hospitals.southerncross.co.nz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:e2:a8:90:0a:07:e2:17:2c:d5:3d:1d:01:54:12:2f:42:8a was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hospitals.southerncross.co.nz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e2:a8:90:0a:07:e2:17:2c:d5:3d:1d:01:54:12:2f:42:8aSerial Number (int): 338464730916900992367768422900842003120778
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 57:cd:0a:aa:70:94:1f:84:4d:54:da:95:10:db:7d:b0:b0:86:ed:ca
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 26:d8:a9:33:9f:4b:8d:a3:77:6c:77:7d:cf:6b:0b:49:d9:67:12:5b
Fingerprint (sha256): 29:21:3e:1d:59:f7:82:75:f8:d0:be:30:41:6e:a3:ab:da:5e:1f:c1:95:80:9b:88:45:52:87:97:16:93:02:5f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hospitals.southerncross.co.nz
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hospitals.southerncross.co.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
assets.hospitals.southerncross.co.nz
gillieshospital.co.nz
hospitals.southerncross.co.nz
southerncrosshospitals.co.nz
uat.hospitals.southerncross.co.nz
www.gillieshospital.co.nz
www.hospitals.southerncross.co.nz
www.southerncrosshospitals.co.nz
gillieshospital.co.nz
hospitals.southerncross.co.nz
southerncrosshospitals.co.nz
uat.hospitals.southerncross.co.nz
www.gillieshospital.co.nz
www.hospitals.southerncross.co.nz
www.southerncrosshospitals.co.nz
Other certificates including the domain name southerncross.co.nz
(limited to 100 certificates)
hospitals.southerncross.co.nz
npos.southerncross.co.nz
brandkit.southerncross.co.nz
identity.southerncross.co.nz
apply.southerncross.co.nz
u.southerncross.co.nz
brandkit.southerncross.co.nz
assets.hospitals.southerncross.co.nz
sam-facade.southerncross.co.nz
aplogo.southerncross.co.nz
hospitals.southerncross.co.nz
aimee-pp.ts.southerncross.co.nz
southerncrosshospitals.co.nz
hospitals.southerncross.co.nz
easyclaim.southerncross.co.nz
kete.southerncross.co.nz
beingwell.southerncross.co.nz
careers.southerncross.co.nz
providers.southerncross.co.nz
hospitals.southerncross.co.nz
hospitals.southerncross.co.nz
southerncross.co.nz
southerncrosshospitals.co.nz
brandkit.southerncross.co.nz
assets.hospitals.southerncross.co.nz
hospitals.southerncross.co.nz
hospitals.southerncross.co.nz
*.ts.southerncross.co.nz
*.api-sit.southerncross.co.nz
brandkit.southerncross.co.nz
aplogo.southerncross.co.nz
jobs.southerncross.co.nz
aplogo.southerncross.co.nz
*.api-sit.southerncross.co.nz
customer360.pr.southerncross.co.nz
gateway-orb.southerncross.co.nz
assets.hospitals.southerncross.co.nz
identity.southerncross.co.nz
easyclaim16.ts.southerncross.co.nz
identity.southerncross.co.nz
uat.hospitals.southerncross.co.nz
identity-signing.southerncross.co.nz
aplogo.southerncross.co.nz
*.southerncross.co.nz
schs-workflow.southerncross.co.nz
hospitals.southerncross.co.nz
identity-pp.southerncross.co.nz
viewpoint.southerncross.co.nz
hospitals.southerncross.co.nz
hospitals.southerncross.co.nz
*.api-sit.southerncross.co.nz
aimee-pp.ts.southerncross.co.nz
uat.hospitals.southerncross.co.nz
uat.hospitals.southerncross.co.nz
my.southerncross.co.nz
*.surfly.southerncross.co.nz
email.southerncross.co.nz
*.mapi-sit.southerncross.co.nz
hospitals.southerncross.co.nz
*.mapi-test.southerncross.co.nz
uat.hospitals.southerncross.co.nz
southerncrosshospitals.co.nz
hospitals.southerncross.co.nz
*.southerncross.co.nz
*.api-dev.southerncross.co.nz
gateway-orb.southerncross.co.nz
hospitals.southerncross.co.nz
gateway-bri.southerncross.co.nz
aplogo.southerncross.co.nz
aplogo.southerncross.co.nz
mapi.southerncross.co.nz
*.beingwell.southerncross.co.nz
aimee-pp.ts.southerncross.co.nz
uat.hospitals.southerncross.co.nz
hospitals.southerncross.co.nz
www.southerncross.co.nz
www.viewpoint.southerncross.co.nz
brandkit.southerncross.co.nz
viewpoint.southerncross.co.nz
easy-claim-help.southerncross.co.nz
api.switch.southerncross.co.nz
careers.southerncross.co.nz
*.api-test.southerncross.co.nz
assets.hospitals.southerncross.co.nz
*.switch.southerncross.co.nz
www.southerncross.co.nz
assets.hospitals.southerncross.co.nz
api.beingwell.southerncross.co.nz
agm.southerncross.co.nz
kete.southerncross.co.nz
healthcarefinder-pp.ts.southerncross.co.nz
brandkit.southerncross.co.nz
*.api-sit.southerncross.co.nz
api-pp.southerncross.co.nz
Certificate
