muzeum3000.nm.cz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:ac:b2:d9:6d:3a:59:6d:6b:69:80:1e:42:d9:85:8b:e7:a5 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=muzeum3000.nm.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ac:b2:d9:6d:3a:59:6d:6b:69:80:1e:42:d9:85:8b:e7:a5Serial Number (int): 320103156432755729408431598941247661402021
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3b:2e:91:1a:ea:7d:a2:e2:b1:e5:72:e9:a1:b8:8c:0e:3f:a6:ba:71
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 7d:92:e6:cf:e3:38:a9:31:a9:c0:b8:34:ea:2f:b5:0e:4c:cf:cf:a5
Fingerprint (sha256): 3a:dc:d9:2b:e7:a7:24:3f:07:ed:78:d4:1d:3d:6b:8c:a0:79:6d:a6:e4:36:29:6e:79:ab:18:c8:10:93:11:68
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate muzeum3000.nm.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for muzeum3000.nm.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
muzeum3000.nm.cz
muzeum3000.nm.cz.virtus16.fmm.cz
muzeum3000.nm.cz.virtus16.fmm.cz
Other certificates including the domain name nm.cz
(limited to 100 certificates)
nm.opac.nm.cz
mbssceny.opac.nm.cz
rezervace.benesovavila.nm.cz
kanesh.nm.cz
kanesh.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
vademecum.nm.cz
intro.nm.cz
nm.opac.nm.cz
vavobd.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
kanesh.nm.cz
nm.cz
stt.opac.nm.cz
npm.opac.nm.cz
nm.cz
npm.opac.nm.cz
prazskestopyantoninadvoraka.nm.cz
kanesh.nm.cz
sumerian.nm.cz
nm.cz
cmhdok.opac.nm.cz
posta.nm.cz
antonindvorak.nm.cz
kanesh.nm.cz
amusing.nm.cz
publikace.nm.cz
nm.cz
botanika.opac.nm.cz
android-app.nm.cz
amusing.nm.cz
intro.nm.cz
mbssceny.opac.nm.cz
entomologie.opac.nm.cz
oncd.opac.nm.cz
kanesh.nm.cz
kerio.nm.cz
edukace.benesovavila.nm.cz
grepo.nm.cz
mbs.opac.nm.cz
botanika.opac.nm.cz
publikace.nm.cz
botanika.opac.nm.cz
cmh.opac.nm.cz
nm.cz
*.opac.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
intro.nm.cz
helpdesk.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
csds.opac.nm.cz
eshop.nm.cz
posta.nm.cz
odtvs.opac.nm.cz
antonindvorak.nm.cz
stt.opac.nm.cz
odtvs.opac.nm.cz
zbraslav.opac.nm.cz
odtvs.opac.nm.cz
bedrichsmetana.nm.cz
rad.nm.cz
*.opac.nm.cz
navigation-app.nm.cz
mad.opac.nm.cz
no.opac.nm.cz
t.mailkit.com
no.opac.nm.cz
admin.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
ms.nm.cz
kanesh.nm.cz
amusing.nm.cz
mad.opac.nm.cz
npm.opac.nm.cz
antonindvorak.nm.cz
onedrive.nm.cz
p.pozvanky.nm.cz
intro.nm.cz
helpdesk.nm.cz
rezervace.pamatnikpalackeho.nm.cz
t.mailkit.com
prazskestopyantoninadvoraka.nm.cz
amusing.nm.cz
intro.nm.cz
t.mailkit.com
oncd.opac.nm.cz
ms.nm.cz
rd-gw.nm.cz
onedrive.nm.cz
mbs.opac.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
muzeum3000.nm.cz
oncd.opac.nm.cz
helpdesk.nm.cz
mbssceny.opac.nm.cz
rezervace.benesovavila.nm.cz
kanesh.nm.cz
kanesh.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
vademecum.nm.cz
intro.nm.cz
nm.opac.nm.cz
vavobd.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
kanesh.nm.cz
nm.cz
stt.opac.nm.cz
npm.opac.nm.cz
nm.cz
npm.opac.nm.cz
prazskestopyantoninadvoraka.nm.cz
kanesh.nm.cz
sumerian.nm.cz
nm.cz
cmhdok.opac.nm.cz
posta.nm.cz
antonindvorak.nm.cz
kanesh.nm.cz
amusing.nm.cz
publikace.nm.cz
nm.cz
botanika.opac.nm.cz
android-app.nm.cz
amusing.nm.cz
intro.nm.cz
mbssceny.opac.nm.cz
entomologie.opac.nm.cz
oncd.opac.nm.cz
kanesh.nm.cz
kerio.nm.cz
edukace.benesovavila.nm.cz
grepo.nm.cz
mbs.opac.nm.cz
botanika.opac.nm.cz
publikace.nm.cz
botanika.opac.nm.cz
cmh.opac.nm.cz
nm.cz
*.opac.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
intro.nm.cz
helpdesk.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
csds.opac.nm.cz
eshop.nm.cz
posta.nm.cz
odtvs.opac.nm.cz
antonindvorak.nm.cz
stt.opac.nm.cz
odtvs.opac.nm.cz
zbraslav.opac.nm.cz
odtvs.opac.nm.cz
bedrichsmetana.nm.cz
rad.nm.cz
*.opac.nm.cz
navigation-app.nm.cz
mad.opac.nm.cz
no.opac.nm.cz
t.mailkit.com
no.opac.nm.cz
admin.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
ms.nm.cz
kanesh.nm.cz
amusing.nm.cz
mad.opac.nm.cz
npm.opac.nm.cz
antonindvorak.nm.cz
onedrive.nm.cz
p.pozvanky.nm.cz
intro.nm.cz
helpdesk.nm.cz
rezervace.pamatnikpalackeho.nm.cz
t.mailkit.com
prazskestopyantoninadvoraka.nm.cz
amusing.nm.cz
intro.nm.cz
t.mailkit.com
oncd.opac.nm.cz
ms.nm.cz
rd-gw.nm.cz
