leafhouston.com
Issued by R3
About this certificate
This digital certificate with serial number 03:58:11:5d:7b:2d:ec:8d:fa:a0:52:30:0e:29:8f:3f:aa:73 was issued on by Let's Encrypt.
With 30 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=leafhouston.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:58:11:5d:7b:2d:ec:8d:fa:a0:52:30:0e:29:8f:3f:aa:73Serial Number (int): 291304788342234370700162264472217523825267
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 08:cd:40:93:d8:16:24:55:19:ca:62:2b:d1:c9:95:b7:2c:21:95:33
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 1d:f6:8b:15:a0:4e:c4:57:77:ac:7e:71:78:ed:9f:6a:ec:59:f9:bd
Fingerprint (sha256): 5d:ce:4a:05:01:d3:bc:d3:a8:53:68:c3:3a:fc:34:5a:91:dc:ba:5d:07:10:1e:1e:3c:c3:4c:c0:22:cd:b0:84
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate leafhouston.com
30
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for leafhouston.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
alnasr.org
berdalgroup.com
binnawi.com
cancerogeno.com
cityoflakesopendiscussion.com
cosmic-crown.com
empyreanaudio.com
farmersworkingtogether.com
itsbjorn.com
leafhouston.com
pakkitchen.com
rapidcitystemcell.com
thecaliforniapetition.com
thefrequenttraveler.com
wfco-op.com
www.alnasr.org
www.berdalgroup.com
www.binnawi.com
www.cancerogeno.com
www.cityoflakesopendiscussion.com
www.cosmic-crown.com
www.empyreanaudio.com
www.farmersworkingtogether.com
www.itsbjorn.com
www.leafhouston.com
www.pakkitchen.com
www.rapidcitystemcell.com
www.thecaliforniapetition.com
www.thefrequenttraveler.com
www.wfco-op.com
berdalgroup.com
binnawi.com
cancerogeno.com
cityoflakesopendiscussion.com
cosmic-crown.com
empyreanaudio.com
farmersworkingtogether.com
itsbjorn.com
leafhouston.com
pakkitchen.com
rapidcitystemcell.com
thecaliforniapetition.com
thefrequenttraveler.com
wfco-op.com
www.alnasr.org
www.berdalgroup.com
www.binnawi.com
www.cancerogeno.com
www.cityoflakesopendiscussion.com
www.cosmic-crown.com
www.empyreanaudio.com
www.farmersworkingtogether.com
www.itsbjorn.com
www.leafhouston.com
www.pakkitchen.com
www.rapidcitystemcell.com
www.thecaliforniapetition.com
www.thefrequenttraveler.com
www.wfco-op.com
Other certificates including the domain name leafhouston.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for leafhouston.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHYTCCBkmgAwIBAgISA1gRXXst7I36oFIwDimPP6pzMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA3MTQwNzU5MzhaFw0yMzEwMTIwNzU5MzdaMBoxGDAWBgNVBAMT D2xlYWZob3VzdG9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AO4qDjilWt0NS5xhu+yrEl9+j53mEoP8J/X0E1Uza13o1J5saLfNxnucNqEmU6u6 GzGJqUhGl6DcoRc+A3rGgGzn2SZehsSbl4pxkhctt6lx3Y438An3G1s/C3s1STyo hGJTU4VJxFk2Re0amma8Wl8qFDZwimNI6/HkOkT+ZnFiO9KIRN0VSJhKOHlxhJkS mb/MxqnqBo69nt15GQsbcelqonS16lW/WOmKim8iNXUXfOH8VVbVIClw+Dpf72+5 gU3sfHT+bxJxpEIenspSjL4QSVvHdriGwv76Cey1R6ETGwfdB/Jnh1VNGoWLmjCz X9oudCEmpUiCsP2uuRnYUYsCAwEAAaOCBIcwggSDMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUCM1Ak9gWJFUZymIr0cmVtywhlTMwHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wggKNBgNVHREEggKEMIICgIIKYWxuYXNyLm9yZ4IPYmVyZGFsZ3JvdXAuY29t ggtiaW5uYXdpLmNvbYIPY2FuY2Vyb2dlbm8uY29tgh1jaXR5b2ZsYWtlc29wZW5k aXNjdXNzaW9uLmNvbYIQY29zbWljLWNyb3duLmNvbYIRZW1weXJlYW5hdWRpby5j b22CGmZhcm1lcnN3b3JraW5ndG9nZXRoZXIuY29tggxpdHNiam9ybi5jb22CD2xl YWZob3VzdG9uLmNvbYIOcGFra2l0Y2hlbi5jb22CFXJhcGlkY2l0eXN0ZW1jZWxs LmNvbYIZdGhlY2FsaWZvcm5pYXBldGl0aW9uLmNvbYIXdGhlZnJlcXVlbnR0cmF2 ZWxlci5jb22CC3dmY28tb3AuY29tgg53d3cuYWxuYXNyLm9yZ4ITd3d3LmJlcmRh bGdyb3VwLmNvbYIPd3d3LmJpbm5hd2kuY29tghN3d3cuY2FuY2Vyb2dlbm8uY29t giF3d3cuY2l0eW9mbGFrZXNvcGVuZGlzY3Vzc2lvbi5jb22CFHd3dy5jb3NtaWMt Y3Jvd24uY29tghV3d3cuZW1weXJlYW5hdWRpby5jb22CHnd3dy5mYXJtZXJzd29y a2luZ3RvZ2V0aGVyLmNvbYIQd3d3Lml0c2Jqb3JuLmNvbYITd3d3LmxlYWZob3Vz dG9uLmNvbYISd3d3LnBha2tpdGNoZW4uY29tghl3d3cucmFwaWRjaXR5c3RlbWNl bGwuY29tgh13d3cudGhlY2FsaWZvcm5pYXBldGl0aW9uLmNvbYIbd3d3LnRoZWZy ZXF1ZW50dHJhdmVsZXIuY29tgg93d3cud2Zjby1vcC5jb20wEwYDVR0gBAwwCjAI BgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwB6MoxU2LcttiDqOOBS HumEFnAyE4VNO9IrwTpXo1LrUgAAAYlToJACAAAEAwBIMEYCIQDlpvdKD+XTxLnO /9RRVea/3R+2hGF5yagEVsmVzjP7CgIhAKMUJVYEopkPvVdFlanYPqhuvZhAr3SH i9elIveF6eFvAHYAtz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGJ U6CP9gAABAMARzBFAiEAw27dZuKqDDLQqqhhfDSmIHuSFSybDUmOLvA1NXWFkgYC IFO4CKdKoILiUINfgeyr1KJe8ichEE+icGwAcyChZH7+MA0GCSqGSIb3DQEBCwUA