gregorymonaca.fr
Issued by StartCom Class 1 DV Server CA
About this certificate
This digital certificate with serial number 64:6a:f7:a6:9b:41:4f:d1:fa:f2:3d:cf:56:a2:43:b6 was issued on by StartCom Ltd..
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=gregorymonaca.fr
StartCom Ltd.
Organization:
StartCom Ltd.
Organization unit: StartCom Certification Authority
Organization unit: StartCom Certification Authority
Country:
IL
This certificate has expire since
Certificate Details
Serial Number (hex): 64:6a:f7:a6:9b:41:4f:d1:fa:f2:3d:cf:56:a2:43:b6Serial Number (int): 133478206000592491990467372208827286454
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 5d:b7:b2:a1:4e:1f:ea:b4:39:fc:33:62:c8:0f:81:74:4c:36:f7:d9
AuthorityKeyId: d7:91:4e:01:c4:b0:bf:f8:c8:67:93:44:9c:e7:33:fa:ad:93:0c:af
Fingerprint (sha1): d0:4d:ef:08:29:83:50:d4:74:a9:6a:26:4c:42:bf:9c:5b:34:b9:21
Fingerprint (sha256): 39:6a:47:7a:f4:0c:70:d2:74:70:1c:cc:4c:06:a5:c2:f6:0f:6c:4e:aa:da:a3:de:a3:d3:47:aa:c0:d5:16:cf
Issuing Certificate URL: http://aia.startssl.com/certs/sca.server1.crt
Revocation information
OCSP Server: http://ocsp.startssl.comCRL Distribution Point: http://crl.startssl.com/sca-server1.crl
Check the revocation status for certificate gregorymonaca.fr
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gregorymonaca.fr
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gregorymonaca.fr
cloud.gregorymonaca.fr
www.gregorymonaca.fr
cloud.gregorymonaca.fr
www.gregorymonaca.fr
Other certificates including the domain name gregorymonaca.fr
(limited to 100 certificates)
gregorymonaca.fr
gregorymonaca.fr
cloud.gregorymonaca.fr
gregorymonaca.fr
gregorymonaca.fr
gregorymonaca.fr
main.gregorymonaca.fr
cloud.gregorymonaca.fr
gregorymonaca.fr
gregorymonaca.fr
seedbox.gregorymonaca.fr
seedbox.gregorymonaca.fr
www.rougegroupe.fr
www.rougegroupe.fr
cloud.gregorymonaca.fr
cloud.gregorymonaca.fr
gregorymonaca.fr
cloud.gregorymonaca.fr
gregorymonaca.fr
www.gregorymonaca.fr
cloud.gregorymonaca.fr
main.gregorymonaca.fr
cloud.gregorymonaca.fr
cloud.gregorymonaca.fr
main.gregorymonaca.fr
seedbox.gregorymonaca.fr
main.gregorymonaca.fr
gregorymonaca.fr
seedbox.gregorymonaca.fr
www.gregorymonaca.fr
main.gregorymonaca.fr
gregorymonaca.fr
gregorymonaca.fr
seedbox.gregorymonaca.fr
gregorymonaca.fr
cloud.gregorymonaca.fr
gregorymonaca.fr
gregorymonaca.fr
gregorymonaca.fr
vraidebat.fr
gregorymonaca.fr
cloud.gregorymonaca.fr
gregorymonaca.fr
gregorymonaca.fr
gregorymonaca.fr
main.gregorymonaca.fr
cloud.gregorymonaca.fr
gregorymonaca.fr
gregorymonaca.fr
seedbox.gregorymonaca.fr
seedbox.gregorymonaca.fr
www.rougegroupe.fr
www.rougegroupe.fr
cloud.gregorymonaca.fr
cloud.gregorymonaca.fr
gregorymonaca.fr
cloud.gregorymonaca.fr
gregorymonaca.fr
www.gregorymonaca.fr
cloud.gregorymonaca.fr
main.gregorymonaca.fr
cloud.gregorymonaca.fr
cloud.gregorymonaca.fr
main.gregorymonaca.fr
seedbox.gregorymonaca.fr
main.gregorymonaca.fr
gregorymonaca.fr
seedbox.gregorymonaca.fr
www.gregorymonaca.fr
main.gregorymonaca.fr
gregorymonaca.fr
gregorymonaca.fr
seedbox.gregorymonaca.fr
gregorymonaca.fr
cloud.gregorymonaca.fr
gregorymonaca.fr
