webmail.twai.it
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a8:40:1b:51:b8:21:bb:e2:78:da:7f:0a:34:73:ff:8b:ad was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=webmail.twai.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a8:40:1b:51:b8:21:bb:e2:78:da:7f:0a:34:73:ff:8b:adSerial Number (int): 318589507879207416800276940042684581514157
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 00:5e:b0:5d:a8:a1:ee:82:d6:61:7c:9e:27:3d:f2:89:e2:5f:a0:8f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ba:70:93:7c:1c:db:64:6c:ed:69:36:14:23:f1:bd:17:4f:36:28:25
Fingerprint (sha256): 2d:f0:93:33:d6:35:f4:d8:f5:d2:81:97:58:13:ca:15:32:4a:a2:44:21:27:24:dc:c9:72:11:b5:38:10:a7:b4
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate webmail.twai.it
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for webmail.twai.it
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
webmail.twai.it
Other certificates including the domain name twai.it
(limited to 100 certificates)
gev.twai.it
gev.twai.it
gev.twai.it
tcc.twai.it
tcc.twai.it
twai.it
tcc.twai.it
twai.it
gev.twai.it
webmail.twai.it
tcc.twai.it
twai.it
gev.twai.it
webmail.twai.it
tcc.twai.it
tcc.twai.it
webmail.twai.it
webmail.twai.it
webmail.twai.it
webmail.twai.it
old.twai.it
tcc.twai.it
gev.twai.it
tcc.twai.it
gev.twai.it
old.twai.it
gev.twai.it
old.twai.it
twai.it
tcc.twai.it
tcc.twai.it
tcc.twai.it
webmail.twai.it
old.twai.it
webmail.twai.it
gev.twai.it
twai.it
gev.twai.it
twai.it
old.twai.it
webmail.twai.it
gev.twai.it
tcc.twai.it
tcc.twai.it
twai.it
webmail.twai.it
twai.it
gev.twai.it
tcc.twai.it
twai.it
twai.it
webmail.twai.it
webmail.twai.it
webmail.twai.it
twai.it
webmail.twai.it
twai.it
tcc.twai.it
twai.it
gev.twai.it
twai.it
tcc.twai.it
gev.twai.it
old.twai.it
webmail.twai.it
gev.twai.it
gev.twai.it
webmail.twai.it
twai.it
twai.it
tcc.twai.it
thechinacompanion.eu
tcc.twai.it
tcc.twai.it
old.twai.it
twai.it
tcc.twai.it
twai.it
twai.it
webmail.twai.it
twai.it
old.twai.it
old.twai.it
old.twai.it
zend.twai.it
gev.twai.it
twai.it
twai.it
old.twai.it
old.twai.it
tcc.twai.it
tcc.twai.it
tcc.twai.it
twai.it
twai.it
gev.twai.it
tcc.twai.it
tcc.twai.it
old.twai.it
gev.twai.it
gev.twai.it
gev.twai.it
tcc.twai.it
tcc.twai.it
twai.it
tcc.twai.it
twai.it
gev.twai.it
webmail.twai.it
tcc.twai.it
twai.it
gev.twai.it
webmail.twai.it
tcc.twai.it
tcc.twai.it
webmail.twai.it
webmail.twai.it
webmail.twai.it
webmail.twai.it
old.twai.it
tcc.twai.it
gev.twai.it
tcc.twai.it
gev.twai.it
old.twai.it
gev.twai.it
old.twai.it
twai.it
tcc.twai.it
tcc.twai.it
tcc.twai.it
webmail.twai.it
old.twai.it
webmail.twai.it
gev.twai.it
twai.it
gev.twai.it
twai.it
old.twai.it
webmail.twai.it
gev.twai.it
tcc.twai.it
tcc.twai.it
twai.it
webmail.twai.it
twai.it
gev.twai.it
tcc.twai.it
twai.it
twai.it
webmail.twai.it
webmail.twai.it
webmail.twai.it
twai.it
webmail.twai.it
twai.it
tcc.twai.it
twai.it
gev.twai.it
twai.it
tcc.twai.it
gev.twai.it
old.twai.it
webmail.twai.it
gev.twai.it
gev.twai.it
webmail.twai.it
twai.it
twai.it
tcc.twai.it
thechinacompanion.eu
tcc.twai.it
tcc.twai.it
old.twai.it
twai.it
tcc.twai.it
twai.it
twai.it
webmail.twai.it
twai.it
old.twai.it
old.twai.it
old.twai.it
zend.twai.it
gev.twai.it
twai.it
twai.it
old.twai.it
old.twai.it
tcc.twai.it
tcc.twai.it
tcc.twai.it
twai.it
twai.it
gev.twai.it
tcc.twai.it
tcc.twai.it
old.twai.it
gev.twai.it
Certificate
