onvista.de.onvista.com
Issued by R3
About this certificate
This digital certificate with serial number 04:cf:2d:b3:da:d6:66:88:dc:ee:bf:59:ec:2d:02:91:b3:bd was issued on by Let's Encrypt.
With 15 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=onvista.de.onvista.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:cf:2d:b3:da:d6:66:88:dc:ee:bf:59:ec:2d:02:91:b3:bdSerial Number (int): 418948342799175100774195025109436140204989
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 18:8d:b4:db:de:b7:37:75:ec:b6:80:89:8b:29:04:dc:dc:9e:44:bd
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 78:59:ee:19:e1:3e:4b:91:4b:d3:2a:0d:a4:15:d4:c4:38:75:15:ef
Fingerprint (sha256): 3a:e1:d0:1e:1e:6f:b7:48:d4:17:54:8a:5f:69:4a:d8:d0:b9:5d:e3:01:cf:4d:57:6b:6b:f7:c1:e3:c2:6e:87
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate onvista.de.onvista.com
15
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for onvista.de.onvista.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
derstandard-spat.derstandard.at
derstandard-spde.derstandard.de
messaging.carzone.ie
mmsstage.blick.ch
ngin-mobility-de.ngin-mobility.com
onvista.de.onvista.com
prod-digitalspyuk.digitalspy.com
ressource1.med1.de
ressource1.netdoktor.de
serengo-net.serengo.net
source.cuisineactuelle.fr
source.femmeactuelle.fr
sourcepoint.sueddeutsche.de
src.gala.fr
src.voici.fr
derstandard-spde.derstandard.de
messaging.carzone.ie
mmsstage.blick.ch
ngin-mobility-de.ngin-mobility.com
onvista.de.onvista.com
prod-digitalspyuk.digitalspy.com
ressource1.med1.de
ressource1.netdoktor.de
serengo-net.serengo.net
source.cuisineactuelle.fr
source.femmeactuelle.fr
sourcepoint.sueddeutsche.de
src.gala.fr
src.voici.fr
Other certificates including the domain name onvista.com
(limited to 100 certificates)
derstandard-spat.derstandard.at
onvista.com
derstandard-spat.derstandard.at
derstandard-spat.derstandard.at
source.cuisineactuelle.fr
onvista.de.onvista.com
www.onvista.com
derstandard-spat.derstandard.at
onvista.de.onvista.com
onvista.com
derstandard-spat.derstandard.at
derstandard-spat.derstandard.at
onvista.de.onvista.com
onvista.de.onvista.com
news-assets.onvista.com
onvista.com
onvista.com
images.onvista.com
newsimages.onvista.com
images.onvista.com
test-newsimages.onvista.com
images.onvista.com
onvista.com
onvista.com
derstandard-spat.derstandard.at
onvista.com
derstandard-spat.derstandard.at
test-images.onvista.com
derstandard-spat.derstandard.at
onvista.de.onvista.com
onvista.de.onvista.com
onvista.de.onvista.com
onvista.com
derstandard-spat.derstandard.at
www.onvista.com
derstandard-spat.derstandard.at
onvista.com
derstandard-spat.derstandard.at
derstandard-spat.derstandard.at
source.cuisineactuelle.fr
onvista.de.onvista.com
www.onvista.com
derstandard-spat.derstandard.at
onvista.de.onvista.com
onvista.com
derstandard-spat.derstandard.at
derstandard-spat.derstandard.at
onvista.de.onvista.com
onvista.de.onvista.com
news-assets.onvista.com
onvista.com
onvista.com
images.onvista.com
newsimages.onvista.com
images.onvista.com
test-newsimages.onvista.com
images.onvista.com
onvista.com
onvista.com
derstandard-spat.derstandard.at
onvista.com
derstandard-spat.derstandard.at
