yourlifeiowa.com
Issued by R11
About this certificate
This digital certificate with serial number 04:cd:1c:2c:3f:68:8f:99:31:cc:98:3b:3d:3e:83:9c:24:d0 was issued on by Let's Encrypt.
With 94 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=yourlifeiowa.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:cd:1c:2c:3f:68:8f:99:31:cc:98:3b:3d:3e:83:9c:24:d0Serial Number (int): 418244477076853100262107998554971703092432
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 4f:18:3d:45:2a:9b:2c:13:21:71:0f:bb:86:cf:ed:78:3e:f6:bc:0e
AuthorityKeyId: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9
Fingerprint (sha1): 89:c9:77:bd:98:b4:f8:d0:25:fa:04:d6:63:2b:7f:1d:3d:1b:50:53
Fingerprint (sha256): 4c:29:aa:3d:1d:98:c4:60:7a:49:4c:ef:7c:9b:bb:29:0d:ea:01:02:e1:66:e9:d2:c9:bd:c9:aa:11:4e:08:eb
Issuing Certificate URL: http://r11.i.lencr.org/
Revocation information
OCSP Server: http://r11.o.lencr.orgCheck the revocation status for certificate yourlifeiowa.com
94
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for yourlifeiowa.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
app.iowastem.org
i-pact.com
ialottery.com
internal.courts.iowa.gov
iowaabd.com
iowaagriculture.gov
iowacleanair.gov
iowadnr.com
iowadrivingav.org
iowagrants.gov
iowagreatplaces.gov
iowahistory.org
iowahumanitiescouncil.com
iowahumanitiescouncil.org
iowahush.com
iowaintex.gov
iowalmi.gov
iowamissingpersons.com
iowamissingpersons.gov
iowaopiodhelp.com
iowaopioidhelp.com
iowaopioidhelp.org
iowap2services.com
iowareap.com
iowasmokefreeair.gov
iowastem.org
iowastics.com
iowiki.iowaintex.gov
m.ialottery.com
media.ialottery.com
mtest.ialottery.com
onsiteiowa.com
p2infohouse.org
resultsiowa.org
safeandsoundiowa.com
safeandsoundiowa.gov
safeandsoundiowa.org
safearoundsemis.com
test.ialottery.com
test.icaps.iowacollegeaid.gov
test.iowagrants.gov
test.iowaintex.gov
voterreadyiowa.org
webapp.iecdb.iowa.gov
www.broadband.iowa.gov
www.cmedocviewerportal.iowadot.gov
www.cmesnowboundportal.iowadot.gov
www.cmewebapiportal.iowadot.gov
www.coaching.iowa.gov
www.devertservices.iowadot.gov
www.dlphoto.iowadot.gov
www.envpermits.iowadot.gov
www.ertservices.iowadot.gov
www.historicalphotos.iowadot.gov
www.i-pact.com
www.iahealthlink.gov
www.ialottery.com
www.iowaagriculture.gov
www.iowadrivingav.org
www.iowagrants.gov
www.iowaintex.gov
www.iowalmi.gov
www.iowamissingpersons.com
www.iowamissingpersons.gov
www.iowaoutdoorsmagazine.com
www.iowap2interns.com
www.iowasmokefreeair.gov
www.iowasourcewater.org
www.iowastatepatrol.net
www.iowastatepatrol.org
www.iowastem.org
www.iowastics.com
www.iowatitleguaranty.gov
www.jobs.iowa.gov
www.licensediniowa.gov
www.majorprojects.iowadot.gov
www.maple.iowadot.gov
www.mtmug.iowadot.gov
www.mydotdocs.iowadot.gov
www.onsiteiowa.com
www.p2infohouse.org
www.recoveryiowa.org
www.resultsiowa.org
www.safearoundsemis.com
www.safeathome.iowa.gov
www.testertservices.iowadot.gov
www.tmcdashboard.iowadot.gov
www.tmcservice.iowadot.gov
www.voterreadyiowa.org
www.yourlifeiowa.com
www.yourlifeiowa.net
www.yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.net
i-pact.com
ialottery.com
internal.courts.iowa.gov
iowaabd.com
iowaagriculture.gov
iowacleanair.gov
iowadnr.com
iowadrivingav.org
iowagrants.gov
iowagreatplaces.gov
iowahistory.org
iowahumanitiescouncil.com
iowahumanitiescouncil.org
iowahush.com
iowaintex.gov
iowalmi.gov
iowamissingpersons.com
iowamissingpersons.gov
iowaopiodhelp.com
iowaopioidhelp.com
iowaopioidhelp.org
iowap2services.com
iowareap.com
iowasmokefreeair.gov
iowastem.org
iowastics.com
iowiki.iowaintex.gov
m.ialottery.com
media.ialottery.com
mtest.ialottery.com
onsiteiowa.com
p2infohouse.org
