staging.ochsnerhockey.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:95:b1:21:0d:ea:80:6f:9f:63:40:68:de:ab:38:27:b8:81 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=staging.ochsnerhockey.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:95:b1:21:0d:ea:80:6f:9f:63:40:68:de:ab:38:27:b8:81Serial Number (int): 312274375449801296655250049915632453400705
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d6:49:53:b8:f9:74:50:a8:b0:97:1f:52:7b:b9:c9:a0:e9:38:68:9f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3b:6e:a0:71:01:cd:a6:cc:ca:1c:16:1c:5e:d5:9d:94:7a:3a:da:98
Fingerprint (sha256): 24:99:ba:ce:ba:39:0d:26:6e:32:35:86:bf:25:1c:bd:2b:c3:f2:73:6d:2f:5c:36:1c:d3:18:9e:6e:18:aa:52
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate staging.ochsnerhockey.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for staging.ochsnerhockey.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
staging.ochsnerhockey.ch
Other certificates including the domain name ochsnerhockey.ch
(limited to 100 certificates)
support.ninatech.co
community.thegreencatalyst.com
mail.ochsnerhockey.ch
support.smartcon.pl
staging.ochsnerhockey.ch
ochsnerhockey.ch
support.ninatech.co
support.smartcon.pl
ochsnerhockey.ch
mail.ochsnerhockey.ch
staging.ochsnerhockey.ch
ochsnerhockey.ch
shop.ochsnerhockey.ch
ochsnerhockey.ch
shop.ochsnerhockey.ch
shop.ochsnerhockey.ch
ochsnerhockey.ch
staging.ochsnerhockey.ch
support.smartcon.pl
ochsnerhockey.ch
support.smartcon.pl
staging.ochsnerhockey.ch
community.thegreencatalyst.com
support.smartcon.pl
community.thegreencatalyst.com
sasupport.benchmarknorth.co.uk
support.ochsnerhockey.ch
support.smartcon.pl
support.smartcon.pl
ochsnerhockey.ch
support.smartcon.pl
support.smartcon.pl
ochsnerhockey.ch
sasupport.benchmarknorth.co.uk
ochsnerhockey.ch
staging.ochsnerhockey.ch
mail.ochsnerhockey.ch
sasupport.benchmarknorth.co.uk
staging.ochsnerhockey.ch
staging.ochsnerhockey.ch
staging.ochsnerhockey.ch
support.smartcon.pl
wc.ochsnerhockey.ch
ochsnerhockey.ch
support.smartcon.pl
staging.ochsnerhockey.ch
mail.ochsnerhockey.ch
ochsnerhockey.ch
support.smartcon.pl
mail.ochsnerhockey.ch
ochsnerhockey.ch
autodiscover.ochsnerhockey.ch
ochsnerhockey.ch
ochsnerhockey.ch
ochsnerhockey.ch
staging.ochsnerhockey.ch
ochsnerhockey.ch
mail.ochsnerhockey.ch
mail.ochsnerhockey.ch
support.ochsnerhockey.ch
sasupport.benchmarknorth.co.uk
support.ochsnerhockey.ch
shop.ochsnerhockey.ch
staging.ochsnerhockey.ch
shop.ochsnerhockey.ch
support.ninatech.co
community.thegreencatalyst.com
shop.ochsnerhockey.ch
support.smartcon.pl
shop.ochsnerhockey.ch
support.smartcon.pl
support.ochsnerhockey.ch
ochsnerhockey.ch
support.smartcon.pl
support.smartcon.pl
community.thegreencatalyst.com
mail.ochsnerhockey.ch
support.smartcon.pl
staging.ochsnerhockey.ch
ochsnerhockey.ch
support.ninatech.co
support.smartcon.pl
ochsnerhockey.ch
mail.ochsnerhockey.ch
staging.ochsnerhockey.ch
ochsnerhockey.ch
shop.ochsnerhockey.ch
ochsnerhockey.ch
shop.ochsnerhockey.ch
shop.ochsnerhockey.ch
ochsnerhockey.ch
staging.ochsnerhockey.ch
support.smartcon.pl
ochsnerhockey.ch
support.smartcon.pl
staging.ochsnerhockey.ch
community.thegreencatalyst.com
support.smartcon.pl
community.thegreencatalyst.com
