old.twai.it
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:c6:d1:35:33:d7:b5:ee:95:aa:42:ba:bb:cc:35:04:2b:56 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=old.twai.it
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c6:d1:35:33:d7:b5:ee:95:aa:42:ba:bb:cc:35:04:2b:56Serial Number (int): 328990851339972355413619195316242332527446
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 54:b3:d2:0b:d2:39:74:a1:00:1e:46:eb:ac:71:d2:33:a4:a1:7c:6b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 23:af:de:b7:c0:01:b7:11:f5:09:26:1d:4a:47:e5:56:27:a9:2a:25
Fingerprint (sha256): 4b:43:5b:c0:1b:94:e5:6a:72:d7:be:9a:8c:44:a4:f3:da:ff:b0:22:f8:50:a8:4d:8d:5f:a9:2c:9d:fb:4e:61
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate old.twai.it
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for old.twai.it
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
old.twai.it
zend.twai.it
zend.twai.it
Other certificates including the domain name twai.it
(limited to 100 certificates)
gev.twai.it
gev.twai.it
gev.twai.it
tcc.twai.it
tcc.twai.it
twai.it
tcc.twai.it
twai.it
gev.twai.it
webmail.twai.it
tcc.twai.it
twai.it
gev.twai.it
webmail.twai.it
tcc.twai.it
tcc.twai.it
webmail.twai.it
webmail.twai.it
webmail.twai.it
webmail.twai.it
old.twai.it
tcc.twai.it
gev.twai.it
tcc.twai.it
gev.twai.it
old.twai.it
gev.twai.it
old.twai.it
twai.it
tcc.twai.it
tcc.twai.it
tcc.twai.it
webmail.twai.it
old.twai.it
webmail.twai.it
gev.twai.it
twai.it
gev.twai.it
twai.it
old.twai.it
webmail.twai.it
gev.twai.it
tcc.twai.it
tcc.twai.it
twai.it
webmail.twai.it
twai.it
gev.twai.it
tcc.twai.it
twai.it
twai.it
webmail.twai.it
webmail.twai.it
webmail.twai.it
twai.it
webmail.twai.it
twai.it
tcc.twai.it
twai.it
gev.twai.it
twai.it
tcc.twai.it
gev.twai.it
old.twai.it
webmail.twai.it
gev.twai.it
gev.twai.it
webmail.twai.it
twai.it
twai.it
tcc.twai.it
thechinacompanion.eu
tcc.twai.it
tcc.twai.it
old.twai.it
twai.it
tcc.twai.it
twai.it
twai.it
webmail.twai.it
twai.it
old.twai.it
old.twai.it
old.twai.it
zend.twai.it
gev.twai.it
twai.it
twai.it
old.twai.it
old.twai.it
tcc.twai.it
tcc.twai.it
tcc.twai.it
twai.it
twai.it
gev.twai.it
tcc.twai.it
tcc.twai.it
old.twai.it
gev.twai.it
gev.twai.it
gev.twai.it
tcc.twai.it
tcc.twai.it
twai.it
tcc.twai.it
twai.it
gev.twai.it
webmail.twai.it
tcc.twai.it
twai.it
gev.twai.it
webmail.twai.it
tcc.twai.it
tcc.twai.it
webmail.twai.it
webmail.twai.it
webmail.twai.it
webmail.twai.it
old.twai.it
tcc.twai.it
gev.twai.it
tcc.twai.it
gev.twai.it
old.twai.it
gev.twai.it
old.twai.it
twai.it
tcc.twai.it
tcc.twai.it
tcc.twai.it
webmail.twai.it
old.twai.it
webmail.twai.it
gev.twai.it
twai.it
gev.twai.it
twai.it
old.twai.it
webmail.twai.it
gev.twai.it
tcc.twai.it
tcc.twai.it
twai.it
webmail.twai.it
twai.it
gev.twai.it
tcc.twai.it
twai.it
twai.it
webmail.twai.it
webmail.twai.it
webmail.twai.it
