thegoodkarma.co
Issued by R3
About this certificate
This digital certificate with serial number 03:f3:a5:df:42:92:e9:52:76:1c:c0:7e:0f:64:25:56:78:4d was issued on by Let's Encrypt.
With 100 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=thegoodkarma.co
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f3:a5:df:42:92:e9:52:76:1c:c0:7e:0f:64:25:56:78:4dSerial Number (int): 344245954808851306212130066002433684174925
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f2:f9:87:51:ba:c3:f0:24:82:f5:b1:af:f7:69:33:be:ec:a2:36:1f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 3a:09:8d:2e:b0:e7:c9:e5:b6:88:d8:c1:cd:ef:e0:e8:40:43:7a:5a
Fingerprint (sha256): 60:22:0b:6f:62:1b:69:3e:c4:bc:ef:f0:e0:5a:4c:4e:33:ae:5e:7e:ce:94:db:0a:08:eb:f9:68:30:a3:13:45
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate thegoodkarma.co
100
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for thegoodkarma.co
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.5mobile.com
*.altosdelbonito.com
*.bboscovs.com
*.bcicreative.biz
*.bluedartexpress.com
*.bobword.com
*.bodycoaches.net
*.bossrevolution.co
*.chsttijd.be
*.cirdown.com
*.cocopeat.asia
*.codigosancho.com
*.craigslisst.org
*.daovies2.co
*.duzal.at
*.fatfinders.online
*.gamatotv3.com
*.gen1234adx.com
*.goalservice.com
*.grandos-show.com
*.guncontrol.com.au
*.gymgear.com.au
*.heathershultzphotography.com
*.holidaylettingsco.uk
*.idontwant.us
*.iecosanzacsmeducativo.com
*.industrynet.us
*.islamska-biblioteka.net
*.komeps.com
*.linertic.com
*.magnolialanebywhitney.com
*.megacineuhd.biz
*.mein-endered.de
*.movieswood.us
*.nxtgens.org
*.offend.com.au
*.patientconect365.com
*.precisioncarpentrync.com
*.prizedraw.la
*.rouhlondon.com
*.studioalfaghi.net
*.switzerlandairport.com
*.sydspetcare.com
*.thegoodkarma.co
*.tkconstructionltd.com
*.turnurearchitecture.com
*.victorraulr.info
*.watchfreemoviesnow.org
*.webtrek.com.au
*.wzfenghu.com
5mobile.com
altosdelbonito.com
bboscovs.com
bcicreative.biz
bluedartexpress.com
bobword.com
bodycoaches.net
bossrevolution.co
chsttijd.be
cirdown.com
cocopeat.asia
codigosancho.com
craigslisst.org
daovies2.co
duzal.at
fatfinders.online
gamatotv3.com
gen1234adx.com
goalservice.com
grandos-show.com
guncontrol.com.au
gymgear.com.au
heathershultzphotography.com
holidaylettingsco.uk
idontwant.us
iecosanzacsmeducativo.com
industrynet.us
islamska-biblioteka.net
komeps.com
linertic.com
magnolialanebywhitney.com
megacineuhd.biz
mein-endered.de
movieswood.us
nxtgens.org
offend.com.au
patientconect365.com
precisioncarpentrync.com
prizedraw.la
rouhlondon.com
studioalfaghi.net
switzerlandairport.com
sydspetcare.com
thegoodkarma.co
tkconstructionltd.com
turnurearchitecture.com
victorraulr.info
watchfreemoviesnow.org
webtrek.com.au
wzfenghu.com
*.altosdelbonito.com
*.bboscovs.com
*.bcicreative.biz
*.bluedartexpress.com
*.bobword.com
*.bodycoaches.net
*.bossrevolution.co
*.chsttijd.be
*.cirdown.com
*.cocopeat.asia
*.codigosancho.com
*.craigslisst.org
*.daovies2.co
*.duzal.at
*.fatfinders.online
*.gamatotv3.com
*.gen1234adx.com
*.goalservice.com
*.grandos-show.com
*.guncontrol.com.au
*.gymgear.com.au
*.heathershultzphotography.com
*.holidaylettingsco.uk
*.idontwant.us
*.iecosanzacsmeducativo.com
*.industrynet.us
*.islamska-biblioteka.net
*.komeps.com
*.linertic.com
*.magnolialanebywhitney.com
*.megacineuhd.biz
*.mein-endered.de
*.movieswood.us
*.nxtgens.org
*.offend.com.au
*.patientconect365.com
*.precisioncarpentrync.com
*.prizedraw.la
*.rouhlondon.com
*.studioalfaghi.net
*.switzerlandairport.com
*.sydspetcare.com
*.thegoodkarma.co
*.tkconstructionltd.com
*.turnurearchitecture.com
*.victorraulr.info
*.watchfreemoviesnow.org
*.webtrek.com.au
*.wzfenghu.com
5mobile.com
altosdelbonito.com
bboscovs.com
bcicreative.biz
bluedartexpress.com
bobword.com
