access.fia.org
Issued by R3
About this certificate
This digital certificate with serial number 04:ca:34:9c:f8:1b:2b:eb:87:35:c7:71:59:40:0c:f3:44:7f was issued on by Let's Encrypt.
With 68 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=access.fia.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ca:34:9c:f8:1b:2b:eb:87:35:c7:71:59:40:0c:f3:44:7fSerial Number (int): 417256116731351637949599170954991246722175
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 9a:fd:9c:5c:25:27:f7:3d:a7:63:fa:00:6a:0c:82:e1:98:41:d4:9a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 70:87:49:a8:40:23:d6:2c:04:31:1b:ba:f1:a0:36:34:cf:f3:08:8e
Fingerprint (sha256): 56:3f:6d:fc:1f:63:92:ae:bf:78:e1:b3:8e:a8:95:b3:ac:b0:72:99:4e:b9:3c:be:04:64:29:ea:53:c4:8d:b8
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate access.fia.org
68
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for access.fia.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
access.fia.org
adn-prod.nysenate.gov
alc-dev-pan8.bloomfield.edu
alumni-dev-pan.bloomfield.edu
andrew.gsm.cornell.edu
archives.care.org
ark.gsm.cornell.edu
bloomfield-dev-pan.bloomfield.edu
blueprint.healthgrades.com
bonacic.nysenate.gov
bravo1.gsm.cornell.edu
brochure.vilcek.org
cae.nunm.edu
canis.gsm.cornell.edu
centennialstg.rotary.org
centos7.emmytvlegends.org
cepmek.gsm.cornell.edu
confrontglobalpoverty.crs.org
delta.gsm.cornell.edu
development-test.nacha.org
domain.gsm.cornell.edu
gaming.umbc.edu
grad.ss.pacific.edu
intranet.gsm.cornell.edu
itps-pan.bloomfield.edu
itps-pan8.bloomfield.edu
korea-pr-81.pantheon-multidev.ufc.com
live.care.org
lpdr2.research.chop.edu
management.unlv.edu
mfa-pan8.bloomfield.edu
mochi.as-coa.org
organism.worldjusticeproject.org
osiris.jsums.edu
parkcenter.gsm.cornell.edu
parkercenter.gsm.cornell.edu
pavlokgorod.westkingdom.org
pest-control.housemethod.com
pr-139.pantheon-multidev.ufc.com
rigel.gsm.cornell.edu
ruby.vilcek.org
russia-pr-140.pantheon-multidev.ufc.com
sistem.gsm.cornell.edu
slotgacor.govdelivery.com
smart.gsm.cornell.edu
ssa8.entsoc.org
stage.entsoc.org
steps.uwstout.edu
system.gsm.cornell.edu
test.phinational.org
testcenter-pan.bloomfield.edu
tulisan.nysenate.gov
us-espanol-pr-81.pantheon-multidev.ufc.com
webmaster.jsums.edu
www-staging.catholicreview.org
www-staging.vilcek.org
www.access.fia.org
www.catalog.rockhurst.edu
www.endocrinology.uw.edu
www.explore.uclaextension.edu
www.funke.nysenate.gov
www.parketcenter.gsm.cornell.edu
www.rptoto.govdelivery.com
www.staging.vilcek.org
www.svri.uwstout.edu
www.toto4d.gsm.cornell.edu
www.urec.uwstout.edu
www2.gsm.cornell.edu
adn-prod.nysenate.gov
alc-dev-pan8.bloomfield.edu
alumni-dev-pan.bloomfield.edu
andrew.gsm.cornell.edu
archives.care.org
ark.gsm.cornell.edu
bloomfield-dev-pan.bloomfield.edu
blueprint.healthgrades.com
bonacic.nysenate.gov
bravo1.gsm.cornell.edu
brochure.vilcek.org
cae.nunm.edu
canis.gsm.cornell.edu
centennialstg.rotary.org
centos7.emmytvlegends.org
cepmek.gsm.cornell.edu
confrontglobalpoverty.crs.org
delta.gsm.cornell.edu
development-test.nacha.org
domain.gsm.cornell.edu
gaming.umbc.edu
grad.ss.pacific.edu
intranet.gsm.cornell.edu