gregorymonaca.fr
gregorymonaca.fr
vraidebat.fr
Certificate
The complete raw certificate details for gregorymonaca.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGHzCCBQegAwIBAgIQZGr3pptBT9H68j3PVqJDtjANBgkqhkiG9w0BAQsFADB4 MQswCQYDVQQGEwJJTDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjEpMCcGA1UECxMg U3RhcnRDb20gQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkxJjAkBgNVBAMTHVN0YXJ0 Q29tIENsYXNzIDEgRFYgU2VydmVyIENBMB4XDTE2MDQxNjA4NTY0M1oXDTE3MDQx NjA4NTY0M1owGzEZMBcGA1UEAwwQZ3JlZ29yeW1vbmFjYS5mcjCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAL8XHcBXw90BBUa+F0HTbssAOZHoBj9B1O0w vbZ+bUfgWh2NhrwJ1AnH9oz4NpVBJeT1kJkv/o4ipFkQLcNM8Llwa1IlZ0DnA9sk pAbFmhmwUPwsrq5DqKaca3xdxpSx9xApUbxP9eMOXWS2/l1rREIh/KlNWQGTtZpp Fjt4IPFBEAop1q21gds8VkNSXX01FhFib8YGl+Oqr2HTmqfQ3/dXD65cIQGVY6U6 q86jJl+NRKbMMwGvIWO/2bexakbvqx/2Ugd7zY/Jni3AzDWjHTTOy1+JH5W+epOn zFJ3gcrLAvxfcD1fsupAyv2OJpgpyyIMFqS+zyvJPKEZsWZwRl9lSJfjzRwcFxt8 L7LZihNf1R8HeMgJjNHlpjmQXCU6ERgRejHrEv/ZRjgkLmbzsrLVzUUYTFeXUbaH byCCwE4U3Mgs2ca6sfqjILOOYBh4p2zzedMOoeDUflPo3/AIcmtxBUYBwHfKSsVS VUl89uaKFyqvme51FmTSnlDKqIKHihMGnWsjiAsVJqBeKNp2HcW99/gj6TYCe8lU 2LXz+SXIX48KUSIL8jd188ilAe7ue8CK9z+F7waOKj6VNBdAKTLyjp/dnDUmQltt Zu/73GNhNtEamnoy3yEzTY/ztBEKfecPQJaabA+EwIhN2V75Uli6lkZgSJTMaQ7d goOjy7qXAgMBAAGjggIAMIIB/DAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMAkGA1UdEwQCMAAwHQYDVR0OBBYEFF23sqFOH+q0 OfwzYsgPgXRMNvfZMB8GA1UdIwQYMBaAFNeRTgHEsL/4yGeTRJznM/qtkwyvMG8G CCsGAQUFBwEBBGMwYTAkBggrBgEFBQcwAYYYaHR0cDovL29jc3Auc3RhcnRzc2wu Y29tMDkGCCsGAQUFBzAChi1odHRwOi8vYWlhLnN0YXJ0c3NsLmNvbS9jZXJ0cy9z Y2Euc2VydmVyMS5jcnQwOAYDVR0fBDEwLzAtoCugKYYnaHR0cDovL2NybC5zdGFy dHNzbC5jb20vc2NhLXNlcnZlcjEuY3JsMEkGA1UdEQRCMECCEGdyZWdvcnltb25h Y2EuZnKCFmNsb3VkLmdyZWdvcnltb25hY2EuZnKCFHd3dy5ncmVnb3J5bW9uYWNh LmZyMCMGA1UdEgQcMBqGGGh0dHA6Ly93d3cuc3RhcnRzc2wuY29tLzBQBgNVHSAE STBHMAgGBmeBDAECATA7BgsrBgEEAYG1NwECBTAsMCoGCCsGAQUFBwIBFh5odHRw Oi8vd3d3LnN0YXJ0c3NsLmNvbS9wb2xpY3kwEwYKKwYBBAHWeQIEAwEB/wQCBQAw DQYJKoZIhvcNAQELBQADggEBAIigoFMdUZYk3+QsOm+/+t9RNDaGhOYFqyKbPEJL 4dPZ5aQ4rk6luzSbj1UHD6XdkvcYQZO/NOUAk00YY2w7HgpPWnBJ9ICSDSLG29n7 OAirLEAkyYIIgj1uldj80gsmUbF9v9OU+TXIMMAkYoaSoujCYL1J297yPa2P60dA U4iTnkaitCZCtwoJVpprrQN49eHqU5t6aRHEutfdJtiK81bjORpa7Shz/STvZkkV vBXmr/6KgS4Ss6DYb4iqFY8F+TQ/rXWtnoVXirjXKa4TXX+VPBzkvXkkURYYfb0l NZ1pF5WTKV+1JXY9SXbOejUBEc5kTpzE+MxzjF77EGykQr0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvxcdwFfD3QEFRr4XQdNu ywA5kegGP0HU7TC9tn5tR+BaHY2GvAnUCcf2jPg2lUEl5PWQmS/+jiKkWRAtw0zw uXBrUiVnQOcD2ySkBsWaGbBQ/CyurkOoppxrfF3GlLH3EClRvE/14w5dZLb+XWtE QiH8qU1ZAZO1mmkWO3gg8UEQCinWrbWB2zxWQ1JdfTUWEWJvxgaX46qvYdOap9Df 91cPrlwhAZVjpTqrzqMmX41EpswzAa8hY7/Zt7FqRu+rH/ZSB3vNj8meLcDMNaMd NM7LX4kflb56k6fMUneByssC/F9wPV+y6kDK/Y4mmCnLIgwWpL7PK8k8oRmxZnBG X2VIl+PNHBwXG3wvstmKE1/VHwd4yAmM0eWmOZBcJToRGBF6MesS/9lGOCQuZvOy stXNRRhMV5dRtodvIILAThTcyCzZxrqx+qMgs45gGHinbPN50w6h4NR+U+jf8Ahy a3EFRgHAd8pKxVJVSXz25ooXKq+Z7nUWZNKeUMqogoeKEwadayOICxUmoF4o2nYd xb33+CPpNgJ7yVTYtfP5JchfjwpRIgvyN3XzyKUB7u57wIr3P4XvBo4qPpU0F0Ap MvKOn92cNSZCW21m7/vcY2E20RqaejLfITNNj/O0EQp95w9AlppsD4TAiE3ZXvlS WLqWRmBIlMxpDt2Cg6PLupcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 133478206000592491990467372208827286454 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Certification Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Class 1 DV Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-04-16 08:56:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-16 08:56:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'gregorymonaca.