ibo.nyc.gov.ibo.nyc.ny.us
Issued by R3
About this certificate
This digital certificate with serial number 04:55:3a:81:9e:79:b6:55:22:ba:0c:75:05:95:da:a9:85:2a was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ibo.nyc.gov.ibo.nyc.ny.us
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:55:3a:81:9e:79:b6:55:22:ba:0c:75:05:95:da:a9:85:2aSerial Number (int): 377450913159634786329939457208945778197802
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 2d:5e:f2:10:07:f6:7c:b9:40:83:5f:91:21:0f:63:1c:f1:88:03:28
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 65:98:17:62:93:12:c4:e3:14:95:7e:16:f0:bb:34:88:ef:c8:3d:2a
Fingerprint (sha256): 38:82:75:86:1f:c6:c4:a6:20:bb:8b:fb:dd:e9:6c:fb:1c:bd:2d:69:e5:ee:1c:cf:b5:a5:ac:ef:60:b0:22:b7
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ibo.nyc.gov.ibo.nyc.ny.us
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ibo.nyc.gov.ibo.nyc.ny.us
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ibo.nyc.gov
ibo.nyc.gov.ibo.nyc.ny.us
www.ibo.nyc.gov.ibo.nyc.ny.us
ibo.nyc.gov.ibo.nyc.ny.us
www.ibo.nyc.gov.ibo.nyc.ny.us
Other certificates including the domain name nyc.ny.us
(limited to 100 certificates)
iboremote2.ibo.nyc.ny.us
iboremote2.ibo.nyc.ny.us
www.tac.nyc.ny.us
42fw.boe.nyc.ny.us
*.ibo.nyc.ny.us
owa.trs.nyc.ny.us
ibo.nyc.ny.us
*.trs.nyc.ny.us
ctxdr.council.nyc.ny.us
qns.boe.nyc.ny.us
42fw.boe.nyc.ny.us
ctx.council.nyc.ny.us
hope.nyc.ny.us
*.trs.nyc.ny.us
*.trs.nyc.ny.us
*.ibo.nyc.ny.us
mail.trinityschoolnyc.org
mail.council.nyc.gov
*.ibo.nyc.ny.us
vote.nyc.ny.us
wm.ibo.nyc.ny.us
*.hope.nyc.ny.us
ibo.nyc.gov.ibo.nyc.ny.us
iboremote.ibo.nyc.ny.us
*.trs.nyc.ny.us
*.ibo.nyc.ny.us
ctx.council.nyc.ny.us
home.nyc.ny.us
ibo.nyc.ny.us
owa.trs.nyc.ny.us
*.council.nyc.ny.us
ibo.nyc.ny.us
ibo.nyc.ny.us
ibo.nyc.gov
wm.ibo.nyc.ny.us
*.trs.nyc.ny.us
hope.nyc.ny.us
42fw.boe.nyc.ny.us
*.ibo.nyc.ny.us
ibo.nyc.ny.us
ibomail.ibo.nyc.ny.us
*.vote.nyc
vote.nyc.ny.us
*.trs.nyc.ny.us
www.trs.nyc.ny.us
owa.trs.nyc.ny.us
*.ibo.nyc.ny.us
*.hope.nyc.ny.us
owa.trs.nyc.ny.us
mail.council.nyc.gov
owa.boe.nyc
www.trs.nyc.ny.us
www.tac.nyc.ny.us
owa.trs.nyc.ny.us
ibomail.ibo.nyc.ny.us
hope.nyc.ny.us
42fw.boe.nyc.ny.us
www.hope.nyc.ny.us
hope.nyc.ny.us
ibo.nyc.ny.us
ibo.nyc.ny.us
vote.nyc.ny.us
queens.boe.nyc.ny.us
ibo.nyc.ny.us
hope.nyc.ny.us
*.ibo.nyc.ny.us
vote.nyc.ny.us
ctx.council.nyc.ny.us
pullrequest.hope.nyc.ny.us
ibo.nyc.ny.us
ibo.nyc.ny.us
ibo.nyc.ny.us
hope.nyc.ny.us
*.council.nyc.ny.us
webmail.ibo.nyc.ny.us
queens.boe.nyc.ny.us
ibomail.ibo.nyc.ny.us
*.ibo.nyc.ny.us
iboremote2.ibo.nyc.ny.us
ibo.nyc.ny.us
owa.trs.nyc.ny.us
*.ibo.nyc.ny.us
ibo.nyc.ny.us
vote.nyc.ny.us
ibo.nyc.ny.us
ibo.nyc.ny.us
hope.nyc.ny.us
ibo.nyc.ny.us
www.trs.nyc.ny.us
42fw.boe.nyc.ny.us
*.ibo.nyc.ny.us
www.tac.nyc.ny.us
mail.council.nyc.gov
owa.trs.nyc.ny.us
*.hope.nyc.ny.us
*.ibo.nyc.ny.us
ctxdr.council.nyc.ny.us