itps-pan.bloomfield.edu
itps-pan8.bloomfield.edu
korea-pr-81.pantheon-multidev.ufc.com
live.care.org
lpdr2.research.chop.edu
management.unlv.edu
mfa-pan8.bloomfield.edu
mochi.as-coa.org
organism.worldjusticeproject.org
osiris.jsums.edu
parkcenter.gsm.cornell.edu
parkercenter.gsm.cornell.edu
pavlokgorod.westkingdom.org
pest-control.housemethod.com
pr-139.pantheon-multidev.ufc.com
rigel.gsm.cornell.edu
ruby.vilcek.org
russia-pr-140.pantheon-multidev.ufc.com
sistem.gsm.cornell.edu
slotgacor.govdelivery.com
smart.gsm.cornell.edu
ssa8.entsoc.org
stage.entsoc.org
steps.uwstout.edu
system.gsm.cornell.edu
test.phinational.org
testcenter-pan.bloomfield.edu
tulisan.nysenate.gov
us-espanol-pr-81.pantheon-multidev.ufc.com
webmaster.jsums.edu
www-staging.catholicreview.org
www-staging.vilcek.org
www.access.fia.org
www.catalog.rockhurst.edu
www.endocrinology.uw.edu
www.explore.uclaextension.edu
www.funke.nysenate.gov
www.parketcenter.gsm.cornell.edu
www.rptoto.govdelivery.com
www.staging.vilcek.org
www.svri.uwstout.edu
www.toto4d.gsm.cornell.edu
www.urec.uwstout.edu
www2.gsm.cornell.edu
Other certificates including the domain name fia.org
(limited to 100 certificates)
it.uahs.arizona.edu
*.fia.org
fia.org
*.fia.org
hub.meed.com
good.gsm.cornell.edu
webmail.fia.org
club.kjzz.org
secure.fia.org
host2.openminds.com
local3599.com
dmist-standards.org
secure.fia.org
2fadmin.govdelivery.com
fia.org
agd.nebrwesleyan.edu
inside.gc.cuny.edu
fia.org
secure.fia.org
2fadmin.govdelivery.com
secure.fia.org
international.dev.oceana.org
dg-0035-c25fe2a.client-tls.adestra.com
sters.us
cloudapp-eu.appcelerator.com
fia.org
secure.fia.org
intranet.olivecrest.org
dmist-standards.org
cms.legacy.com
fia.org
fia.org
d7.cmc.edu
agenslotgacor.gsm.cornell.edu
info-dev.calperformances.org
internal.gcir.org
5732322821275648-fe4.pantheonsite.io
webmail.fia.org
dmist-standards.org
d7.cmc.edu
cetys.udesa.edu.ar
online.fia.org
international.research.ucsb.edu
cetys.udesa.edu.ar
dmist-standards.org
csc.arizona.edu
csc.arizona.edu
international.research.ucsb.edu
agd.nebrwesleyan.edu
dmist-standards.org
secure.fia.org
csc.arizona.edu
international.dev.oceana.org
webmail.fia.org
fia.org
international.dev.oceana.org
coins.rutgers.edu
ipv6.earthjustice.org
design-engineering.princeton.edu
cetys.udesa.edu.ar
gws-uat.earthjustice.org
access.fia.org
2fadmin.govdelivery.com
agd.nebrwesleyan.edu
host2.cenmi.org
fia.org
fia.org
connect.iadb.org
d7store.juilliard.edu
international.dev.oceana.org
info.vcfa.edu
5732322821275648-fe4.pantheonsite.io
2fadmin.govdelivery.com
5643172898144256-fe4.pantheonsite.io
cmmb-portal.cmmb.org
info-dev.calperformances.org
internetcouncil.nacha.org
international.dev.oceana.org
access.fia.org
connect.iadb.org
fia.org
international.dev.oceana.org
covid.usmle.org
csc.arizona.edu
fia.org
infonet.fia.org
cloudapp.appcelerator.com
webhost1.fia.org
*.fia.org
covid.usmle.org
autodiscover.fia.org
fia.org
5732322821275648-fe4.pantheonsite.io
httpbin.earthjustice.org
internal.gcir.org
dg-0035-c25fe2a.client-tls.adestra.com
fia.org
csc.arizona.edu
agenslotgacor.gsm.cornell.edu
fia.org
*.fia.org
fia.org
*.fia.org
hub.meed.com
good.gsm.cornell.edu