test-images.onvista.com
derstandard-spat.derstandard.at
onvista.de.onvista.com
onvista.de.onvista.com
onvista.de.onvista.com
onvista.com
derstandard-spat.derstandard.at
www.onvista.com
derstandard-spat.derstandard.at
Certificate
The complete raw certificate details for onvista.de.onvista.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGnDCCBYSgAwIBAgISBM8ts9rWZojc7r9Z7C0CkbO9MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMDEyMjMxNzA0MjFaFw0yMTAzMjMxNzA0MjFaMCExHzAdBgNVBAMT Fm9udmlzdGEuZGUub252aXN0YS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDKccHTPkF22TVP2Cvhgn/40VFYRfSlI13DKC7kLW+Y0gGBs0oi7jAD BEZ5airTGMsUEphm/2KM1/jJUTG8bq2w3NyHR96D7qF9569S/QFXW5Cdip7ZLiUY Zc7xSauAbJL/XHtMpS7nwPgtjhPBLU8+IqfPDsACbjGF2tTLL8vH9nrYGuCZTPr3 3oX3PxPQyUN5R7ZKUqnv/hTJ+Sot0Tm3SWP3ZhdxqQLSzPMRSPWuEWi7piJn6LAq UdzVo6lfFs+2IWrOoBe8eLc7llWTksgoG5o+aLN95Sbq5qNCazkzq+B/v5gUO2iJ ouD5Amz9C+PmsJJQYBFJ54u0T5uwTwxjAgMBAAGjggO7MIIDtzAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQC MAAwHQYDVR0OBBYEFBiNtNvetzd17LaAiYspBNzcnkS9MB8GA1UdIwQYMBaAFBQu sxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYV aHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5s ZW5jci5vcmcvMIIBiAYDVR0RBIIBfzCCAXuCH2RlcnN0YW5kYXJkLXNwYXQuZGVy c3RhbmRhcmQuYXSCH2RlcnN0YW5kYXJkLXNwZGUuZGVyc3RhbmRhcmQuZGWCFG1l c3NhZ2luZy5jYXJ6b25lLmllghFtbXNzdGFnZS5ibGljay5jaIIibmdpbi1tb2Jp bGl0eS1kZS5uZ2luLW1vYmlsaXR5LmNvbYIWb252aXN0YS5kZS5vbnZpc3RhLmNv bYIgcHJvZC1kaWdpdGFsc3B5dWsuZGlnaXRhbHNweS5jb22CEnJlc3NvdXJjZTEu bWVkMS5kZYIXcmVzc291cmNlMS5uZXRkb2t0b3IuZGWCF3NlcmVuZ28tbmV0LnNl cmVuZ28ubmV0ghlzb3VyY2UuY3Vpc2luZWFjdHVlbGxlLmZyghdzb3VyY2UuZmVt bWVhY3R1ZWxsZS5mcoIbc291cmNlcG9pbnQuc3VlZGRldXRzY2hlLmRlggtzcmMu Z2FsYS5mcoIMc3JjLnZvaWNpLmZyMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysG AQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQu b3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYAlCC8Ho7VjWyIcx+CiyIsDdHa TV5sT5Q9YdtOL1hNosIAAAF2kMX2MAAABAMARzBFAiA2a5bR14mfwOaxB4Ai5h3v 7b0zx1diBHBseG+W28nO1AIhALlRv5ENaeJKA5oXJUj555iTuNAIe0ik6qC8P5n7 2pMTAHcAfT7y+I//iFVoJMLAyp5SiXkrxQ54CX8uapdomX4i8NcAAAF2kMX2VwAA BAMASDBGAiEA+/6gtzZ4wcTD0cPtbQDRszFe180VJTSVY5EUEn+n+6gCIQCkZgux 0s+QLRUFR0KgE+mcTOe9xPufOdPJ3K+tLJNd7TANBgkqhkiG9w0BAQsFAAOCAQEA Y3p7/kkb+MO7hRuJ5FsRqhZxLoAjm/Dx6M6sOeVOWzb2+LquZAq5uiqpjmUDlsNY NIc4rNiHoVV2Yo/V+GVD4ty82ZYo4BpNrRt+5NVm2eong1RbDNlLMrTpl887Zo89 uz6YfW1LkdriwOU9RnP6ocTiTIqZLOIiftAHbP5lH0X8ZSdkQHKk12b4SZIjRJ8E tbXRnHI1eXiajosRgTexW4xGOaF2QAcPTbvz2koA0oZAm0GNfXbqfzEHmu5DA1vE seNI+WC0o79m8wz1aPkovOtakWQJdq133ga0/FnowBAyDg7KUh4MIr5GapzrLl6J /zCPJT7rv04JjIJYkgq3Jg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynHB0z5Bdtk1T9gr4YJ/ +NFRWEX0pSNdwygu5C1vmNIBgbNKIu4wAwRGeWoq0xjLFBKYZv9ijNf4yVExvG6t sNzch0feg+6hfeevUv0BV1uQnYqe2S4lGGXO8UmrgGyS/1x7TKUu58D4LY4TwS1P PiKnzw7AAm4xhdrUyy/Lx/Z62BrgmUz6996F9z8T0MlDeUe2SlKp7/4UyfkqLdE5 t0lj92YXcakC0szzEUj1rhFou6YiZ+iwKlHc1aOpXxbPtiFqzqAXvHi3O5ZVk5LI KBuaPmizfeUm6uajQms5M6vgf7+YFDtoiaLg+QJs/Qvj5rCSUGARSeeLtE+bsE8M YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 418948342799175100774195025109436140204989 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-12-23 17:04:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-23 17:04:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'onvista.de.onvista.