resultsiowa.org
safeandsoundiowa.com
safeandsoundiowa.gov
safeandsoundiowa.org
safearoundsemis.com
test.ialottery.com
test.icaps.iowacollegeaid.gov
test.iowagrants.gov
test.iowaintex.gov
voterreadyiowa.org
webapp.iecdb.iowa.gov
www.broadband.iowa.gov
www.cmedocviewerportal.iowadot.gov
www.cmesnowboundportal.iowadot.gov
www.cmewebapiportal.iowadot.gov
www.coaching.iowa.gov
www.devertservices.iowadot.gov
www.dlphoto.iowadot.gov
www.envpermits.iowadot.gov
www.ertservices.iowadot.gov
www.historicalphotos.iowadot.gov
www.i-pact.com
www.iahealthlink.gov
www.ialottery.com
www.iowaagriculture.gov
www.iowadrivingav.org
www.iowagrants.gov
www.iowaintex.gov
www.iowalmi.gov
www.iowamissingpersons.com
www.iowamissingpersons.gov
www.iowaoutdoorsmagazine.com
www.iowap2interns.com
www.iowasmokefreeair.gov
www.iowasourcewater.org
www.iowastatepatrol.net
www.iowastatepatrol.org
www.iowastem.org
www.iowastics.com
www.iowatitleguaranty.gov
www.jobs.iowa.gov
www.licensediniowa.gov
www.majorprojects.iowadot.gov
www.maple.iowadot.gov
www.mtmug.iowadot.gov
www.mydotdocs.iowadot.gov
www.onsiteiowa.com
www.p2infohouse.org
www.recoveryiowa.org
www.resultsiowa.org
www.safearoundsemis.com
www.safeathome.iowa.gov
www.testertservices.iowadot.gov
www.tmcdashboard.iowadot.gov
www.tmcservice.iowadot.gov
www.voterreadyiowa.org
www.yourlifeiowa.com
www.yourlifeiowa.net
www.yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.net
Other certificates including the domain name yourlifeiowa.com
(limited to 100 certificates)
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.envoystaging.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.envoystaging.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.envoystaging.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.envoystaging.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
Certificate
The complete raw certificate details for yourlifeiowa.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIINBzCCC++gAwIBAgISBM0cLD9oj5kxzJg7PT6DnCTQMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTEwHhcNMjQwNjE0MTUwNDM0WhcNMjQwOTEyMTUwNDMzWjAbMRkwFwYDVQQD ExB5b3VybGlmZWlvd2EuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmd4ic9RBQhY061Fem3zetklGVyav38aXmJAg0RIcCbcplwQ8GvgW1p342a4M nKboo62sHgPKmX4LddmWKadMcxN9Bh68VFY8mXxcBFp3R4lEdFnnHZ/BUl65Gqvm TVWOh8AK2nE86gEk933a9CwX3FCju6j2mNG9jP6YJ5mwUvj6pVETd+y5MFDk+Kpb PJ2KUa05/mak3TrpfPnIy15iaLp3b71hJPp8WQQMzg93r1Cq3FsG8S3XxrgxgxYu gowm9gQKgfBmKxzp1X1b1lD8rHzDoLHOK8pt8p48aTV2WPqP0ypJ95OIKCDkuPqF rxZZMM/Tf8s9tUscXirCW3BHeQIDAQABo4IKKzCCCicwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0G A1UdDgQWBBRPGD1FKpssEyFxD7uGz+14Pva8DjAfBgNVHSMEGDAWgBTFz0ak6vTD wHpslcQtsF6SLybjuTBXBggrBgEFBQcBAQRLMEkwIgYIKwYBBQUHMAGGFmh0dHA6 Ly9yMTEuby5sZW5jci5vcmcwIwYIKwYBBQUHMAKGF2h0dHA6Ly9yMTEuaS5sZW5j ci5vcmcvMIIIMAYDVR0RBIIIJzCCCCOCEGFwcC5pb3dhc3RlbS5vcmeCCmktcGFj dC5jb22CDWlhbG90dGVyeS5jb22CGGludGVybmFsLmNvdXJ0cy5pb3dhLmdvdoIL aW93YWFiZC5jb22CE2lvd2FhZ3JpY3VsdHVyZS5nb3aCEGlvd2FjbGVhbmFpci5n b3aCC2lvd2FkbnIuY29tghFpb3dhZHJpdmluZ2F2Lm9yZ4IOaW93YWdyYW50cy5n b3aCE2lvd2FncmVhdHBsYWNlcy5nb3aCD2lvd2FoaXN0b3J5Lm9yZ4IZaW93YWh1 bWFuaXRpZXNjb3VuY2lsLmNvbYIZaW93YWh1bWFuaXRpZXNjb3VuY2lsLm9yZ4IM aW93YWh1c2guY29tgg1pb3dhaW50ZXguZ292ggtpb3dhbG1pLmdvdoIWaW93YW1p c3NpbmdwZXJzb25zLmNvbYIWaW93YW1pc3NpbmdwZXJzb25zLmdvdoIRaW93YW9w aW9kaGVscC5jb22CEmlvd2FvcGlvaWRoZWxwLmNvbYISaW93YW9waW9pZGhlbHAu b3JnghJpb3dhcDJzZXJ2aWNlcy5jb22CDGlvd2FyZWFwLmNvbYIUaW93YXNtb2tl ZnJlZWFpci5nb3aCDGlvd2FzdGVtLm9yZ4INaW93YXN0aWNzLmNvbYIUaW93aWtp Lmlvd2FpbnRleC5nb3aCD20uaWFsb3R0ZXJ5LmNvbYITbWVkaWEuaWFsb3R0ZXJ5 LmNvbYITbXRlc3QuaWFsb3R0ZXJ5LmNvbYIOb25zaXRlaW93YS5jb22CD3AyaW5m