menzis.lavg.nl
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:59:d2:5e:f2:8e:1f:26:3a:f4:c0:8f:a8:2b:eb:b7:db:98 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=menzis.lavg.nl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:59:d2:5e:f2:8e:1f:26:3a:f4:c0:8f:a8:2b:eb:b7:db:98Serial Number (int): 291901619325866961208846442559204432010136
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: cd:75:62:d5:cc:6b:ac:4a:02:11:13:fe:cd:f9:8a:4f:da:ec:e7:03
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c2:d0:34:b2:17:14:f9:51:04:ce:da:4a:cc:13:04:52:b5:a3:2d:05
Fingerprint (sha256): 6c:05:6e:6a:39:c9:59:ad:58:05:16:8f:17:46:8b:7a:e0:89:26:63:8f:44:de:32:ac:bd:b3:a1:1a:7a:d6:b8
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate menzis.lavg.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for menzis.lavg.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
menzis.lavg.nl
Other certificates including the domain name lavg.nl
(limited to 100 certificates)
webmail.lavg.nl
lavg.nl
payportaal.nl
acg-incasso.nl
veilig.lavg.nl
login.nieuwegein.lavg.nl
portal.bosincasso.nl
alles.lavg.nl
lavg.nl
achmea.lavg.nl
lavg.nl
lavg.nl
betalen.lavg.nl
achmea.lavg.nl
payportaal.nl
acg-incasso.nl
achmea.lavg.nl
lavg.nl
alles.lavg.nl
menzis.lavg.nl
alles.lavg.nl
lavg.nl
veilig.lavg.nl
acg-incasso.nl
veilig.lavg.nl
menzis.lavg.nl
betaal.lavg.nl
payportaal.nl
menzis.lavg.nl
menzis.lavg.nl
transactions.lavg.nl
veilig.lavg.nl
login.roosendaal.lavg.nl
acg-incasso.nl
achmea.lavg.nl
menzis.lavg.nl
webmail.lavg.nl
cotg.lavg.nl
mijn.lavg.nl
lavg.nl
portal.bosincasso.nl
achmea.lavg.nl
menzis.lavg.nl
lavg.nl
cotg.lavg.nl
menzis.lavg.nl
menzis.lavg.nl
webmail.lavg.nl
alles.lavg.nl
lavg.nl
lavg.nl
lavg.nl
lavg.nl
alles.lavg.nl
betalen.lavg.nl
payportaal.nl
webmail.lavg.nl
alles.lavg.nl
alles.lavg.nl
support.bosincasso.nl
webmail.lavg.nl
menzis.lavg.nl
transactions.lavg.nl
transactions.lavg.nl
veilig.lavg.nl
veilig.lavg.nl
lavg.nl
betalen.lavg.nl
portal.bosincasso.nl
lavg.nl
lavg.nl
betalen.lavg.nl
portal.bosincasso.nl
mijn.lavg.nl
achmea.lavg.nl
betalen.lavg.nl
payportaal.nl
menzis.lavg.nl
betalen.lavg.nl
webmail.lavg.nl
betalen.lavg.nl
achmea.lavg.nl
acg-incasso.nl
veilig.lavg.nl
menzis.lavg.nl
menzis.lavg.nl
webmail.lavg.nl
betalen.lavg.nl
betalen.lavg.nl
lavg.nl
payportaal.nl
acg-incasso.nl
veilig.lavg.nl
login.nieuwegein.lavg.nl
portal.bosincasso.nl
alles.lavg.nl
lavg.nl
achmea.lavg.nl
lavg.nl
lavg.nl
betalen.lavg.nl
achmea.lavg.nl
payportaal.nl
acg-incasso.nl
achmea.lavg.nl
lavg.nl
alles.lavg.nl
menzis.lavg.nl
alles.lavg.nl
lavg.nl
veilig.lavg.nl
acg-incasso.nl
veilig.lavg.nl
menzis.lavg.nl
betaal.lavg.nl
payportaal.nl
menzis.lavg.nl
menzis.lavg.nl
transactions.lavg.nl
veilig.lavg.nl
login.roosendaal.lavg.nl
acg-incasso.nl
achmea.lavg.nl
menzis.lavg.nl
webmail.lavg.nl
cotg.lavg.nl
mijn.lavg.nl
lavg.nl
portal.bosincasso.nl
achmea.lavg.nl
menzis.lavg.nl
lavg.nl
cotg.lavg.nl
menzis.lavg.nl
menzis.lavg.nl
webmail.lavg.nl
alles.lavg.nl
lavg.nl
lavg.nl
lavg.nl
