com.mariefrance.fr
Issued by R3
About this certificate
This digital certificate with serial number 03:b2:66:bc:e6:c6:7c:88:90:aa:35:e0:55:f8:08:73:98:81 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=com.mariefrance.fr
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:b2:66:bc:e6:c6:7c:88:90:aa:35:e0:55:f8:08:73:98:81Serial Number (int): 322043681195267178658981183636552457361537
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 07:3a:b6:ff:a2:0f:45:31:34:52:69:a1:14:76:03:3e:0c:51:13:9b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 93:89:94:32:36:62:ac:93:5c:fd:b5:12:d2:ec:de:38:e5:f2:e3:77
Fingerprint (sha256): 21:2b:e0:e2:8c:14:f7:1f:3b:42:a0:0a:5e:3d:ff:10:11:8c:60:35:2a:5e:5a:98:a7:07:ec:cc:e7:00:c8:88
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate com.mariefrance.fr
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for com.mariefrance.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
com.mariefrance.fr
Other certificates including the domain name mariefrance.fr
(limited to 100 certificates)
abonnement.groupemarieclaire.com
livreblanc.mariefrance.fr
livreblanc.mariefrance.fr
sni221250.cloudflaressl.com
ssl276960.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni238301.cloudflaressl.com
sni172098.cloudflaressl.com
sni221250.cloudflaressl.com
ssl374745.cloudflaressl.com
sni221250.cloudflaressl.com
ssl392171.cloudflaressl.com
ssl374746.cloudflaressl.com
sni172098.cloudflaressl.com
sni221250.cloudflaressl.com
ssl276959.cloudflaressl.com
ssl389436.cloudflaressl.com
sni.cloudflaressl.com
nla.mariefrance.fr
nla.mariefrance.fr
sni87554.cloudflaressl.com
ssl6538.cloudflare.com
p19.base-deal.eu
nla.gala-news.fr
sni221250.cloudflaressl.com
p19.deal-envoi.com
ssl6538.cloudflare.com
sni221250.cloudflaressl.com
ssl374745.cloudflaressl.com
sni238301.cloudflaressl.com
ssl392170.cloudflaressl.com
ssl392171.cloudflaressl.com
ssl276958.cloudflaressl.com
ssl392170.cloudflaressl.com
nla.mariefrance.fr
sni238301.cloudflaressl.com
com.mariefrance.fr
sni221250.cloudflaressl.com
sni172098.cloudflaressl.com
sni.cloudflaressl.com
sni221250.cloudflaressl.com
sni172098.cloudflaressl.com
ssl276960.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni238301.cloudflaressl.com
p19.fichier-mailody.fr
ssl392169.cloudflaressl.com
mariefrance.fr
ssl276960.cloudflaressl.com
ssl390166.cloudflaressl.com
ssl276960.cloudflaressl.com
ssl392171.cloudflaressl.com
sni238301.cloudflaressl.com
ssl276960.cloudflaressl.com
em.auto-moto.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni238301.cloudflaressl.com
ssl276958.cloudflaressl.com
squad.leservicedesastuces.fr
nla.mariefrance.fr
ssl374744.cloudflaressl.com
ssl392169.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
ssl276960.cloudflaressl.com
sni.cloudflaressl.com
sni221250.cloudflaressl.com
sni172098.cloudflaressl.com
mariefrance.fr
ssl6538.cloudflare.com
qualifio.mariefrance.fr
sni221250.cloudflaressl.com
sni238301.cloudflaressl.com
ssl276958.cloudflaressl.com
sni221250.cloudflaressl.com
ssl392170.cloudflaressl.com
em.auto-moto.com
ssl374746.cloudflaressl.com
ssl276960.cloudflaressl.com
sni221250.cloudflaressl.com
livreblanc.mariefrance.fr
sni172098.cloudflaressl.com
sni.cloudflaressl.com
