www.pigma.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:77:80:1b:0f:5e:5b:cd:6d:b5:12:2b:8b:74:24:58:8d:a7 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.pigma.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:77:80:1b:0f:5e:5b:cd:6d:b5:12:2b:8b:74:24:58:8d:a7Serial Number (int): 302000741146060069578971718515912227720615
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 58:d4:45:23:89:22:63:2c:c5:c6:7f:77:19:ce:75:05:fe:23:10:ce
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): fb:e2:7f:14:80:6b:36:7d:ac:11:90:bb:dd:dc:47:c2:1f:e9:d6:cc
Fingerprint (sha256): 22:0f:a0:9d:7d:7f:d4:fe:4e:51:eb:e4:6d:97:f0:a6:90:ea:6e:54:78:44:9c:39:3c:5f:1a:02:10:a0:f5:bb
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.pigma.org
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.pigma.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pigma.org
urbanisme.pigma.org
www.pigma.org
urbanisme.pigma.org
www.pigma.org
Other certificates including the domain name pigma.org
(limited to 100 certificates)
dev.pigma.org
pigma.org
gipatgeri.ovh
gipatgeri.ovh
dev.pigma.org
dev.pigma.org
pigma.org
dev2.pigma.org
www.pigma.org
pigma.org
dev.pigma.org
pigma.org
pigma.org
dev.pigma.org
pigma.org
dev.pigma.org
pigma.org
gipatgeri.ovh
dev.pigma.org
dev2.pigma.org
gipatgeri.ovh
gipatgeri.ovh
pigma.org
gipatgeri.ovh
gipatgeri.ovh
pigma.org
pigma.org
pigma.org
gipatgeri.ovh
gipatgeri.ovh
dev2.pigma.org
pigma.org
pigma.org
www.pigma.org
pigma.org
dev.pigma.org
pigma.org
dev.pigma.org
pigma.org
pigma.org
gipatgeri.ovh
www.pigma.org
pigma.org
www.pigma.org
pigma.org
www.pigma.org
pigma.org
dev2.pigma.org
gipatgeri.ovh
pigma.org
pigma.org
pigma.org
pigma.org
pigma.org
gipatgeri.ovh
www.pigma.org
dev.pigma.org
portail.pigma.org
dev.pigma.org
dev2.pigma.org
dev.pigma.org
pigma.org
dev.pigma.org
dev.pigma.org
dev.pigma.org
pigma.org
gipatgeri.ovh
dev2.pigma.org
pigma.org
www.pigma.org
pigma.org
gipatgeri.ovh
gipatgeri.ovh
dev.pigma.org
dev.pigma.org
pigma.org
dev2.pigma.org
www.pigma.org
pigma.org
dev.pigma.org
pigma.org
pigma.org
dev.pigma.org
pigma.org
dev.pigma.org
pigma.org
gipatgeri.ovh
dev.pigma.org
dev2.pigma.org
gipatgeri.ovh
gipatgeri.ovh
pigma.org
gipatgeri.ovh
gipatgeri.ovh
pigma.org
pigma.org
pigma.org
gipatgeri.ovh
gipatgeri.ovh
dev2.pigma.org
pigma.org
pigma.org
www.pigma.org
pigma.org
dev.pigma.org
pigma.org
dev.pigma.org
pigma.org
pigma.org
gipatgeri.ovh
www.pigma.org
pigma.org
www.pigma.org
pigma.org
www.pigma.org
pigma.org
dev2.pigma.org
gipatgeri.ovh
pigma.org
pigma.org
pigma.org
pigma.org
pigma.org
gipatgeri.ovh
www.pigma.org
dev.pigma.org
portail.pigma.org
dev.pigma.org
dev2.pigma.org
dev.pigma.org
pigma.org
dev.pigma.org
dev.pigma.org
dev.pigma.org
pigma.org
gipatgeri.ovh
dev2.pigma.org
pigma.org
www.pigma.org
Certificate
The complete raw certificate details for www.pigma.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGcDCCBVigAwIBAgISA3eAGw9eW81ttRIri3QkWI2nMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMjExMTAwMDdaFw0y MDA0MjAxMTAwMDdaMBgxFjAUBgNVBAMTDXd3dy5waWdtYS5vcmcwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQCmXS8yfGpgd9T4iKV8Mjd6fneZ6FWszMCC uJDsuNjVMclZUjuyqriKxn4de6SmXpI2avY4K2fw+S35v3ZhSBYoMw1anADNvQ5g 7vlh5Kvrl4hZROt0ymHWQoL9o15/BI9uDRC/SI0HTJj2ojaHuwHjMqdkYYOeLX2O B+rml+PtFPHYCvkPSjnhLfGxviOx6h83IqmET4l9aJ8FappqXrDThu0cNc78p3Xt 8BVCEt8LVI89l4K0880DyuZ/eymXs3++lybZmtHiamNRmyOqrH4xhnMdz3xJGChH y/I36Cee5lfyPYDA66WTKRbKHYmq9odkUSsnGNs+f3IhL2tMWkdN3aT+TfU8A8QD gLfiqvXQ7mCni+fiN7NnlGV0Ff0hwumoTluJVEf8+Wk+bXvh0WBweN/Ex/qpMVBO dQdBiXLfJUX1qKqRtGUW9HaSAgW28FKXztD0fouTZ2J4oGtTGlrIDYYFVDYat1l+ 4E2wes5G7tCDOVal90ooqcF7QM92B5i+xvztpa4ZZ3h3+7bryaMnmQa80q/IU1Ss +Pk3Ub8/bWoqsHZeYCHhXlwwx0azkgPYCtWk6915HFrzNVQoKY3vtzzrmJHrNo2X Vy+Tp0tnxAY03Curr7LZRN4cyX4X0lif/RCUdH6ERnw/muazKU7r2pf+RNipIVr0 WCSvipfp8QIDAQABo4ICgDCCAnwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRY1EUj iSJjLMXGf3cZznUF/iMQzjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMDgGA1UdEQQxMC+CCXBpZ21hLm9yZ4ITdXJiYW5p