webmail.ibo.nyc.ny.us
42fw.boe.nyc.ny.us
www.tac.nyc.ny.us
iboremote2.ibo.nyc.ny.us
www.tac.nyc.ny.us
42fw.boe.nyc.ny.us
*.ibo.nyc.ny.us
owa.trs.nyc.ny.us
ibo.nyc.ny.us
*.trs.nyc.ny.us
ctxdr.council.nyc.ny.us
qns.boe.nyc.ny.us
42fw.boe.nyc.ny.us
ctx.council.nyc.ny.us
hope.nyc.ny.us
*.trs.nyc.ny.us
*.trs.nyc.ny.us
*.ibo.nyc.ny.us
mail.trinityschoolnyc.org
mail.council.nyc.gov
*.ibo.nyc.ny.us
vote.nyc.ny.us
wm.ibo.nyc.ny.us
*.hope.nyc.ny.us
ibo.nyc.gov.ibo.nyc.ny.us
iboremote.ibo.nyc.ny.us
*.trs.nyc.ny.us
*.ibo.nyc.ny.us
ctx.council.nyc.ny.us
home.nyc.ny.us
ibo.nyc.ny.us
owa.trs.nyc.ny.us
*.council.nyc.ny.us
ibo.nyc.ny.us
ibo.nyc.ny.us
ibo.nyc.gov
wm.ibo.nyc.ny.us
*.trs.nyc.ny.us
hope.nyc.ny.us
42fw.boe.nyc.ny.us
*.ibo.nyc.ny.us
ibo.nyc.ny.us
ibomail.ibo.nyc.ny.us
*.vote.nyc
vote.nyc.ny.us
*.trs.nyc.ny.us
www.trs.nyc.ny.us
owa.trs.nyc.ny.us
*.ibo.nyc.ny.us
*.hope.nyc.ny.us
owa.trs.nyc.ny.us
mail.council.nyc.gov
owa.boe.nyc
www.trs.nyc.ny.us
www.tac.nyc.ny.us
owa.trs.nyc.ny.us
ibomail.ibo.nyc.ny.us
hope.nyc.ny.us
42fw.boe.nyc.ny.us
www.hope.nyc.ny.us
hope.nyc.ny.us
ibo.nyc.ny.us
ibo.nyc.ny.us
vote.nyc.ny.us
queens.boe.nyc.ny.us
ibo.nyc.ny.us
hope.nyc.ny.us
*.ibo.nyc.ny.us
vote.nyc.ny.us
ctx.council.nyc.ny.us
pullrequest.hope.nyc.ny.us
ibo.nyc.ny.us
ibo.nyc.ny.us
ibo.nyc.ny.us
hope.nyc.ny.us
*.council.nyc.ny.us
webmail.ibo.nyc.ny.us
queens.boe.nyc.ny.us
ibomail.ibo.nyc.ny.us
*.ibo.nyc.ny.us
iboremote2.ibo.nyc.ny.us
ibo.nyc.ny.us
owa.trs.nyc.ny.us
*.ibo.nyc.ny.us
ibo.nyc.ny.us
vote.nyc.ny.us
ibo.nyc.ny.us
ibo.nyc.ny.us
hope.nyc.ny.us
ibo.nyc.ny.us
www.trs.nyc.ny.us
42fw.boe.nyc.ny.us
*.ibo.nyc.ny.us
www.tac.nyc.ny.us
mail.council.nyc.gov
owa.trs.nyc.ny.us
*.hope.nyc.ny.us
*.ibo.nyc.ny.us
ctxdr.council.nyc.ny.us
webmail.ibo.nyc.ny.us
42fw.boe.nyc.ny.us
www.tac.nyc.ny.us
Certificate
The complete raw certificate details for ibo.nyc.gov.ibo.nyc.ny.us in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISBFU6gZ55tlUiugx1BZXaqYUqMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MjEyMDI2MDhaFw0yNDA3MjAyMDI2MDdaMCQxIjAgBgNVBAMT GWliby5ueWMuZ292Lmliby5ueWMubnkudXMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+9DFYFUxgSKHJ9kjFIpnDGyATRlLWMxbZ1PMUugrP6PidNW59 4HWXiX6CbQHMMAlF8FkG7zJxagPBt/UEuKYDN/nkiR+h7Krocrq/yTrFwsT3mWKh Mofe9AElAo1aXFq8skFW7MSsG7WfPrVGFJ3r+8D9XwAv2xhmG79P43fsaHqDC45b IjDbpBcz4Nmra1QjNr+fVKd2Go1b/T9Lt4WDYDRwfvNL7jfqUqjrZDRneahsNaz8 Vl1A7esB94Jh06ZhzAI8oxZeifnUsWWmfZfNEnvD66IOKEk08T/lsVAaJiJPawCW NjUcSFOz83sbebHIkm4GTfXcrDo+ON0loXjJAgMBAAGjggJJMIICRTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFC1e8hAH9ny5QINfkSEPYxzxiAMoMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMFAGA1UdEQRJMEeCC2liby5ueWMuZ292ghlpYm8ubnljLmdv di5pYm8ubnljLm55LnVzgh13d3cuaWJvLm55Yy5nb3YuaWJvLm55Yy5ueS51czAT BgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3AD8X S0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/KIXs+GRuAAABjwKNVpQAAAQDAEgwRgIh