ssl392171.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
ssl276960.cloudflaressl.com
sni221250.cloudflaressl.com
sni172098.cloudflaressl.com
ssl276960.cloudflaressl.com
ssl6538.cloudflare.com
ssl6538.cloudflare.com
sni221250.cloudflaressl.com
livreblanc.mariefrance.fr
livreblanc.mariefrance.fr
sni221250.cloudflaressl.com
ssl276960.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni238301.cloudflaressl.com
sni172098.cloudflaressl.com
sni221250.cloudflaressl.com
ssl374745.cloudflaressl.com
sni221250.cloudflaressl.com
ssl392171.cloudflaressl.com
ssl374746.cloudflaressl.com
sni172098.cloudflaressl.com
sni221250.cloudflaressl.com
ssl276959.cloudflaressl.com
ssl389436.cloudflaressl.com
sni.cloudflaressl.com
nla.mariefrance.fr
nla.mariefrance.fr
sni87554.cloudflaressl.com
ssl6538.cloudflare.com
p19.base-deal.eu
nla.gala-news.fr
sni221250.cloudflaressl.com
p19.deal-envoi.com
ssl6538.cloudflare.com
sni221250.cloudflaressl.com
ssl374745.cloudflaressl.com
sni238301.cloudflaressl.com
ssl392170.cloudflaressl.com
ssl392171.cloudflaressl.com
ssl276958.cloudflaressl.com
ssl392170.cloudflaressl.com
nla.mariefrance.fr
sni238301.cloudflaressl.com
com.mariefrance.fr
sni221250.cloudflaressl.com
sni172098.cloudflaressl.com
sni.cloudflaressl.com
sni221250.cloudflaressl.com
sni172098.cloudflaressl.com
ssl276960.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni238301.cloudflaressl.com
p19.fichier-mailody.fr
ssl392169.cloudflaressl.com
mariefrance.fr
ssl276960.cloudflaressl.com
ssl390166.cloudflaressl.com
ssl276960.cloudflaressl.com
ssl392171.cloudflaressl.com
sni238301.cloudflaressl.com
ssl276960.cloudflaressl.com
em.auto-moto.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni238301.cloudflaressl.com
ssl276958.cloudflaressl.com
squad.leservicedesastuces.fr
nla.mariefrance.fr
ssl374744.cloudflaressl.com
ssl392169.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
ssl276960.cloudflaressl.com
sni.cloudflaressl.com
sni221250.cloudflaressl.com
sni172098.cloudflaressl.com
mariefrance.fr
ssl6538.cloudflare.com
qualifio.mariefrance.fr
sni221250.cloudflaressl.com
sni238301.cloudflaressl.com
ssl276958.cloudflaressl.com
sni221250.cloudflaressl.com
ssl392170.cloudflaressl.com
em.auto-moto.com
ssl374746.cloudflaressl.com
ssl276960.cloudflaressl.com
sni221250.cloudflaressl.com
livreblanc.mariefrance.fr
sni172098.cloudflaressl.com
sni.cloudflaressl.com
ssl392171.cloudflaressl.com
sni221250.cloudflaressl.com
sni221250.cloudflaressl.com
ssl276960.cloudflaressl.com
sni221250.cloudflaressl.com
sni172098.cloudflaressl.com
ssl276960.cloudflaressl.com
ssl6538.cloudflare.com
ssl6538.cloudflare.com
sni221250.cloudflaressl.com
Certificate
The complete raw certificate details for com.mariefrance.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgISA7JmvObGfIiQqjXgVfgIc5iBMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTUyMjEwNDFaFw0yNDA1MTUyMjEwNDBaMB0xGzAZBgNVBAMT EmNvbS5tYXJpZWZyYW5jZS5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALo0qvPXHQ8n/j2mVt7WcrO7cMhJE3Zl5XDFVQyg03dMWTkNEZ08GN5beyvc NvdOJXCedkc+J5L0pP3VSlb+OTyqfoQbsg8Du95cLrc4iMbLjqW5DCz8ql57ByQj V0yioTJRGUdO2Hojh8o79x+g2Pwe9o35kOVrYC5XyktqgrtzUEYp1rLkwuWaQvbX Jq+KDk2w3gt0RqWU9VPBxRc9XgXRV6tUMbzfXuZLYfg3aOiu+rRyUvhgIIdJGzeW