qiyfoundation.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:45:9a:57:3f:66:86:70:53:27:fc:33:99:3a:67:c9:b9:df was issued on by Let's Encrypt.
With 22 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=qiyfoundation.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:45:9a:57:3f:66:86:70:53:27:fc:33:99:3a:67:c9:b9:dfSerial Number (int): 285021495239917747883487485216201533667807
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ad:39:eb:9f:38:66:08:93:9c:e4:5e:0c:8a:ba:c5:b3:c1:a0:08:ec
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 06:36:94:8a:5a:0d:6a:37:c1:6f:5d:48:ee:f5:0a:46:20:9a:6e:e6
Fingerprint (sha256): 53:0d:bf:b2:1c:8a:2a:77:78:a3:22:ba:1b:6e:7a:b1:38:5b:9c:6d:cf:4d:67:35:98:d4:7e:a4:cf:93:15:3a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate qiyfoundation.org
22
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for qiyfoundation.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
digital-self-determination.eu
digital-self-determination.org
digitale-zelfbeschikking.nl
digitalezelfbeschikking.nl
qiy.be
qiy.com
qiy.eu
qiy.fr
qiy.nl
qiy.nu
qiyfoundation.org
www.digital-self-determination.eu
www.digital-self-determination.org
www.digitale-zelfbeschikking.nl
www.digitalezelfbeschikking.nl
www.qiy.be
www.qiy.com
www.qiy.eu
www.qiy.fr
www.qiy.nl
www.qiy.nu
www.qiyfoundation.org
digital-self-determination.org
digitale-zelfbeschikking.nl
digitalezelfbeschikking.nl
qiy.be
qiy.com
qiy.eu
qiy.fr
qiy.nl
qiy.nu
qiyfoundation.org
www.digital-self-determination.eu
www.digital-self-determination.org
www.digitale-zelfbeschikking.nl
www.digitalezelfbeschikking.nl
www.qiy.be
www.qiy.com
www.qiy.eu
www.qiy.fr
www.qiy.nl
www.qiy.nu
www.qiyfoundation.org
Other certificates including the domain name qiyfoundation.org
(limited to 100 certificates)
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
www.qiy.nl
qiyfoundation.org
qiyfoundation.org
Certificate
The complete raw certificate details for qiyfoundation.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHnDCCBoSgAwIBAgISA0WaVz9mhnBTJ/wzmTpnybnfMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzExMTYxNzUwNThaFw0x ODAyMTQxNzUwNThaMBwxGjAYBgNVBAMTEXFpeWZvdW5kYXRpb24ub3JnMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvYTD5uWmNZF2kReYA8EIvjvGgC+K re41tLAy26ZRxKriux35nsbwD4//51wjIB/cWS1kOqqpkAQKoQAe5enHCkZBLacH WtGH1J/sV1mnbhZlfokOD58Q+OldrmzrMPY+Tc0eW0I/suUG0PJuMm0ZNnFfygve qOCxaufNBGtf03/TwltIP1MkxQR+puvQK6wkkMvnyZ++ieFhSfUKpD57lGLK86q0 sfWEKFNV1xhm5sj1X9tkOaOxYUNzYNI+VKqYswwV3dI55/r/HY2ZFaLLu3b+oKmP ZsUbnGnAoOhVAAtitZVcf0Q6fXiN/KlKrRibgfAGDNcJEAS1JMm2+LyYiogZDKk6 ficBvu9RERaKuuUNVmum71n0h2PjznPUSaK5sTVunP0MBtO6BE+GXP384gY5E9y9 1D3ZSfq0NGBUnpAUNqH6iSWenR6O+QHFZfYwLE6Ofq9LezdcL84ezJXWfoZ1yWLj S4PMMnXtrsLdc9Z9dQwAguoTZhluwNoHNBKMiGM0H+pDrLt4GgW+n1MzJ5lWTiTl UziSC4ulJDdeOwoI7hR2Ghu1y4tIih+MvLVi7ft7v5fNQ19YtbD9of/O2K2u9XRq B5L67wNzAJtvFf+tow1uhI6y7bcJHNYQ5pPXLFc4R7RJtfNcCkEnVn6EJHeTJPU3 1Y/NbcBRDmV75mkCAwEAAaOCA6gwggOkMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU rTnrnzhmCJOc5F4MirrFs8GgCOwwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl 7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5p bnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p bnQteDMubGV0c2VuY3J5cHQub3JnLzCCAbEGA1UdEQSCAagwggGkgh1kaWdpdGFs LXNlbGYtZGV0ZXJtaW5hdGlvbi5ldYIeZGlnaXRhbC1zZWxmLWRldGVybWluYXRp b24ub3JnghtkaWdpdGFsZS16ZWxmYmVzY2hpa2tpbmcubmyCGmRpZ2l0YWxlemVs ZmJlc2NoaWtraW5nLm5sggZxaXkuYmWCB3FpeS5jb22CBnFpeS5ldYIGcWl5LmZy ggZxaXkubmyCBnFpeS5udYIRcWl5Zm91bmRhdGlvbi5vcmeCIXd3dy5kaWdpdGFs LXNlbGYtZGV0ZXJtaW5hdGlvbi5ldYIid3d3LmRpZ2l0YWwtc2VsZi1kZXRlcm1p bmF0aW9uLm9yZ4Ifd3d3LmRpZ2l0YWxlLXplbGZiZXNjaGlra2luZy5ubIIed3d3 LmRpZ2l0YWxlemVsZmJlc2NoaWtraW5nLm5sggp3d3cucWl5LmJlggt3d3cucWl5 LmNvbYIKd3d3LnFpeS5ldYIKd3d3LnFpeS5mcoIKd3d3LnFpeS5ubIIKd3d3LnFp eS5udYIVd3d3LnFpeWZvdW5kYXRpb24ub3JnMIH+BgNVHSAEgfYwgfMwCAYGZ4EM AQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5s ZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0 ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5k IG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kg Zm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJ KoZIhvcNAQELBQADggEBAJSclBzhxdm+jZdV7KeosMB7YWgnptU5R3Nvy7A5LmAv