b2hvdXNlLm9yZ4IPcmVzdWx0c2lvd2Eub3JnghRzYWZlYW5kc291bmRpb3dhLmNv bYIUc2FmZWFuZHNvdW5kaW93YS5nb3aCFHNhZmVhbmRzb3VuZGlvd2Eub3JnghNz YWZlYXJvdW5kc2VtaXMuY29tghJ0ZXN0LmlhbG90dGVyeS5jb22CHXRlc3QuaWNh cHMuaW93YWNvbGxlZ2VhaWQuZ292ghN0ZXN0Lmlvd2FncmFudHMuZ292ghJ0ZXN0 Lmlvd2FpbnRleC5nb3aCEnZvdGVycmVhZHlpb3dhLm9yZ4IVd2ViYXBwLmllY2Ri Lmlvd2EuZ292ghZ3d3cuYnJvYWRiYW5kLmlvd2EuZ292giJ3d3cuY21lZG9jdmll d2VycG9ydGFsLmlvd2Fkb3QuZ292giJ3d3cuY21lc25vd2JvdW5kcG9ydGFsLmlv d2Fkb3QuZ292gh93d3cuY21ld2ViYXBpcG9ydGFsLmlvd2Fkb3QuZ292ghV3d3cu Y29hY2hpbmcuaW93YS5nb3aCHnd3dy5kZXZlcnRzZXJ2aWNlcy5pb3dhZG90Lmdv doIXd3d3LmRscGhvdG8uaW93YWRvdC5nb3aCGnd3dy5lbnZwZXJtaXRzLmlvd2Fk b3QuZ292ght3d3cuZXJ0c2VydmljZXMuaW93YWRvdC5nb3aCIHd3dy5oaXN0b3Jp Y2FscGhvdG9zLmlvd2Fkb3QuZ292gg53d3cuaS1wYWN0LmNvbYIUd3d3LmlhaGVh bHRobGluay5nb3aCEXd3dy5pYWxvdHRlcnkuY29tghd3d3cuaW93YWFncmljdWx0 dXJlLmdvdoIVd3d3Lmlvd2Fkcml2aW5nYXYub3JnghJ3d3cuaW93YWdyYW50cy5n b3aCEXd3dy5pb3dhaW50ZXguZ292gg93d3cuaW93YWxtaS5nb3aCGnd3dy5pb3dh bWlzc2luZ3BlcnNvbnMuY29tghp3d3cuaW93YW1pc3NpbmdwZXJzb25zLmdvdoIc d3d3Lmlvd2FvdXRkb29yc21hZ2F6aW5lLmNvbYIVd3d3Lmlvd2FwMmludGVybnMu Y29tghh3d3cuaW93YXNtb2tlZnJlZWFpci5nb3aCF3d3dy5pb3dhc291cmNld2F0 ZXIub3Jnghd3d3cuaW93YXN0YXRlcGF0cm9sLm5ldIIXd3d3Lmlvd2FzdGF0ZXBh dHJvbC5vcmeCEHd3dy5pb3dhc3RlbS5vcmeCEXd3dy5pb3dhc3RpY3MuY29tghl3 d3cuaW93YXRpdGxlZ3VhcmFudHkuZ292ghF3d3cuam9icy5pb3dhLmdvdoIWd3d3 LmxpY2Vuc2VkaW5pb3dhLmdvdoIdd3d3Lm1ham9ycHJvamVjdHMuaW93YWRvdC5n b3aCFXd3dy5tYXBsZS5pb3dhZG90LmdvdoIVd3d3Lm10bXVnLmlvd2Fkb3QuZ292 ghl3d3cubXlkb3Rkb2NzLmlvd2Fkb3QuZ292ghJ3d3cub25zaXRlaW93YS5jb22C E3d3dy5wMmluZm9ob3VzZS5vcmeCFHd3dy5yZWNvdmVyeWlvd2Eub3JnghN3d3cu cmVzdWx0c2lvd2Eub3Jnghd3d3cuc2FmZWFyb3VuZHNlbWlzLmNvbYIXd3d3LnNh ZmVhdGhvbWUuaW93YS5nb3aCH3d3dy50ZXN0ZXJ0c2VydmljZXMuaW93YWRvdC5n b3aCHHd3dy50bWNkYXNoYm9hcmQuaW93YWRvdC5nb3aCGnd3dy50bWNzZXJ2aWNl Lmlvd2Fkb3QuZ292ghZ3d3cudm90ZXJyZWFkeWlvd2Eub3JnghR3d3cueW91cmxp ZmVpb3dhLmNvbYIUd3d3LnlvdXJsaWZlaW93YS5uZXSCFHd3dy55b3VybGlmZWlv d2Eub3JnghB5b3VybGlmZWlvd2EuY29tghB5b3VybGlmZWlvd2EubmV0MBMGA1Ud IAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAGZgQcQnw 1lIuMIDSnj9ku4NuKMz5D1KO7t/OSj8WtMoAAAGQF35X/gAABAMARzBFAiEA/YDf l9uJxydlBu5OoEKEQry3bYQWASXcfs+3Ptj7ARoCIDG+YmzUwZVDbQKXZaPdjemk nRIbAfr3xg4S+g7cljC9AHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xa OnQAAAGQF35XwwAABAMARzBFAiEA6SFpG9Vwt4r9KfLPz8L3o/Et0Mbt0mOB3iSA UKDvoqoCIBCOOUABXDyVhFRQywACCdHOpwmKEb+jIcruqolzNBWNMA0GCSqGSIb3 DQEBCwUAA4IBAQAOgM70IZ5Ow5U8o+z98FrFyKRPpG7A5cN11QQVY6PnaH4fon4T T/BYW+bvt6WpDw0busxQ5i4I+/0+DZv2ZR9wqum9XtKRttHW1tHPUz/cx20ORgQv He3PuXtZfYDIoEmQgm4+zMnt/zHyyvrPHGX19kojA3hXps/7c9zSp4S4/mAPqz2G Z0+ttilnjGMoH5vF1DIy8x1Kc2IEKlZVhzX+KEYbd8R4/bUDRaKZ/HhzMhMsnAtA hwqLuzZXyqQDFNQ2KjHzxS9Lto7MrmKrYgbUZ8SeuQPYRXx2s+p/ua05N91reVph tI9rZOwGgtMrLzARj+jcQ52idiXEL7WxZdts -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmd4ic9RBQhY061Fem3ze tklGVyav38aXmJAg0RIcCbcplwQ8GvgW1p342a4MnKboo62sHgPKmX4LddmWKadM cxN9Bh68VFY8mXxcBFp3R4lEdFnnHZ/BUl65GqvmTVWOh8AK2nE86gEk933a9CwX 3FCju6j2mNG9jP6YJ5mwUvj6pVETd+y5MFDk+KpbPJ2KUa05/mak3TrpfPnIy15i aLp3b71hJPp8WQQMzg93r1Cq3FsG8S3XxrgxgxYugowm9gQKgfBmKxzp1X1b1lD8 rHzDoLHOK8pt8p48aTV2WPqP0ypJ95OIKCDkuPqFrxZZMM/Tf8s9tUscXirCW3BH eQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 418244477076853100262107998554971703092432 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-14 15:04:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-12 15:04:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'yourlifeiowa.