bodycoaches.net
bossrevolution.co
chsttijd.be
cirdown.com
cocopeat.asia
codigosancho.com
craigslisst.org
daovies2.co
duzal.at
fatfinders.online
gamatotv3.com
gen1234adx.com
goalservice.com
grandos-show.com
guncontrol.com.au
gymgear.com.au
heathershultzphotography.com
holidaylettingsco.uk
idontwant.us
iecosanzacsmeducativo.com
industrynet.us
islamska-biblioteka.net
komeps.com
linertic.com
magnolialanebywhitney.com
megacineuhd.biz
mein-endered.de
movieswood.us
nxtgens.org
offend.com.au
patientconect365.com
precisioncarpentrync.com
prizedraw.la
rouhlondon.com
studioalfaghi.net
switzerlandairport.com
sydspetcare.com
thegoodkarma.co
tkconstructionltd.com
turnurearchitecture.com
victorraulr.info
watchfreemoviesnow.org
webtrek.com.au
wzfenghu.com
Other certificates including the domain name thegoodkarma.co
(limited to 100 certificates)
Certificate
The complete raw certificate details for thegoodkarma.co in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIINPDCCDCSgAwIBAgISA/Ol30KS6VJ2HMB+D2QlVnhNMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMjAxMTU0MDZaFw0yNDAxMTgxMTU0MDVaMBoxGDAWBgNVBAMT D3RoZWdvb2RrYXJtYS5jbzCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB ALaGVtetYTt1SEIsMpYaPpVSdBYBKwqi2snBYbijm4nn8eJJQRMxxSQY5TO2uOWx wuVZOorvbgEPOiyewJXrnsvS+c9M+T/UAm62zcP+dysa0tkCmIh4KrJikAKeNtcc fGUJzarNlYmXjRQ3JcFI0BsIderjR6NwaeIZ16mXu/GBxPIQIquX5OFKHzMJwxpb c2p6CQLXlJOLvIjng11zOFv9DEzkAVrN9C+7rG2X5LMEQmr81FRc1t5MnmJT7PsK j/KIHFm/SCEGp77/Sv5x2343xZxmH8dhA3gAHVFXVLoXMKaIlKFoa64KpNnJWx7b 5VeTEZVYLDSQvGnaBP7tKaB6Wx201tIZkvgzlbRqlAmG0TN3MXh+teeiBmIckipM zF5ApFCUKb7o/qL74jyeqdnGR7GCtwOfO6ww8ETmX+8QDZBPJE6OQkdtbeZktmMg aknGb0pe/H2/e//YspNNzR86RRM36Y/r0m2LpupiRnT3zEMYYoSYCT2C4qT9m486 tIL6IdMzwKnpecyvIDuQyt3kler4iD5zYfkwe+Nc5uXhCNLYMqLJ+E5snCqMo9ED zqOImDQvXikmQQQi1qnPpVe5jL4KrRmLPkqx242UMZVfc7JY5fUU+oxzDE4w1hQs L11SaiAqh1ugW7Q9PHmR1tmlCb/wcjM4BUQktdFk+c6tAgMBAAGjggliMIIJXjAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFPL5h1G6w/AkgvWxr/dpM77sojYfMB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMIIHaQYDVR0RBIIHYDCCB1yCDSouNW1vYmlsZS5j b22CFCouYWx0b3NkZWxib25pdG8uY29tgg4qLmJib3Njb3ZzLmNvbYIRKi5iY2lj cmVhdGl2ZS5iaXqCFSouYmx1ZWRhcnRleHByZXNzLmNvbYINKi5ib2J3b3JkLmNv bYIRKi5ib2R5Y29hY2hlcy5uZXSCEyouYm9zc3Jldm9sdXRpb24uY2+CDSouY2hz dHRpamQuYmWCDSouY2lyZG93bi5jb22CDyouY29jb3BlYXQuYXNpYYISKi5jb2Rp Z29zYW5jaG8uY29tghEqLmNyYWlnc2xpc3N0Lm9yZ4INKi5kYW92aWVzMi5jb4IK Ki5kdXphbC5hdIITKi5mYXRmaW5kZXJzLm9ubGluZYIPKi5nYW1hdG90djMuY29t ghAqLmdlbjEyMzRhZHguY29tghEqLmdvYWxzZXJ2aWNlLmNvbYISKi5ncmFuZG9z LXNob3cuY29tghMqLmd1bmNvbnRyb2wuY29tLmF1ghAqLmd5bWdlYXIuY29tLmF1 gh4qLmhlYXRoZXJzaHVsdHpwaG90b2dyYXBoeS5jb22CFiouaG9saWRheWxldHRp bmdzY28udWuCDiouaWRvbnR3YW50LnVzghsqLmllY29zYW56YWNzbWVkdWNhdGl2 by5jb22CECouaW5kdXN0cnluZXQudXOCGSouaXNsYW1za2EtYmlibGlvdGVrYS5u ZXSCDCoua29tZXBzLmNvbYIOKi5saW5lcnRpYy5jb22CGyoubWFnbm9saWFsYW5l Ynl3aGl0bmV5LmNvbYIRKi5tZWdhY2luZXVoZC5iaXqCESoubWVpbi1lbmRlcmVk LmRlgg8qLm1vdmllc3dvb2QudXOCDSoubnh0Z2Vucy5vcmeCDyoub2ZmZW5kLmNv bS5hdYIWKi5wYXRpZW50Y29uZWN0MzY1LmNvbYIaKi5wcmVjaXNpb25jYXJwZW50 cnluYy5jb22CDioucHJpemVkcmF3LmxhghAqLnJvdWhsb25kb24uY29tghMqLnN0 dWRpb2FsZmFnaGkubmV0ghgqLnN3aXR6ZXJsYW5kYWlycG9ydC5jb22CESouc3lk c3BldGNhcmUuY29tghEqLnRoZWdvb2RrYXJtYS5jb4IXKi50a2NvbnN0cnVjdGlv bmx0ZC5jb22CGSoudHVybnVyZWFyY2hpdGVjdHVyZS5jb22CEioudmljdG9ycmF1 bHIuaW5mb4IYKi53YXRjaGZyZWVtb3ZpZXNub3cub3JnghAqLndlYnRyZWsuY29t LmF1gg4qLnd6ZmVuZ2h1LmNvbYILNW1vYmlsZS5jb22CEmFsdG9zZGVsYm9uaXRv LmNvbYIMYmJvc2NvdnMuY29tgg9iY2ljcmVhdGl2ZS5iaXqCE2JsdWVkYXJ0ZXhw cmVzcy5jb22CC2JvYndvcmQuY29tgg9ib2R5Y29hY2hlcy5uZXSCEWJvc3NyZXZv bHV0aW9uLmNvggtjaHN0dGlqZC5iZYILY2lyZG93bi5jb22CDWNvY29wZWF0LmFz aWGCEGNvZGlnb3NhbmNoby5jb22CD2NyYWlnc2xpc3N0Lm9yZ4ILZGFvdmllczIu Y2+CCGR1emFsLmF0ghFmYXRmaW5kZXJzLm9ubGluZYINZ2FtYXRvdHYzLmNvbYIO