vovcFb6SqrPnQlHumqppW1uvy6sCI+8EM8KNaHZODi/oGzP4yTT1X3ggM09lhJ3p 06BZ+6OmTHVk9l1/5Mrcp334R0dFRCZfHbDJtSl8PLq+g4cE/1juaXR+FT/8gaqN qasS4AWsIyviD9MqFhNj7BK1l5WSPiNcuhdal2bV+pNb8lyTGMCeB7oYK2qdh0FK n6INq8xy6snR8cypl0exY6jBpjE8OxWevXZfYvkasg+QpwmxHymvA2FZ0mUsbdIl PaS5yv2eS0AWWU2yuf788FljJYnDeI+USRcNqptxYAw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvYTD5uWmNZF2kReYA8EI vjvGgC+Kre41tLAy26ZRxKriux35nsbwD4//51wjIB/cWS1kOqqpkAQKoQAe5enH CkZBLacHWtGH1J/sV1mnbhZlfokOD58Q+OldrmzrMPY+Tc0eW0I/suUG0PJuMm0Z NnFfygveqOCxaufNBGtf03/TwltIP1MkxQR+puvQK6wkkMvnyZ++ieFhSfUKpD57 lGLK86q0sfWEKFNV1xhm5sj1X9tkOaOxYUNzYNI+VKqYswwV3dI55/r/HY2ZFaLL u3b+oKmPZsUbnGnAoOhVAAtitZVcf0Q6fXiN/KlKrRibgfAGDNcJEAS1JMm2+LyY iogZDKk6ficBvu9RERaKuuUNVmum71n0h2PjznPUSaK5sTVunP0MBtO6BE+GXP38 4gY5E9y91D3ZSfq0NGBUnpAUNqH6iSWenR6O+QHFZfYwLE6Ofq9LezdcL84ezJXW foZ1yWLjS4PMMnXtrsLdc9Z9dQwAguoTZhluwNoHNBKMiGM0H+pDrLt4GgW+n1Mz J5lWTiTlUziSC4ulJDdeOwoI7hR2Ghu1y4tIih+MvLVi7ft7v5fNQ19YtbD9of/O 2K2u9XRqB5L67wNzAJtvFf+tow1uhI6y7bcJHNYQ5pPXLFc4R7RJtfNcCkEnVn6E JHeTJPU31Y/NbcBRDmV75mkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 285021495239917747883487485216201533667807 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-16 17:50:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-14 17:50:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'qiyfoundation.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 773168490308147472732722703711112408165610700913376610860866204811868846203309278367496867172228069864646647199472005718714331767041415422142360089363347472982648416792894695476733910862952250703376791590395555827243907731023965874201642881487656074511147366223344346058354277038002171626079713438818657099492486897614665345945205829325974647788675991885660176252004454722194544398427866586681537919413079625104331179658619773547887527848270912392996501614649253987421143290467200976661074443160328906281681249209157481083089261638155592479630106995625851587502377103356569003009791440478009792983041809212598337789848315015875797143843470534989267744692439824334944178901072761259691412426824458658082106598447740168779501696171686375456218533586168821232078406683663419955645922181139433186175247114360146502596223519366628845811643965809203060781843023169022806210732471469485925667953061988501262600525204619579499602201499507622443999595326030727480606004598314480101172711124878285164252237767176796266614702466001224428244633278836482527599685548484618626167935072953339601460727875803344912760804748125333813959551741670655034849523674094643251554777616801522537236656551381012317619715776299811091210836581797219379229484649 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ad39eb9f386608939ce45e0c8abac5b3c1a008ec . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (424 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digital-self-determination.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digital-self-determination.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digitale-zelfbeschikking.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digitalezelfbeschikking.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiy.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiy.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiy.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiy.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiy.nu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qiyfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digital-self-determination.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digital-self-determination.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digitale-zelfbeschikking.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digitalezelfbeschikking.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiy.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiy.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiy.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiy.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiy.nu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qiyfoundation.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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