sasupport.benchmarknorth.co.uk
support.ochsnerhockey.ch
support.smartcon.pl
support.smartcon.pl
ochsnerhockey.ch
support.smartcon.pl
support.smartcon.pl
ochsnerhockey.ch
sasupport.benchmarknorth.co.uk
ochsnerhockey.ch
staging.ochsnerhockey.ch
mail.ochsnerhockey.ch
sasupport.benchmarknorth.co.uk
staging.ochsnerhockey.ch
staging.ochsnerhockey.ch
staging.ochsnerhockey.ch
support.smartcon.pl
wc.ochsnerhockey.ch
ochsnerhockey.ch
support.smartcon.pl
staging.ochsnerhockey.ch
mail.ochsnerhockey.ch
ochsnerhockey.ch
support.smartcon.pl
mail.ochsnerhockey.ch
ochsnerhockey.ch
autodiscover.ochsnerhockey.ch
ochsnerhockey.ch
ochsnerhockey.ch
ochsnerhockey.ch
staging.ochsnerhockey.ch
ochsnerhockey.ch
mail.ochsnerhockey.ch
mail.ochsnerhockey.ch
support.ochsnerhockey.ch
sasupport.benchmarknorth.co.uk
support.ochsnerhockey.ch
shop.ochsnerhockey.ch
staging.ochsnerhockey.ch
shop.ochsnerhockey.ch
support.ninatech.co
community.thegreencatalyst.com
shop.ochsnerhockey.ch
support.smartcon.pl
shop.ochsnerhockey.ch
support.smartcon.pl
support.ochsnerhockey.ch
ochsnerhockey.ch
support.smartcon.pl
support.smartcon.pl
Certificate
The complete raw certificate details for staging.ochsnerhockey.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZzCCBU+gAwIBAgISA5WxIQ3qgG+fY0Bo3qs4J7iBMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjUyMzA0MDlaFw0x OTA4MjMyMzA0MDlaMCMxITAfBgNVBAMTGHN0YWdpbmcub2Noc25lcmhvY2tleS5j aDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMvqtRqZlHljOVldzhkq Nu+0mVuGiJ3g34phUc+IZMbtCQdg3zt/Wpr+iU0VshqVVQp7HTaQ6Ey+u2urYceF lN/Td6QlmsxGNZ+CX4nJ0OWNE9jWuHzNUaV+qXdkXbOWSRyrmUXIvzF9GAtF7AX2 ywLgwr6802RQKHTsuJHsgS2gTkJonZ5WLCqApN4ZUXW8DgzLaYe+MnSAWly8bSt1 Ze7Bm0pqYCrU74fFkAimBdkGQGlRCfP4auhAHzDfVAFcZx4InriRUQS4YYscyN5n Mc6AvjvZt1elppGW/qIKjnpjNnojg0fyP6mYWH7mGbhh2K4nwonSfXlQhx9z3gCH P3idyHYgkEkCU8GbuBXkz6A4PspG6YlSWPjUnrnJi2/XkJTzv2I76W1z5LKhwTNJ eCjQx0InVxoBbYhNsDVXfwqw3N/05OLHX2xNcJCeBVSR/W/7KE5fMJ6Y1fMhe3SQ SlpGbGBSBaP1jxhh0s1E/r8u2JsZf6LJeb5Mh9PX3BKqInptIF8/qmXlTYRELOZs QQqn7Z8UgN5nATL3Go4Q+52Hp0GSfZau6Fu9f2RoQIjOrokEIrefkM/rZcoiEcJQ W5Pyn1aByjcAbuYS6l0JimnzffRft0tsqSg2/EfMk0Ig87WkYV7opWIk2OVF6yjB ITee6Vv2x/XWreI0CjOJHkKBAgMBAAGjggJsMIICaDAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFNZJU7j5dFCosJcfUnu5yaDpOGifMB8GA1UdIwQYMBaAFKhKamMEfd26 5tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDov L29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDov L2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wIwYDVR0RBBwwGoIYc3RhZ2lu Zy5vY2hzbmVyaG9ja2V5LmNoMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQB gt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3Jn MIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAdH7agzGtMxCRIZzOJU9CcMK//V5C IAjGNzV55hB7zFYAAAFq8XOoQgAABAMARjBEAiAx5DJW+FRf/WWmOXKe8xyhvi7K qHFBS/hSG7MLsuvplgIgW22NnfLH7lRzZYW303kQFQLgRMtueiTQ5lXdRV6bwjYA dgApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAWrxc6gyAAAEAwBH MEUCIQDAtzKZTUHJW5Qhr13VF4Un3cxCaZ4GOZMnoraiNNXX7gIgO5nDUNXbsW5+ +PTYRk8AZmrVhca9687Zj2yjFOZk6mgwDQYJKoZIhvcNAQELBQADggEBAH3wPcqT Y8gcrC1w2tpoQAhyr8e8WPfzTghoRkKlRrQlQ2DnX0dkcANS6drvmujL8fZ9RRCm TUarcdUG0UC3Znkl0JoZGiUigT5xPb4J9Xk5D+0iich+ljteKvBnFAsliwgRU6gF 2CUQa8MPHZx73mdxfsnDHGvxftanaTXPBQ7l7V9JRk1M+JOD7FYesZ4tRycqHpEn 