leaflets.aldi.co.uk
Issued by R3
About this certificate
This digital certificate with serial number 04:c5:46:59:b4:63:d8:a8:a9:08:0a:5a:80:b4:77:db:7c:c1 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=leaflets.aldi.co.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:c5:46:59:b4:63:d8:a8:a9:08:0a:5a:80:b4:77:db:7c:c1Serial Number (int): 415578281743335587005642808515154490916033
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 46:05:7a:4d:3c:4d:41:2d:05:43:f0:22:c9:2c:51:fb:f4:d5:64:5d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 05:35:aa:2c:8d:7f:9c:3f:78:ac:ab:d8:3e:da:99:14:06:96:f8:9a
Fingerprint (sha256): 4e:0d:f1:3a:ac:a0:fd:53:01:2c:4d:dd:18:58:e4:7e:a9:1d:90:87:85:80:64:b0:71:ef:4b:cb:6c:6c:45:0f
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate leaflets.aldi.co.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for leaflets.aldi.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
leaflets.aldi.co.uk
Other certificates including the domain name aldi.co.uk
(limited to 100 certificates)
sslcertificate3.queue-it.net
www.dr-admin.aldi.co.uk
stage-ptp.aldi.co.uk
www.aldi-sued.com
ameportal.aldi.co.uk
customerservice.aldi.co.uk
ppe-store.aldi.co.uk
queue.disneymovieclub.go.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
staging.store.dev.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
www.ppe-store.aldi.co.uk
ame.aldi.co.uk
www.aldi.co.uk
sslcertificate3.queue-it.net
ppe-admin.aldi.co.uk
the-aldi-testers-club.aldi.co.uk
www.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
fit-admin.aldi.co.uk
www.aldi.co.uk
www.aldi-sued.com
www.ppe-store.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
customerservice.aldi.co.uk
www.def-store.aldi.co.uk
ameportal.aldi.co.uk
live-admin.aldi.co.uk
product.prd.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
www.fit-store.aldi.co.uk
clocks.wfm.aldi.co.uk
test-ptp.aldi-international.com
www.aldi.co.uk
www.aldi-sued.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
mia.aldi.co.uk
stage-ptp.aldi.co.uk
sit-store.aldi.co.uk
live-admin.aldi.co.uk
masterdata.prd.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
www.aldi.co.uk
imperva.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
def-admin.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
dev-block.ukcsd-order.aldi.co.uk
sslcertificate3.queue-it.net
queue.disneymovieclub.go.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
www.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
staging.checkout.dev.shopandgo.aldi.co.uk
staff.dev.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
backoffice.dev.shopandgo.aldi.co.uk
groceries.aldi.co.uk
queue.disneymovieclub.go.com
sslcertificate3.queue-it.net
leaflets.aldi.co.uk
shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
leaflets.aldi.co.uk
sslcertificate3.queue-it.net
imperva.com
www.aldi-sued.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
gateway-test.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
mia.aldi.co.uk
masterdata.dev.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
www.dr-admin.aldi.co.uk
stage-ptp.aldi.co.uk
www.aldi-sued.com
ameportal.aldi.co.uk
customerservice.aldi.co.uk
ppe-store.aldi.co.uk
queue.disneymovieclub.go.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
staging.store.dev.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
www.ppe-store.aldi.co.uk
ame.aldi.co.uk
www.aldi.co.uk
sslcertificate3.queue-it.net
ppe-admin.aldi.co.uk
the-aldi-testers-club.aldi.co.uk
www.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
fit-admin.aldi.co.uk
www.aldi.co.uk
www.aldi-sued.com
www.ppe-store.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
customerservice.aldi.co.uk
www.def-store.aldi.co.uk
ameportal.aldi.co.uk
live-admin.aldi.co.uk
product.prd.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
www.fit-store.aldi.co.uk
clocks.wfm.aldi.co.uk
test-ptp.aldi-international.com
www.aldi.co.uk
www.aldi-sued.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
mia.aldi.co.uk
stage-ptp.aldi.co.uk
sit-store.aldi.co.uk
live-admin.aldi.co.uk
masterdata.prd.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
www.aldi.co.uk
imperva.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
def-admin.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
dev-block.ukcsd-order.aldi.co.uk
sslcertificate3.queue-it.net
queue.disneymovieclub.go.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
www.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
staging.checkout.dev.shopandgo.aldi.co.uk
staff.dev.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
backoffice.dev.shopandgo.aldi.co.uk
groceries.aldi.co.uk
queue.disneymovieclub.go.com
sslcertificate3.queue-it.net
leaflets.aldi.co.uk
shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
leaflets.aldi.co.uk
sslcertificate3.queue-it.net
imperva.com
www.aldi-sued.com
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
gateway-test.aldi.co.uk
sslcertificate3.queue-it.net
sslcertificate3.queue-it.net
mia.aldi.co.uk
masterdata.dev.shopandgo.aldi.co.uk
sslcertificate3.queue-it.net
Certificate
The complete raw certificate details for leaflets.aldi.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgISBMVGWbRj2KipCApagLR323zBMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDkyMzMwMTNaFw0yNDA3MDgyMzMwMTJaMB4xHDAaBgNVBAMT E2xlYWZsZXRzLmFsZGkuY28udWswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDNpAC479JTz9M7E2F9/swUWfQoL8iyI5KfsIsnIPcRWyo8tlfIBIJGyFjl n4FzWAHMg9NaEvqUXdNlbg1Al74+hkd3QZAESpfNeBzdFUt0kYctX/Y+JMxJUeXk GZh0fc1J5XLF8dHwjjxAA21U9nw+AbkmTe/LZkaKIcJh0hEZTmEK1s1SQAsmHsYT CbdUBDhqyawQlSuhd4U1Zkncc5vINGmqovMh806WS+cAEZy921ZKz1fU4wTMSRe7 H6PNREN1Niyi4UDq/BoCZeisc1vJCdBhrpfuriw70t/O5rLlKlwxORqc2ycH7gZI oAd0f7OorX0Zeq6eSP2LNgRrjxI7AgMBAAGjggIXMIICEzAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFEYFek08TUEtBUPwIsksUfv01WRdMB8GA1UdIwQYMBaAFBQusxe3 WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0 cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5j ci5vcmcvMB4GA1UdEQQXMBWCE2xlYWZsZXRzLmFsZGkuY28udWswEwYDVR0gBAww CjAIBgZngQwBAgEwggEGBgorBgEEAdZ5AgQCBIH3BIH0APIAdwB2/4g/Crb7lVHC Ycz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAY7FaZAKAAAEAwBIMEYCIQDOxJ/HLJz0 DuCqnGOgDQVulAJqGfXouI5ORpPuCtU8XQIhAITOuxo/9ygewH1FEkM7/RgBXaUY xxXx6j8kEPGCHqMoAHcA3+FW66oFr7WcD4ZxjajAMk6uVtlup/WlagHRwTu+UlwA AAGOxWmQWgAABAMASDBGAiEAlYUMeq3+ab1PmBbkEavJ2nBk0MdQZpE5C8D8MNKr 4MkCIQC93J0pMpwwyjnAlHcvuTQhAjEUqHe3g4/hy+z3MZarNTANBgkqhkiG9w0B AQsFAAOCAQEApeZHnxOTtLprNmF/YodnjuhNplxeEbFO8tCKJckaB0VOOouYA/hA ZpEEROByyTma2zeYCxhANry1zYck+m2/433BBRn5SxjCQ5M7HrbJ6Feh+balwDfb 8iUYE9RhP9OXBPqTQLUcpwnU0e+hqy7fpHcSCftg92QnhzC3KFJKGCDlSwfuWyGm puKYC327GMVxPTuPNdX0CIX0/81pP39zVq06DqDYE+MP3HoIleiQCoViuheJ9aOe Fl3A5lbEP/rpo2U5ytzgXX3rGrVCZDjgrXc/A/Z7lK6y/Ch6anx9PJP8/lE2qOEw k3zKD/Y3/Gs4mjTmP0t/NZNJikfwE9yWaw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzaQAuO/SU8/TOxNhff7M FFn0KC/IsiOSn7CLJyD3EVsqPLZXyASCRshY5Z+Bc1gBzIPTWhL6lF3TZW4NQJe+ PoZHd0GQBEqXzXgc3RVLdJGHLV/2PiTMSVHl5BmYdH3NSeVyxfHR8I48QANtVPZ8 PgG5Jk3vy2ZGiiHCYdIRGU5hCtbNUkALJh7GEwm3VAQ4asmsEJUroXeFNWZJ3HOb yDRpqqLzIfNOlkvnABGcvdtWSs9X1OMEzEkXux+jzURDdTYsouFA6vwaAmXorHNb yQnQYa6X7q4sO9Lfzuay5SpcMTkanNsnB+4GSKAHdH+zqK19GXqunkj9izYEa48S OwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 415578281743335587005642808515154490916033 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-09 23:30:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-08 23:30:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'leaflets.aldi.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25959725323697405766204728419752194369859161483522021427560751651923461414735033283675328789480570751760927438735983240017691444635859377339724024297814840845204924711339964426531328878879863158303392112870962567154429281294407333292326652894935104687187945653866110208709305340895089886665313671725353953304408526174154574183795648568721003202424127042949123531020788525583747426696099649178650643143843263195704980044678140199544639442357467341858400950328447032849021313883649660332156319196181831719467644033875299617516219072118354486262810846762326238237527994156527526944955995855481662927218748123855197246011 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 46057a4d3c4d412d0543f022c92c51fbf4d5645d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'leaflets.aldi.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f200770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ec569900a0000040300483046022100cec49fc72c9cf40ee0aa9c63a00d056e94026a19f5e8b88e4e4693ee0ad53c5d02210084cebb1a3ff7281ec07d4512433bfd18015da518c715f1ea3f2410f1821ea328007700dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ec569905a000004030048304602210095850c7aadfe69bd4f9816e411abc9da7064d0c7506691390bc0fc30d2abe0c9022100bddc9d29329c30ca39c094772fb93421023114a877b7838fe1cbecf73196ab35 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00a5e6479f1393b4ba6b36617f6287678ee84da65c5e11b14ef2d08a25c91a07454e3a8b9803f84066910444e072c9399adb37980b184036bcb5cd8724fa6dbfe37dc10519f94b18c243933b1eb6c9e857a1f9b6a5c037dbf2251813d4613fd39704fa9340b51ca709d4d1efa1ab2edfa4771209fb60f764278730b728524a1820e54b07ee5b21a6a6e2980b7dbb18c5713d3b8f35d5f40885f4ffcd693f7f7356ad3a0ea0d813e30fdc7a0895e8900a8562ba1789f5a39e165dc0e656c43ffae9a36539cadce05d7deb1ab5426438e0ad773f03f67b94aeb2fc287a6a7c7d3c93fcfe5136a8e130937cca0ff637fc6b389a34e63f4b7f3593498a47f013dc966b