Z2VuMTIzNGFkeC5jb22CD2dvYWxzZXJ2aWNlLmNvbYIQZ3JhbmRvcy1zaG93LmNv bYIRZ3VuY29udHJvbC5jb20uYXWCDmd5bWdlYXIuY29tLmF1ghxoZWF0aGVyc2h1 bHR6cGhvdG9ncmFwaHkuY29tghRob2xpZGF5bGV0dGluZ3Njby51a4IMaWRvbnR3 YW50LnVzghlpZWNvc2FuemFjc21lZHVjYXRpdm8uY29tgg5pbmR1c3RyeW5ldC51 c4IXaXNsYW1za2EtYmlibGlvdGVrYS5uZXSCCmtvbWVwcy5jb22CDGxpbmVydGlj LmNvbYIZbWFnbm9saWFsYW5lYnl3aGl0bmV5LmNvbYIPbWVnYWNpbmV1aGQuYml6 gg9tZWluLWVuZGVyZWQuZGWCDW1vdmllc3dvb2QudXOCC254dGdlbnMub3Jngg1v ZmZlbmQuY29tLmF1ghRwYXRpZW50Y29uZWN0MzY1LmNvbYIYcHJlY2lzaW9uY2Fy cGVudHJ5bmMuY29tggxwcml6ZWRyYXcubGGCDnJvdWhsb25kb24uY29tghFzdHVk aW9hbGZhZ2hpLm5ldIIWc3dpdHplcmxhbmRhaXJwb3J0LmNvbYIPc3lkc3BldGNh cmUuY29tgg90aGVnb29ka2FybWEuY2+CFXRrY29uc3RydWN0aW9ubHRkLmNvbYIX dHVybnVyZWFyY2hpdGVjdHVyZS5jb22CEHZpY3RvcnJhdWxyLmluZm+CFndhdGNo ZnJlZW1vdmllc25vdy5vcmeCDndlYnRyZWsuY29tLmF1ggx3emZlbmdodS5jb20w EwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdQDa tr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYtNJm47AAAEAwBGMEQC IGKr+2SwmJYXmrJfkaAMOzoxPe8IRv4XNaPrBOxn4pQGAiBAp8KhQ3kldyIWarJI gsSHbDR1tONSoXuJVsA9M9AbzwB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0t cm/h+tQXAAABi00mbjAAAAQDAEgwRgIhANBr7sd46qbIzRUg1X7+s0d+5Ln0PWkx Z/7T1NuDuFCNAiEAykrfWYCGlWpj20FLCBbd54fTGZSfww3iAaVrtK9+I58wDQYJ KoZIhvcNAQELBQADggEBAFxSKTt4Tf8r11+5lPkDRf5P/iiuh1hZu3Rlbmbo9NpU x+dmhQbsTax/HItTx2Ir+oEpNjjU9K9yvyAsp2CZA3IYd8avXk51CYqnEF8O+rdR 0vXcAvCHEw9VtfkDSpNKdBL5BWUTOzVFL3iC6QWAZtmb7SZIWjzoFEJ/VzNt9oxz IgQx7rw6I+Id9PngBCN5Oovd+pk4yUHabNeMavl1NXlnoG54Cpezbkp5DYpQI4kD wdifMd3/Yeqp1gz7lyZ7roUqtiR+IVNWd7+7knYsrWRM62Gn+UH4SluVO9EYUQ+R XGmMq/JnFq/vjzEEI1Jk+oJhdQ97Y8SLZ1rD5k3eNIk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtoZW161hO3VIQiwylho+ lVJ0FgErCqLaycFhuKObiefx4klBEzHFJBjlM7a45bHC5Vk6iu9uAQ86LJ7Aleue y9L5z0z5P9QCbrbNw/53KxrS2QKYiHgqsmKQAp421xx8ZQnNqs2ViZeNFDclwUjQ Gwh16uNHo3Bp4hnXqZe78YHE8hAiq5fk4UofMwnDGltzanoJAteUk4u8iOeDXXM4 W/0MTOQBWs30L7usbZfkswRCavzUVFzW3kyeYlPs+wqP8ogcWb9IIQanvv9K/nHb fjfFnGYfx2EDeAAdUVdUuhcwpoiUoWhrrgqk2clbHtvlV5MRlVgsNJC8adoE/u0p oHpbHbTW0hmS+DOVtGqUCYbRM3cxeH6156IGYhySKkzMXkCkUJQpvuj+ovviPJ6p 2cZHsYK3A587rDDwROZf7xANkE8kTo5CR21t5mS2YyBqScZvSl78fb97/9iyk03N HzpFEzfpj+vSbYum6mJGdPfMQxhihJgJPYLipP2bjzq0gvoh0zPAqel5zK8gO5DK 3eSV6viIPnNh+TB741zm5eEI0tgyosn4TmycKoyj0QPOo4iYNC9eKSZBBCLWqc+l V7mMvgqtGYs+SrHbjZQxlV9zsljl9RT6jHMMTjDWFCwvXVJqICqHW6BbtD08eZHW 2aUJv/ByMzgFRCS10WT5zq0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 344245954808851306212130066002433684174925 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-20 11:54:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-18 11:54:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thegoodkarma.co' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 744636065053670565133975458758297834876794552379307933144063181704654246984606398114374035697170360604389556074064470344543624878237966905771096618158690312952427213601243590628706825520709918002802774870898916679490061508094197570802125797353373333351225112287225766941144541103110520913208451038930720778895621554087849307071894167829468660071739606090694650391966238107371456826882887017182057555203946200223841326928795074974537896599277568194464812001558203668335975511362991481777790585446336228480309046595309607891931655700486747228035085825616057953922420119201835327040820073880700251564897382764573305121417100202370315532135519012307996051438434071805656692840161387203650490192563432396507749497109983649580969706613559844721224325340937729000282504535503817238841634010060997215968066945509251343454349251365297000529327971864180157368550247494968150980308705334886097835092864294315678684487010482273247338796765076969013489659556596612176415571915967601779205912825132939600347547067803521998173464116448259854761151357114928556223661030405567274922876119442185998380528821821538436318303926678725127425678823102636268077075637279156072371668549772946782712058812443058665334182465807056918474929315307500955963608749 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f2f98751bac3f02482f5b1aff76933beeca2361f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1888 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.5mobile.