5YQDtfzawaMOMwUB1NP1gC5pE28r8SMGvOH0YxScHeLAHm7aLq6KR/B40CDo/TDs 7rLGLz+MmuvNfgOevmlD3WIVkrT64ZYk8r0D9aGXQhutKz//GXaQuh4Ih7CiDsMG sLKmnVytzv8vrRU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAy+q1GpmUeWM5WV3OGSo2 77SZW4aIneDfimFRz4hkxu0JB2DfO39amv6JTRWyGpVVCnsdNpDoTL67a6thx4WU 39N3pCWazEY1n4JficnQ5Y0T2Na4fM1RpX6pd2Rds5ZJHKuZRci/MX0YC0XsBfbL AuDCvrzTZFAodOy4keyBLaBOQmidnlYsKoCk3hlRdbwODMtph74ydIBaXLxtK3Vl 7sGbSmpgKtTvh8WQCKYF2QZAaVEJ8/hq6EAfMN9UAVxnHgieuJFRBLhhixzI3mcx zoC+O9m3V6WmkZb+ogqOemM2eiODR/I/qZhYfuYZuGHYrifCidJ9eVCHH3PeAIc/ eJ3IdiCQSQJTwZu4FeTPoDg+ykbpiVJY+NSeucmLb9eQlPO/YjvpbXPksqHBM0l4 KNDHQidXGgFtiE2wNVd/CrDc3/Tk4sdfbE1wkJ4FVJH9b/soTl8wnpjV8yF7dJBK WkZsYFIFo/WPGGHSzUT+vy7Ymxl/osl5vkyH09fcEqoiem0gXz+qZeVNhEQs5mxB CqftnxSA3mcBMvcajhD7nYenQZJ9lq7oW71/ZGhAiM6uiQQit5+Qz+tlyiIRwlBb k/KfVoHKNwBu5hLqXQmKafN99F+3S2ypKDb8R8yTQiDztaRhXuilYiTY5UXrKMEh N57pW/bH9dat4jQKM4keQoECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 312274375449801296655250049915632453400705 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-25 23:04:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-23 23:04:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging.ochsnerhockey.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 831908069259719372770243062906832905977972566880986036082452383934673465504378985281997028802373658934443032015826680369499753666019946554834763187880242132844834571014807682533211340275945496590912501717715507823274239307577375389088920442873980609292640702064839825370086240375171268073146189921471724425267356421987989780549279406012705101824601723677578905487723793629031089470534454403212800171303031470847892923404712805069895144704036619335858419969318368820403141441193694034905948995252393451655168046072705227946983253701518867017851277085633924974620375054977778551420106845129373546115240299748675808305751472471254424538190439101182891733102246625116810876429294638961157238056036875668580739616281672173014215089714214797980821664877440041500917076427356518642858697660986832698015878316353955491880940124913920034752186298702720984223399537335149296163986427410225390504572163487454219998726425875672861314013978759930620192316360296457333532969266969536596160187985898800821678278220659651600589408848818733675400983282371819658017099382072555777903685069598825346817384265282931446273904754333827672443450033986981178170162927419517518626407266259877808276868762014181676722870226073660885419026921372421502632084097 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d64953b8f97450a8b0971f527bb9c9a0e938689f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.ochsnerhockey.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016af173a8420000040300463044022031e43256f8545ffd65a639729ef31ca1be2ecaa871414bf8521bb30bb2ebe99602205b6d8d9df2c7ee54736585b7d379101502e044cb6e7a24d0e655dd455e9bc236007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016af173a8320000040300473045022100c0b732994d41c95b9421af5dd5178527ddcc42699e06399327a2b6a234d5d7ee02203b99c350d5dbb16e7ef8f4d8464f00666ad585c6bdebced98f6ca314e664ea68 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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