twai.it
webmail.twai.it
twai.it
tcc.twai.it
twai.it
gev.twai.it
twai.it
tcc.twai.it
gev.twai.it
old.twai.it
webmail.twai.it
gev.twai.it
gev.twai.it
webmail.twai.it
twai.it
twai.it
tcc.twai.it
thechinacompanion.eu
tcc.twai.it
tcc.twai.it
old.twai.it
twai.it
tcc.twai.it
twai.it
twai.it
webmail.twai.it
twai.it
old.twai.it
old.twai.it
old.twai.it
zend.twai.it
gev.twai.it
twai.it
twai.it
old.twai.it
old.twai.it
tcc.twai.it
tcc.twai.it
tcc.twai.it
twai.it
twai.it
gev.twai.it
tcc.twai.it
tcc.twai.it
old.twai.it
gev.twai.it
Certificate
The complete raw certificate details for old.twai.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXjCCBUagAwIBAgISA8bRNTPXte6VqkK6u8w1BCtWMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MjcxMzI5NTVaFw0x OTA5MjUxMzI5NTVaMBYxFDASBgNVBAMTC29sZC50d2FpLml0MIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAwEIiIuN+TvfC7fHId9xUjzid6S7IGq+15xYO By9gjN9K/5ilRlhCceYU/rt2WLLrwx3kR+m7VbRtWfTfrgZPV/V4AhxR0dMu0uwT i5k9e09Rk0lZnqI2pPzoolpaTBmruzN43VrjOpNGAsnZWOl/uZLKKEZFvdhaJb84 TneUWd9CvvGcMcWCIMoRFglSHc7N2Ip9DPAZVNq/eP6h8wORRnMM6zIywp5P/aWo E3mxyx3syx8p1ek/w+1guuEUoY6GZyMMo9vSUqU8T4AgqVQ7BWa1/MJWr1Hih0iA o/qO0aQliJSdcZwfgr1Ghs6EWCQ3VA3uz6Kaw/goWUVl0ra0+ysXOZRde0gEF92/ NSUriZdHJgRqteJ0Flkcq05w1vVwpqvdQDxu1Rqqanfdo44Uw3REZjUIzCoLAY6g chdOjFwOKCqdtSG7qoIasjpZN0XIg/4N2X1LNHKPq8WjY/CzWn/1PX/PLd1abmLx byXj3uzIP51N49BbvPBzUKnri+2rBF6vaGSS91GIUl0Ap/QtmddaVRSf4pFM1azH ZuyKJWIBNl2o0hYQiO+XQrMGnTV++gHE0TQQpEXsG3q4wpFLK+23IBfbHqW9vlID HXsa0oggNaOHqkakeWYRQXb1MgX8EHckrhtfLM1KLMAhn+4WXmgKwpVQ2s1UZfWY rdoqD7cCAwEAAaOCAnAwggJsMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUVLPSC9I5 dKEAHkbrrHHSM6ShfGswHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAkBgNVHREEHTAbggtvbGQudHdhaS5pdIIMemVuZC50 d2FpLml0MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBgYKKwYBBAHW eQIEAgSB9wSB9ADyAHcAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYA AAFrmVfKnAAABAMASDBGAiEAht5c+RjsndwJsHZNP6QAVWzWbD5LdwwD80K9ZJ/8 BiACIQCYhaBRUaP4KiByN53URVgehykKFmaPpNolOrHB4Jzv1gB3AGPy283oO8ws zwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABa5lXyp8AAAQDAEgwRgIhAKBU3EH3 ED0vBFwPXo27JgtON7fAXWL533cIvCbap57SAiEAzJLORgC1k1xlWmpC2YoTDNSj GLNX36IMNZiQHR04ywMwDQYJKoZIhvcNAQELBQADggEBAJAWpC7kiMNW8G8v9Toj t8WN3e3qzeUxLXgKyfVwrd4896Rn27DKjDS/2EGYxA4O1A0mZWDiBafDmp/ymHMI tDrk1y5w3mBzFew5L01lVwsRoTwfnyA0uYZgJzXjQpTFVWIjWlB2g+q2GDpsEeR1 Uaf7bfriDHX/SxckCCCpAr9mLOGrLjbn6ntm7tSIIp/OxleqnnIv8FKSaDwknCtT ZYrP0w6xjJhBCM7rKzUS9cn7GJsnezqw8s2JzIvnbKOLOTLVW8WmChp470niu3RZ j1ubK2q2AFZh8Gef2QQnY/0uYy82uPCClb4ZGkh/qw/oyDm/PmkXRdigpTQM1Y7R is4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwEIiIuN+TvfC7fHId9xU jzid6S7IGq+15xYOBy9gjN9K/5ilRlhCceYU/rt2WLLrwx3kR+m7VbRtWfTfrgZP V/V4AhxR0dMu0uwTi5k9e09Rk0lZnqI2pPzoolpaTBmruzN43VrjOpNGAsnZWOl/ uZLKKEZFvdhaJb84TneUWd9CvvGcMcWCIMoRFglSHc7N2Ip9DPAZVNq/eP6h8wOR