hallwyler.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:74:c0:cc:cc:3f:9d:c4:59:80:ca:33:11:7d:6c:5e:d6:d2 was issued on by Let's Encrypt.
With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hallwyler.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:74:c0:cc:cc:3f:9d:c4:59:80:ca:33:11:7d:6c:5e:d6:d2Serial Number (int): 388178173436271453202689189271064419423954
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 27:14:02:24:8e:df:b4:64:a0:48:55:e0:b0:a9:6c:df:dd:73:99:e3
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 46:8a:2a:56:1c:e3:e2:a6:a0:c8:a6:14:1b:f3:d8:a2:d8:98:15:a9
Fingerprint (sha256): 50:b2:e9:03:3b:7c:b3:14:a2:b2:b8:89:a6:88:eb:09:59:64:bb:9b:06:4b:ca:41:1d:8b:8a:2a:fa:30:8e:09
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hallwyler.ch
13
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hallwyler.ch
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
baer.zto.ch
baerfensterbau.ch
gartenbau-rhodo.ch
gottlieb-mueller.ch
hallwyler.ch
hallwyler.zto.ch
hasan.ch
immotiviert.bwise.ch
www.baerfensterbau.ch
www.gartenbau-rhodo.ch
www.gottlieb-mueller.ch
www.hallwyler.ch
www.hasan.ch
baerfensterbau.ch
gartenbau-rhodo.ch
gottlieb-mueller.ch
hallwyler.ch
hallwyler.zto.ch
hasan.ch
immotiviert.bwise.ch
www.baerfensterbau.ch
www.gartenbau-rhodo.ch
www.gottlieb-mueller.ch
www.hallwyler.ch
www.hasan.ch
Other certificates including the domain name hallwyler.ch
(limited to 100 certificates)
remote.hallwyler.ch
*.hallwyler.ch
www.azb.ch
azb.ch
hallwyler.ch
hallwyler.zto.ch
hallwyler.ch
www.azb.ch
www.hallwyler.ch
www.hallwyler.ch
baer.zto.ch
hallwyler.ch
hallwyler.ch
www.henzerrecht.ch
www.hallwyler.ch
www.henzerrecht.ch
hallwyler.zto.ch
www.azb.ch
www.azb.ch
www.hallwyler.ch
www.azb.ch
hallwyler.ch
www.hallwyler.ch
www.azb.ch
hallwyler.ch
hallwyler.zto.ch
remote.hallwyler.ch
www.azb.ch
azb.ch
*.hallwyler.ch
www.azb.ch
azb.ch
hallwyler.ch
hallwyler.zto.ch
hallwyler.ch
www.azb.ch
www.hallwyler.ch
www.hallwyler.ch
baer.zto.ch
hallwyler.ch
hallwyler.ch
www.henzerrecht.ch
www.hallwyler.ch
www.henzerrecht.ch
hallwyler.zto.ch
www.azb.ch
www.azb.ch
www.hallwyler.ch
www.azb.ch
hallwyler.ch
www.hallwyler.ch
www.azb.ch
hallwyler.ch
hallwyler.zto.ch
remote.hallwyler.ch
www.azb.ch
azb.ch
Certificate
The complete raw certificate details for hallwyler.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGuDCCBaCgAwIBAgISBHTAzMw/ncRZgMozEX1sXtbSMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MDYwNTQwMzFaFw0x OTA4MDQwNTQwMzFaMBcxFTATBgNVBAMTDGhhbGx3eWxlci5jaDCCAaIwDQYJKoZI hvcNAQEBBQADggGPADCCAYoCggGBALm2Wma+eW38qeFIP9yJCOyiug2AFtVjtGMn LMUVFmopCgTTX3mxqA0AOR4J2PbHEVIkkmzMd0A0w5anO8nJY/wWQQVlxNw6Un20 3B3gkuzJ6tBW1zvewmge3P9lm4NhXjPwSgvNG9s51o2RtAI8X2bY+T3Znb0spd7l /VVQV6bvCXhI3C8hrrIMofmKH9Eqx3qPISzTcRTYQ9hxZ4XsKQ1gdCM5bAF/MFFE 3hxNMs/PswSQgNzLaICfJTYCx0pzJxqQwPEXqS57MGHKR+b4qUpzm4JjABYHZvK7 HzzeOZLH4YQLxzBvzTEdBVgKPSa+klbcCzXyFEVVHpljKNSHn4NrpCjYFTBIc2rU kdrmTFKJK/LagT1XAITKEEipcNj3L060V/6bJB8Vnit5pbjKAV0jAalfDBfpk7WD SDXWyKTI7JZHXkMj1L0AfMC2Q/Gzknx1FBmTeZq1Pq4kUy0rR3bWG8gqjwZ3vU1a +r1aCO2G1Vx89p3QanNqMYoOqIHqeQIDAQABo4IDSTCCA0UwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBQnFAIkjt+0ZKBIVeCwqWzf3XOZ4zAfBgNVHSMEGDAWgBSoSmpj BH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0 dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0 dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMIH8BgNVHREEgfQwgfGC C2JhZXIuenRvLmNoghFiYWVyZmVuc3RlcmJhdS5jaIISZ2FydGVuYmF1LXJob2Rv LmNoghNnb3R0bGllYi1tdWVsbGVyLmNoggxoYWxsd3lsZXIuY2iCEGhhbGx3eWxl ci56dG8uY2iCCGhhc2FuLmNoghRpbW1vdGl2aWVydC5id2lzZS5jaIIVd3d3LmJh ZXJmZW5zdGVyYmF1LmNoghZ3d3cuZ2FydGVuYmF1LXJob2RvLmNoghd3d3cuZ290 dGxpZWItbXVlbGxlci5jaIIQd3d3LmhhbGx3eWxlci5jaIIMd3d3Lmhhc2FuLmNo MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBgYKKwYBBAHWeQIEAgSB 9wSB9ADyAHcAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFqi99Y RQAABAMASDBGAiEA0q2GZUE+S0q94XA0as/LD3JBC9sU/WDKoBV+H3k34HICIQDg