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19423999303722803767383499739133819274034233488302229387357660803474351102818941571349037472325383146763969595155953339570381428615092876207440561606272849688108072704274696618765956694818559936081382289694295130036050733766803504273969605503385146922342346819490631723988710720100354380244314242784640425941471844920135804381639875964513796173563559525840364251079508851614429647362066793049431783415358012798568253161928963004761375692829372363152254538602026834853477511564552173675782062537800247430355063937559635290119796709627464923361459919191860384771397800573716650661235401561507810123912047480197440620409 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4f183d452a9b2c1321710fbb86cfed783ef6bc0e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2087 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'app.iowastem.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'i-pact.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ialottery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'internal.courts.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaabd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaagriculture.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowacleanair.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowadnr.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowadrivingav.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowagrants.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowagreatplaces.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowahistory.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowahumanitiescouncil.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowahumanitiescouncil.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowahush.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaintex.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowalmi.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowamissingpersons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowamissingpersons.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaopiodhelp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaopioidhelp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaopioidhelp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowap2services.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowareap.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowasmokefreeair.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowastem.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowastics.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowiki.iowaintex.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm.ialottery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'media.ialottery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mtest.ialottery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onsiteiowa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'p2infohouse.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resultsiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'safeandsoundiowa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'safeandsoundiowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'safeandsoundiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'safearoundsemis.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.ialottery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.icaps.iowacollegeaid.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.iowagrants.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.iowaintex.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'voterreadyiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webapp.iecdb.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.broadband.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cmedocviewerportal.