RnMM6zIywp5P/aWoE3mxyx3syx8p1ek/w+1guuEUoY6GZyMMo9vSUqU8T4AgqVQ7 BWa1/MJWr1Hih0iAo/qO0aQliJSdcZwfgr1Ghs6EWCQ3VA3uz6Kaw/goWUVl0ra0 +ysXOZRde0gEF92/NSUriZdHJgRqteJ0Flkcq05w1vVwpqvdQDxu1Rqqanfdo44U w3REZjUIzCoLAY6gchdOjFwOKCqdtSG7qoIasjpZN0XIg/4N2X1LNHKPq8WjY/Cz Wn/1PX/PLd1abmLxbyXj3uzIP51N49BbvPBzUKnri+2rBF6vaGSS91GIUl0Ap/Qt mddaVRSf4pFM1azHZuyKJWIBNl2o0hYQiO+XQrMGnTV++gHE0TQQpEXsG3q4wpFL K+23IBfbHqW9vlIDHXsa0oggNaOHqkakeWYRQXb1MgX8EHckrhtfLM1KLMAhn+4W XmgKwpVQ2s1UZfWYrdoqD7cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 328990851339972355413619195316242332527446 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-27 13:29:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-25 13:29:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'old.twai.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 784345569294435755227531610711617754488730748218486671105802555603825835400689814850708328325833149552561891587021988881254197461516281164978985786198715144635070196411820802066892486625054254829425423369359412456715198499927593734771696815244448900270882044892405612387509376517828934967423990136721447573542356280348412867172835800914991736939419387647691825620533968392474682270930626993445174965399476040165431720151366000565091531010692317990789009260792333415086905065375052079391152174372183559409644105915142744311078875319397217122458975268012092536321534910920435005380389589114280698356853476810516421863984424630229924698977663452558091917789511856661116463276910511010369155952667409096442861895686070386939431528790524470544658058196803836537937689750551552537394440963931694673128326736463698109971323880830391114404267018424778247554223607290823752799119030680024205262595040174417920219742991246563970089025774428127805716371702984347780579369427406367474935046650205394621196166596453976063174275660455092411900299954104161640537216008870210358229159904766963366935245865397077283716274046708551835583834740167152797505176940421134749318739300664877404156026821674434688130189288717701549159382761422169821546155959 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 54b3d20bd23974a1001e46ebac71d233a4a17c6b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'old.twai.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zend.twai.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016b9957ca9c000004030048304602210086de5cf918ec9ddc09b0764d3fa400556cd66c3e4b770c03f342bd649ffc06200221009885a05151a3f82a2072379dd445581e87290a16668fa4da253ab1c1e09cefd600770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016b9957ca9f0000040300483046022100a054dc41f7103d2f045c0f5e8dbb260b4e37b7c05d62f9df7708bc26daa79ed2022100cc92ce4600b5935c655a6a42d98a130cd4a318b357dfa20c3598901d1d38cb03 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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