istour.ckvt.cz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:44:be:d3:50:d2:f3:c4:fd:b3:11:ec:c2:8d:8b:3e:c7:ce was issued on by Let's Encrypt.
With 15 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=istour.ckvt.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:44:be:d3:50:d2:f3:c4:fd:b3:11:ec:c2:8d:8b:3e:c7:ceSerial Number (int): 284729709279046965744900870194900231964622
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a7:51:f3:5f:71:8f:27:19:e8:27:97:a3:b2:fa:ff:d4:99:5e:0f:62
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 7c:83:01:42:fc:c9:ac:fb:83:d8:92:6b:86:32:13:85:20:8d:2c:2b
Fingerprint (sha256): 36:61:cf:39:4d:9f:23:ff:d3:52:5e:aa:c8:eb:24:54:1e:99:65:97:0c:e6:a5:c1:c6:e0:d2:eb:f3:f4:66:4a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate istour.ckvt.cz
15
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for istour.ckvt.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ckvt.cz
ckvt.sk
istour.ckvt.cz
istour.old.viamare.cz
istour.test.ckvt.cz
mwdeploy.ckvt.cz
mwdeploy.test.ckvt.cz
viamare.cz
vitkovicetours.pl
web.test.ckvt.cz
webviamare.test.ckvt.cz
www.ckvt.cz
www.ckvt.sk
www.viamare.cz
www.vitkovicetours.pl
ckvt.sk
istour.ckvt.cz
istour.old.viamare.cz
istour.test.ckvt.cz
mwdeploy.ckvt.cz
mwdeploy.test.ckvt.cz
viamare.cz
vitkovicetours.pl
web.test.ckvt.cz
webviamare.test.ckvt.cz
www.ckvt.cz
www.ckvt.sk
www.viamare.cz
www.vitkovicetours.pl
Other certificates including the domain name ckvt.cz
(limited to 100 certificates)
exclusive.ckvt.cz
synology.ckvt.cz
ckvt.cz
exclusive.ckvt.cz
www.ckvt.cz
mail.ckvt.cz
exclusive.ckvt.cz
istour.ckvt.cz
mail.ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
istour.ckvt.cz
istour.ckvt.cz
sni.cloudflaressl.com
istour.ckvt.cz
istour.ckvt.cz
mail.ckvt.cz
mail.ckvt.cz
www.ckvt.cz
synology.ckvt.cz
control.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
mail.ckvt.cz
istour.ckvt.cz
control.ckvt.cz
ckvt.cz
exclusive.ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
sni.cloudflaressl.com
sni.cloudflaressl.com
www.ckvt.cz
control.ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
sni.cloudflaressl.com
file.synology.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
sni.cloudflaressl.com
ckvt.cz
ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
www.ckvt.cz
mail.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
ckvt.cz
exclusive.ckvt.cz
control.ckvt.cz
synology.ckvt.cz
ckvt.cz
exclusive.ckvt.cz
www.ckvt.cz
mail.ckvt.cz
exclusive.ckvt.cz
istour.ckvt.cz
mail.ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
istour.ckvt.cz
istour.ckvt.cz
sni.cloudflaressl.com
istour.ckvt.cz
istour.ckvt.cz
mail.ckvt.cz
mail.ckvt.cz
www.ckvt.cz
synology.ckvt.cz
control.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
mail.ckvt.cz
istour.ckvt.cz
control.ckvt.cz
ckvt.cz
exclusive.ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
sni.cloudflaressl.com
sni.cloudflaressl.com
www.ckvt.cz
control.ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
sni.cloudflaressl.com
file.synology.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
sni.cloudflaressl.com
ckvt.cz
ckvt.cz
www.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
www.ckvt.cz
mail.ckvt.cz
exclusive.ckvt.cz
exclusive.ckvt.cz
ckvt.cz
exclusive.ckvt.cz
control.ckvt.cz
Certificate
The complete raw certificate details for istour.ckvt.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTTCCBTWgAwIBAgISA0S+01DS88T9sxHswo2LPsfOMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODEyMDUwNjIwMTBaFw0x OTAzMDUwNjIwMTBaMBkxFzAVBgNVBAMTDmlzdG91ci5ja3Z0LmN6MIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqMNT9+/ANWoe0U855kV+wY/eyt0Gzba 26eI3PWY+zIj9U48+7rBh4L3yymyxx7a6hPK7i64FL4BN8sHoycuAaBdZwQd+0Ca SqIQE6QbwhyKclV1mGRkBLqZ3gHx+B6DNiZ/sFW29JVvFW+XlGZC5yqbj+N4H85z Nl9Jr/751msHh8+yBFUJB5HVInKPLsjNdv8ZQXYfBPvf+2k8FJ/+soSq9vSaSOL/ LiPruFLM/BCOGjjhwIHN+3Z3YaQ+vAT2XCHM8t3QjbDl+5uEIX4BouRKgIJZXafc z4rRQq6LfEhfTz3olkDuStGqLWjHaoz3EZCL9FCohnUWdDD/BgrkkQIDAQABo4ID XDCCA1gwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSnUfNfcY8nGegnl6Oy+v/UmV4P YjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRj MGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5v cmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5v