38degrees.staging.controlshiftlabs.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:65:61:4f:0f:82:37:5c:2d:49:48:d0:c3:3e:15:f5:0f:9b was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=38degrees.staging.controlshiftlabs.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:65:61:4f:0f:82:37:5c:2d:49:48:d0:c3:3e:15:f5:0f:9bSerial Number (int): 295834722475891424132930206778049338609563
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 49:09:50:f1:09:ba:97:4a:07:61:ca:57:d8:03:2f:3f:51:44:63:4f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ef:2f:45:a0:7b:5d:2d:8a:f7:4a:ad:aa:b0:9e:9e:da:a5:f3:85:ef
Fingerprint (sha256): 28:71:4a:68:10:14:1f:22:a3:c2:79:31:02:b3:06:78:af:c5:69:cb:83:fb:52:e3:cd:28:61:91:9a:2d:d6:e3
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate 38degrees.staging.controlshiftlabs.com
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for 38degrees.staging.controlshiftlabs.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
38degrees.staging.controlshiftlabs.com
avaaz.staging.controlshiftlabs.com
campact.staging.controlshiftlabs.com
communityrun.staging.controlshiftlabs.com
demo.staging.controlshiftlabs.com
fossilfree.staging.controlshiftlabs.com
organizefor.staging.controlshiftlabs.com
staging.controlshiftlabs.com
avaaz.staging.controlshiftlabs.com
campact.staging.controlshiftlabs.com
communityrun.staging.controlshiftlabs.com
demo.staging.controlshiftlabs.com
fossilfree.staging.controlshiftlabs.com
organizefor.staging.controlshiftlabs.com
staging.controlshiftlabs.com
Other certificates including the domain name controlshiftlabs.com
(limited to 100 certificates)
changes.carta.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
controlshiftlabs.com
generic.platform.controlshiftlabs.com
staging.controlshiftlabs.com
momentum.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
changes.carta.com
generic.platform.controlshiftlabs.com
changes.carta.com
changes.carta.com
38degrees.staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
geoip.staging.controlshiftlabs.com
changes.carta.com
changes.carta.com
generic.platform.controlshiftlabs.com
changes.carta.com
staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
geoip.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
sentry.production.controlshiftlabs.com
generic.platform.controlshiftlabs.com
developers.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
sentry.production.controlshiftlabs.com
changes.carta.com
generic.platform.controlshiftlabs.com
staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
staging.controlshiftlabs.com
changes.carta.com
generic.platform.controlshiftlabs.com
38degrees.staging.controlshiftlabs.com
geoip.controlshiftlabs.com
staging.controlshiftlabs.com
changes.carta.com
sentry.staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
changes.carta.com
changes.carta.com
controlshiftlabs.com
changes.carta.com
changes.carta.com
changes.carta.com
generic.platform.controlshiftlabs.com
staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
changes.carta.com
staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
sentry.staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
changes.carta.com
staging.controlshiftlabs.com
staging.controlshiftlabs.com
open.controlshiftlabs.com
test5.staging.controlshiftlabs.com
geoip.controlshiftlabs.com
changes.carta.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
changes.carta.com
developers.controlshiftlabs.com
changes.carta.com
changes.carta.com
generic.platform.controlshiftlabs.com
staging.controlshiftlabs.com
changes.carta.com
sentry.staging.controlshiftlabs.com
changes.carta.com
changes.carta.com
staging.controlshiftlabs.com
staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
changes.carta.com
sentry.staging.controlshiftlabs.com
controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
controlshiftlabs.com
generic.platform.controlshiftlabs.com
staging.controlshiftlabs.com
momentum.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
changes.carta.com
generic.platform.controlshiftlabs.com
changes.carta.com
changes.carta.com
38degrees.staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
geoip.staging.controlshiftlabs.com
changes.carta.com
changes.carta.com
generic.platform.controlshiftlabs.com
changes.carta.com
staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
geoip.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
sentry.production.controlshiftlabs.com
generic.platform.controlshiftlabs.com
developers.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
sentry.production.controlshiftlabs.com
changes.carta.com
generic.platform.controlshiftlabs.com
staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
staging.controlshiftlabs.com
changes.carta.com
generic.platform.controlshiftlabs.com
38degrees.staging.controlshiftlabs.com
geoip.controlshiftlabs.com
staging.controlshiftlabs.com
changes.carta.com
sentry.staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
changes.carta.com
changes.carta.com
controlshiftlabs.com
changes.carta.com
changes.carta.com
changes.carta.com
generic.platform.controlshiftlabs.com
staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
changes.carta.com
staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
sentry.staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
