unizdrav.sk
Issued by R3
About this certificate
This digital certificate with serial number 04:49:e8:57:16:40:c8:b2:67:c9:ac:4b:38:91:74:99:51:11 was issued on by Let's Encrypt.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=unizdrav.sk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:49:e8:57:16:40:c8:b2:67:c9:ac:4b:38:91:74:99:51:11Serial Number (int): 373598589588464013793973095467764036489489
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: df:05:5d:5d:96:e7:79:c6:45:3e:97:a3:68:93:42:c5:f2:7b:7e:7e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 4d:78:7d:c6:95:a2:a7:ed:28:82:a1:88:e2:63:02:a2:92:03:6b:23
Fingerprint (sha256): 41:f0:bf:94:1a:a0:33:d7:d3:3d:dc:cd:8e:78:80:65:98:88:c3:d9:52:93:e4:f0:a1:93:09:db:7f:72:44:14
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate unizdrav.sk
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for unizdrav.sk
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
autoconfig.unizdrav.sk
cloud.unizdrav.sk
email.unizdrav.sk
emailcom.unizdrav.sk
emailcz.unizdrav.sk
emailhu.unizdrav.sk
git.unizdrav.sk
mobile.unizdrav.sk
repasmont.unizdrav.sk
unizdrav.sk
webmail.unizdrav.sk
www.unizdrav.sk
cloud.unizdrav.sk
email.unizdrav.sk
emailcom.unizdrav.sk
emailcz.unizdrav.sk
emailhu.unizdrav.sk
git.unizdrav.sk
mobile.unizdrav.sk
repasmont.unizdrav.sk
unizdrav.sk
webmail.unizdrav.sk
www.unizdrav.sk
Other certificates including the domain name unizdrav.sk
(limited to 100 certificates)
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
unizdrav.sk
app.unizdrav.sk
app.unizdrav.sk
unizdrav.sk
unizdrav.sk
Certificate
The complete raw certificate details for unizdrav.sk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGxTCCBa2gAwIBAgISBEnoVxZAyLJnyaxLOJF0mVERMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjkwODE3MDJaFw0yMzEyMjgwODE3MDFaMBYxFDASBgNVBAMT C3VuaXpkcmF2LnNrMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqGUF mkvjf22BbNzVtvKWz9P1l08YAXpY5gN69l7dadyKezwQif3a9q3q55TsCqLM4vBf 1qoOHsXOo5dUZkUI/x/u3O4TOQfp1SUaePolHcT0pr73oMZTR1zmWieTuq2E0SX2 e5UV9bscAOi6UpMAN19mhQfGKkKXONp4Gj+sj4qoJIh2UVRNSxLjDb276TJ8KVm6 oU3RmYVImf4XEBOuHXoTJ2rswNvgo/Lht7ci1R0QmsStIkENTf1H3kkkQShl7+ZY OS7+IeRkUTLGNOoxwdA74bhQTdRwrZpLcrXnPgB84fr0Ag5eswrtwzrcbXh6Cdie zZQni/N7OotlvRujEJtzNHjmOwYzXCyVFbpynD0DQ90AJvVL2gyY9X2cucsGOvjs JeLmeiuIF9oG9XCuDZrWqB5xvTVDTHaZ1dYtXtVVAzN+5BJCtpID8Jhn5H9uHfeY hSwESyIMrQGeb3mRjCLn/hCBDoZfz2xsg++WqeGRi/I/QjL8uZuXUks41XEN+8rr 7t0wrJiOdnOAqLrwR/fdbF2RKfZr8q4FTbDfSV9Gzr1mRDrmDKn+QzYqkvs/ATcV pEeXMHgJZs9GzNf5rb8Ixum/cJmxcj0rsf0K4Aof8Ua4A1N/qpn63aQfwu1p2WIK nMQuYwnrbP+vU7CxBgIyKZSQD6WOQL3Q3sK2lacCAwEAAaOCAu8wggLrMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQU3wVdXZbnecZFPpejaJNCxfJ7fn4wHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wgfgGA1UdEQSB8DCB7YIWYXV0b2NvbmZpZy51bml6ZHJh di5za4IRY2xvdWQudW5pemRyYXYuc2uCEWVtYWlsLnVuaXpkcmF2LnNrghRlbWFp bGNvbS51bml6ZHJhdi5za4ITZW1haWxjei51bml6ZHJhdi5za4ITZW1haWxodS51 bml6ZHJhdi5za4IPZ2l0LnVuaXpkcmF2LnNrghJtb2JpbGUudW5pemRyYXYuc2uC FXJlcGFzbW9udC51bml6ZHJhdi5za4ILdW5pemRyYXYuc2uCE3dlYm1haWwudW5p emRyYXYuc2uCD3d3dy51bml6ZHJhdi5zazATBgNVHSAEDDAKMAgGBmeBDAECATCC AQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1ALc++yTfnE26dfI5xbpY9Gxd/ELPep81 xJ4dCYEl7bSZAAABiuA6KpoAAAQDAEYwRAIgGAFmtd6sVIw8sLIwr+iam+s+D2Ad zz/FrC/XAy6tISkCIGxsxljaH3RUMXyHbeZk+L681pJpLycpGWlOLg0mMevTAHYA ejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGK4DoqpQAABAMARzBF AiEA1oKQpS3Y2T7mgN+RFi/+lLQ+8wvsdvGP653vhhVRTiUCIHzV8l8wcxLffIFp k/al4W2NNfI77bVDMEvijBZxsxrxMA0GCSqGSIb3DQEBCwUAA4IBAQCm2OjEJTVr 7MfKuQ/7F9fsGPQ9mpAwwXNlUzDlg6gIlRcbKGEMXIdTi0hs6DqkTKYo2GqK3Umx Fj8ZeBcuPA/9MDAYNK0jJc60+dH+c3XPAEsd1oypji9VDKFvaj7ON6/8oxpvsPAh Bde6uMlAre2mo6lwlERVdqcD8jh0dSJ1tnt1I7+uUpWT6SCr64CCuxBsKfSkfrtc gXbbNwlATAn5zXE733TFLIPcrzrT08hZzTcb02iexdY57uGjVxUbmYImm87bkOzU