www.cafonline.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:81:85:3d:7b:d5:d4:88:75:f5:e0:4d:8b:7b:f7:bd:22:9a was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.cafonline.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:81:85:3d:7b:d5:d4:88:75:f5:e0:4d:8b:7b:f7:bd:22:9aSerial Number (int): 392522675625067568466592321387005885620890
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: c8:28:07:e2:a5:59:c9:de:11:d6:a3:0e:74:f8:08:61:56:1a:1b:3a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 5a:14:b0:9a:55:b2:e3:8d:e5:d0:9d:aa:e9:d9:33:fd:6e:be:4d:d9
Fingerprint (sha256): 20:b5:d2:2f:a7:7d:87:89:b3:85:e9:fd:9c:b4:64:29:c2:7f:f7:1b:54:d1:67:a9:ce:b2:ea:c2:5f:45:7c:fd
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.cafonline.com
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.cafonline.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ar.cafonline.com
caf-prd-widgets.cafonline.com
dapi.cafonline.com
fr.cafonline.com
images.cafonline.com
www.cafonline.com
caf-prd-widgets.cafonline.com
dapi.cafonline.com
fr.cafonline.com
images.cafonline.com
www.cafonline.com
Other certificates including the domain name cafonline.com
(limited to 100 certificates)
*.cafonline.com
www.cafonline.com
helpdesk.zoolatech.com
support.cafonline.com
support.cafonline.com
*.cafonline.com
cahelpdesk.ca-usa.com
cahelpdesk.ca-usa.com
servicedesk.patri.com.br
ssl378358.cloudflaressl.com
fr.cafonline.com
ssl378358.cloudflaressl.com
sni.cloudflaressl.com
ssl378560.cloudflaressl.com
*.cafonline.com
www.cafonline.com
www.highq.com
ssl378359.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
sd.mareven.com
*.cafonline.com
support.cafonline.com
ssl378358.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378358.cloudflaressl.com
www.cafonline.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
support.cafonline.com
ssl378357.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
ssl378558.cloudflaressl.com
ssl378357.cloudflaressl.com
*.cafonline.com
www.cafonline.com
ssl378560.cloudflaressl.com
ssl378358.cloudflaressl.com
sni.cloudflaressl.com
ssl378357.cloudflaressl.com
sni.cloudflaressl.com
servicedesk.patri.com.br
ssl378358.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378358.cloudflaressl.com
www.cafonline.com
ssl378358.cloudflaressl.com
www.cafonline.com
ssl378359.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
ssl378357.cloudflaressl.com
support.cafonline.com
ssl378358.cloudflaressl.com
ssl378358.cloudflaressl.com
support.cafonline.com
ssl378560.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
support.cafonline.com
support.cafonline.com
support.cafonline.com
www.cafonline.com
www.cafonline.com
www.cafonline.com
support.cafonline.com
ssl378358.cloudflaressl.com
servicedesk.gspretail.com
ssl378358.cloudflaressl.com
*.cafonline.com
support.cafonline.com
support.cafonline.com
ssl378359.cloudflaressl.com
cafonline.com
ssl378357.cloudflaressl.com
www.cafonline.com
support.cafonline.com
ssl378357.cloudflaressl.com
support.cafonline.com
www.cafonline.com
support.cafonline.com
support.cafonline.com
support.cafonline.com
ssl378358.cloudflaressl.com
cafonline.com
support.cafonline.com
www.cafonline.com
helpdesk.zoolatech.com
support.cafonline.com
support.cafonline.com
*.cafonline.com
