qiyfoundation.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:52:2f:2c:53:0d:3a:eb:7a:94:a9:44:8a:99:d1:bd:66:8f was issued on by Let's Encrypt.
With 22 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=qiyfoundation.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:52:2f:2c:53:0d:3a:eb:7a:94:a9:44:8a:99:d1:bd:66:8fSerial Number (int): 289302715744149558545092905677944472299151
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 81:a7:ac:c1:2f:20:56:2f:2a:12:f6:7a:67:97:bf:ea:15:53:69:39
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 61:cb:11:44:c4:dc:3b:06:a5:3f:49:3b:59:34:44:77:68:24:32:c5
Fingerprint (sha256): 48:58:86:4b:23:73:fd:6d:6b:8a:ec:a7:65:8f:53:86:30:71:eb:32:51:9f:dd:2e:3a:99:b0:e9:5d:b2:29:67
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate qiyfoundation.org
22
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for qiyfoundation.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
digital-self-determination.eu
digital-self-determination.org
digitale-zelfbeschikking.nl
digitalezelfbeschikking.nl
qiy.be
qiy.com
qiy.eu
qiy.fr
qiy.nl
qiy.nu
qiyfoundation.org
www.digital-self-determination.eu
www.digital-self-determination.org
www.digitale-zelfbeschikking.nl
www.digitalezelfbeschikking.nl
www.qiy.be
www.qiy.com
www.qiy.eu
www.qiy.fr
www.qiy.nl
www.qiy.nu
www.qiyfoundation.org
digital-self-determination.org
digitale-zelfbeschikking.nl
digitalezelfbeschikking.nl
qiy.be
qiy.com
qiy.eu
qiy.fr
qiy.nl
qiy.nu
qiyfoundation.org
www.digital-self-determination.eu
www.digital-self-determination.org
www.digitale-zelfbeschikking.nl
www.digitalezelfbeschikking.nl
www.qiy.be
www.qiy.com
www.qiy.eu
www.qiy.fr
www.qiy.nl
www.qiy.nu
www.qiyfoundation.org
Other certificates including the domain name qiyfoundation.org
(limited to 100 certificates)
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
Certificate
The complete raw certificate details for qiyfoundation.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHnTCCBoWgAwIBAgISA1IvLFMNOut6lKlEipnRvWaPMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzAzMDExMjI4MDBaFw0x NzA1MzAxMjI4MDBaMBwxGjAYBgNVBAMTEXFpeWZvdW5kYXRpb24ub3JnMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsqkfboF6cKNmXhjOmOOoVCzI3XNY FqU9H755AdGlmcpOtjHBEdmUtCKHN4/y7eeBeRtW2jfEVR6BNKgzoexfwfw2X+Ej 70hEHsPioXni+dnSrXonMYJkyU4Ny4Kdanc9xRTX2jzR2AZF9+BESMzy3o01Cnys pWkr2I2p2AmnuDfsutsEqMLkxj9PDIvSdNayhhbvrABB7oS7IA/ecd4jqYJR8OfY YlgCNok2VDYz6mTA/D7xZI228caroETK3xdqTGbiKXnBrHZDr69NDm7zHIZWfmii lbnki3QE5Dm4igXE0Rml59oFoE8KRPiDgNc94ljtDxbh+ju6OqYK4L7UpeuuFnQ1 wKGaXlficsuNRzGG9NE8uTJnZb0iTxtj9T0MxpR/J0Cb4AfTShkpCwNgzY3CakaN 4u39HIhQB0/EZAjJVJo/PZL0zm6iSkuk8wGdW3U7eF0aMazCx1ocWzFt3gaA7lno u7yXzJFMO9FFGuArOgLkkBsfOo8zoJSAWS+2k46H1vE/+20/BI9gUEGv4OYy8e9O WdJWjY9Fv+TgHy3SrZTTdGHWPEqUJNBjcLNyGF0JkUc8Ofcf43JK84JeG7ADqiQ4 JTskvB4k5e3ujf3HMI1oUxnyCFrRe8nHmA+0YJTMvaXUmR2PaWoBrzw1qrBABvZ+ PVUKab551P3HA38CAwEAAaOCA6kwggOlMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU gaeswS8gVi8qEvZ6Z5e/6hVTaTkwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl 7/Oo7KEwcAYIKwYBBQUHAQEEZDBiMC8GCCsGAQUFBzABhiNodHRwOi8vb2NzcC5p bnQteDMubGV0c2VuY3J5cHQub3JnLzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wggGxBgNVHREEggGoMIIBpIIdZGlnaXRh bC1zZWxmLWRldGVybWluYXRpb24uZXWCHmRpZ2l0YWwtc2VsZi1kZXRlcm1pbmF0 aW9uLm9yZ4IbZGlnaXRhbGUtemVsZmJlc2NoaWtraW5nLm5sghpkaWdpdGFsZXpl bGZiZXNjaGlra2luZy5ubIIGcWl5LmJlggdxaXkuY29tggZxaXkuZXWCBnFpeS5m coIGcWl5Lm5sggZxaXkubnWCEXFpeWZvdW5kYXRpb24ub3JngiF3d3cuZGlnaXRh bC1zZWxmLWRldGVybWluYXRpb24uZXWCInd3dy5kaWdpdGFsLXNlbGYtZGV0ZXJt aW5hdGlvbi5vcmeCH3d3dy5kaWdpdGFsZS16ZWxmYmVzY2hpa2tpbmcubmyCHnd3 dy5kaWdpdGFsZXplbGZiZXNjaGlra2luZy5ubIIKd3d3LnFpeS5iZYILd3d3LnFp eS5jb22CCnd3dy5xaXkuZXWCCnd3dy5xaXkuZnKCCnd3dy5xaXkubmyCCnd3dy5x aXkubnWCFXd3dy5xaXlmb3VuZGF0aW9uLm9yZzCB/gYDVR0gBIH2MIHzMAgGBmeB DAECATCB5gYLKwYBBAGC3xMBAQEwgdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMu bGV0c2VuY3J5cHQub3JnMIGrBggrBgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNh dGUgbWF5IG9ubHkgYmUgcmVsaWVkIHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFu ZCBvbmx5IGluIGFjY29yZGFuY2Ugd2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5 IGZvdW5kIGF0IGh0dHBzOi8vbGV0c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMA0G