S3Fofp81hqro17pdXWDIXJUu/tBaps5tjHOkrQVtpX7mTvIL1nUzKDptudydOHvr umFz/+VCwD+a -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqGUFmkvjf22BbNzVtvKW z9P1l08YAXpY5gN69l7dadyKezwQif3a9q3q55TsCqLM4vBf1qoOHsXOo5dUZkUI /x/u3O4TOQfp1SUaePolHcT0pr73oMZTR1zmWieTuq2E0SX2e5UV9bscAOi6UpMA N19mhQfGKkKXONp4Gj+sj4qoJIh2UVRNSxLjDb276TJ8KVm6oU3RmYVImf4XEBOu HXoTJ2rswNvgo/Lht7ci1R0QmsStIkENTf1H3kkkQShl7+ZYOS7+IeRkUTLGNOox wdA74bhQTdRwrZpLcrXnPgB84fr0Ag5eswrtwzrcbXh6CdiezZQni/N7OotlvRuj EJtzNHjmOwYzXCyVFbpynD0DQ90AJvVL2gyY9X2cucsGOvjsJeLmeiuIF9oG9XCu DZrWqB5xvTVDTHaZ1dYtXtVVAzN+5BJCtpID8Jhn5H9uHfeYhSwESyIMrQGeb3mR jCLn/hCBDoZfz2xsg++WqeGRi/I/QjL8uZuXUks41XEN+8rr7t0wrJiOdnOAqLrw R/fdbF2RKfZr8q4FTbDfSV9Gzr1mRDrmDKn+QzYqkvs/ATcVpEeXMHgJZs9GzNf5 rb8Ixum/cJmxcj0rsf0K4Aof8Ua4A1N/qpn63aQfwu1p2WIKnMQuYwnrbP+vU7Cx BgIyKZSQD6WOQL3Q3sK2lacCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 373598589588464013793973095467764036489489 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-29 08:17:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-28 08:17:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'unizdrav.sk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 686990099272841155434185663764207922515016133014707802579575960517967759256444049485138175380686651798144483396923649679983619604479410434515417587529289211779941323685137742853651179819524822644757868819937044323777255063041830145538958742257000193414260083734585550271726526141269992219019269608092684474256614968748120046115437380298221900730635511663958883714787722945685354418277174956091941978953647427297838120960833247238323375449093640960001104592885406638726016316439249377734104470562806332604010951755255036770620818639581577946673627188141557779547572400996301897657637647699352588879666795274921860606358038192709922584478801620662348385661662711713384280622649404933007813897223550734856762477005141439988253399801791358519788190387168112713874664517904869778567223861592557845663360495036644885355615926526880075059406734310633302603905729625239027992461326629165912002337464301026834322050144062943305133064645538657892795486813504857263239893077989245620580540775461294748616044772388419345408593171665215648951350373663148753736547764756790354108771295099621263942124506561567199872689238598191183793424146494714209690017494225982956701576501596066425465838975137360853895920468703678658644937777997866085784130983 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) df055d5d96e779c6453e97a3689342c5f27b7e7e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autoconfig.unizdrav.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cloud.unizdrav.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'email.unizdrav.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'emailcom.unizdrav.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'emailcz.unizdrav.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'emailhu.unizdrav.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'git.unizdrav.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mobile.unizdrav.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'repasmont.unizdrav.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'unizdrav.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.unizdrav.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.unizdrav.sk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018ae03a2a9a00000403004630440220180166b5deac548c3cb0b230afe89a9beb3e0f601dcf3fc5ac2fd7032ead212902206c6cc658da1f7454317c876de664f8bebcd692692f272919694e2e0d2631ebd30076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018ae03a2aa50000040300473045022100d68290a52dd8d93ee680df91162ffe94b43ef30bec76f18feb9def8615514e2502207cd5f25f307312df7c816993f6a5e16d8d35f23bedb543304be28c1671b31af1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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