www.lemonadenyc.com
Issued by Starfield Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number 2b:6c:6d:05:ee:5d:34 was issued on by Starfield Technologies, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.lemonadenyc.com,OU=Domain Control Validated
Starfield Technologies, Inc.
Organization:
Starfield Technologies, Inc.
Organization unit: http://certs.starfieldtech.com/repository/
Organization unit: http://certs.starfieldtech.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 2b:6c:6d:05:ee:5d:34Serial Number (int): 12222639505300788
Serial Number lenght: 54 bits, 7 octets
SubjectKeyId: e6:b1:e2:d6:af:d3:96:4d:1d:fa:51:59:23:62:2f:f7:f2:9d:32:39
AuthorityKeyId: 25:45:81:68:50:26:38:3d:3b:2d:2c:be:cd:6a:d9:b6:3d:b3:66:63
Fingerprint (sha1): f2:22:ed:0f:40:7a:0c:ec:29:28:f4:eb:a0:28:6e:ba:29:d6:cf:5d
Fingerprint (sha256): 32:b8:a0:94:72:09:d9:b3:e5:83:c4:be:c1:91:07:b4:76:79:d3:27:aa:a3:70:56:a8:d4:7b:70:79:64:12:57
Issuing Certificate URL: http://certificates.starfieldtech.com/repository/sfig2.crt
Revocation information
OCSP Server: http://ocsp.starfieldtech.com/CRL Distribution Point: http://crl.starfieldtech.com/sfig2s1-12.crl
Check the revocation status for certificate www.lemonadenyc.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.lemonadenyc.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.lemonadenyc.com
lemonadenyc.com
lemonadenyc.com
Other certificates including the domain name lemonadenyc.com
(limited to 100 certificates)
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
www.lemonadenyc.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
www.lemonadenyc.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
sni25970.cloudflaressl.com
ssl4552.cloudflare.com
ssl4552.cloudflare.com
Certificate
The complete raw certificate details for www.lemonadenyc.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgIHK2xtBe5dNDANBgkqhkiG9w0BAQsFADCBxjELMAkGA1UE BhMCVVMxEDAOBgNVBAgTB0FyaXpvbmExEzARBgNVBAcTClNjb3R0c2RhbGUxJTAj BgNVBAoTHFN0YXJmaWVsZCBUZWNobm9sb2dpZXMsIEluYy4xMzAxBgNVBAsTKmh0 dHA6Ly9jZXJ0cy5zdGFyZmllbGR0ZWNoLmNvbS9yZXBvc2l0b3J5LzE0MDIGA1UE AxMrU3RhcmZpZWxkIFNlY3VyZSBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkgLSBHMjAe Fw0xNDA5MTcxNTIwNTdaFw0xNTA5MTcxNTIwNTdaMEExITAfBgNVBAsTGERvbWFp biBDb250cm9sIFZhbGlkYXRlZDEcMBoGA1UEAxMTd3d3LmxlbW9uYWRlbnljLmNv bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPUsoxXLCAxy9qkAh2lC IXK78ia6hcEaotwWbi/q6sdSOfrmSUQvt4/7XqngKZPIQwx8eojwvc43+G579CYO iZlod3RcGE4N3SdZbhBdTX5F88YeiDnXhPF4Oz1HYCwox3WG0VOKJf8zsbaecJ4H m7STH/YO0LJ6626YO0nEXVF4bTMmWnBU1wNimzirmQcLzsmXc4x+i+aXDqXwNBNM iX9Dd+tGMoP1h01/lfo8IXGzWFveijOqll3btgt/3p/IqLAqa2UvR3KdkURJeY0N iujtI8/6r69zWKGADzWcMR8qV6QvStJeRgY6gai02oMErLTBnqhp5TIat5cLGKKm gEcCAwEAAaOCAdAwggHMMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMA4GA1UdDwEB/wQEAwIFoDA8BgNVHR8ENTAzMDGgL6Athito dHRwOi8vY3JsLnN0YXJmaWVsZHRlY2guY29tL3NmaWcyczEtMTIuY3JsMFkGA1Ud IARSMFAwTgYLYIZIAYb9bgEHFwEwPzA9BggrBgEFBQcCARYxaHR0cDovL2NlcnRp