yourlifeiowa.org
Issued by R3
About this certificate
This digital certificate with serial number 03:6c:6f:c4:a9:a7:c1:ac:d8:31:93:a7:1b:97:21:78:da:4e was issued on by Let's Encrypt.
With 79 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=yourlifeiowa.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:6c:6f:c4:a9:a7:c1:ac:d8:31:93:a7:1b:97:21:78:da:4eSerial Number (int): 298235918861476758202120300273325573724750
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 47:55:bd:dd:fc:17:75:bd:35:e4:a4:cc:86:53:28:ef:6d:d6:b4:01
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 57:fc:45:c9:a0:17:df:c9:3c:bc:42:9d:81:d0:b1:2a:b9:1b:33:54
Fingerprint (sha256): 56:66:f8:7e:44:73:0e:43:4f:48:9b:06:43:c9:36:e2:b1:d3:6e:55:17:3b:c8:7b:06:35:c5:fe:85:3b:db:89
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate yourlifeiowa.org
79
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for yourlifeiowa.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
1800betsoff.org
casaiowa.org
childsupport.ia.gov
coalitions.drugfreeinfo.org
dpscareers.com
drugfreeinfo.com
drugfreeinfo.net
drugfreeinfo.org
educateiowa.gov
facilitylocator.drugfreeinfo.org
iahealthlink.gov
iaschoolperformance.gov
iaschoolperformance.org
iowaattorneygeneral.org
iowacourtsonline.com
iowacourtsonline.net
iowacourtsonline.org
iowacultureapp.com
iowacultureapp.org
iowadnr.net
iowadot.org
iowahumanitiescouncil.gov
iowaoutdoorsmagazine.com
iowap2interns.com
iowasourcewater.org
iowatitleguaranty.gov
iowaworkforcedevelopment.gov
iowaworks.gov
iowaworks.org
query.iowasexoffender.org
recoveryiowa.org
resources.iowahistory.org
skillediowa.org
stophtiowa.org
whatdrivesyouiowa.com
whatdrivesyouiowa.org
www.1800betsoff.org
www.casaiowa.org
www.childsupport.ia.gov
www.cjis.iowa.gov
www.dia-hfd.state.ia.us
www.dom.state.ia.us
www.dpscareers.com
www.food.iowa.gov
www.govelect.iowa.gov
www.governor.state.ia.us
www.ia.gov
www.iaschoolperformance.gov
www.iaschoolperformance.org
www.icn.state.ia.us
www.iid.state.ia.us
www.infoiowa.state.ia.us
www.insuranceca.iowa.gov
www.iowabyways.org
www.iowacleanair.gov
www.iowacourtsonline.com
www.iowacourtsonline.net
www.iowacourtsonline.org
www.iowacultureapp.com
www.iowacultureapp.org
www.iowadnr.com
www.iowadnr.net
www.iowadot.org
www.iowagreatplaces.gov
www.iowagtsb.org
www.iowahistory.org
www.iowahush.com
www.iowap2services.com
www.iowareap.com
www.iowaroadsigns.com
www.iowasexoffender.com
www.iowasexoffender.net
www.iowasexoffender.org
www.iowasexoffenders.com
www.iowasexoffenders.net
www.iowasexoffenders.org
www.stophtiowa.org
www.workforce.iowa.gov
yourlifeiowa.org
casaiowa.org
childsupport.ia.gov
coalitions.drugfreeinfo.org
dpscareers.com
drugfreeinfo.com
drugfreeinfo.net
drugfreeinfo.org
educateiowa.gov
facilitylocator.drugfreeinfo.org
iahealthlink.gov
iaschoolperformance.gov
iaschoolperformance.org
iowaattorneygeneral.org
iowacourtsonline.com
iowacourtsonline.net
iowacourtsonline.org
iowacultureapp.com
iowacultureapp.org
iowadnr.net
iowadot.org
iowahumanitiescouncil.gov
iowaoutdoorsmagazine.com
iowap2interns.com
iowasourcewater.org
iowatitleguaranty.gov
iowaworkforcedevelopment.gov
iowaworks.gov
iowaworks.org
query.iowasexoffender.org
recoveryiowa.org
resources.iowahistory.org
skillediowa.org
stophtiowa.org
whatdrivesyouiowa.com
whatdrivesyouiowa.org
www.1800betsoff.org
www.casaiowa.org
www.childsupport.ia.gov
www.cjis.iowa.gov
www.dia-hfd.state.ia.us
www.dom.state.ia.us
www.dpscareers.com
www.food.iowa.gov
www.govelect.iowa.gov
www.governor.state.ia.us
www.ia.gov
www.iaschoolperformance.gov
www.iaschoolperformance.org
www.icn.state.ia.us
www.iid.state.ia.us
www.infoiowa.state.ia.us
www.insuranceca.iowa.gov
www.iowabyways.org
www.iowacleanair.gov
www.iowacourtsonline.com
www.iowacourtsonline.net
www.iowacourtsonline.org
www.iowacultureapp.com
www.iowacultureapp.org
www.iowadnr.com
www.iowadnr.net
www.iowadot.org
www.iowagreatplaces.gov
www.iowagtsb.org