A4IBAQBSPpFmwIajZy7Zkz8atJaposNvRU7tsuCh8wAaT0vmLzOIGGV6eWl0NZ39 enYSTUX0WuTbZwQCLIhA4jEAJWF9Q/MiYmO7v9pNZ1hgmXwC0Bs4gPGKME2/qqLi PPGc16yJODf7tzwbSdBon3EJwM0NLqGvjpBKj5MzhB/4S1d7Zqci4rIDjkJ7ISGf KNKSMHV0cgceIOxw4HrwJ4qxuAHULNgMshALzD5Sja3+EmGk8dZxYxov2WyYOzXZ +fFkKeT/Uq8I9klYT851VBlb/ccQ4NF0rT+95YObbkrZ34cEA8RyPOcWZlmno26l 2cJnzD42HCF7a0vMGTCwQosvbsnU -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ioOOKVa3Q1LnGG77KsS X36PneYSg/wn9fQTVTNrXejUnmxot83Ge5w2oSZTq7obMYmpSEaXoNyhFz4DesaA bOfZJl6GxJuXinGSFy23qXHdjjfwCfcbWz8LezVJPKiEYlNThUnEWTZF7RqaZrxa XyoUNnCKY0jr8eQ6RP5mcWI70ohE3RVImEo4eXGEmRKZv8zGqeoGjr2e3XkZCxtx 6WqidLXqVb9Y6YqKbyI1dRd84fxVVtUgKXD4Ol/vb7mBTex8dP5vEnGkQh6eylKM vhBJW8d2uIbC/voJ7LVHoRMbB90H8meHVU0ahYuaMLNf2i50ISalSIKw/a65GdhR iwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 291304788342234370700162264472217523825267 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-14 07:59:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-12 07:59:37 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'leafhouston.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30065454947467723824607813722609601767876043475066909552494395539217620546826918920593959255217669210806970863209092976157603011222697693441176810866741451394011785044957666205233605106088643004706206377182115099496060369261904797798006130237047626809325988390644730161637656233798244371397521126192193442801544906049748168152140158142296192639125460399686916513096601861517443726826861961460205100317020899025816701075975677328475654315585580381890173905951920059814614957904568067650344061466542709957002166111429813723305776359445327006192875891314024943752343896110654042662174611985526756179729448835852256432523 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 08cd4093d816245519ca622bd1c995b72c219533 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (644 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alnasr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'berdalgroup.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'binnawi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cancerogeno.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cityoflakesopendiscussion.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cosmic-crown.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'empyreanaudio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'farmersworkingtogether.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'itsbjorn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'leafhouston.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pakkitchen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rapidcitystemcell.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thecaliforniapetition.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thefrequenttraveler.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wfco-op.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.alnasr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.berdalgroup.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.binnawi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cancerogeno.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cityoflakesopendiscussion.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cosmic-crown.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.empyreanaudio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.farmersworkingtogether.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.itsbjorn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.leafhouston.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pakkitchen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rapidcitystemcell.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thecaliforniapetition.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thefrequenttraveler.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wfco-op.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018953a090020000040300483046022100e5a6f74a0fe5d3c4b9ceffd45155e6bfdd1fb6846179c9a80456c995ce33fb0a022100a314255604a2990fbd574595a9d83ea86ebd9840af74878bd7a522f785e9e16f007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018953a08ff60000040300473045022100c36edd66e2aa0c32d0aaa8617c34a6207b92152c9b0d498e2ef0353575859206022053b808a74aa082e250835f81ecabd4a25ef22721104fa2706c007320a1647efe . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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