staging.my.tikktalk.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:9b:bb:b0:5e:69:06:07:3f:fc:a2:79:e9:53:10:34:4d:2d was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=staging.my.tikktalk.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9b:bb:b0:5e:69:06:07:3f:fc:a2:79:e9:53:10:34:4d:2dSerial Number (int): 314330106062352408656554212190940478852397
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a4:40:f9:dd:f5:1e:f5:75:aa:23:04:2a:1f:f2:6e:3c:34:b0:c2:7b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 80:ec:3a:3d:73:3b:1b:91:8f:83:f1:28:18:fa:51:fa:0d:30:a4:97
Fingerprint (sha256): 44:32:56:d9:a0:25:79:99:ed:4f:bd:dd:36:eb:5a:84:d9:ff:b5:ca:a6:ac:ea:de:d0:f7:8b:7d:ca:39:89:e9
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate staging.my.tikktalk.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for staging.my.tikktalk.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
staging.my.tikktalk.com
Other certificates including the domain name tikktalk.com
(limited to 100 certificates)
www.tikktalk.com
ws.tikktalk.com
dev.my.tikktalk.com
links.crisp.tikktalk.com
www.tikktalk.com
dev.my.tikktalk.com
www.tikktalk.com
staging.my.tikktalk.com
dev.my.tikktalk.com
qa.core.tikktalk.com
staging.www.tikktalk.com
live.my.tikktalk.com
qa.push.tikktalk.com
dev.my.tikktalk.com
qa.desktop.tikktalk.com
rc.push.tikktalk.com
tikktalk.com
support.tikktalk.com
staging.www.tikktalk.com
tikktalk.com
staging.www.tikktalk.com
tikktalk.com
qa.core.tikktalk.com
rc.core.tikktalk.com
staging.my.skiwo.com
secure0045.hubspot.com
qa.push.tikktalk.com
staging.my.tikktalk.com
dev.ws.skiwo.com
push.tikktalk.com
links.crisp.tikktalk.com
staging.my.skiwo.com
qa.push.tikktalk.com
staging.www.tikktalk.com
core.tikktalk.com
staging.www.tikktalk.com
staging.my.tikktalk.com
staging.ws.tikktalk.com
staging.www.tikktalk.com
secure0045.hubspot.com
staging.my.tikktalk.com
staging.my.tikktalk.com
support.tikktalk.com
ws.tikktalk.com
live.my.tikktalk.com
support.tikktalk.com
staging.www.tikktalk.com
tikktalk.com
staging.www.skiwo.com
push.tikktalk.com
secure0045.hubspot.com
www.tikktalk.com
push.tikktalk.com
core.tikktalk.com
www.tikktalk.com
rc.my.tikktalk.com
dev.ws.skiwo.com
nb.support.tikktalk.com
strings.my.tikktalk.com
dev.my.tikktalk.com
tikktalk.com
video.tikktalk.com
rc.push.tikktalk.com
www.tikktalk.com
secure0045.hubspot.com
skiwo.com
secure0045.hubspot.com
live.my.tikktalk.com
rc.push.tikktalk.com
core.tikktalk.com
skiwo.com
staging.www.tikktalk.com
support.tikktalk.com
staging.my.tikktalk.com
video.salita.no
secure0045.hubspot.com
my.tikktalk.com
tikktalk.com
skiwo.com
localdev.ws.tikktalk.com
tikktalk.com
staging.www.tikktalk.com
support.tikktalk.com
qa.desktop.tikktalk.com
qa.push.tikktalk.com
support.tikktalk.com
rc.push.tikktalk.com
support.tikktalk.com
live.my.tikktalk.com
my.tikktalk.com
staging.my.skiwo.com
live.my.tikktalk.com
staging.rtc.tikktalk.com
wrk-osl.videonor.net
staging.www.tikktalk.com
my.tikktalk.com
my.tikktalk.com
secure0045.hubspot.com
old.my.tikktalk.com
dev.my.tikktalk.com
ws.tikktalk.com
dev.my.tikktalk.com
links.crisp.tikktalk.com
www.tikktalk.com
dev.my.tikktalk.com
www.tikktalk.com
staging.my.tikktalk.com
dev.my.tikktalk.com
qa.core.tikktalk.com
staging.www.tikktalk.com
live.my.tikktalk.com