CSqGSIb3DQEBCwUAA4IBAQBo2j1un00tSk5w1/L2lm9Ru9jGy5IVuFKNjmFFdmdZ rBeT9Du8MdYiAxBIkoKYpIGbkEatDASAPS5ORFt3OZlH3cbn9kB2szHlK+CmLIzR 38wS6kVE+iJHolucTOU0eWfhaASGi9iZLYQBW+foRnYpX4qVDIZb1GAls5ufOkXN Ybr1S3/tVadAKeBdBglv3M6RltEAIrzvHFq67LIGlknfpmKtToMNjF3LLNPreTqi jwFTdos9HkJcbuYwAhg8qmZuteKT8Fgv1W5M1SYTJhPmrTFAZTHYvUFSSGgDJK1d GiiNRPKahXk+h5V99IqBntZ/87wHvZOytgEs+oaJNRJE -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsqkfboF6cKNmXhjOmOOo VCzI3XNYFqU9H755AdGlmcpOtjHBEdmUtCKHN4/y7eeBeRtW2jfEVR6BNKgzoexf wfw2X+Ej70hEHsPioXni+dnSrXonMYJkyU4Ny4Kdanc9xRTX2jzR2AZF9+BESMzy 3o01CnyspWkr2I2p2AmnuDfsutsEqMLkxj9PDIvSdNayhhbvrABB7oS7IA/ecd4j qYJR8OfYYlgCNok2VDYz6mTA/D7xZI228caroETK3xdqTGbiKXnBrHZDr69NDm7z HIZWfmiilbnki3QE5Dm4igXE0Rml59oFoE8KRPiDgNc94ljtDxbh+ju6OqYK4L7U peuuFnQ1wKGaXlficsuNRzGG9NE8uTJnZb0iTxtj9T0MxpR/J0Cb4AfTShkpCwNg zY3CakaN4u39HIhQB0/EZAjJVJo/PZL0zm6iSkuk8wGdW3U7eF0aMazCx1ocWzFt 3gaA7lnou7yXzJFMO9FFGuArOgLkkBsfOo8zoJSAWS+2k46H1vE/+20/BI9gUEGv 4OYy8e9OWdJWjY9Fv+TgHy3SrZTTdGHWPEqUJNBjcLNyGF0JkUc8Ofcf43JK84Je G7ADqiQ4JTskvB4k5e3ujf3HMI1oUxnyCFrRe8nHmA+0YJTMvaXUmR2PaWoBrzw1 qrBABvZ+PVUKab551P3HA38CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 289302715744149558545092905677944472299151 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-03-01 12:28:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-30 12:28:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'qiyfoundation.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 728871803271356258538068008205953198488818012009942059058056043338157307412599880416373591303231848335512526770567586002718858823932789954217720923643241464328112952308200977111819892193738681519229345775847928202933407566845894343429337989983336768525112992265418728015216038682988956485964573588891064872871392714488030863901657703788160037131512465454662385014806795601983202295285306338927344803890057172148086944195932351996601305620141641685229401202734944587732670165874565545402042809296488403671195295392895477646984234464891649208009894550365936398844430253448929138356603812743626427009314281349728163387123100510292838692476626958295298124662081181262901297156638843975127553375542660340089041996825125111964803159129424029191818312551831712805362609443571188595406031964005028121088972928353702051375179593816321006932744568502266863335322344802466952727564427295306456590890521309922782947971447948054739718207666620571264976070769812036406681894482386091503116973604185178120428059099207736930671200696564190240698152325899481064939317597903966746728746409020667368686176154286914311655592507963416186912606507585382409152798777384363373823020761613536524919903515494297568205461581868703164123806760126661894397690751 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 81a7acc12f20562f2a12f67a6797bfea15536939 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (424 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digital-self-determination.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digital-self-determination.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digitale-zelfbeschikking.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digitalezelfbeschikking.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiy.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiy.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiy.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiy.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiy.nu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiyfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digital-self-determination.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digital-self-determination.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digitale-zelfbeschikking.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digitalezelfbeschikking.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiy.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiy.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiy.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiy.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiy.nu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiyfoundation.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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