cahelpdesk.ca-usa.com
cahelpdesk.ca-usa.com
servicedesk.patri.com.br
ssl378358.cloudflaressl.com
fr.cafonline.com
ssl378358.cloudflaressl.com
sni.cloudflaressl.com
ssl378560.cloudflaressl.com
*.cafonline.com
www.cafonline.com
www.highq.com
ssl378359.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
sd.mareven.com
*.cafonline.com
support.cafonline.com
ssl378358.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378358.cloudflaressl.com
www.cafonline.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
support.cafonline.com
ssl378357.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
ssl378558.cloudflaressl.com
ssl378357.cloudflaressl.com
*.cafonline.com
www.cafonline.com
ssl378560.cloudflaressl.com
ssl378358.cloudflaressl.com
sni.cloudflaressl.com
ssl378357.cloudflaressl.com
sni.cloudflaressl.com
servicedesk.patri.com.br
ssl378358.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378359.cloudflaressl.com
ssl378358.cloudflaressl.com
www.cafonline.com
ssl378358.cloudflaressl.com
www.cafonline.com
ssl378359.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378358.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
www.cafonline.com
ssl378357.cloudflaressl.com
support.cafonline.com
ssl378358.cloudflaressl.com
ssl378358.cloudflaressl.com
support.cafonline.com
ssl378560.cloudflaressl.com
ssl378357.cloudflaressl.com
ssl378357.cloudflaressl.com
support.cafonline.com
support.cafonline.com
support.cafonline.com
www.cafonline.com
www.cafonline.com
www.cafonline.com
support.cafonline.com
ssl378358.cloudflaressl.com
servicedesk.gspretail.com
ssl378358.cloudflaressl.com
*.cafonline.com
support.cafonline.com
support.cafonline.com
ssl378359.cloudflaressl.com
cafonline.com
ssl378357.cloudflaressl.com
www.cafonline.com
support.cafonline.com
ssl378357.cloudflaressl.com
support.cafonline.com
www.cafonline.com
support.cafonline.com
support.cafonline.com
support.cafonline.com
ssl378358.cloudflaressl.com
cafonline.com
support.cafonline.com
Certificate
The complete raw certificate details for www.cafonline.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFzDCCBLSgAwIBAgISBIGFPXvV1Ih19eBNi3v3vSKaMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDExMDgwOTI5NTZaFw0y MTAyMDYwOTI5NTZaMBwxGjAYBgNVBAMTEXd3dy5jYWZvbmxpbmUuY29tMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LAY4crgElH4+6SpCVnMyVKwwQpl 5OWgqC5Bgjs9tMqurw3mID1BwKUXzxQluqqAZNMg3ezy3Ta2vQm8+K3bnZ1WHKW1 w9eqsn/9Oo5a8hOpxQT/CFqDJ9yaaGkrDVXolZMfRsT7tpb8C+FJJxVyDkaTHAHc d3pBvu589QAfrCNXrJ/sJjEUgZuzt3gOTBxBHxhi0va7T9Ob8qO6oVYkDiWV5+3d tAdU8gDmRR9Cdms/30akpfy5kd3klQn7ZSJPLKlz344FxzDTv5o5Zsp0l/A2XHYQ 0NypYt26jvGnUa8g2CKmNiOYWZfATqlx9rp1NpyeZeOFwdqJoHssEVUNswIDAQAB o4IC2DCCAtQwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTIKAfipVnJ3hHWow50+Ahh VhobOjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcB AQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlw dC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlw dC5vcmcvMIGLBgNVHREEgYMwgYCCEGFyLmNhZm9ubGluZS5jb22CHWNhZi1wcmQt d2lkZ2V0cy5jYWZvbmxpbmUuY29tghJkYXBpLmNhZm9ubGluZS5jb22CEGZyLmNh Zm9ubGluZS5jb22CFGltYWdlcy5jYWZvbmxpbmUuY29tghF3d3cuY2Fmb25saW5l LmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsG AQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQYGCisGAQQB1nkC