ZmljYXRlcy5zdGFyZmllbGR0ZWNoLmNvbS9yZXBvc2l0b3J5LzCBggYIKwYBBQUH AQEEdjB0MCoGCCsGAQUFBzABhh5odHRwOi8vb2NzcC5zdGFyZmllbGR0ZWNoLmNv bS8wRgYIKwYBBQUHMAKGOmh0dHA6Ly9jZXJ0aWZpY2F0ZXMuc3RhcmZpZWxkdGVj aC5jb20vcmVwb3NpdG9yeS9zZmlnMi5jcnQwHwYDVR0jBBgwFoAUJUWBaFAmOD07 LSy+zWrZtj2zZmMwLwYDVR0RBCgwJoITd3d3LmxlbW9uYWRlbnljLmNvbYIPbGVt b25hZGVueWMuY29tMB0GA1UdDgQWBBTmseLWr9OWTR36UVkjYi/38p0yOTANBgkq hkiG9w0BAQsFAAOCAQEAKYcOWHSneXnM7BRMA2UYwDt2oOu8TP3aulSEtTk+u0+/ oVlyS/YRBOIBooTHoDjESU2cC9oT5rQUlnDUKXNpi2KIhfKHZqfJxLTwuoAOdKDk alWEK2j7eG3K/aUtVlqmAobjlL9JHfqfZlqRMo0D1A8TBuDw7FoBbO/xIeylsbVb NjB7WyefL11+FS3cnev+VLprsffbg0IpY4mx7ypGRI4Sa7Ijy5lLllOICrwdfGyo hs5/qJqXxU6PlvM0PkAtJ+MT20PWvLvN6JxYHsbpxLlERC2yUYmDYuVMYzHQwZJd N058t96lgHG288glHzVEMO1ggpQYfeBX63Q4HWpyEg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9SyjFcsIDHL2qQCHaUIh crvyJrqFwRqi3BZuL+rqx1I5+uZJRC+3j/teqeApk8hDDHx6iPC9zjf4bnv0Jg6J mWh3dFwYTg3dJ1luEF1NfkXzxh6IOdeE8Xg7PUdgLCjHdYbRU4ol/zOxtp5wngeb tJMf9g7Qsnrrbpg7ScRdUXhtMyZacFTXA2KbOKuZBwvOyZdzjH6L5pcOpfA0E0yJ f0N360Yyg/WHTX+V+jwhcbNYW96KM6qWXdu2C3/en8iosCprZS9Hcp2RREl5jQ2K 6O0jz/qvr3NYoYAPNZwxHypXpC9K0l5GBjqBqLTagwSstMGeqGnlMhq3lwsYoqaA RwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12222639505300788 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Technologies, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.starfieldtech.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-09-17 15:20:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-09-17 15:20:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.lemonadenyc.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30950396067047844077489252501000343721674374644060941027557175816237699506953320755169572434408931493546952855698522530496084465749563237575714454240690796435228821004876111805272813111386454219453161891987818043765313452545853440417999132383540616046884540108296239383241444641768726619841953648386739267124357172187119932456098053491001206792948226803310528200485726138833003788963167759676295486160625485429260745039464553304447845911544619748955783553733280511721840904754360539698682274619407358235966588971392947450105160080943781037936967122770424771514402981103254731335237134390716436943514429832127496749127 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.starfieldtech.com/sfig2s1-12.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114414.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.starfieldtech.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.starfieldtech.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.starfieldtech.com/repository/sfig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 254581685026383d3b2d2cbecd6ad9b63db36663 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lemonadenyc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lemonadenyc.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e6b1e2d6afd3964d1dfa515923622ff7f29d3239 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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