www.iowahistory.org
www.iowahush.com
www.iowap2services.com
www.iowareap.com
www.iowaroadsigns.com
www.iowasexoffender.com
www.iowasexoffender.net
www.iowasexoffender.org
www.iowasexoffenders.com
www.iowasexoffenders.net
www.iowasexoffenders.org
www.stophtiowa.org
www.workforce.iowa.gov
yourlifeiowa.org
Other certificates including the domain name yourlifeiowa.org
(limited to 100 certificates)
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
yourlifeiowa.com
yourlifeiowa.org
yourlifeiowa.org
yourlifeiowa.com
Certificate
The complete raw certificate details for yourlifeiowa.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIILlTCCCn2gAwIBAgISA2xvxKmnwazYMZOnG5cheNpOMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMDQxODI3NTRaFw0yNDAzMDMxODI3NTNaMBsxGTAXBgNVBAMT EHlvdXJsaWZlaW93YS5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCUNAKjPYU6vQUxgNaIAjNytpydAcPodXbvuBJhYHhs4SITOj27wE4DoieuhFKC Q1Gbbrm3cghB9EaJvhjQbUuj4RdsNZ6m/GClKdlNJ/94Rwv0O6oDJ1bBuoayDyvf bOPtjkls/3aJTDY6W+uQKLTV5X34k88dx1S6ig0KVJNBPjXMtGcaTGWnUwfnHTCr lE7hr6jUBFaJiG6KlNwDHVi7izQQ23Cnxetczy+VbWJnnzWdRkk4tFt2sbC2aeEM qqKstSCo0ADdW8cAD7LJH+IzIIqKXlwcPziKdJfPihfiKi3CCtoP1G/WW3rn/Ksg vmUu1J0BMJ80BsY4uNkUAZ81AgMBAAGjggi6MIIItjAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFEdVvd38F3W9NeSkzIZTKO9t1rQBMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMIIGwQYDVR0RBIIGuDCCBrSCDzE4MDBiZXRzb2ZmLm9yZ4IMY2FzYWlvd2Eu b3JnghNjaGlsZHN1cHBvcnQuaWEuZ292ghtjb2FsaXRpb25zLmRydWdmcmVlaW5m by5vcmeCDmRwc2NhcmVlcnMuY29tghBkcnVnZnJlZWluZm8uY29tghBkcnVnZnJl ZWluZm8ubmV0ghBkcnVnZnJlZWluZm8ub3Jngg9lZHVjYXRlaW93YS5nb3aCIGZh Y2lsaXR5bG9jYXRvci5kcnVnZnJlZWluZm8ub3JnghBpYWhlYWx0aGxpbmsuZ292 ghdpYXNjaG9vbHBlcmZvcm1hbmNlLmdvdoIXaWFzY2hvb2xwZXJmb3JtYW5jZS5v cmeCF2lvd2FhdHRvcm5leWdlbmVyYWwub3JnghRpb3dhY291cnRzb25saW5lLmNv bYIUaW93YWNvdXJ0c29ubGluZS5uZXSCFGlvd2Fjb3VydHNvbmxpbmUub3JnghJp b3dhY3VsdHVyZWFwcC5jb22CEmlvd2FjdWx0dXJlYXBwLm9yZ4ILaW93YWRuci5u ZXSCC2lvd2Fkb3Qub3Jnghlpb3dhaHVtYW5pdGllc2NvdW5jaWwuZ292ghhpb3dh b3V0ZG9vcnNtYWdhemluZS5jb22CEWlvd2FwMmludGVybnMuY29tghNpb3dhc291 cmNld2F0ZXIub3JnghVpb3dhdGl0bGVndWFyYW50eS5nb3aCHGlvd2F3b3JrZm9y Y2VkZXZlbG9wbWVudC5nb3aCDWlvd2F3b3Jrcy5nb3aCDWlvd2F3b3Jrcy5vcmeC GXF1ZXJ5Lmlvd2FzZXhvZmZlbmRlci5vcmeCEHJlY292ZXJ5aW93YS5vcmeCGXJl c291cmNlcy5pb3dhaGlzdG9yeS5vcmeCD3NraWxsZWRpb3dhLm9yZ4IOc3RvcGh0 aW93YS5vcmeCFXdoYXRkcml2ZXN5b3Vpb3dhLmNvbYIVd2hhdGRyaXZlc3lvdWlv d2Eub3JnghN3d3cuMTgwMGJldHNvZmYub3JnghB3d3cuY2FzYWlvd2Eub3Jnghd3 d3cuY2hpbGRzdXBwb3J0LmlhLmdvdoIRd3d3LmNqaXMuaW93YS5nb3aCF3d3dy5k aWEtaGZkLnN0YXRlLmlhLnVzghN3d3cuZG9tLnN0YXRlLmlhLnVzghJ3d3cuZHBz Y2FyZWVycy5jb22CEXd3dy5mb29kLmlvd2EuZ292ghV3d3cuZ292ZWxlY3QuaW93 YS5nb3aCGHd3dy5nb3Zlcm5vci5zdGF0ZS5pYS51c4IKd3d3LmlhLmdvdoIbd3d3 Lmlhc2Nob29scGVyZm9ybWFuY2UuZ292ght3d3cuaWFzY2hvb2xwZXJmb3JtYW5j ZS5vcmeCE3d3dy5pY24uc3RhdGUuaWEudXOCE3d3dy5paWQuc3RhdGUuaWEudXOC GHd3dy5pbmZvaW93YS5zdGF0ZS5pYS51c4IYd3d3Lmluc3VyYW5jZWNhLmlvd2Eu Z292ghJ3d3cuaW93YWJ5d2F5cy5vcmeCFHd3dy5pb3dhY2xlYW5haXIuZ292ghh3 d3cuaW93YWNvdXJ0c29ubGluZS5jb22CGHd3dy5pb3dhY291cnRzb25saW5lLm5l dIIYd3d3Lmlvd2Fjb3VydHNvbmxpbmUub3JnghZ3d3cuaW93YWN1bHR1cmVhcHAu Y29tghZ3d3cuaW93YWN1bHR1cmVhcHAub3Jngg93d3cuaW93YWRuci5jb22CD3d3 dy5pb3dhZG5yLm5ldIIPd3d3Lmlvd2Fkb3Qub3Jnghd3d3cuaW93YWdyZWF0cGxh Y2VzLmdvdoIQd3d3Lmlvd2FndHNiLm9yZ4ITd3d3Lmlvd2FoaXN0b3J5Lm9yZ4IQ d3d3Lmlvd2FodXNoLmNvbYIWd3d3Lmlvd2FwMnNlcnZpY2VzLmNvbYIQd3d3Lmlv d2FyZWFwLmNvbYIVd3d3Lmlvd2Fyb2Fkc2lnbnMuY29tghd3d3cuaW93YXNleG9m ZmVuZGVyLmNvbYIXd3d3Lmlvd2FzZXhvZmZlbmRlci5uZXSCF3d3dy5pb3dhc2V4 b2ZmZW5kZXIub3Jnghh3d3cuaW93YXNleG9mZmVuZGVycy5jb22CGHd3dy5pb3dh c2V4b2ZmZW5kZXJzLm5ldIIYd3d3Lmlvd2FzZXhvZmZlbmRlcnMub3JnghJ3d3cu c3RvcGh0aW93YS5vcmeCFnd3dy53b3JrZm9yY2UuaW93YS5nb3aCEHlvdXJsaWZl aW93YS5vcmcwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1 BIHyAPAAdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYw2TSSi AAAEAwBHMEUCIQDKAHDX9u1nehsrDltgWO3F7LtLlsJWnoZ1yEdwN2aZlQIgKMQG 