webmail.fia.org
club.kjzz.org
secure.fia.org
host2.openminds.com
local3599.com
dmist-standards.org
secure.fia.org
2fadmin.govdelivery.com
fia.org
agd.nebrwesleyan.edu
inside.gc.cuny.edu
fia.org
secure.fia.org
2fadmin.govdelivery.com
secure.fia.org
international.dev.oceana.org
dg-0035-c25fe2a.client-tls.adestra.com
sters.us
cloudapp-eu.appcelerator.com
fia.org
secure.fia.org
intranet.olivecrest.org
dmist-standards.org
cms.legacy.com
fia.org
fia.org
d7.cmc.edu
agenslotgacor.gsm.cornell.edu
info-dev.calperformances.org
internal.gcir.org
5732322821275648-fe4.pantheonsite.io
webmail.fia.org
dmist-standards.org
d7.cmc.edu
cetys.udesa.edu.ar
online.fia.org
international.research.ucsb.edu
cetys.udesa.edu.ar
dmist-standards.org
csc.arizona.edu
csc.arizona.edu
international.research.ucsb.edu
agd.nebrwesleyan.edu
dmist-standards.org
secure.fia.org
csc.arizona.edu
international.dev.oceana.org
webmail.fia.org
fia.org
international.dev.oceana.org
coins.rutgers.edu
ipv6.earthjustice.org
design-engineering.princeton.edu
cetys.udesa.edu.ar
gws-uat.earthjustice.org
access.fia.org
2fadmin.govdelivery.com
agd.nebrwesleyan.edu
host2.cenmi.org
fia.org
fia.org
connect.iadb.org
d7store.juilliard.edu
international.dev.oceana.org
info.vcfa.edu
5732322821275648-fe4.pantheonsite.io
2fadmin.govdelivery.com
5643172898144256-fe4.pantheonsite.io
cmmb-portal.cmmb.org
info-dev.calperformances.org
internetcouncil.nacha.org
international.dev.oceana.org
access.fia.org
connect.iadb.org
fia.org
international.dev.oceana.org
covid.usmle.org
csc.arizona.edu
fia.org
infonet.fia.org
cloudapp.appcelerator.com
webhost1.fia.org
*.fia.org
covid.usmle.org
autodiscover.fia.org
fia.org
5732322821275648-fe4.pantheonsite.io
httpbin.earthjustice.org
internal.gcir.org
dg-0035-c25fe2a.client-tls.adestra.com
fia.org
csc.arizona.edu
agenslotgacor.gsm.cornell.edu
fia.org
Certificate
The complete raw certificate details for access.fia.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIILjzCCCnegAwIBAgISBMo0nPgbK+uHNcdxWUAM80R/MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMjMyMDU2MThaFw0yNDAxMjEyMDU2MTdaMBkxFzAVBgNVBAMT DmFjY2Vzcy5maWEub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA wHSnemv0wZzcXAgMkBQXztwjNHFrHpIs5axrzzrdlw7T+GZAQLPiUvSZmF3ScRQ1 Ni77M7wvvj8WKgEm6kmkIGsqEr1NwVO/9M+bfL4ePy1ywV87Wx7ZOVVK4JWJMqct OtWZynJz3jX67Nda0+9B++4/N4TAaLpUnxu83mMaTL+l/8yYin0iItxxZ3YRMvL8 oMO9BWqFighCSszfIpRufGHjpEeodJZe7aLi7DcePvwyXZWi/al1YQeCdFkrpkcg k8myhP/APzQjk3bdKAlwKQDdvQR4Y3b+bMJVibDWVrVqjLz+ybpaAJiOjKOmp9ND C6LZPJujVsE+mvYR8y2ZVQIDAQABo4IItjCCCLIwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBSa/ZxcJSf3Padj+gBqDILhmEHUmjAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzCCBrwGA1UdEQSCBrMwggavgg5hY2Nlc3MuZmlhLm9yZ4IVYWRuLXByb2Qubnlz ZW5hdGUuZ292ghthbGMtZGV2LXBhbjguYmxvb21maWVsZC5lZHWCHWFsdW1uaS1k ZXYtcGFuLmJsb29tZmllbGQuZWR1ghZhbmRyZXcuZ3NtLmNvcm5lbGwuZWR1ghFh cmNoaXZlcy5jYXJlLm9yZ4ITYXJrLmdzbS5jb3JuZWxsLmVkdYIhYmxvb21maWVs ZC1kZXYtcGFuLmJsb29tZmllbGQuZWR1ghpibHVlcHJpbnQuaGVhbHRoZ3JhZGVz LmNvbYIUYm9uYWNpYy5ueXNlbmF0ZS5nb3aCFmJyYXZvMS5nc20uY29ybmVsbC5l ZHWCE2Jyb2NodXJlLnZpbGNlay5vcmeCDGNhZS5udW5tLmVkdYIVY2FuaXMuZ3Nt