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cmesnowboundportal.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cmewebapiportal.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.coaching.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.devertservices.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dlphoto.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.envpermits.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ertservices.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicalphotos.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.i-pact.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iahealthlink.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ialottery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowaagriculture.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowadrivingav.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowagrants.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowaintex.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowalmi.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowamissingpersons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowamissingpersons.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowaoutdoorsmagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowap2interns.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasmokefreeair.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasourcewater.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowastatepatrol.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowastatepatrol.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowastem.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowastics.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowatitleguaranty.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jobs.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.licensediniowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.majorprojects.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.maple.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mtmug.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mydotdocs.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.onsiteiowa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.p2infohouse.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.recoveryiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.resultsiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.safearoundsemis.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.safeathome.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.testertservices.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tmcdashboard.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tmcservice.iowadot.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.voterreadyiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.yourlifeiowa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.yourlifeiowa.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.yourlifeiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'yourlifeiowa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'yourlifeiowa.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca00000190177e57fe0000040300473045022100fd80df97db89c7276506ee4ea0428442bcb76d84160125dc7ecfb73ed8fb011a022031be626cd4c195436d029765a3dd8de9a49d121b01faf7c60e12fa0edc9630bd00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a7400000190177e57c30000040300473045022100e921691bd570b78afd29f2cfcfc2f7a3f12dd0c6edd26381de248050a0efa2aa0220108e3940015c3c95845450cb000209d1cea7098a11bfa321caeeaa897334158d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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