letstalkscience.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:29:f5:a1:a4:16:76:15:98:35:e1:b9:8b:5b:7f:64:af:62 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=letstalkscience.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:29:f5:a1:a4:16:76:15:98:35:e1:b9:8b:5b:7f:64:af:62Serial Number (int): 275614934985895485349562227148554542296930
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8a:7d:4f:98:5a:78:66:8f:e3:e6:a6:dd:06:72:66:16:d0:47:fa:0e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): cf:5e:c9:b4:32:6f:1e:4d:fd:13:2b:85:25:93:74:4a:ce:0f:7a:6f
Fingerprint (sha256): 3e:ce:c3:a3:60:91:e7:e8:c8:f0:4d:af:f5:71:ee:38:05:4a:53:9e:cb:f5:f2:7b:6d:6d:d8:4a:4e:f2:00:55
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate letstalkscience.ca
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for letstalkscience.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
letstalkscience.ca
parlonssciences.ca
www.letstalkscience.ca
www.parlonssciences.ca
parlonssciences.ca
www.letstalkscience.ca
www.parlonssciences.ca
Other certificates including the domain name letstalkscience.ca
(limited to 100 certificates)
api.letstalkscience.ca
letstalkscience.ca
portal.simforcanada.com
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
remote.letstalkscience.ca
letstalkscience.ca
pps.explorecuriocity.org
letstalkscience.ca
volunteer.letstalkscience.ca
pre.letstalkscience.ca
pps.explorecuriocity.org
volunteer.letstalkscience.ca
auth.letstalkscience.ca
letstalkscience.ca
letstalkscience.ca
app.letstalkscience.ca
api.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
outreach.letstalkscience.ca
remote.letstalkscience.ca
support.borealdesign.com
staging.letstalkscience.ca
pps.explorecuriocity.org
volunteer.letstalkscience.ca
api.letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
outreach.letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
brightspace.letstalkscience.ca
volunteer.letstalkscience.ca
pps.explorecuriocity.org
volunteer.letstalkscience.ca
*.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
letstalkscience.ca
letstalkscience.ca
helpdesk.workcentral.ng
remote.letstalkscience.ca
dct.letstalkscience.ca
letstalkscience.ca
outreach.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
support.corp.io
letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
*.staging.letstalkscience.ca
*.letstalkscience.ca
volunteer.letstalkscience.ca
pps.explorecuriocity.org
app.letstalkscience.ca
volunteer.letstalkscience.ca
app.letstalkscience.ca
app.letstalkscience.ca
staging.letstalkscience.ca
volunteer.letstalkscience.ca
*.staging.letstalkscience.ca
pps.explorecuriocity.org
letstalkscience.ca
letstalkscience.ca
pps.explorecuriocity.org
outreach.letstalkscience.ca
volunteer.letstalkscience.ca
support.atlasti.com
auth.letstalkscience.ca
auth.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
help.trkall.com
support.letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
letstalkscience.ca
outreach.letstalkscience.ca
*.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
pps.explorecuriocity.org
letstalkscience.ca
portal.simforcanada.com
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
remote.letstalkscience.ca
letstalkscience.ca
pps.explorecuriocity.org
letstalkscience.ca
volunteer.letstalkscience.ca
pre.letstalkscience.ca
pps.explorecuriocity.org
volunteer.letstalkscience.ca
auth.letstalkscience.ca
letstalkscience.ca
letstalkscience.ca
app.letstalkscience.ca
api.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
outreach.letstalkscience.ca
remote.letstalkscience.ca
support.borealdesign.com
staging.letstalkscience.ca
pps.explorecuriocity.org
volunteer.letstalkscience.ca
api.letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
outreach.letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
brightspace.letstalkscience.ca
volunteer.letstalkscience.ca
pps.explorecuriocity.org
volunteer.letstalkscience.ca
*.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
letstalkscience.ca
letstalkscience.ca
helpdesk.workcentral.ng
remote.letstalkscience.ca
dct.letstalkscience.ca
letstalkscience.ca
outreach.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
support.corp.io
letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
*.staging.letstalkscience.ca
*.letstalkscience.ca
volunteer.letstalkscience.ca
pps.explorecuriocity.org
app.letstalkscience.ca
volunteer.letstalkscience.ca
app.letstalkscience.ca
app.letstalkscience.ca
staging.letstalkscience.ca
volunteer.letstalkscience.ca
*.staging.letstalkscience.ca
pps.explorecuriocity.org
letstalkscience.ca
letstalkscience.ca