LmNvcm5lbGwuZWR1ghhjZW50ZW5uaWFsc3RnLnJvdGFyeS5vcmeCGWNlbnRvczcu ZW1teXR2bGVnZW5kcy5vcmeCFmNlcG1lay5nc20uY29ybmVsbC5lZHWCHWNvbmZy b250Z2xvYmFscG92ZXJ0eS5jcnMub3JnghVkZWx0YS5nc20uY29ybmVsbC5lZHWC GmRldmVsb3BtZW50LXRlc3QubmFjaGEub3JnghZkb21haW4uZ3NtLmNvcm5lbGwu ZWR1gg9nYW1pbmcudW1iYy5lZHWCE2dyYWQuc3MucGFjaWZpYy5lZHWCGGludHJh bmV0LmdzbS5jb3JuZWxsLmVkdYIXaXRwcy1wYW4uYmxvb21maWVsZC5lZHWCGGl0 cHMtcGFuOC5ibG9vbWZpZWxkLmVkdYIla29yZWEtcHItODEucGFudGhlb24tbXVs dGlkZXYudWZjLmNvbYINbGl2ZS5jYXJlLm9yZ4IXbHBkcjIucmVzZWFyY2guY2hv cC5lZHWCE21hbmFnZW1lbnQudW5sdi5lZHWCF21mYS1wYW44LmJsb29tZmllbGQu ZWR1ghBtb2NoaS5hcy1jb2Eub3JngiBvcmdhbmlzbS53b3JsZGp1c3RpY2Vwcm9q ZWN0Lm9yZ4IQb3NpcmlzLmpzdW1zLmVkdYIacGFya2NlbnRlci5nc20uY29ybmVs bC5lZHWCHHBhcmtlcmNlbnRlci5nc20uY29ybmVsbC5lZHWCG3Bhdmxva2dvcm9k Lndlc3RraW5nZG9tLm9yZ4IccGVzdC1jb250cm9sLmhvdXNlbWV0aG9kLmNvbYIg cHItMTM5LnBhbnRoZW9uLW11bHRpZGV2LnVmYy5jb22CFXJpZ2VsLmdzbS5jb3Ju ZWxsLmVkdYIPcnVieS52aWxjZWsub3JngidydXNzaWEtcHItMTQwLnBhbnRoZW9u LW11bHRpZGV2LnVmYy5jb22CFnNpc3RlbS5nc20uY29ybmVsbC5lZHWCGXNsb3Rn YWNvci5nb3ZkZWxpdmVyeS5jb22CFXNtYXJ0LmdzbS5jb3JuZWxsLmVkdYIPc3Nh OC5lbnRzb2Mub3JnghBzdGFnZS5lbnRzb2Mub3JnghFzdGVwcy51d3N0b3V0LmVk dYIWc3lzdGVtLmdzbS5jb3JuZWxsLmVkdYIUdGVzdC5waGluYXRpb25hbC5vcmeC HXRlc3RjZW50ZXItcGFuLmJsb29tZmllbGQuZWR1ghR0dWxpc2FuLm55c2VuYXRl LmdvdoIqdXMtZXNwYW5vbC1wci04MS5wYW50aGVvbi1tdWx0aWRldi51ZmMuY29t ghN3ZWJtYXN0ZXIuanN1bXMuZWR1gh53d3ctc3RhZ2luZy5jYXRob2xpY3Jldmll dy5vcmeCFnd3dy1zdGFnaW5nLnZpbGNlay5vcmeCEnd3dy5hY2Nlc3MuZmlhLm9y Z4IZd3d3LmNhdGFsb2cucm9ja2h1cnN0LmVkdYIYd3d3LmVuZG9jcmlub2xvZ3ku dXcuZWR1gh13d3cuZXhwbG9yZS51Y2xhZXh0ZW5zaW9uLmVkdYIWd3d3LmZ1bmtl Lm55c2VuYXRlLmdvdoIgd3d3LnBhcmtldGNlbnRlci5nc20uY29ybmVsbC5lZHWC Gnd3dy5ycHRvdG8uZ292ZGVsaXZlcnkuY29tghZ3d3cuc3RhZ2luZy52aWxjZWsu b3JnghR3d3cuc3ZyaS51d3N0b3V0LmVkdYIad3d3LnRvdG80ZC5nc20uY29ybmVs bC5lZHWCFHd3dy51cmVjLnV3c3RvdXQuZWR1ghR3d3cyLmdzbS5jb3JuZWxsLmVk dTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2 ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi16J6aoAAAQDAEcw RQIhAINHeSsh4YgJ327Uw6Jmq8W0Yo+4SgblUmJyEOXppQfUAiBTEu9HF8EneR7Q 5Yxe//2NYFfLAhGIF8x7DsodZqiMwwB3ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSF NL2kPTBI1/urAAABi16J6cwAAAQDAEgwRgIhALfVyYVFTTFcLDgQSJN8KPR2GpyT 7c64/mQ8Sb3V5wGzAiEAk1uCmQeLfR2oqGFooNXIbg62NqW86x7AgaiDWqoV1Cow DQYJKoZIhvcNAQELBQADggEBAERtQoi4D1NwSTncPKKWLSV1iMqi2124Ckwp1SIq Uje9vaG5KxaFfwdqadqztW364HPuDnrdDoYOYk19DSN9o71S0BrKaaep5o+iv93Q EfoU6mbC5KXBT7lSESG40zxhuDHvm2pC6Y9+Itz/gSD01ApeLDagza5GhVsRCY5S HkCI51gh8njayZaLHsHWyhtP4rfD6rYr99t1+SD5R7RSv/2aDBp1eltxhQ/H3B0h r/3n6bYYTOmYI1f7GJBKkfHzWQAAgydAbj1Y1uxQSGTq5E228lqK8CoIq/hOYBwp 0O4OFRIOELZ5UH9TrF9EXbmuvyaHpSKCBQiUmaGIkKPIUtI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHSnemv0wZzcXAgMkBQX ztwjNHFrHpIs5axrzzrdlw7T+GZAQLPiUvSZmF3ScRQ1Ni77M7wvvj8WKgEm6kmk IGsqEr1NwVO/9M+bfL4ePy1ywV87Wx7ZOVVK4JWJMqctOtWZynJz3jX67Nda0+9B ++4/N4TAaLpUnxu83mMaTL+l/8yYin0iItxxZ3YRMvL8oMO9BWqFighCSszfIpRu fGHjpEeodJZe7aLi7DcePvwyXZWi/al1YQeCdFkrpkcgk8myhP/APzQjk3bdKAlw KQDdvQR4Y3b+bMJVibDWVrVqjLz+ybpaAJiOjKOmp9NDC6LZPJujVsE+mvYR8y2Z VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 417256116731351637949599170954991246722175 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-23 20:56:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-21 20:56:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'access.fia.