The complete raw certificate details for hospitals.southerncross.co.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVTCCBT2gAwIBAgISA+KokAoH4hcs1T0dAVQSL0KKMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MTYyMTMzMzNaFw0x OTA5MTQyMTMzMzNaMCgxJjAkBgNVBAMTHWhvc3BpdGFscy5zb3V0aGVybmNyb3Nz LmNvLm56MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArv1ioh9Rour2 1IyoyOCKHaI9cTgrIoGfC3y9Y989aTzUFKMpzpLcmSxaQdCzOSejkYsJK3J++D/X Ot6jF7+XTVWaQZf+f+B8lKs08VUDuHIFlaT2xJYeBKIr7F3Hz1Xe4wdypinkP9k3 uuJA2g0P6fcb4zog94pAH2d5MYrJX7oDPTubZMktU8x1C/3S+a5QpfvfADhHJ22F IxelYuU3OeBUMIH7JG3+47U/EUxD0s9ZCdVH2O17aLavVOlx0wlMQ0GgcH57suvH ea/ZDTfxHohCs+EMYxn7eArbfUtjGeOoJs/Fk/VItTAyV4s1n1fUrLcDjdwaYVgS 6R0G4xPgMQIDAQABo4IDVTCCA1EwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRXzQqq cJQfhE1U2pUQ232wsIbtyjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMIIBCQYDVR0RBIIBADCB/YIkYXNzZXRzLmhvc3Bp dGFscy5zb3V0aGVybmNyb3NzLmNvLm56ghVnaWxsaWVzaG9zcGl0YWwuY28ubnqC HWhvc3BpdGFscy5zb3V0aGVybmNyb3NzLmNvLm56ghxzb3V0aGVybmNyb3NzaG9z cGl0YWxzLmNvLm56giF1YXQuaG9zcGl0YWxzLnNvdXRoZXJuY3Jvc3MuY28ubnqC GXd3dy5naWxsaWVzaG9zcGl0YWwuY28ubnqCIXd3dy5ob3NwaXRhbHMuc291dGhl cm5jcm9zcy5jby5ueoIgd3d3LnNvdXRoZXJuY3Jvc3Nob3NwaXRhbHMuY28ubnow TAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcC ARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1 BIHyAPAAdgApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAWtibJwn AAAEAwBHMEUCIQCfFJ5QmoHEAIx3wtKCvWPQHxgBPT3o7vOKLmGFglss4wIgJWnf snEHivAi9ZMLdkbE2r2HcZ/Xq9w5gGJlxI3n7GsAdgB0ftqDMa0zEJEhnM4lT0Jw wr/9XkIgCMY3NXnmEHvMVgAAAWtibJ39AAAEAwBHMEUCIA2Fz2PfG1I5FFoeYE+y Hjb5G9AnRnuOH1NXkJFB+k9KAiEA53U/+hRoNjYh/6Bl3pGoKlV9D7POS1qXAhTR SeeLFkIwDQYJKoZIhvcNAQELBQADggEBAIf0NiNy/6zBlnSivHbUbiveQxMLRtYT Fl8fyC3ujvXZyC4fnHqlsw6sSRv8veNNjSNJKrK65mDZdtuEGwm1FvQTaAYR9Bun iMxuRpKzxje5GSe9gsOxYVg2n9ru0aVIk82wWOKEUHpOTibPPlxRMA2utXI2bzAX WD6oSERxLiO8Dd2xt3yzj0VoeDEMfg07wGL1l/TRahFOd92/6GhnPI16kwjNENq8 S/Kua2ZPRMW7cZNC6XxAwKcejUFS3OyyHJbvzjz+dPnzAcXhEk5sIRQLiV6HQtPs NZDkzqJVIrOpClbuEAuhZVnQIRH5kqsOIQYknFwqSu5Yps9tqC14rUc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArv1ioh9Rour21IyoyOCK HaI9cTgrIoGfC3y9Y989aTzUFKMpzpLcmSxaQdCzOSejkYsJK3J++D/XOt6jF7+X TVWaQZf+f+B8lKs08VUDuHIFlaT2xJYeBKIr7F3Hz1Xe4wdypinkP9k3uuJA2g0P 6fcb4zog94pAH2d5MYrJX7oDPTubZMktU8x1C/3S+a5QpfvfADhHJ22FIxelYuU3 OeBUMIH7JG3+47U/EUxD0s9ZCdVH2O17aLavVOlx0wlMQ0GgcH57suvHea/ZDTfx HohCs+EMYxn7eArbfUtjGeOoJs/Fk/VItTAyV4s1n1fUrLcDjdwaYVgS6R0G4xPg MQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 338464730916900992367768422900842003120778 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-16 21:33:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-14 21:33:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hospitals.southerncross.co.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22090414005674912213875869396505499850997816695441782137525584539280803967364299849245296742287415115087786159839993798070642818124540679620131827906143617959314511389556685730036543224516960659432685360632296686664054019014996422479385345232154575814877326857374848970082709665151207169275315885365841146572920872441860448488396812261934074321000851031940649022511618250986416835449269188374887050668554563841932982786829222122926854700815851957514835599286137373524923303546008715254996658912242464113045534795681277266987341452686527306938630605947094295462717236936592981770982624528121612683710180600390379364401 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 57cd0aaa70941f844d54da9510db7db0b086edca . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (256 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.hospitals.southerncross.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gillieshospital.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hospitals.southerncross.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'southerncrosshospitals.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat.hospitals.southerncross.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gillieshospital.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hospitals.southerncross.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.southerncrosshospitals.co.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b626c9c2700000403004730450221009f149e509a81c4008c77c2d282bd63d01f18013d3de8eef38a2e6185825b2ce302202569dfb271078af022f5930b7646c4dabd87719fd7abdc39806265c48de7ec6b007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016b626c9dfd000004030047304502200d85cf63df1b5239145a1e604fb21e36f91bd027467b8e1f5357909141fa4f4a022100e7753ffa1468363621ffa065de91a82a557d0fb3ce4b5a970214d149e78b1642 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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