files.giffords.org
Issued by R3
About this certificate
This digital certificate with serial number 03:6e:8a:ad:01:80:81:6a:2b:f9:f0:c3:db:c5:f9:fb:d9:47 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=files.giffords.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:6e:8a:ad:01:80:81:6a:2b:f9:f0:c3:db:c5:f9:fb:d9:47Serial Number (int): 298952249917822482162037051765336357722439
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d8:fc:3f:74:4a:5d:38:31:d7:f5:ef:20:12:88:6a:b1:65:7d:39:7b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0e:95:79:26:01:39:77:44:21:c7:51:2c:43:53:aa:f3:cb:02:10:d5
Fingerprint (sha256): 37:c7:a1:a0:e6:85:01:5d:1c:89:9c:8d:28:3f:4b:74:8b:c8:fa:7e:65:7f:71:b9:24:72:17:94:e4:4b:39:d4
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate files.giffords.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for files.giffords.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
files.giffords.org
Other certificates including the domain name giffords.org
(limited to 100 certificates)
5759978627399680-fe2.pantheonsite.io
action.standupamerica.com
5759978627399680-fe2.pantheonsite.io
giffords.org
ssl714124.cloudflaressl.com
act.johnfetterman.com
5748418722922496-fe2.pantheonsite.io
giffords.org
*.sanssl-006.bsdtools.com
*.sanssl-006.bsdtools.com
5759978627399680-fe2.pantheonsite.io
ssl714125.cloudflaressl.com
5759978627399680-fe2.pantheonsite.io
5769015641243648-fe4.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
giffords.org
shop.giffords.org
respsol-c4.edge.bluestate.digital
5769015641243648-fe4.pantheonsite.io
action.wemove.eu
5759978627399680-fe2.pantheonsite.io
5654672874405888-fe3.pantheonsite.io
giffords.org
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
giffords.org
act.boldprogressives.org
ssl714123.cloudflaressl.com
5759978627399680-fe2.pantheonsite.io
www-default.actionkit.com
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
www-default.actionkit.com
shop.giffords.org
ssl714125.cloudflaressl.com
5748418722922496-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
ssl714125.cloudflaressl.com
5769015641243648-fe4.pantheonsite.io
5748418722922496-fe2.pantheonsite.io
giffords.org
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5769015641243648-fe4.pantheonsite.io
respsol-c4.edge.bluestate.digital
ssl714124.cloudflaressl.com
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
respsol-c4.edge.bluestate.digital
5769015641243648-fe4.pantheonsite.io
act.leftnet.org
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
act.ourrevolution.com
5769015641243648-fe4.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
act.progressnownm.org
ssl714123.cloudflaressl.com
shop.giffords.org
files.giffords.org
5759978627399680-fe2.pantheonsite.io
5748418722922496-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
respsol-main.edge.bluestate.digital
www-default.actionkit.com
5759978627399680-fe2.pantheonsite.io
act.hillharper.com
act.electdemsnow.org
*.sanssl-006.bsdtools.com
shop.giffords.org
sni.cloudflaressl.com
5759978627399680-fe2.pantheonsite.io
5665797913444352-fe1.pantheonsite.io
5769015641243648-fe4.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
ssl714125.cloudflaressl.com
act.lucaskunce.com
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5654672874405888-fe3.pantheonsite.io
respsol-c4.edge.bluestate.digital
respsol-c4.edge.bluestate.digital
5654672874405888-fe3.pantheonsite.io
5769015641243648-fe4.pantheonsite.io
5748418722922496-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
files.giffords.org
5769015641243648-fe4.pantheonsite.io
o3.shared.global.fastly.net
5654672874405888-fe3.pantheonsite.io
5769015641243648-fe4.pantheonsite.io
action.standupamerica.com
5759978627399680-fe2.pantheonsite.io
giffords.org
ssl714124.cloudflaressl.com
act.johnfetterman.com
5748418722922496-fe2.pantheonsite.io
giffords.org
*.sanssl-006.bsdtools.com
*.sanssl-006.bsdtools.com
5759978627399680-fe2.pantheonsite.io
ssl714125.cloudflaressl.com
5759978627399680-fe2.pantheonsite.io
5769015641243648-fe4.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
giffords.org
shop.giffords.org
respsol-c4.edge.bluestate.digital
5769015641243648-fe4.pantheonsite.io
action.wemove.eu
5759978627399680-fe2.pantheonsite.io
5654672874405888-fe3.pantheonsite.io
giffords.org
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
giffords.org
act.boldprogressives.org
ssl714123.cloudflaressl.com
5759978627399680-fe2.pantheonsite.io
www-default.actionkit.com
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
www-default.actionkit.com
shop.giffords.org
ssl714125.cloudflaressl.com
5748418722922496-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
ssl714125.cloudflaressl.com
5769015641243648-fe4.pantheonsite.io
5748418722922496-fe2.pantheonsite.io
giffords.org
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5769015641243648-fe4.pantheonsite.io
respsol-c4.edge.bluestate.digital
ssl714124.cloudflaressl.com
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
respsol-c4.edge.bluestate.digital
5769015641243648-fe4.pantheonsite.io