0CtH9zNm/rEwnofkONFZIRABXVWHaLqbmj55nQYAdgDuzdBk1dsazsVct520zROi ModGfLzs3sNRSFlGcR+1mwAAAYw2TSbVAAAEAwBHMEUCIBUJdvcO2Tzc3qr9gchB TSdjwYwlQ4Dhgk5nuNHk7p4eAiEA1RCPVPEE+DvRQQWSQSaIcJDvPZNlYueoaCWt 6Agv8c0wDQYJKoZIhvcNAQELBQADggEBALcz8DqSWalKQmJSBP9GloaNE72KKwZl GQU/xFMOi6nzfLhvcOz4DpzG89fpqfi+u7OURLfLulLLd6Ua+RmJeblv6o/qKiDr hpCmDcfOlUJxrTae7b01wtgn67UEDHSahiSZGNam48YxseOApm0AHBJSNkB3Riz1 GwOJtFRzmDbZCZvl3tMSLY2mos0xnuj0/KZ8V2VhIXyLZUjWsTSXv1iItm1iwNl9 LqjzL6Vvs07dTIXscSuFAPc1VAwbHrFtkuj+GoyZ/LYfjEXkE53/iYJ7145kaUHv qvoP1hSLjMXZTMIv+1HyqVbhfArIjd+V0qJiCRhSUgbGMaWUmvtDTVw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlDQCoz2FOr0FMYDWiAIz cracnQHD6HV277gSYWB4bOEiEzo9u8BOA6InroRSgkNRm265t3IIQfRGib4Y0G1L o+EXbDWepvxgpSnZTSf/eEcL9DuqAydWwbqGsg8r32zj7Y5JbP92iUw2OlvrkCi0 1eV9+JPPHcdUuooNClSTQT41zLRnGkxlp1MH5x0wq5RO4a+o1ARWiYhuipTcAx1Y u4s0ENtwp8XrXM8vlW1iZ581nUZJOLRbdrGwtmnhDKqirLUgqNAA3VvHAA+yyR/i MyCKil5cHD84inSXz4oX4iotwgraD9Rv1lt65/yrIL5lLtSdATCfNAbGOLjZFAGf NQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 298235918861476758202120300273325573724750 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-04 18:27:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-03 18:27:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'yourlifeiowa.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18708916371443918199658032088732311412459549107001016495910732172060682768409416308064653321420411756251249956953948249450253805350304359562466430806683876451614213959229203711395674739877705700649730567980947531900936434498866707728597036883324001544353355046547206537675243169082420678984854449115103438201722215665507841408041892635483876344541496169759259052038602220840758654072423327831198292520430514989128215007671960457205980954590257443678973690599574144809300376983762993954051448494636562953989126572955184688636704680650613424731388296287499349546236106569708283268875912755962775407904655341297355300661 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4755bdddfc1775bd35e4a4cc865328ef6dd6b401 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1720 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '1800betsoff.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'casaiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'childsupport.ia.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coalitions.drugfreeinfo.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dpscareers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'drugfreeinfo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'drugfreeinfo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'drugfreeinfo.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'educateiowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'facilitylocator.drugfreeinfo.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iahealthlink.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iaschoolperformance.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iaschoolperformance.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaattorneygeneral.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowacourtsonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowacourtsonline.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowacourtsonline.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowacultureapp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowacultureapp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowadnr.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowadot.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowahumanitiescouncil.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaoutdoorsmagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowap2interns.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowasourcewater.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowatitleguaranty.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaworkforcedevelopment.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaworks.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iowaworks.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'query.iowasexoffender.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'recoveryiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resources.iowahistory.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'skillediowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stophtiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'whatdrivesyouiowa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'whatdrivesyouiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.1800betsoff.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.casaiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.childsupport.ia.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cjis.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dia-hfd.state.ia.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dom.state.ia.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dpscareers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.food.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.govelect.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.governor.state.ia.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ia.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iaschoolperformance.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iaschoolperformance.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.icn.state.ia.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iid.state.ia.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.infoiowa.state.ia.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.insuranceca.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowabyways.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowacleanair.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowacourtsonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowacourtsonline.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowacourtsonline.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowacultureapp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowacultureapp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowadnr.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowadnr.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowadot.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowagreatplaces.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowagtsb.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowahistory.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowahush.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowap2services.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowareap.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowaroadsigns.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasexoffender.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasexoffender.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasexoffender.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasexoffenders.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasexoffenders.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iowasexoffenders.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stophtiowa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.workforce.iowa.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'yourlifeiowa.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c364d24a20000040300473045022100ca0070d7f6ed677a1b2b0e5b6058edc5ecbb4b96c2569e8675c8477037669995022028c406d02b47f73366feb1309e87e438d1592110015d558768ba9b9a3e799d06007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c364d26d500000403004730450220150976f70ed93cdcdeaafd81c8414d2763c18c254380e1824e67b8d1e4ee9e1e022100d5108f54f104f83bd14105924126887090ef3d936562e7a86825ade8082ff1cd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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