c21lLnBpZ21hLm9yZ4INd3d3LnBpZ21hLm9yZzBMBgNVHSAERTBDMAgGBmeBDAEC ATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNl bmNyeXB0Lm9yZzCCAQIGCisGAQQB1nkCBAIEgfMEgfAA7gB1AAe3XBvlfWj/8bDG HSMVx7rmV3xXlLdq7rxhOhpp06IcAAABb8f5Yd0AAAQDAEYwRAIgUgAxVriAsISV +1UIGCEhBiFiHXinNervsr2olCxrEl4CIE/Kirl5ZrmnB41qVG6t2T4yoRHp+5lU m1wUzP6MIfRDAHUAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFv x/licAAABAMARjBEAiAZcKyaM/HY2gPnNPm6EiZCVpt9WaNf4O+s4Hv3qph+MAIg NeajspLovjiA9BZkQeyPLmBoTsOcCZL/6Rnj3SOEJPcwDQYJKoZIhvcNAQELBQAD ggEBAIZLi9dG/JyJtbh4SfHHJdUCvpNUkxfJyPRKxtKyua7UyFobzE2MXLR7oMwb jDCR2hcLiLpEI8gNKRJzSmX0uLIsmahKD2V+0r65Yeh7bE4bKD7uhTsUt4gjeIK8 AZySV+S3NZeSpvuYgXU64150/w8ehDIpxitNbAyMlsB6drDKpAQTj08I8QLS43Lb n10Pfe0Ej4wpGTxOLX8QAe6Sg9h38zfnCIL7MRIqib+sLv49/GNYBapR6Mrb0j4k RemGK9F8aFLuYi4RuafIAY5tgCWk5ncyQ6+IjdMWsbgMdlrolux0OOd75HKZG5hS 9zWu5UKyTPkLYi4osX7jvXDF/Rc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApl0vMnxqYHfU+IilfDI3 en53mehVrMzAgriQ7LjY1THJWVI7sqq4isZ+HXukpl6SNmr2OCtn8Pkt+b92YUgW KDMNWpwAzb0OYO75YeSr65eIWUTrdMph1kKC/aNefwSPbg0Qv0iNB0yY9qI2h7sB 4zKnZGGDni19jgfq5pfj7RTx2Ar5D0o54S3xsb4jseofNyKphE+JfWifBWqaal6w 04btHDXO/Kd17fAVQhLfC1SPPZeCtPPNA8rmf3spl7N/vpcm2ZrR4mpjUZsjqqx+ MYZzHc98SRgoR8vyN+gnnuZX8j2AwOulkykWyh2JqvaHZFErJxjbPn9yIS9rTFpH Td2k/k31PAPEA4C34qr10O5gp4vn4jezZ5RldBX9IcLpqE5biVRH/PlpPm174dFg cHjfxMf6qTFQTnUHQYly3yVF9aiqkbRlFvR2kgIFtvBSl87Q9H6Lk2dieKBrUxpa yA2GBVQ2GrdZfuBNsHrORu7QgzlWpfdKKKnBe0DPdgeYvsb87aWuGWd4d/u268mj J5kGvNKvyFNUrPj5N1G/P21qKrB2XmAh4V5cMMdGs5ID2ArVpOvdeRxa8zVUKCmN 77c865iR6zaNl1cvk6dLZ8QGNNwrq6+y2UTeHMl+F9JYn/0QlHR+hEZ8P5rmsylO 69qX/kTYqSFa9Fgkr4qX6fECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 302000741146060069578971718515912227720615 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-21 11:00:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-20 11:00:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.pigma.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 678705911534520742730685453042323449672253437826321765086321300609714085820109341767313037538318063699641645481543738220075210224718851482054052142750218336645076072249636500049598115404410638779408999210847740188754984649861262201818566749170937441511054362350423749409302546601894738226666068389216460246178799093411505849686106696512170020749177559564195295768727057489151508284142600185237962691763248433555919746492385365213010362611452117161526817347330456401249876306897354319190772650215790881879848925395183136140431641384335513024142285616726168680630113783325508598088287690914063450569318473978681201115834995109883042940475487936397896197091218455966009751084365200085715879730358682392810570813048517595490049448663035070893443479114927335062750946652503174367492158664927695986512690251823321518571998722444069360203236017398529365173414457489697691843313903785244268706590969419835467846186617681347109478045171238865373170284997333488247394939486056713454197895257735343692910171504829836034106184045842858689622375182718708904063964939140349445178498699239590648591026524158237388364099484682367346105782287008668553797441051723611631249324276050245573295258810063549431370413719928053354493149243424220130190027249 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 58d445238922632cc5c67f7719ce7505fe2310ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pigma.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'urbanisme.pigma.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pigma.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016fc7f961dd0000040300463044022052003156b880b08495fb55081821210621621d78a735eaefb2bda8942c6b125e02204fca8ab97966b9a7078d6a546eadd93e32a111e9fb99549b5c14ccfe8c21f4430075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016fc7f96270000004030046304402201970ac9a33f1d8da03e734f9ba122642569b7d59a35fe0eface07bf7aa987e30022035e6a3b292e8be3880f4166441ec8f2e60684ec39c0992ffe919e3dd238424f7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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