qa.push.tikktalk.com
dev.my.tikktalk.com
qa.desktop.tikktalk.com
rc.push.tikktalk.com
tikktalk.com
support.tikktalk.com
staging.www.tikktalk.com
tikktalk.com
staging.www.tikktalk.com
tikktalk.com
qa.core.tikktalk.com
rc.core.tikktalk.com
staging.my.skiwo.com
secure0045.hubspot.com
qa.push.tikktalk.com
staging.my.tikktalk.com
dev.ws.skiwo.com
push.tikktalk.com
links.crisp.tikktalk.com
staging.my.skiwo.com
qa.push.tikktalk.com
staging.www.tikktalk.com
core.tikktalk.com
staging.www.tikktalk.com
staging.my.tikktalk.com
staging.ws.tikktalk.com
staging.www.tikktalk.com
secure0045.hubspot.com
staging.my.tikktalk.com
staging.my.tikktalk.com
support.tikktalk.com
ws.tikktalk.com
live.my.tikktalk.com
support.tikktalk.com
staging.www.tikktalk.com
tikktalk.com
staging.www.skiwo.com
push.tikktalk.com
secure0045.hubspot.com
www.tikktalk.com
push.tikktalk.com
core.tikktalk.com
www.tikktalk.com
rc.my.tikktalk.com
dev.ws.skiwo.com
nb.support.tikktalk.com
strings.my.tikktalk.com
dev.my.tikktalk.com
tikktalk.com
video.tikktalk.com
rc.push.tikktalk.com
www.tikktalk.com
secure0045.hubspot.com
skiwo.com
secure0045.hubspot.com
live.my.tikktalk.com
rc.push.tikktalk.com
core.tikktalk.com
skiwo.com
staging.www.tikktalk.com
support.tikktalk.com
staging.my.tikktalk.com
video.salita.no
secure0045.hubspot.com
my.tikktalk.com
tikktalk.com
skiwo.com
localdev.ws.tikktalk.com
tikktalk.com
staging.www.tikktalk.com
support.tikktalk.com
qa.desktop.tikktalk.com
qa.push.tikktalk.com
support.tikktalk.com
rc.push.tikktalk.com
support.tikktalk.com
live.my.tikktalk.com
my.tikktalk.com
staging.my.skiwo.com
live.my.tikktalk.com
staging.rtc.tikktalk.com
wrk-osl.videonor.net
staging.www.tikktalk.com
my.tikktalk.com
my.tikktalk.com
secure0045.hubspot.com
old.my.tikktalk.com
dev.my.tikktalk.com
Certificate
The complete raw certificate details for staging.my.tikktalk.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGEjCCBPqgAwIBAgISA5u7sF5pBgc//KJ56VMQNE0tMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzAxMzAxMDA4MDBaFw0x NzA0MzAxMDA4MDBaMCIxIDAeBgNVBAMTF3N0YWdpbmcubXkudGlra3RhbGsuY29t MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzKPVPDmvcWDunPK4HtqL JCDJZQNn9Z0by/u4qQhRcHO4IiTFwWtkDi+ErMBz6l/BRZ4Z6YN+GVGJzoLeAW3R H2QNMFtX5rFff8cFOQwXelzE+vpT33jZTtN6UT1ykUWL5bwCtiqj8pVR9kUr0GBh 35tcOwnZXJmnAZsm3l1nyO0c+E8m+2Ay8oxgxhr1s99zbJ/NQIwpC8j30YSs4Ejr j/WTfq+rWE+kyDNy/F8MDTDKcZJXke2x3VdPLLvWFTF9dlTZhu4fc6Le0QgTSsV0 zWIvSZqL125eWn62kK59QvgpaLjpgpovcJilRkHB1IJGDo4wAkPzF3G4MXsimjS/ 1EX0AYj6btfi8+98g60uwqJHuUDx3C845zKisoyuw8p3hPxFYdN8mw03ouYUxQ9n wgLth78FxLJ2nU8qm3lY/Cm2EH4t2mmExvN3lok1cVOAe9wXfAf3JgTFy6mR4Vqb P6Kzp9FxUg6sGzkb2vGkR/NUR97hHfvAgwJXqVwsAHzTAuYUyK9WHjfOmESiEjJA pSyUgUrYLt94lgAy8W5dEDlA1zaPXT8Lo3ix7bhCOQ1crZVYmGQ7sVDHTSmOZrk5 ZvcflHhZ312DYaOuOZ0w5z55cWvEJ/X07LGxevwEr/xXyti3U/EZIH1CP0zM0XaK 0GcxBCLrOKlI/nYpgj+96zECAwEAAaOCAhgwggIUMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUpED53fUe9XWqIwQqH/JuPDSwwnswHwYDVR0jBBgwFoAUqEpqYwR93brm 0Tm3pkVl7/Oo7KEwcAYIKwYBBQUHAQEEZDBiMC8GCCsGAQUFBzABhiNodHRwOi8v b2NzcC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzAvBggrBgEFBQcwAoYjaHR0cDov L2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wIgYDVR0RBBswGYIXc3RhZ2lu Zy5teS50aWtrdGFsay5jb20wgf4GA1UdIASB9jCB8zAIBgZngQwBAgEwgeYGCysG AQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0 Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlzIENlcnRpZmljYXRlIG1heSBvbmx5 IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcgUGFydGllcyBhbmQgb25seSBpbiBh Y2NvcmRhbmNlIHdpdGggdGhlIENlcnRpZmljYXRlIFBvbGljeSBmb3VuZCBhdCBo dHRwczovL2xldHNlbmNyeXB0Lm9yZy9yZXBvc2l0b3J5LzANBgkqhkiG9w0BAQsF AAOCAQEAJbOu2QuMpehVUBOn3kBnai6Iqj2ncGjzwHTSzwummpeEwNHUkAK+hNA5 ynUZp9ggRQnZVgspf7KJ9B5G6p6Gq8WZSmHrrS+6kD8NsBwr+Ml+B+eYl83dr8iX R7z5poDQugqT644GBmqC+3zlrKdu+scA+sujaoiEUxAvuZVusnEvIOUIFMiwGded eid1LI2IV8ry0WrLlnFoe3gx91+j4heYxiDC5oRN4ANNpV13dIffFQEBD7B+qW2a mjXnZBME/Zm//Yv+JV4o2Q3olsGGF/HqvfVzEWzTsMompVtLz1if27ZzQjO+XVyR 052zRohdWEHYvuz3v4vsWrETfaY/Tw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzKPVPDmvcWDunPK4HtqL JCDJZQNn9Z0by/u4qQhRcHO4IiTFwWtkDi+ErMBz6l/BRZ4Z6YN+GVGJzoLeAW3R H2QNMFtX5rFff8cFOQwXelzE+vpT33jZTtN6UT1ykUWL5bwCtiqj8pVR9kUr0GBh 35tcOwnZXJmnAZsm3l1nyO0c+E8m+2Ay8oxgxhr1s99zbJ/NQIwpC8j30YSs4Ejr j/WTfq+rWE+kyDNy/F8MDTDKcZJXke2x3VdPLLvWFTF9dlTZhu4fc6Le0QgTSsV0 zWIvSZqL125eWn62kK59QvgpaLjpgpovcJilRkHB1IJGDo4wAkPzF3G4MXsimjS/ 1EX0AYj6btfi8+98g60uwqJHuUDx3C845zKisoyuw8p3hPxFYdN8mw03ouYUxQ9n wgLth78FxLJ2nU8qm3lY/Cm2EH4t2mmExvN3lok1cVOAe9wXfAf3JgTFy6mR4Vqb P6Kzp9FxUg6sGzkb2vGkR/NUR97hHfvAgwJXqVwsAHzTAuYUyK9WHjfOmESiEjJA pSyUgUrYLt94lgAy8W5dEDlA1zaPXT8Lo3ix7bhCOQ1crZVYmGQ7sVDHTSmOZrk5 ZvcflHhZ312DYaOuOZ0w5z55cWvEJ/X07LGxevwEr/xXyti3U/EZIH1CP0zM0XaK 0GcxBCLrOKlI/nYpgj+96zECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 314330106062352408656554212190940478852397 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-01-30 10:08:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-30 10:08:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging.my.tikktalk.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 834858249733502551387878754969586168042957012230450297193687169181045322785365356923183876853922398666101296115319809234657439279839171482593189968569909683172581381193775545522040581520571918903652284337856710806831305502059399499351062098524545663826109969654201130170214343598795168939787389974544248294072875968074263934650888449725388800923952837738496888021348144498202691454287326179308429542408137598865228692783297623266596432567749079448560594382985780244422524193617955855089457346158225140668126163002696769758831553063741173715947386522296180360259897653568234016185547222808775026047219351596994592112538032035851741924672780690846297632730017979224375105319246381676474301982385611684862512898802318108568203727787335181882246442635057523220086728127094168283847216700469447771615975301398064075627019211687051478705832103188924672139611904860499521036248768020439237027523260755115600215650121074668803231701550713448881314411691455604770124099350336274763915867042420191634104288954053177820099334163132894325289966372819394243658751204099153178720655352821712893318443606675352673859502254945667246137584791267956827211433947531990777012844944058068732489582283894493537693743050625132783118563098723526955560201009 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a440f9ddf51ef575aa23042a1ff26e3c34b0c27b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.my.tikktalk.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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