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.altosdelbonito.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bboscovs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bcicreative.biz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bluedartexpress.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bobword.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bodycoaches.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bossrevolution.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.chsttijd.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cirdown.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cocopeat.asia' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.codigosancho.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.craigslisst.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.daovies2.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.duzal.at' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.fatfinders.online' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gamatotv3.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gen1234adx.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.goalservice.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.grandos-show.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.guncontrol.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gymgear.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.heathershultzphotography.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.holidaylettingsco.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.idontwant.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.iecosanzacsmeducativo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.industrynet.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.islamska-biblioteka.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.komeps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.linertic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.magnolialanebywhitney.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.megacineuhd.biz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mein-endered.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.movieswood.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.nxtgens.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.offend.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.patientconect365.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.precisioncarpentrync.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.prizedraw.la' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rouhlondon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.studioalfaghi.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.switzerlandairport.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sydspetcare.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.thegoodkarma.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tkconstructionltd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.turnurearchitecture.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.victorraulr.info' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.watchfreemoviesnow.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.webtrek.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.wzfenghu.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '5mobile.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'altosdelbonito.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bboscovs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bcicreative.biz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bluedartexpress.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bobword.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bodycoaches.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bossrevolution.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chsttijd.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cirdown.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cocopeat.asia' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'codigosancho.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'craigslisst.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daovies2.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'duzal.at' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fatfinders.online' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gamatotv3.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gen1234adx.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'goalservice.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'grandos-show.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'guncontrol.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gymgear.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heathershultzphotography.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'holidaylettingsco.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'idontwant.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iecosanzacsmeducativo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'industrynet.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'islamska-biblioteka.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'komeps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'linertic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'magnolialanebywhitney.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'megacineuhd.biz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mein-endered.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'movieswood.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nxtgens.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'offend.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'patientconect365.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'precisioncarpentrync.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prizedraw.la' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rouhlondon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'studioalfaghi.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'switzerlandairport.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sydspetcare.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thegoodkarma.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tkconstructionltd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'turnurearchitecture.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'victorraulr.info' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'watchfreemoviesnow.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webtrek.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wzfenghu.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b4d266e3b0000040300463044022062abfb64b09896179ab25f91a00c3b3a313def0846fe1735a3eb04ec67e29406022040a7c2a14379257722166ab24882c4876c3475b4e352a17b8956c03d33d01bcf0077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b4d266e300000040300483046022100d06beec778eaa6c8cd1520d57efeb3477ee4b9f43d693167fed3d4db83b8508d022100ca4adf598086956a63db414b0816dde787d319949fc30de201a56bb4af7e239f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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