tzoleipzig.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:f5:22:c7:a8:ae:a3:8e:31:4f:6d:5f:88:f3:7d:b4:e9:9e was issued on by Let's Encrypt.
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tzoleipzig.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:f5:22:c7:a8:ae:a3:8e:31:4f:6d:5f:88:f3:7d:b4:e9:9eSerial Number (int): 431864554062883577353290205938580676995486
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: bf:fc:f7:b5:f3:1e:e7:29:46:08:e8:e9:72:b1:64:68:a7:90:a0:a8
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 05:de:0f:c9:34:61:4d:cf:20:5c:07:03:4d:22:b4:fa:30:01:ff:b9
Fingerprint (sha256): 32:6d:8f:05:0f:90:e0:cf:5b:8c:a1:7e:31:94:06:60:84:94:a9:4f:43:f4:a1:b4:3b:35:c5:01:bb:36:7c:bc
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate tzoleipzig.de
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tzoleipzig.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tzo-leipzig.com
tzo-leipzig.eu
tzoleipzig.com
tzoleipzig.de
tzoleipzig.eu
tzoleipzig.isp-vhost04.domservice.de
www.tzo-leipzig.com
www.tzo-leipzig.eu
www.tzoleipzig.com
www.tzoleipzig.de
www.tzoleipzig.eu
tzo-leipzig.eu
tzoleipzig.com
tzoleipzig.de
tzoleipzig.eu
tzoleipzig.isp-vhost04.domservice.de
www.tzo-leipzig.com
www.tzo-leipzig.eu
www.tzoleipzig.com
www.tzoleipzig.de
www.tzoleipzig.eu
Other certificates including the domain name tzoleipzig.de
(limited to 100 certificates)
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.isp-vhost04.domservice.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.isp-vhost04.domservice.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
Certificate
The complete raw certificate details for tzoleipzig.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgISBPUix6iuo44xT21fiPN9tOmeMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMDQwMTAxMDRaFw0x OTA2MDIwMTAxMDRaMBgxFjAUBgNVBAMTDXR6b2xlaXB6aWcuZGUwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDaQKiKusXXAoADueR5GWG8f2rxjbPp04+I lT3jhDsrPERLferMLu7BSgFSWVkXjzPWZPyJ0wRPpDQFtdQxOLwjUkylQKuiLz1h ycj06/vU2AUdcJ3SAxf2EdJpg0CWexBuMGDhKRP2r8JDj0zk4pwJAwH6JwszzjTb lbEkMnE2Ndds7ZMK3NKj+meGfKL8emWzYwp1IRTO4LJEcNmB9PIE29AWOqBQdoy4 ibA94GzY/HDmAbbwAs3Glf32JyvsHNxg1KY7SSJg5vj2UewCh0hV7u2UVg5RkWIZ jh4uVNY3BMFemNLDG+rvnvMgsNTalTNlSONb9xGvQt3e83h8FH0pt+c97VAcAe3H Q/CJCJvhVy9TvHuJ8K0+9r8Q03JzoADniK66i8+3S9ZPm0qiNWvLLKlBEf/aNGRk KpHg2omJazcqBW3sHQLdCOi7yfSucfeWS42PZTRN2SkWgoKPtmKJTjXHr4bJHuXW Oa2nZ6gXBhnZ4n0CSQCzmmF+ZDE1r+VzuijbDgm7TN8URfXSWjZlhCpyEhP7LZB3 yQaY93tyc8QByUEM3i+BK/AhttxD508lZa5h6ecjECJ07Pv0s1BonqoROuynv+hw YrWYdmBp+klNUmiKq1QXACNoSbtbrLfJBOMZ6UYb7YUwoRU145/3c5G5sSpvLHPG E37UO+lcswIDAQABo4IDMDCCAywwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS//Pe1 8x7nKUYI6OlysWRop5CgqDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMIHjBgNVHREEgdswgdiCD3R6by1sZWlwemlnLmNv bYIOdHpvLWxlaXB6aWcuZXWCDnR6b2xlaXB6aWcuY29tgg10em9sZWlwemlnLmRl gg10em9sZWlwemlnLmV1giR0em9sZWlwemlnLmlzcC12aG9zdDA0LmRvbXNlcnZp Y2UuZGWCE3d3dy50em8tbGVpcHppZy5jb22CEnd3dy50em8tbGVpcHppZy5ldYIS d3d3LnR6b2xlaXB6aWcuY29tghF3d3cudHpvbGVpcHppZy5kZYIRd3d3LnR6b2xl aXB6aWcuZXUwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEGBgorBgEE AdZ5AgQCBIH3BIH0APIAdwBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPT DAAAAWlGbuBcAAAEAwBIMEYCIQC8hWFuI2kLuWJgRHdIab3VlRVTw8X6V/F1DHNC WZ16KwIhALIDXjNIoTqIk168KoEVt/W42JaUfuyKlnEH2t1hhnY+AHcAY/Lbzeg7 zCzPC3KEJ1drM6SNYXePvXWmOLHHaFRL2I0AAAFpRm7gcAAABAMASDBGAiEAyGXL 9Rzc2+f7NtGT/bKCjDtviSgqSVtYGTv+NcIvPYQCIQClUGAvearomf9urkD3RiuS 4PdfnpeptGADnSh3p8gyjzANBgkqhkiG9w0BAQsFAAOCAQEAjiZtLtLMTiF3xyYP FYaST22hbOsV497m/8XaIp+qa2baEvagAUKmRSFiAulkKNDFn//LBCKowi+e3uxo xJTqmJhURmqqBrsGEuWVsaLghiwKINZgV3fWKOVZdPbNntSX0N7NNAnsRGaF3+m/ 7kQxslhJrTORKwU3pms5CDnb9Foj6483u1lOKLAcoBDVbZKXjE7LyuYfwN/UoJR7 EKIGgB67ZcyRV6a242aAzd71m+M+ZdzuYf2VgVmhFqypl9jP5pwiL3bdfoOkRrJE