lavg.nl
alles.lavg.nl
betalen.lavg.nl
payportaal.nl
webmail.lavg.nl
alles.lavg.nl
alles.lavg.nl
support.bosincasso.nl
webmail.lavg.nl
menzis.lavg.nl
transactions.lavg.nl
transactions.lavg.nl
veilig.lavg.nl
veilig.lavg.nl
lavg.nl
betalen.lavg.nl
portal.bosincasso.nl
lavg.nl
lavg.nl
betalen.lavg.nl
portal.bosincasso.nl
mijn.lavg.nl
achmea.lavg.nl
betalen.lavg.nl
payportaal.nl
menzis.lavg.nl
betalen.lavg.nl
webmail.lavg.nl
betalen.lavg.nl
achmea.lavg.nl
acg-incasso.nl
veilig.lavg.nl
menzis.lavg.nl
menzis.lavg.nl
webmail.lavg.nl
betalen.lavg.nl
betalen.lavg.nl
Certificate
The complete raw certificate details for menzis.lavg.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHCDCCBfCgAwIBAgISA1nSXvKOHyY69MCPqCvrt9uYMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA0MjMyMTAwMjNaFw0x ODA3MjIyMTAwMjNaMBkxFzAVBgNVBAMTDm1lbnppcy5sYXZnLm5sMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4McX6RdJpotvqpfcKYv0pOpPJp/YWZsd 6OIXd/vY4YwP7agZ/OSFDECqn2kuvyMKAQ0EcLCo225ruuCZoAZq1O7sC/ODxJPL 6LDbbSlKQgSrCriZycCBrMfse5UX6By1L6hKweUq5mUNkKvGa7NCF1vL/TtJCCuT LSYqBMwfnJCjCQKFxGXaKZc/7pnIR04RPXccTIv1aQ7ujUSTrwJT4XWC0l4Sm99h DUk+Af6YUmeld2DMRNvXr5OpIkhyhZqzijrL+phiUNMRBa+GQyKB+n3uJK7xIPr9 RqgcFieSK/jfW90cMOeP3ZelrP2UHM5rBQmRkiHuD+jlaBKqDu6QxARQvqRyoBVH FrJ6f6FeDIWxlhZTvzzHmH3BFdAr7ThgnCtXL5SPNZEK0pV0PJ2tQbqfALqzKiR7 1G72Tt29OTwhxwLBW/rpZi9h3RpCs20VwYzSYCkvFb6ocW2M5e+APwa4++Vq18Id hmp7MGh6o07Gqwk4xf8VwP2+dMzWxwjfD4R4kkaoHqVV7sd1B7wO5TRYBUCXCsK3 DCQ5IQJ0AUkhipe3csjcLmWUhPgHevAESPv+HE2If5w5BCElNQctcjFmyBok3x0U RPiYu1h2IZVTDZAO5gTZUJx+Ykn0fquKxOg372zk8nn5wVsII3NXoODtJQ9aAHUU NiAiOwbllaUCAwEAAaOCAxcwggMTMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUzXVi 1cxrrEoCERP+zfmKT9rs5wMwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg5tZW56aXMubGF2Zy5ubDCB /gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYBBAGC3xMBAQEwgdYwJgYIKwYB BQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIGrBggrBgEFBQcCAjCB ngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkgYmUgcmVsaWVkIHVwb24gYnkg UmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFjY29yZGFuY2Ugd2l0aCB0aGUg Q2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0dHBzOi8vbGV0c2VuY3J5cHQu b3JnL3JlcG9zaXRvcnkvMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA23Sv7ssp 7LH+yj5xbSzluaq7NveEcYPHXZ1PN7Yfv2QAAAFi9IWrGAAABAMARzBFAiAhfLs+ 99mq5mvQ1EfdLe8Uwx7zzOhBkGp2i7THdIRUUwIhAJqFD55q/Ys9Oib2q5ib8Lrj G1x8oF23kstMixXq3vp8AHcAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH 9HgAAAFi9IWrKgAABAMASDBGAiEA//eD0DLe9OBXsnFu/hU1GmzWE8j2H4+FZm/V dnam/EMCIQCyV1mIxGzey+FUTVgEzQcc12nl7yMV6S4XwP4JXSbJ0zANBgkqhkiG 9w0BAQsFAAOCAQEAkKfV9Fos4w/r6S35XjiT2H1ARhNKpPbghi4Q3E5EdMeeQcHc iWz6v8MJXNcQr4JKbiv/4x8X8sSW5I/PRRbOLvw8K9nlGV2wMqySOCbolXGP9/cU 800Sswj21FMgr0EV+nbutAmXB2np6Hdb9wy9zPqzPJdLu2O6wOwBuJ4WNDhnY/CB HxZ46mLPAiG5GLYcHGlLXQBegbptftkLrVxYFbkL8pc82fwvqwxw/7ZR72DkFQ45 kpYFkxYyshoLS00qSqzoQWK14iAnQOu3y6dC6kHPm/dIQg4lyRvGvdH85oVmHblp pu5r7zRIqWShhoK0lE2CPp4Nfo/atXMc6tvt+Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4McX6RdJpotvqpfcKYv0 