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24295278889261962340330570593076765092564594026629510040566849443941721212705222905469227342749655760761925628146467776896918161669177237506061638055976839317974540229085566909601290432792766688540743857041618507082302908209321494362376641574366690514136936988276436757394515726000349835912320682069511736058985263380188984941851626522348036976567257123937402752130277851931257557691396509910741392947845349707974538616547869499133806197294376341097227039876415788275764051935080580783290065738507278734728703160147978353048962982659390140744073959855669537306275821116832669307766091573181749448001568724078979553621 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9afd9c5c2527f73da763fa006a0c82e19841d49a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1715 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.fia.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adn-prod.nysenate.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alc-dev-pan8.bloomfield.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alumni-dev-pan.bloomfield.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'andrew.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'archives.care.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ark.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bloomfield-dev-pan.bloomfield.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blueprint.healthgrades.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bonacic.nysenate.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bravo1.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brochure.vilcek.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cae.nunm.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canis.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'centennialstg.rotary.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'centos7.emmytvlegends.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cepmek.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'confrontglobalpoverty.crs.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'delta.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'development-test.nacha.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domain.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gaming.umbc.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'grad.ss.pacific.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intranet.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'itps-pan.bloomfield.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'itps-pan8.bloomfield.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'korea-pr-81.pantheon-multidev.ufc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.care.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lpdr2.research.chop.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'management.unlv.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mfa-pan8.bloomfield.