DsoPFNFYnIWjQ4i7wVkKlEIwID5AgYivKn5Hb2Ac2iXBHPddkJTzkOMp/CYZ/Ao6 cxZ4ftm0Kzw4L2y5ZjnFFml6MvsCAwEAAaOCAhQwggIQMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUBzq2/6IPRTE0UmmhFHYDPgxRE5swHwYDVR0jBBgwFoAUFC6zF7dY VsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRw Oi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNy Lm9yZy8wHQYDVR0RBBYwFIISY29tLm1hcmllZnJhbmNlLmZyMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC +p0w6xxSActW3SyB2bu/qznYhHMAAAGNrwlY9AAABAMARzBFAiBXiOOV1e3XcYP1 /vI3mtCwdH004hS+Blh2VB2SeWSpUgIhAPDrHC5C7KVz+MHu12JeN+CPqnO1wonM 4w9fx9DuAz8+AHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGN rwlbEAAABAMARzBFAiEArmUG/7DzfOWBpDGCoj5SEMJ52A7vNk6WbPUFxyd4t/YC IBi1bP3YRWR8wRzMtO8xBJM0VKh5vwFKwqI4bEhPV12MMA0GCSqGSIb3DQEBCwUA A4IBAQBjcPNDYiNx8JLMDlMYRsE+UgWgawVtBxglRSQfLkiijM7Bl/YZasS/t0WY XOL3Xj5rmZqfcO8T5Zo5RliG43/i23S7Z7GgLkE8DMqmd57d5LnAKcETkcN95eYP E66EyVJjEbypSF9n3llGzlCtztay6CVEeHuQhe5mpNp4qWbLdjK/DZ9ZYVIUAes4 /BNWzDCR4c7T6f1O51r7rZ335zcHgdFaWaH5RkUAI8zzWpa4m1GJ2byHKnVI2j6y rUNoRkcNClNTDNd5ahlHRrYBwkdT31z6fFfW//bNyA4OSXSPgZgdrkEEAxh1Zk3M 4eBFXPrkYrszfbBJIIex8+n4jPHY -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujSq89cdDyf+PaZW3tZy s7twyEkTdmXlcMVVDKDTd0xZOQ0RnTwY3lt7K9w2904lcJ52Rz4nkvSk/dVKVv45 PKp+hBuyDwO73lwutziIxsuOpbkMLPyqXnsHJCNXTKKhMlEZR07YeiOHyjv3H6DY /B72jfmQ5WtgLlfKS2qCu3NQRinWsuTC5ZpC9tcmr4oOTbDeC3RGpZT1U8HFFz1e BdFXq1QxvN9e5kth+Ddo6K76tHJS+GAgh0kbN5YOyg8U0VichaNDiLvBWQqUQjAg PkCBiK8qfkdvYBzaJcEc912QlPOQ4yn8Jhn8CjpzFnh+2bQrPDgvbLlmOcUWaXoy +wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 322043681195267178658981183636552457361537 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-15 22:10:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-15 22:10:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'com.mariefrance.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23506296175555792376171103264905451520085324431548421013429863001956354531552581011883694372807385889073787609517088218242406566298597401010180287362684336685268539074426564019220275651924597852522868588159772147637015062628312192200879835890409719034977805375373753856464888189938299998244781746651609644741379086401853296935933204742526020478781258307895595099666262918108412422312807630828039454012126293438502677192655377751180337959886656034276125083726213798735617818975450929226958890532393934738960811005842242118602995005458907340699477602486439999629086094805216565633046773002196200840086625013862011384571 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 073ab6ffa20f4531345269a11476033e0c51139b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'com.mariefrance.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018daf0958f4000004030047304502205788e395d5edd77183f5fef2379ad0b0747d34e214be065876541d927964a952022100f0eb1c2e42eca573f8c1eed7625e37e08faa73b5c289cce30f5fc7d0ee033f3e0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018daf095b100000040300473045022100ae6506ffb0f37ce581a43182a23e5210c279d80eef364e966cf505c72778b7f6022018b56cfdd845647cc11cccb4ef3104933454a879bf014ac2a2386c484f575d8c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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