h0dHBzOi8vd3d3LnN0YXJ0c3Ns LmNvbS9wb2xpY3kwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQAD ggEBALlCB42XSzJ0YJj2r39Xfhf983KJ76rHX+02lcs8jpfv10gOw0zlMayYqbpf B7vOp1w5i4HVXOOJIU+1E+VsZKR8KRMpZ6plu+lSYuDJeZSoBiJaLA2SR08iUXoO 5xrWDwu/XGBGx7aNhqEsJaj0qHawBzs4geWq14AlCyP7AyO4cDkyD9SLPAsQpXeB I0/n5VOoI87L/ktj76IkqarXaRMjrFIhjdMZ+TW79FUxbP3OLiSkxi1ALMzfwGUK kxo3xXbxO+L/xDeRdNE1IMdYLNDqkidlsgh/VLUebUb6JFNl5r3OrlRyR92TUu2C fKvPssQ4s93oxF+De38bw7CUA3g= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA7w5ejf60mhJH8SfilqK7 lnA6RQUfpl792x/Tk9bGPJoMKVb97YOLpdzTJcp7pINVKFKGIePRiwgdM0GIlp0U Bqs1o0pNSfiGSEpnfSdXMW2+M0P4VcFZvwxXJVUWVOwwrjLqrJefcExpEGrmZo5l l28j3sI/bfKos4RGHNrh5/e+IVa1DFE8gzyU1QpwH3AstlNoXI2OW8LuzyPQGVFm gTqsV4V4I4M/fLuWDlTpKTulzfEU5ZYps5zpNXJl+LPGsKnYwcTnnCiSFUKnxZTT eKtJAe9/lVGQ1dETDSamzAMnhmAT9ZgepX/75wNcH1LTKCxzxwL67fEP9ZAoW1ap TniQ4EZ/cC3JWD5h71eRFGi6tmQ6ioWEa7Je3LczIjmGBUrAMQEvxLX7hxCjVyan qo+0eaHGBenNqvmVX5fkGq40yXivzkwLsYAqwiW1H5DW8Ioq4nSevS9PHLPRgRaW 8d+5yis36TYb7xNzt6z5SHWtn0gDOhmJ/niGN3pJhUZiwnWwqaYQ5DxHm5cJALtD PPGTy3Vccu6viq1EMcAEXTDWrTRfCvK1sAHK6byowxNyITmyt2KbciaAtNr95i30 cbjuYZlJTtD0AG+MYmkN/qokvBOPcQIUsdt4b1DcCel9piYR4TOHg2NZHsMkHC6V AQIUNobnY69TLt0Iu8RC9E8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 95467434960073226418927350911329236007 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Certification Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Class 1 DV Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-17 00:08:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-17 00:08:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'blog.marktompkins.me' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 975263923860343708792255195368144704969199009931347430785671978933267322271161551823733048788399548417602061431673409630787647647143146224096178381242486738972204337571679787149762758447630039117724531765883323263289552970198014268328930900718713325020696569940206810857684941739584432321708076640048072488472611536558305722332302844374106415728178927158476361118354081586115890252200284402801557434153558619748859593031704676906758364178342712296905427170814405101169992021761725638795653560726286209295477278127903258890912692777603077851683365731638652087398224821160667649117668879279779719869276416273857724438269955924139438287621883881775649633611760818850908957365500759065473994098888906298844344648568706227640645488800433843362614803148763299470643673767822546387004384848280607466777530388846860496990499676894491953386685151023036741796502210901286760779684090682976943292983762316689434589750616163204056319091879011537903850192825158769052796916285012819260616445841756657168246220760640115184471118747279989519420563492383421399287255958003672683910485833278762157808145794825567116540560344208243865532735277741637671320182182500178870805200206197604954477394384209052793736240810600215785029309677896214478955148367 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ab53b44be3859e6144f60796922f6621f444d1af . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d7914e01c4b0bff8c86793449ce733faad930caf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.startssl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.startssl.com/certs/sca.server1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.startssl.com/sca-server1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.marktompkins.me' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zeus.marktompkins.me' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.18 (issuerAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.startssl.com/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23223.1.2.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.startssl.com/policy' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00b942078d974b32746098f6af7f577e17fdf37289efaac75fed3695cb3c8e97efd7480ec34ce531ac98a9ba5f07bbcea75c398b81d55ce389214fb513e56c64a47c29132967aa65bbe95262e0c97994a806225a2c0d92474f22517a0ee71ad60f0bbf5c6046c7b68d86a12c25a8f4a876b0073b3881e5aad780250b23fb0323b87039320fd48b3c0b10a57781234fe7e553a823cecbfe4b63efa224a9aad7691323ac52218dd319f935bbf455316cfdce2e24a4c62d402cccdfc0650a931a37c576f13be2ffc4379174d13520c7582cd0ea922765b2087f54b51e6d46fa245365e6bdceae547247dd9352ed827cabcfb2c438b3dde8c45f837b7f1bc3b0940378