pOpPJp/YWZsd6OIXd/vY4YwP7agZ/OSFDECqn2kuvyMKAQ0EcLCo225ruuCZoAZq 1O7sC/ODxJPL6LDbbSlKQgSrCriZycCBrMfse5UX6By1L6hKweUq5mUNkKvGa7NC F1vL/TtJCCuTLSYqBMwfnJCjCQKFxGXaKZc/7pnIR04RPXccTIv1aQ7ujUSTrwJT 4XWC0l4Sm99hDUk+Af6YUmeld2DMRNvXr5OpIkhyhZqzijrL+phiUNMRBa+GQyKB +n3uJK7xIPr9RqgcFieSK/jfW90cMOeP3ZelrP2UHM5rBQmRkiHuD+jlaBKqDu6Q xARQvqRyoBVHFrJ6f6FeDIWxlhZTvzzHmH3BFdAr7ThgnCtXL5SPNZEK0pV0PJ2t QbqfALqzKiR71G72Tt29OTwhxwLBW/rpZi9h3RpCs20VwYzSYCkvFb6ocW2M5e+A Pwa4++Vq18Idhmp7MGh6o07Gqwk4xf8VwP2+dMzWxwjfD4R4kkaoHqVV7sd1B7wO 5TRYBUCXCsK3DCQ5IQJ0AUkhipe3csjcLmWUhPgHevAESPv+HE2If5w5BCElNQct cjFmyBok3x0URPiYu1h2IZVTDZAO5gTZUJx+Ykn0fquKxOg372zk8nn5wVsII3NX oODtJQ9aAHUUNiAiOwbllaUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 291901619325866961208846442559204432010136 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-23 21:00:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-22 21:00:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'menzis.lavg.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 917013045494595559445156597297279766830810436623905463296952433427927788200039505176129514883854142898702026832789562745873796950278128198576439066076666201311321042965999549078549323057094252669514891558407289026185425077251905390056135420891910322357928402924477491512718481724996023063317556557853856162302951919952539680692390551790463094711284836104536004973776361640665203934664309164599111987248848674732808246334171320458321355592363932451097687934004050182983838449344214592267054228870560673947100477024599875592433396744355136751367179898986552702961833045287093840322809402476014373853509974810465504835695838304730210395853079391331263377124801391420039658998544068687710088819712078383252094166442854843649679296835929945509815712579864017766737461761309149141034861659300902540391053195101497613267106477919657486354628394393722193029110218110685165881920787582615972158350116440186384607844104367576815857150714775779228344993313113680960537328587039782117760641425970790576809731261140721610169501893833457162447899490191774135107057113293278697399390202938155904692268043001240478569603425850649882993121764482232872527477202121163415883996970126759845369917110437969762104855216487868736195873851051107352427468197 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cd7562d5cc6bac4a021113fecdf98a4fdaece703 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'menzis.lavg.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf6400000162f485ab1800000403004730450220217cbb3ef7d9aae66bd0d447dd2def14c31ef3cce841906a768bb4c7748454530221009a850f9e6afd8b3d3a26f6ab989bf0bae31b5c7ca05db792cb4c8b15eadefa7c007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000162f485ab2a0000040300483046022100fff783d032def4e057b2716efe15351a6cd613c8f61f8f85666fd57676a6fc43022100b2575988c46cdecbe1544d5804cd071cd769e5ef2315e92e17c0fe095d26c9d3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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