act.leftnet.org
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
act.ourrevolution.com
5769015641243648-fe4.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
act.progressnownm.org
ssl714123.cloudflaressl.com
shop.giffords.org
files.giffords.org
5759978627399680-fe2.pantheonsite.io
5748418722922496-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
respsol-main.edge.bluestate.digital
www-default.actionkit.com
5759978627399680-fe2.pantheonsite.io
act.hillharper.com
act.electdemsnow.org
*.sanssl-006.bsdtools.com
shop.giffords.org
sni.cloudflaressl.com
5759978627399680-fe2.pantheonsite.io
5665797913444352-fe1.pantheonsite.io
5769015641243648-fe4.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
ssl714125.cloudflaressl.com
act.lucaskunce.com
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
5654672874405888-fe3.pantheonsite.io
respsol-c4.edge.bluestate.digital
respsol-c4.edge.bluestate.digital
5654672874405888-fe3.pantheonsite.io
5769015641243648-fe4.pantheonsite.io
5748418722922496-fe2.pantheonsite.io
5759978627399680-fe2.pantheonsite.io
files.giffords.org
5769015641243648-fe4.pantheonsite.io
o3.shared.global.fastly.net
5654672874405888-fe3.pantheonsite.io
5769015641243648-fe4.pantheonsite.io
Certificate
The complete raw certificate details for files.giffords.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISA26KrQGAgWor+fDD28X5+9lHMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA0MTUyMDA4NDhaFw0yMzA3MTQyMDA4NDdaMB0xGzAZBgNVBAMT EmZpbGVzLmdpZmZvcmRzLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMe3sBqWJm6bhfX7ME/QXWrnqjtVY/2OouJOwi9paKmtzCXx0idumwvZTQyX AE0Hm9mmyTpHnriGD2E1voXKxVQDsUXjTloT2GnPoqehludpXGfzUx1VQivWDPFq WI70TGBjbr6Zu68ieRScDCuICgRSQjVHcVy6UKjj5JpJ/N7jtRLq9PFhdltFvu+9 q+15VgDRu//hBjM3ngT4EBxM6E+gZiSrsmN+w+PACDaLca7nbGi4++X3i60gtrO/ 7fwTJaBQx5OHivAo92HZz5q1kQ8dNCWRm6M1LlH6zWcEEntRRok09CCmHqVbW9U0 mj9SMrMqXQ/21IHdLFYC+ldkn00CAwEAAaOCAk0wggJJMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQU2Pw/dEpdODHX9e8gEohqsWV9OXswHwYDVR0jBBgwFoAUFC6zF7dY VsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRw Oi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNy Lm9yZy8wHQYDVR0RBBYwFIISZmlsZXMuZ2lmZm9yZHMub3JnMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcAtz77 JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGHhr/JBAAABAMASDBGAiEA 3lfuzn+wy+8o0wxoxXNdXgnw/lRo9MmLs1TdwEnGQTECIQDb9cj/9Iez0KM0+c9T gKsFyRV12J995CDhVWLa8k+P5QB1AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nh d31tBr1uAAABh4a/yR8AAAQDAEYwRAIgPgbnMgUdubslMAlLuCUi4Tg/pKxFeQGa R1EgYoy++Q0CIHwBuxJc6RwuTX6tWxunS4BDkENqFIGnW+1I9vTfLjvdMA0GCSqG SIb3DQEBCwUAA4IBAQCdev1hTpOgVdAWy+4pYprVtsqPbaMIiUjhu6IJzgJBoXZM Ym3h8CpOd1lp0Asrc4K47ij8LEarZ/HLtgOHJUsVHEb63ZmF0MBzOBDcmmH6wgro b8kkRTQo5nDUJV0vbr+0QRLuUmtrUacGyjJM10k4MO9SBu6S+pyorjYh0FLv1F9D ctOH8v0JdpxJties9ehyuFWCssajo6FlHYRgV+9roxqiA/8aDKtWJyBghJK6yXru zjyf+SLJkmAl1UFJSDFd95DpeOyxKUEIxnEOM//Q1Y2Rjq6BtEy2h5QR802K914N TufkpKg3OVLNWkHFZpYIfbQmBx2mFNt2ka6U/pkj -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7ewGpYmbpuF9fswT9Bd aueqO1Vj/Y6i4k7CL2loqa3MJfHSJ26bC9lNDJcATQeb2abJOkeeuIYPYTW+hcrF VAOxReNOWhPYac+ip6GW52lcZ/NTHVVCK9YM8WpYjvRMYGNuvpm7ryJ5FJwMK4gK BFJCNUdxXLpQqOPkmkn83uO1Eur08WF2W0W+772r7XlWANG7/+EGMzeeBPgQHEzo T6BmJKuyY37D48AINotxrudsaLj75feLrSC2s7/t/BMloFDHk4eK8Cj3YdnPmrWR Dx00JZGbozUuUfrNZwQSe1FGiTT0IKYepVtb1TSaP1IysypdD/bUgd0sVgL6V2Sf TQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 298952249917822482162037051765336357722439 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-15 20:08:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-14 20:08:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'files.giffords.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25212002570494010506373126763121593291855727505615175564036470076965711556674976709236535408768518723640084235238702037498948610505991413428740673777395521192879270936507618000609637865259623198389127766931172512723275692746127382235521403828930370043733264154999757518319158844159682315018249222253557505735823318169017773054758541090122646237676003711576376300104971199105370468212709362614187254387847151764652606026508063224365644781245319168697927128811488291464069098131918518321974909497836237241035939391113209746368378857333154459087110313206756767927074026600585380073666730203427847232722802071497808846669 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d8fc3f744a5d3831d7f5ef2012886ab1657d397b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'files.giffords.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018786bfc9040000040300483046022100de57eece7fb0cbef28d30c68c5735d5e09f0fe5468f4c98bb354ddc049c64131022100dbf5c8fff487b3d0a334f9cf5380ab05c91575d89f7de420e15562daf24f8fe5007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018786bfc91f000004030046304402203e06e732051db9bb2530094bb82522e1383fa4ac4579019a475120628cbef90d02207c01bb125ce91c2e4d7ead5b1ba74b804390436a1481a75bed48f6f4df2e3bdd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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