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25556233334448990017611229995155081198236518870484869515996527426480982156825640551111035601095013528324501130639537477041647600126689678215733094213048671026805980145362197432587020612377209928815526835156562989013751980174343472058195827765498524283480823990841448247482306275194114031737710313454550510969259868453859010967384239322034952309025716879255494608046528324883619324929089367401293757564883226353686211712568999737272754780124008712617969633380519853672540153587858403443640506832547098350556574349683911928164591106551405032596374495070722514948322601341977991016336291093555144136657309479812943776867 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 188db4dbdeb73775ecb680898b2904dcdc9e44bd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (383 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'derstandard-spat.derstandard.at' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'derstandard-spde.derstandard.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'messaging.carzone.ie' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mmsstage.blick.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngin-mobility-de.ngin-mobility.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onvista.de.onvista.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prod-digitalspyuk.digitalspy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ressource1.med1.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ressource1.netdoktor.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'serengo-net.serengo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'source.cuisineactuelle.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'source.femmeactuelle.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sourcepoint.sueddeutsche.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'src.gala.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'src.voici.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076009420bc1e8ed58d6c88731f828b222c0dd1da4d5e6c4f943d61db4e2f584da2c20000017690c5f63000000403004730450220366b96d1d7899fc0e6b1078022e61defedbd33c7576204706c786f96dbc9ced4022100b951bf910d69e24a039a172548f9e79893b8d0087b48a4eaa0bc3f99fbda93130077007d3ef2f88fff88556824c2c0ca9e5289792bc50e78097f2e6a9768997e22f0d70000017690c5f6570000040300483046022100fbfea0b73678c1c4c3d1c3ed6d00d1b3315ed7cd15253495639114127fa7fba8022100a4660bb1d2cf902d15054742a013e99c4ce7bdc4fb9f39d3c9dcafad2c935ded . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00637a7bfe491bf8c3bb851b89e45b11aa16712e80239bf0f1e8ceac39e54e5b36f6f8baae640ab9ba2aa98e650396c358348738acd887a15576628fd5f86543e2dcbcd99628e01a4dad1b7ee4d566d9ea2783545b0cd94b32b4e997cf3b668f3dbb3e987d6d4b91dae2c0e53d4673faa1c4e24c8a992ce2227ed0076cfe651f45fc6527644072a4d766f8499223449f04b5b5d19c723579789a8e8b118137b15b8c4639a17640070f4dbbf3da4a00d286409b418d7d76ea7f31079aee43035bc4b1e348f960b4a3bf66f30cf568f928bceb5a91640976ad77de06b4fc59e8c010320e0eca521e0c22be466a9ceb2e5e89ff308f253eebbf4e098c8258920ab726