onedrive.nm.cz
mbs.opac.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
muzeum3000.nm.cz
oncd.opac.nm.cz
helpdesk.nm.cz
Certificate
The complete raw certificate details for muzeum3000.nm.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgISA6yy2W06WW1raYAeQtmFi+elMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDA0MDEwOTM1NThaFw0y MDA2MzAwOTM1NThaMBsxGTAXBgNVBAMTEG11emV1bTMwMDAubm0uY3owggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJs9n8DZdTXIF5QuZezhJ4ogDK/5wu gzcPRSbbyUHd5BOyTQPNJLbrjCMuopfaNAUapqt0swDH6l9fyKenZNv+558IL5YK jkQyksYNmDER560md4pcgdhImqLxmNlatw7NRATWS2HjuhH4v5lTaWVaqJtdvoMN y9Oyu+OjL+2AFRmxcwZmpdlZoJXAhl0fAw5CLp84x5LGpiYcfOoTw2zbnCFjeHkS MAN1jEtg66IS5AEZca8RjKO+gT6K9bByiCwMFn/60I1PEKmVJDmGWfSeQSGxXnA0 olKPr4FX3wUdwJO8nx7hMdmqqDOAsLA4qOiON6+BqPjKXU1/qfqjlwt/AgMBAAGj ggKHMIICgzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFDsukRrqfaLiseVy6aG4jA4/ prpxMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEB BGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZy8wPQYDVR0RBDYwNIIQbXV6ZXVtMzAwMC5ubS5jeoIgbXV6ZXVtMzAwMC5u bS5jei52aXJ0dXMxNi5mbW0uY3owTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYB BAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5v cmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdQBep3P531bA57U2SH3QSeAyepGa DIShEhKEGHWWgXFFWAAAAXE1T9r4AAAEAwBGMEQCIHIhnl1dsQcyH/mRktTS8oEN Hg0CJhoDXW1mVCfBBD0hAiBKeUJbw/F52RhF4D4MGmpIjKTWfqFGtXhU8YLnZfSQ 4wB3AAe3XBvlfWj/8bDGHSMVx7rmV3xXlLdq7rxhOhpp06IcAAABcTVP3RwAAAQD AEgwRgIhAMMRDmOklV32tlfq7zlSpvNlkuTsNRdYLMyzqqVI2ozYAiEAjOajPTxb GxCPNtVklgHcV3fJjI5Sy/ShDm8+yvD4lTswDQYJKoZIhvcNAQELBQADggEBAGXY GkgNufy/TG/WQ/DOkdxUpxpdcj2MPiP9l5L9bIfyp/A3uQgo3t6JVuXo/6Uxi5rO cMYGzD+Ynf9sDbagkNNpka/N8wbEocUnR4mJNhtaCZadBpamHXCr3w0C+ZsYeCKW GnynkimHVv3NLCYXbLhVFRvDThajQ2DTQ5kbFHh/P/MnquuNM4UsiOSl44a+T45Z 5hQBpYfZFzkYYQvvX9yamTQp9WXtypi083nct4dxifLmiNfqQt6hHeffairefZat z9dNBwrPgMUvmO5zheIerxIu25cDMiB4EBQsiSE4uUSSibrBVH/4A7A0nxyUGcII Wx+p9OQZXy3V91EtHts= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAibPZ/A2XU1yBeULmXs4S eKIAyv+cLoM3D0Um28lB3eQTsk0DzSS264wjLqKX2jQFGqardLMAx+pfX8inp2Tb /uefCC+WCo5EMpLGDZgxEeetJneKXIHYSJqi8ZjZWrcOzUQE1kth47oR+L+ZU2ll WqibXb6DDcvTsrvjoy/tgBUZsXMGZqXZWaCVwIZdHwMOQi6fOMeSxqYmHHzqE8Ns 25whY3h5EjADdYxLYOuiEuQBGXGvEYyjvoE+ivWwcogsDBZ/+tCNTxCplSQ5hln0 nkEhsV5wNKJSj6+BV98FHcCTvJ8e4THZqqgzgLCwOKjojjevgaj4yl1Nf6n6o5cL fwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 320103156432755729408431598941247661402021 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-01 09:35:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-30 09:35:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'muzeum3000.nm.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17383335861571856760735581080130979914367917487530625286684894266581156602944383166679867119802606624512526817359126072789016484745764378303648443555095975867913862218497690665494954377906291350548870194473575494457218184272489832916435143227288273319937803629158309958890841363273121798984425424626936291381027164829284903014983893783676835403648596481433801104461669958452054948971929568024636846593665996883266223837672832555154331036060202230845465073845538124513904264236327119240899451804880967351586490433492585789425814666532962507161468751462077911596755804701507774924079938347415694233941471167659453647743 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3b2e911aea7da2e2b1e572e9a1b88c0e3fa6ba71 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'muzeum3000.nm.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'muzeum3000.nm.cz.virtus16.fmm.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00075005ea773f9df56c0e7b536487dd049e0327a919a0c84a11212841875968171455800000171354fdaf80000040300463044022072219e5d5db107321ff99192d4d2f2810d1e0d02261a035d6d665427c1043d2102204a79425bc3f179d91845e03e0c1a6a488ca4d67ea146b57854f182e765f490e300770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c00000171354fdd1c0000040300483046022100c3110e63a4955df6b657eaef3952a6f36592e4ec3517582cccb3aaa548da8cd80221008ce6a33d3c5b1b108f36d5649601dc5777c98c8e52cbf4a10e6f3ecaf0f8953b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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