The complete raw certificate details for webmail.twai.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGATCCBOmgAwIBAgISA6hAG1G4IbvieNp/CjRz/4utMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA3MzEwMDAyMDBaFw0x NzEwMjkwMDAyMDBaMBoxGDAWBgNVBAMTD3dlYm1haWwudHdhaS5pdDCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAKe3SnvYyjs7sod9xGz1cF5QvkEtUwjW qE2fil+y9MJoX8ElRfiPBAGwvE1fV/93lnjdr6qufYL50UJaFpSOoZwC+Xp+l1On BAEmkt1guQ0YvIIdrOVUfHTqAFumkobaJ8cQRWHVW6/1S6wOlawtDF+CsCJ00wvv g9pXO6jpYYxCSU06bVQ1bZBV7F7iNRXtkAtsi0waH4unSj0CmvU/WRyxv3rzw9+G ZDydSYwh0sH6aJ+RV0OQ85WYfytaTznfwd2+mXXDf4XleTlYuBLGxlZmfeP7bRtT oli8ddmPMCjrbEMA8IJF/qeI8e6P2RNDtoBU6EglWy6lFZNMMGhXcWC3K8v2mWgW U01p/lQjBQusIOYBgIxoyOE1Giilpxcty3+6yrIGWsKdvc/Xlr3jEaxYQHGNOM1x txo/df00YPwjmZZ5idi2NIa252GcRGl9XN/xfeV77EB116Uq2JfSQNpm7u2HtUZk X67DgZLxINisw9RBiOr5KYap/8DaNUFKuG1SJwVmTTQXkB8V7dG/xO0FZJBifGLY 0ZWPttOzQWhkPEnfbWHutvAntJOADxXTAe+a8Rt6VRiazdEaErjKorqBDymIJYXx P/KZvvjqCuD5e2c7RjOuuRU8j83TcLdfawMh/2ueWtEuo2o0fogIU1oZAKTgUwz5 zQN+edhc1oBfAgMBAAGjggIPMIICCzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFABe sF2ooe6C1mF8nic98oniX6CPMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd2VibWFpbC50d2FpLml0 MIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggr BgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwIC MIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBi eSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRo ZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlw dC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBAIIxUaKdyBJtu6Pr Tm5zMaMDS3tXdfx0rsfRMTOxaXZS6QCDoG9zvzsBiLsZeqQ5qH9FW7Ln1Wo+Ci8u GicyNkDykHyhfBf8RbdkIn8M4Suf/BOpzj8M+kH7bRKkrbYy0tcgJz21dnKsQ7f6 Z/Hf9DqujHPPp7IYuI4x/kKj462B5xSvfdhSYLItXdhdq4OXKXiTfyOHDMGUky5b 3loSCMY5/uf4CQzjt50ZHpBKDJrBPuavwLwnHEHkC7TLESOhZozAIhRCCyT4goiz 9Bp15DDXwKuJuyYV4kKIlKgf0i/mYM3ufF2HDdjHN7zCxEt8KMJKa581fFMEQrk1 W0txZjo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAp7dKe9jKOzuyh33EbPVw XlC+QS1TCNaoTZ+KX7L0wmhfwSVF+I8EAbC8TV9X/3eWeN2vqq59gvnRQloWlI6h nAL5en6XU6cEASaS3WC5DRi8gh2s5VR8dOoAW6aShtonxxBFYdVbr/VLrA6VrC0M X4KwInTTC++D2lc7qOlhjEJJTTptVDVtkFXsXuI1Fe2QC2yLTBofi6dKPQKa9T9Z HLG/evPD34ZkPJ1JjCHSwfpon5FXQ5DzlZh/K1pPOd/B3b6ZdcN/heV5OVi4EsbG VmZ94/ttG1OiWLx12Y8wKOtsQwDwgkX+p4jx7o/ZE0O2gFToSCVbLqUVk0wwaFdx YLcry/aZaBZTTWn+VCMFC6wg5gGAjGjI4TUaKKWnFy3Lf7rKsgZawp29z9eWveMR rFhAcY04zXG3Gj91/TRg/COZlnmJ2LY0hrbnYZxEaX1c3/F95XvsQHXXpSrYl9JA 2mbu7Ye1RmRfrsOBkvEg2KzD1EGI6vkphqn/wNo1QUq4bVInBWZNNBeQHxXt0b/E 7QVkkGJ8YtjRlY+207NBaGQ8Sd9tYe628Ce0k4APFdMB75rxG3pVGJrN0RoSuMqi uoEPKYglhfE/8pm++OoK4Pl7ZztGM665FTyPzdNwt19rAyH/a55a0S6jajR+iAhT WhkApOBTDPnNA3552FzWgF8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 318589507879207416800276940042684581514157 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-31 00:02:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-29 00:02:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'webmail.twai.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 684221504070609900242140342352920373980054032356739554675409931853061863771356549272980530589332903762629992968538903296357016776062313730441247089919262828150726606409666513115054545321028790105781024378966690933270439562174203690975563000026966855701108407122023391006897949864409812996002387542985335782284510763969016844956339705330189475716332853012576988128051942319967128705767664230327891732395578864283940743110216850755320570718992004188196116950611564679472529706134934144289575042169734446391283649838194816052927995172863072582512287362773626205839787611414373692574276341580244647408848072704712526114152472792462405847025108935059233083881481321911881067130283761494592836629834686562451253421992058502393918287039328630923863506828469211346691184238488881868831487151062908904431416343139320049288828756037624545520462171732809094790610817416031563779033423054997574555876550914909013894207498765436752936846361509275009141754180032264868171018985368371496171776617300924532143941531154532288752973540864416450172230516627112805331771159236261578159340986406246738261157629163531610689494640142777292123870676544801266234411998298581840985718688253296642193950752334099553913455057396321895172471858579369867791990879 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 005eb05da8a1ee82d6617c9e273df289e25fa08f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.twai.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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