cmcvMIIBDwYDVR0RBIIBBjCCAQKCB2NrdnQuY3qCB2NrdnQuc2uCDmlzdG91ci5j a3Z0LmN6ghVpc3RvdXIub2xkLnZpYW1hcmUuY3qCE2lzdG91ci50ZXN0LmNrdnQu Y3qCEG13ZGVwbG95LmNrdnQuY3qCFW13ZGVwbG95LnRlc3QuY2t2dC5jeoIKdmlh bWFyZS5jeoIRdml0a292aWNldG91cnMucGyCEHdlYi50ZXN0LmNrdnQuY3qCF3dl YnZpYW1hcmUudGVzdC5ja3Z0LmN6ggt3d3cuY2t2dC5jeoILd3d3LmNrdnQuc2uC Dnd3dy52aWFtYXJlLmN6ghV3d3cudml0a292aWNldG91cnMucGwwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgDi aUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWd9PQgJAAAEAwBHMEUC IQDjTw8x4k55JCncp6C+rDsME2dVnKi9l1u4FpwBCRVbZgIgL0XSWLi+UsIJl7Pl M6nIAgIfH3VG+zNntKEVm7HAMAsAdwApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTD DPTlRUf0eAAAAWd9PQgHAAAEAwBIMEYCIQCtNJdKZZdFjtksXOaa/5XT0eOWT4nR O/wCuDoXoA6R/gIhAPJwygrMCWTn5RPhH/RQ2bTVrHRp48tP41GGFWEKhxX2MA0G CSqGSIb3DQEBCwUAA4IBAQA9uuDi8iq1Vx63y0yHu6J2de0W3GQ+FjJ6C5xnQIOX VllcXqm4YYmTMfM1Srb9TOdTwuH4KgzCJ0VdxYNn/1mtapmw2FUl4/tQ+XNoBywy MUoyWuL08vyoHtlzJGhY5xbsV8y/PVGfqGoXzb2JcjkY7AxKKWl4IVPWQA5XuGWn W9iOyWyujgu8hg7NjVizpGHBHM1KZXMnJuyybsLSBuluS6RFmg/WN/syg43VCEY2 zuyLXdwqv12cVBfvek8Sc2i6xfbxtrxXjOL1IvqEdBXi6+ehC1gtD1fzFXt5IVoD ymCRGAWNszbOxTtIoeiy/jcfeipFxVXsV8SOdRLRfFr4 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqMNT9+/ANWoe0U855kV +wY/eyt0Gzba26eI3PWY+zIj9U48+7rBh4L3yymyxx7a6hPK7i64FL4BN8sHoycu AaBdZwQd+0CaSqIQE6QbwhyKclV1mGRkBLqZ3gHx+B6DNiZ/sFW29JVvFW+XlGZC 5yqbj+N4H85zNl9Jr/751msHh8+yBFUJB5HVInKPLsjNdv8ZQXYfBPvf+2k8FJ/+ soSq9vSaSOL/LiPruFLM/BCOGjjhwIHN+3Z3YaQ+vAT2XCHM8t3QjbDl+5uEIX4B ouRKgIJZXafcz4rRQq6LfEhfTz3olkDuStGqLWjHaoz3EZCL9FCohnUWdDD/Bgrk kQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 284729709279046965744900870194900231964622 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-05 06:20:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-05 06:20:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'istour.ckvt.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26085494760918990749112961354729181859626285018135098860352919473359829666481902460990991123549105738784063942564105900462024932954271010983349333660171267943823487440089045313084941725546292458011748486787454551512878979442683772503808041476931463057591622892114609500406294217281996436642270797184416953050891363033090946357819685640973525939670532229848362048045471074662790575684296291007604333489936626210790858674376276925204470268671296161979688825766579561245442698911983435181665341030587410356858702092547116935425688548367120956482103881605255278446037342431521433039978167829606119996491746733582046651537 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a751f35f718f2719e82797a3b2faffd4995e0f62 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (262 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ckvt.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ckvt.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'istour.ckvt.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'istour.old.viamare.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'istour.test.ckvt.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mwdeploy.ckvt.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mwdeploy.test.ckvt.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'viamare.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vitkovicetours.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'web.test.ckvt.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webviamare.test.ckvt.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ckvt.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ckvt.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.viamare.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.vitkovicetours.pl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe000001677d3d08090000040300473045022100e34f0f31e24e792429dca7a0beac3b0c1367559ca8bd975bb8169c0109155b6602202f45d258b8be52c20997b3e533a9c802021f1f7546fb3367b4a1159bb1c0300b007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001677d3d08070000040300483046022100ad34974a6597458ed92c5ce69aff95d3d1e3964f89d13bfc02b83a17a00e91fe022100f270ca0acc0964e7e513e11ff450d9b4d5ac7469e3cb4fe3518615610a8715f6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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