APa4aGNpTmHNTH5RzDc4l34Kro5ELvYZ3IJNUIETwo+MAiEA9KFmCNuQ8j754LOB uGS9LV/I0F3+RHyoLzx/SJmXGt0AdwDuzdBk1dsazsVct520zROiModGfLzs3sNR SFlGcR+1mwAAAY8CjV5dAAAEAwBIMEYCIQCs+zLhmL+YHVW0QYyW2Zt91900yYcg JrJyRw3ULA0nNQIhAPgAKKap3lfUgyQY3XVS5wPgcNrB+1dV18+7pPzdIFXdMA0G CSqGSIb3DQEBCwUAA4IBAQCa13eLQ7iHBzK1iyzgsN35TJtmWtHVKxIs3Dy37PBE y8LMyMR6RigoGMCKXU2+cfjzOAmM3twtRH2bRKhCfxBBHsoC0ZkUMe9loclwyR1s hnM2oxvQxxpr0tQOCs4pXZ22CZRbNoWclw+H5ty0J+jGdGXc41/JYwOQkJtrcmPp aQ1VAMrMcKCnW4dC63/hNSsCAp4akRo7/HA7ipnp9gy3iERl4EqOdUzcOephWepp 9HOSsbDUb6mIfdVeghffGZRuxV7q1xPpCv8jATtLWO3+k8lH9N7PQLJtV2Tx98MI Q8eKiXTvPuDUj9dAAoQmQEJ0Ghc96R7Uv2PJ7Ilxv3a7 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvQxWBVMYEihyfZIxSKZ wxsgE0ZS1jMW2dTzFLoKz+j4nTVufeB1l4l+gm0BzDAJRfBZBu8ycWoDwbf1BLim Azf55Ikfoeyq6HK6v8k6xcLE95lioTKH3vQBJQKNWlxavLJBVuzErBu1nz61RhSd 6/vA/V8AL9sYZhu/T+N37Gh6gwuOWyIw26QXM+DZq2tUIza/n1SndhqNW/0/S7eF g2A0cH7zS+436lKo62Q0Z3mobDWs/FZdQO3rAfeCYdOmYcwCPKMWXon51LFlpn2X zRJ7w+uiDihJNPE/5bFQGiYiT2sAljY1HEhTs/N7G3mxyJJuBk313Kw6PjjdJaF4 yQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 377450913159634786329939457208945778197802 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-21 20:26:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-20 20:26:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ibo.nyc.gov.ibo.nyc.ny.us' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24105693876683864600003507350706689747946078719668950703563151232689794461804448363141880383622567677071259770745345990815729517515298080206672908076029809510314352214467893321184424697348219342329129830693545179909686789623503501276115034229548767639523327145092573678823329240029259314923348152598887862833093935926736593440137336664462544926596056143479872032529459988453183517062234415216659316727408760633030150569114850813391696323922488620113477133445240221402981449623407946722670198494184860072600466855115756159857719760006273420390039442496167390486103189284530379587256798282563099179030537326826587519177 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2d5ef21007f67cb940835f91210f631cf1880328 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ibo.nyc.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ibo.nyc.gov.ibo.nyc.ny.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ibo.nyc.gov.ibo.nyc.ny.us' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f028d56940000040300483046022100f6b86863694e61cd4c7e51cc3738977e0aae8e442ef619dc824d508113c28f8c022100f4a16608db90f23ef9e0b381b864bd2d5fc8d05dfe447ca82f3c7f4899971add007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018f028d5e5d0000040300483046022100acfb32e198bf981d55b4418c96d99b7dd7dd34c9872026b272470dd42c0d2735022100f80028a6a9de57d4832418dd7552e703e070dac1fb5755d7cfbba4fcdd2055dd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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