FfmQNtheJC9ZwRuMWmIvpIHG4VN2RU1vsJNKvQ9uoxxsf0qbFg7lWv7Mf3Bhv0s+ hPXVnA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2kCoirrF1wKAA7nkeRlh vH9q8Y2z6dOPiJU944Q7KzxES33qzC7uwUoBUllZF48z1mT8idMET6Q0BbXUMTi8 I1JMpUCroi89YcnI9Ov71NgFHXCd0gMX9hHSaYNAlnsQbjBg4SkT9q/CQ49M5OKc CQMB+icLM84025WxJDJxNjXXbO2TCtzSo/pnhnyi/Hpls2MKdSEUzuCyRHDZgfTy BNvQFjqgUHaMuImwPeBs2Pxw5gG28ALNxpX99icr7BzcYNSmO0kiYOb49lHsAodI Ve7tlFYOUZFiGY4eLlTWNwTBXpjSwxvq757zILDU2pUzZUjjW/cRr0Ld3vN4fBR9 KbfnPe1QHAHtx0PwiQib4VcvU7x7ifCtPva/ENNyc6AA54iuuovPt0vWT5tKojVr yyypQRH/2jRkZCqR4NqJiWs3KgVt7B0C3Qjou8n0rnH3lkuNj2U0TdkpFoKCj7Zi iU41x6+GyR7l1jmtp2eoFwYZ2eJ9AkkAs5phfmQxNa/lc7oo2w4Ju0zfFEX10lo2 ZYQqchIT+y2Qd8kGmPd7cnPEAclBDN4vgSvwIbbcQ+dPJWWuYennIxAidOz79LNQ aJ6qETrsp7/ocGK1mHZgafpJTVJoiqtUFwAjaEm7W6y3yQTjGelGG+2FMKEVNeOf 93ORubEqbyxzxhN+1DvpXLMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 431864554062883577353290205938580676995486 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-04 01:01:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-02 01:01:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tzoleipzig.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 890392809651625094505727804224412893315900469854697679218079055927625849247335251214365495885896405133743191129279137478542369336551096148296834406537777345209304764663865962730647172073895472195232172238669892726791338073771796782608807267025080072063777140777427729095633384785548732167279821486581725380440149090807216596115052169865422772707169324761154563843932600242985550167559728773497409992939012888254968173403874806544113983592140371377750846824131154803010744212636484259400434463332899586316596326424135038852663493783372878992234311518738089943996733638351638872711704423634150106943485336256088788075506224212482464276339760970988037127991734062014487565434945636854013800641083707977521698226579505310036848706110703273718765833005624869395303679411757424096166557340004553065095104031028249273420777662653940431162251238447061645502092868257154219945274264769870068329478957850429306108216615511267867774773458965364504345030191645171433670009810885426889812217444715604021087250603692075160408944108223086996442195297089516346184233917862012446066704949763239727690306370737815066649290826350381129994615496225490253988485543489428548955948362845371610667863170436633920773104477795468326578920946034125180194348211 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bffcf7b5f31ee7294608e8e972b16468a790a0a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (219 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzo-leipzig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzo-leipzig.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzoleipzig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzoleipzig.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzoleipzig.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzoleipzig.isp-vhost04.domservice.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzo-leipzig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzo-leipzig.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzoleipzig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzoleipzig.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzoleipzig.eu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c00000169466ee05c0000040300483046022100bc85616e23690bb9626044774869bdd5951553c3c5fa57f1750c7342599d7a2b022100b2035e3348a13a88935ebc2a8115b7f5b8d896947eec8a967107dadd6186763e00770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169466ee0700000040300483046022100c865cbf51cdcdbe7fb36d193fdb2828c3b6f89282a495b58193bfe35c22f3d84022100a550602f79aae899ff6eae40f7462b92e0f75f9e97a9b460039d2877a7c8328f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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