changes.carta.com
staging.controlshiftlabs.com
staging.controlshiftlabs.com
open.controlshiftlabs.com
test5.staging.controlshiftlabs.com
geoip.controlshiftlabs.com
changes.carta.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
changes.carta.com
developers.controlshiftlabs.com
changes.carta.com
changes.carta.com
generic.platform.controlshiftlabs.com
staging.controlshiftlabs.com
changes.carta.com
sentry.staging.controlshiftlabs.com
changes.carta.com
changes.carta.com
staging.controlshiftlabs.com
staging.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
generic.platform.controlshiftlabs.com
changes.carta.com
sentry.staging.controlshiftlabs.com
controlshiftlabs.com
Certificate
The complete raw certificate details for 38degrees.staging.controlshiftlabs.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGPzCCBSegAwIBAgISA2VhTw+CN1wtSUjQwz4V9Q+bMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjA0MTExNTAyMDBaFw0x NjA3MTAxNTAyMDBaMDExLzAtBgNVBAMTJjM4ZGVncmVlcy5zdGFnaW5nLmNvbnRy b2xzaGlmdGxhYnMuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA sNpzsfmWSJxYcAGZR2zER2nikBCTWA4r4ycdlwdWJDVTs4dwR8XB6TxxyHnHWBtY rjj3n0ddMBujxwV5BM9Ev4g/bYDmCurJTDe0gCqOdgW3bqVbik5gNxicIz/mlytJ OxBdnN89v1DY/ejPuaomAb2m1Y6wFxBS1n/OaW3+7vnAz91bbsZmGecMeuzfFnVu +kj3u11HJ+Cul1nzqpxz5/IufrREsoFgU5FzzVAyMETvw2Y+naQ7GSRKOYeZj4XF BnRl5ZwLU6pq+pDzJwxGQAy0rOKk0StVj3tTV6QQ4L9gHqIzoEagoFZwJBjc01AJ uvfpqUPju4KiYYN/NgUwHQIDAQABo4IDNjCCAzIwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBRJCVDxCbqXSgdhylfYAy8/UURjTzAfBgNVHSMEGDAWgBSoSmpjBH3duubR ObemRWXv86jsoTBwBggrBgEFBQcBAQRkMGIwLwYIKwYBBQUHMAGGI2h0dHA6Ly9v Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcvMC8GCCsGAQUFBzAChiNodHRwOi8v Y2VydC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzCCAT4GA1UdEQSCATUwggExgiYz OGRlZ3JlZXMuc3RhZ2luZy5jb250cm9sc2hpZnRsYWJzLmNvbYIiYXZhYXouc3Rh Z2luZy5jb250cm9sc2hpZnRsYWJzLmNvbYIkY2FtcGFjdC5zdGFnaW5nLmNvbnRy b2xzaGlmdGxhYnMuY29tgiljb21tdW5pdHlydW4uc3RhZ2luZy5jb250cm9sc2hp ZnRsYWJzLmNvbYIhZGVtby5zdGFnaW5nLmNvbnRyb2xzaGlmdGxhYnMuY29tgidm b3NzaWxmcmVlLnN0YWdpbmcuY29udHJvbHNoaWZ0bGFicy5jb22CKG9yZ2FuaXpl Zm9yLnN0YWdpbmcuY29udHJvbHNoaWZ0bGFicy5jb22CHHN0YWdpbmcuY29udHJv bHNoaWZ0bGFicy5jb20wgf4GA1UdIASB9jCB8zAIBgZngQwBAgEwgeYGCysGAQQB gt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9y ZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlzIENlcnRpZmljYXRlIG1heSBvbmx5IGJl IHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcgUGFydGllcyBhbmQgb25seSBpbiBhY2Nv cmRhbmNlIHdpdGggdGhlIENlcnRpZmljYXRlIFBvbGljeSBmb3VuZCBhdCBodHRw czovL2xldHNlbmNyeXB0Lm9yZy9yZXBvc2l0b3J5LzANBgkqhkiG9w0BAQsFAAOC AQEAl0+fuf0ldQ3YCPOa4oyYG7iV6gIeMZHWZtHMhtXT+eBWmma3wfWyhr6GJXa6 IlhgIcPz6p39C6S8VXPQUyh0KOon2P53SoVJ0ADChJu/6+sdksoVsbV/80Tp5pm0 p3XE25TydkerZhShh40b++uJFQbLYXXzxBlCr2hEnbOBormnBPhYSvp/4mFv2+jN 1gWTUbi168Nays8hzoYowEZcmkyVowfnqSFy9yuVPSKXieinWyiP8LC9b3qVHekZ EMS3Gv45pyjxzkvY39I5EgM5BxFXIB8o7cE/6UHict6WFAhjkoNPQE82fA3+gG4Y gp9rau4YBCTh2oSjG5Kq0SYmpQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNpzsfmWSJxYcAGZR2zE R2nikBCTWA4r4ycdlwdWJDVTs4dwR8XB6TxxyHnHWBtYrjj3n0ddMBujxwV5BM9E v4g/bYDmCurJTDe0gCqOdgW3bqVbik5gNxicIz/mlytJOxBdnN89v1DY/ejPuaom Ab2m1Y6wFxBS1n/OaW3+7vnAz91bbsZmGecMeuzfFnVu+kj3u11HJ+Cul1nzqpxz 5/IufrREsoFgU5FzzVAyMETvw2Y+naQ7GSRKOYeZj4XFBnRl5ZwLU6pq+pDzJwxG QAy0rOKk0StVj3tTV6QQ4L9gHqIzoEagoFZwJBjc01AJuvfpqUPju4KiYYN/NgUw HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 295834722475891424132930206778049338609563 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-04-11 15:02:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-07-10 15:02:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '38degrees.staging.controlshiftlabs.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22325664337773500822461724004105326219998653974905047091404140017888762015180777896495252635810292005876049356733012572892504820104403633746281196759362007343456941171351906733115933750032978752468140524248779801811157748454062472767144084666348078622265252798000922108901878614930637546973531307690781177072335297734777484444806534394002644405245423583193484998085817523361370712553872542281340489035954930613289890348437710376929810636199814631791596403835037213640041668282527949159572288390738718051006917130705710022445112382688599522626046321272607863787998430782546694159934330460030306076756418031409583960093 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 490950f109ba974a0761ca57d8032f3f5144634f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (309 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '38degrees.staging.controlshiftlabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avaaz.staging.controlshiftlabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'campact.staging.controlshiftlabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'communityrun.staging.controlshiftlabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.staging.controlshiftlabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fossilfree.staging.controlshiftlabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'organizefor.staging.controlshiftlabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.controlshiftlabs.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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