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 779580399547186974746181979180849192172547510639552268918113289675335721080126037242721094178173119787692017925783101670016753500185061422281471247462623323114439130898013451624975007244530685693795424995116409928450721886484526460931406662947121510521304898804408348895225807011878496399747563301904265549813148383395342891637699877321398276087836070429723129233309420169031352007532339467965847147992191205788252372093677103390019878483597558293688312514352332563840603233764697550237347815402138873250900170170331233559878963981265740554242085850004666519990409093995722776030949234155789324339009489525748139024461099282064691553035264621104896677372292662667319081768193187177767155715650753042622340747149601745029968503640980629766599606182032123001898280398652115430760705262695007026774476320700825064845936276290553198255680590994635683733766435585729512653262437101916364275528288059893620089545270548932581832451228461312919798065441662144823660890693691131208683535649042726695579898678169544251383671154100175683335600288175304116934600643240139793792674157950110784283738556652811290038773226897454182790582963818564999038439164657721324594260978248800685741232373373214438545963388878669477443625780878326335217056407 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5db7b2a14e1feab439fc3362c80f81744c36f7d9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d7914e01c4b0bff8c86793449ce733faad930caf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.startssl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.startssl.com/certs/sca.server1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.startssl.com/sca-server1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gregorymonaca.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cloud.gregorymonaca.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gregorymonaca.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.18 (issuerAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.startssl.com/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23223.1.2.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.startssl.com/policy' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0088a0a0531d519624dfe42c3a6fbffadf5134368684e605ab229b3c424be1d3d9e5a438ae4ea5bb349b8f55070fa5dd92f7184193bf34e500934d18636c3b1e0a4f5a7049f480920d22c6dbd9fb3808ab2c4024c98208823d6e95d8fcd20b2651b17dbfd394f935c830c024628692a2e8c260bd49dbdef23dad8feb47405388939e46a2b42642b70a09569a6bad0378f5e1ea539b7a6911c4bad7dd26d88af356e3391a5aed2873fd24ef664915bc15e6affe8a812e12b3a0d86f88aa158f05f9343fad75ad9e85578ab8d729ae135d7f953c1ce4bd79245116187dbd25359d69179593295fb525763d4976ce7a350111ce644e9cc4f8cc738c5efb106ca442bd