BAIEgfcEgfQA8gB3AFzcQ5L+5qtFRLFemtRW5hA3+9X6R9yhc5SyXub2xw7KAAAB dadnwzoAAAQDAEgwRgIhAJFl/qNEsKBkLgaQlRqz+o6o3eTB3x3S+W49Qi4+y54b AiEA8Sbbrfmwq6U6hfyRh37Oo6LbXJtzUqrtdfb50691EGQAdwB9PvL4j/+IVWgk wsDKnlKJeSvFDngJfy5ql2iZfiLw1wAAAXWnZ8NaAAAEAwBIMEYCIQDb5h7sxh1/ 3ucwKUi5/05IW46F2uUTElyEXxlMoUhadgIhALwhMt5EtFSG2KN98JoFCbN/YShL GNxduU8SWxfhcOsuMA0GCSqGSIb3DQEBCwUAA4IBAQAc8lu+cnqsCR7tH6vWfZcG OvVxBCcSzC2pDn0MXVV1mwcFabejibAEavqWRZouRECpkT9tft79j2w0l3sfQVdN Pj+LqcbQfXgdjh3CZvWi1blyqw1tnsxnkAYErEvuBC3MNOLDpGGU8IFEnukwtQrN tOcSuk37y/NcrHxbrUkxWvoFJd/PRUMlIdM+N0zfpWfDJXR5kM3Mb++inV67z5/W 0m9bdovYAILILMYwCx4XxQ6B9KOqdvzUTeDj5LIAVjhqiLLeIvlC/x7WmTWkwBds /gLpZwIez2VIeOXh22UWggb9xbKeRaKZcdyGHiYXwxTxbEHGMsnwrmVfecre75+t -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LAY4crgElH4+6SpCVnM yVKwwQpl5OWgqC5Bgjs9tMqurw3mID1BwKUXzxQluqqAZNMg3ezy3Ta2vQm8+K3b nZ1WHKW1w9eqsn/9Oo5a8hOpxQT/CFqDJ9yaaGkrDVXolZMfRsT7tpb8C+FJJxVy DkaTHAHcd3pBvu589QAfrCNXrJ/sJjEUgZuzt3gOTBxBHxhi0va7T9Ob8qO6oVYk DiWV5+3dtAdU8gDmRR9Cdms/30akpfy5kd3klQn7ZSJPLKlz344FxzDTv5o5Zsp0 l/A2XHYQ0NypYt26jvGnUa8g2CKmNiOYWZfATqlx9rp1NpyeZeOFwdqJoHssEVUN swIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 392522675625067568466592321387005885620890 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-08 09:29:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-06 09:29:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.cafonline.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27859263855995610052078665119756711142120204117871395038923519221641776157704278036415061526639013018600173166587283584335784993551269212690534253533970424800889551834133071025026688511229253645126120184418278904667718166320904101465972132012665883033087609909504927393389525399969678227898312356719959062065067311842923750659729526953278210179354585169468319782956082728752403168567473949881013700029630174204897638472628081969201161879757963618954412056357783928487331909975988435883885476747947824669008297334937483333615304602536410379096422661021382370511089272043450491451113711253494475589630261274217584856499 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c82807e2a559c9de11d6a30e74f80861561a1b3a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (131 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ar.cafonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'caf-prd-widgets.cafonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dapi.cafonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fr.cafonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.cafonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cafonline.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077005cdc4392fee6ab4544b15e9ad456e61037fbd5fa47dca17394b25ee6f6c70eca00000175a767c33a00000403004830460221009165fea344b0a0642e0690951ab3fa8ea8dde4c1df1dd2f96e3d422e3ecb9e1b022100f126dbadf9b0aba53a85fc91877ecea3a2db5c9b7352aaed75f6f9d3af7510640077007d3ef2f88fff88556824c2c0ca9e5289792bc50e78097f2e6a9768997e22f0d700000175a767c35a0000040300483046022100dbe61eecc61d7fdee7302948b9ff4e485b8e85dae513125c845f194ca1485a76022100bc2132de44b45486d8a37df09a0509b37f61284b18dc5db94f125b17e170eb2e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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