bn2qJHEb3ERonzKAkTbuurS5zZKTeeu5H2QN3ZmA1QB3AGPy283oO8wszwtyhCdX azOkjWF3j711pjixx2hUS9iNAAABaovfV4MAAAQDAEgwRgIhAIzWHHbNE/zo2vEO cfvo2WlWCmQmeHQwdwO1iKp9gOC4AiEAqghguzkCyI/NZSK8LnOpNqphy2Ax6YW5 uyiDFhsos3wwDQYJKoZIhvcNAQELBQADggEBAABUI7wHb7FftOpzlq6L/itzuQ73 cI7T2ZkMIWDiRrade7u2zU6TYRXHoVej2JcRC2n8N9Z+6QIdIRAm1qXx+NLIkZkM 7Z1VJxgJUAF/LqGW8m/ZgWMjNUfeZ4ghB6CP0nNrI1fUF/TL/C46zoKlcEUW693f vm/GoD5BffrKFNqoT55dcRgOZ3xjJPHBeroYYPl4i6GYZcyaWInFLTFSwle6WqUZ 5ZTqLlritcuqxlYHMUCh8Z8i2a7J/CnTvuWVf5acWXCmLbSS8KjdgOt+lvCU6VXo dQ9LVNbFimpGmI7tHEeC5lPQjXJZIkiu0SvHwpEb3OTLBxP2O9LDKtp21hE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAubZaZr55bfyp4Ug/3IkI 7KK6DYAW1WO0YycsxRUWaikKBNNfebGoDQA5HgnY9scRUiSSbMx3QDTDlqc7yclj /BZBBWXE3DpSfbTcHeCS7Mnq0FbXO97CaB7c/2Wbg2FeM/BKC80b2znWjZG0Ajxf Ztj5PdmdvSyl3uX9VVBXpu8JeEjcLyGusgyh+Yof0SrHeo8hLNNxFNhD2HFnhewp DWB0IzlsAX8wUUTeHE0yz8+zBJCA3MtogJ8lNgLHSnMnGpDA8RepLnswYcpH5vip SnObgmMAFgdm8rsfPN45ksfhhAvHMG/NMR0FWAo9Jr6SVtwLNfIURVUemWMo1Ief g2ukKNgVMEhzatSR2uZMUokr8tqBPVcAhMoQSKlw2PcvTrRX/pskHxWeK3mluMoB XSMBqV8MF+mTtYNINdbIpMjslkdeQyPUvQB8wLZD8bOSfHUUGZN5mrU+riRTLStH dtYbyCqPBne9TVr6vVoI7YbVXHz2ndBqc2oxig6ogep5AgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 388178173436271453202689189271064419423954 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-06 05:40:31 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-04 05:40:31 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hallwyler.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 4214513241264251677016660548066513586001366806162034123047476562172674982753242723679496911706164590609601946769308185426818115555666036384921110554365047376070257622266178300842810275754690156929313561833570113919992043497711978208329299012379652270719313693343003096492811131272682948018103952045487212965545978685501193534582966086315344267021294417888656429099373630998759582413492510145704133368340115382720123458410969456147582697942253294597448638698763636183062170284586179033995378432537216784469834362548704602287116049601661589755597534064013465906788029779082666525176543135048694147508944270554088144817789613369008927039147546276988085113177288581604068051131870177010966393957944354512074539114830784532556481671575591312092935196814283496948184423705840068976752649074441212629846324337795684403727825098314199562968363288569224922167584759822715150851149874311985894109363444408462589332207890369850908994169 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 271402248edfb464a04855e0b0a96cdfdd7399e3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'baer.zto.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'baerfensterbau.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gartenbau-rhodo.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gottlieb-mueller.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hallwyler.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hallwyler.zto.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hasan.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'immotiviert.bwise.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.baerfensterbau.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gartenbau-rhodo.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gottlieb-mueller.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hallwyler.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hasan.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016a8bdf58450000040300483046022100d2ad8665413e4b4abde170346acfcb0f72410bdb14fd60caa0157e1f7937e072022100e06e7daa24711bdc44689f32809136eebab4b9cd929379ebb91f640ddd9980d500770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016a8bdf578300000403004830460221008cd61c76cd13fce8daf10e71fbe8d969560a64267874307703b588aa7d80e0b8022100aa0860bb3902c88fcd6522bc2e73a936aa61cb6031e985b9bb2883161b28b37c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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