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mochi.as-coa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'organism.worldjusticeproject.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'osiris.jsums.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parkcenter.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parkercenter.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pavlokgorod.westkingdom.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pest-control.housemethod.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pr-139.pantheon-multidev.ufc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rigel.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ruby.vilcek.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'russia-pr-140.pantheon-multidev.ufc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sistem.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'slotgacor.govdelivery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smart.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ssa8.entsoc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.entsoc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'steps.uwstout.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'system.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.phinational.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'testcenter-pan.bloomfield.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tulisan.nysenate.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'us-espanol-pr-81.pantheon-multidev.ufc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmaster.jsums.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-staging.catholicreview.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-staging.vilcek.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.access.fia.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.catalog.rockhurst.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.endocrinology.uw.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.explore.uclaextension.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.funke.nysenate.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.parketcenter.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rptoto.govdelivery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.staging.vilcek.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.svri.uwstout.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.toto4d.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.urec.uwstout.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www2.gsm.cornell.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b5e89e9aa00000403004730450221008347792b21e18809df6ed4c3a266abc5b4628fb84a06e552627210e5e9a507d402205312ef4717c127791ed0e58c5efffd8d6057cb02118817cc7b0eca1d66a88cc3007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b5e89e9cc0000040300483046022100b7d5c985454d315c2c381048937c28f4761a9c93edceb8fe643c49bdd5e701b3022100935b8299078b7d1da8a86168a0d5c86e0eb636a5bceb1ec081a8835aaa15d42a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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