pps.explorecuriocity.org
outreach.letstalkscience.ca
volunteer.letstalkscience.ca
support.atlasti.com
auth.letstalkscience.ca
auth.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
help.trkall.com
support.letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
volunteer.letstalkscience.ca
letstalkscience.ca
letstalkscience.ca
outreach.letstalkscience.ca
*.letstalkscience.ca
letstalkscience.ca
volunteer.letstalkscience.ca
pps.explorecuriocity.org
Certificate
The complete raw certificate details for letstalkscience.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgISAyn1oaQWdhWYNeG5i1t/ZK9iMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MTIyMTMxNTZaFw0x OTExMTAyMTMxNTZaMB0xGzAZBgNVBAMTEmxldHN0YWxrc2NpZW5jZS5jYTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJmpJYjrdyvF7LIG/eRMbnj8i1sE kPJB9PkV8k7FrkElTtnTmHJGXv9nEiGWO06j14QAJxqj+ILjsv7aGG6fRXr9Dz/N exBMAmaL8RpG2IZYShGs2r0MV81DLiZekeH1aiwLY3ZCFj+Z41ygZ2jGDrTGxbAk 4n+qkaI4GhM+UIRffWWI9yXs0vOqmv9VfM6Mfyse2BU2cbUvirafW18Uv9udIPSI VniPxjtdgmiu51I6F090hDpYkLDGIsCuZUZQJRIORt65VHlPtbax3L6ioXuC92hq yqso3kC8n4iiigpRi2oLZh7ruaxboiQg8PNbOXdxIODWEjJnineKF25W4WUCAwEA AaOCAqwwggKoMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUin1PmFp4Zo/j5qbdBnJm FtBH+g4wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzBhBgNVHREEWjBYghJsZXRzdGFsa3NjaWVuY2UuY2GCEnBhcmxvbnNz Y2llbmNlcy5jYYIWd3d3LmxldHN0YWxrc2NpZW5jZS5jYYIWd3d3LnBhcmxvbnNz Y2llbmNlcy5jYTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAo MCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisG AQQB1nkCBAIEgfYEgfMA8QB3AOJpS64m6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d 8dv+AAABbIf1ns0AAAQDAEgwRgIhAJx0WMVLFsTUGvBrh4tx5CjxfQJ5t30DsiF6 SgCjoikmAiEApVIJNTib9XZZS0DLHemRVfVMksbe32xOwgotjbCnmjEAdgBj8tvN 6DvMLM8LcoQnV2szpI1hd4+9daY4scdoVEvYjQAAAWyH9Z7sAAAEAwBHMEUCIQD3 FkRSKHkNlWtfZQwYdgO11c5k9PkIQ9B+HXOtCeUZSgIgZUMmot5hvuoGmAlFYcmY eRNYoIi4DLpo70mrHLx4a94wDQYJKoZIhvcNAQELBQADggEBAIz2BVtEO5B8M4Bf 3ef6fui9Z/VNuJgHrsDmGmKSmi7dVO5Ihm2nLNMMcHEcoBVMWoX0dLWSZNt++AUs CKTy6nvloatoZfyBaDPhDJ6kQZLoJJyGSZ+09rQhJCRGeWikBL8+X9ul8/CbXkNw VN008akDcNprR4P+/jImN+yguJqtUjzL+HJQO+fByhwZaauJm3Sh8JqTlddct58U +KEiFdYsfbfK9jfwpd2rXBy5v2U+2q6uLeBt6b8lLXZBdliTVhf5FmQ+823i6yB2 DI/D+y5t1FWmFxee2Ssf391F9gOZasIUwru6XFFHbzgwrbBhlLAGegYY7zecouG4 W5Roilk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmakliOt3K8Xssgb95Exu ePyLWwSQ8kH0+RXyTsWuQSVO2dOYckZe/2cSIZY7TqPXhAAnGqP4guOy/toYbp9F ev0PP817EEwCZovxGkbYhlhKEazavQxXzUMuJl6R4fVqLAtjdkIWP5njXKBnaMYO tMbFsCTif6qRojgaEz5QhF99ZYj3JezS86qa/1V8zox/Kx7YFTZxtS+Ktp9bXxS/ 250g9IhWeI/GO12CaK7nUjoXT3SEOliQsMYiwK5lRlAlEg5G3rlUeU+1trHcvqKh e4L3aGrKqyjeQLyfiKKKClGLagtmHuu5rFuiJCDw81s5d3Eg4NYSMmeKd4oXblbh ZQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 275614934985895485349562227148554542296930 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-12 21:31:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-10 21:31:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'letstalkscience.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19397869967073185764419523522268505400354516363825991396467097694053800727325074674151117166405873367678103661891355751055935022435062846871180175439765652271473147480780502034380048797023357964198786134792576333184086752434607094734463103859856996471523916427616910553367000806129228172727838304469773327393027614876797179042749596617732062812473524928161800273210379490143235356196726420397405445073130974910990676938173721344307822272661462722151133265936629572007319964263787519811108858360631918457838317315493831996045282097113358660040863378460682590476278908064994026169386299435054492304562763149951790145893 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8a7d4f985a78668fe3e6a6dd06726616d047fa0e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'letstalkscience.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parlonssciences.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.letstalkscience.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.parlonssciences.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c87f59ecd00000403004830460221009c7458c54b16c4d41af06b878b71e428f17d0279b77d03b2217a4a00a3a22926022100a5520935389bf576594b40cb1de99155f54c92c6dedf6c4ec20a2d8db0a79a3100760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c87f59eec0000040300473045022100f716445228790d956b5f650c187603b5d5ce64f4f90843d07e1d73ad09e5194a0220654326a2de61beea0698094561c998791358a088b80cba68ef49ab1cbc786bde . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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