tzoleipzig.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:0f:1c:72:dc:bc:d8:27:08:3a:70:b5:b8:bc:88:1e:e0:8d was issued on by Let's Encrypt.
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tzoleipzig.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:0f:1c:72:dc:bc:d8:27:08:3a:70:b5:b8:bc:88:1e:e0:8dSerial Number (int): 353591194013670817458371705057095689625741
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 51:ad:89:7f:24:68:d5:68:72:cb:c1:70:28:44:24:53:04:26:d2:10
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 6e:40:6f:b6:6f:7e:95:02:af:53:74:99:08:73:85:40:34:bb:76:5d
Fingerprint (sha256): 70:bc:0e:de:31:13:d0:f6:53:51:62:d1:10:20:76:53:2b:9b:22:49:2d:a1:7a:7f:8c:ae:06:52:51:a7:00:27
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate tzoleipzig.de
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tzoleipzig.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tzo-leipzig.com
tzo-leipzig.eu
tzoleipzig.com
tzoleipzig.de
tzoleipzig.eu
tzoleipzig.isp-vhost04.domservice.de
www.tzo-leipzig.com
www.tzo-leipzig.eu
www.tzoleipzig.com
www.tzoleipzig.de
www.tzoleipzig.eu
tzo-leipzig.eu
tzoleipzig.com
tzoleipzig.de
tzoleipzig.eu
tzoleipzig.isp-vhost04.domservice.de
www.tzo-leipzig.com
www.tzo-leipzig.eu
www.tzoleipzig.com
www.tzoleipzig.de
www.tzoleipzig.eu
Other certificates including the domain name tzoleipzig.de
(limited to 100 certificates)
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.isp-vhost04.domservice.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.isp-vhost04.domservice.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
Certificate
The complete raw certificate details for tzoleipzig.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHHjCCBgagAwIBAgISBA8ccty82CcIOnC1uLyIHuCNMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDA0MDIwMDA0NDdaFw0y MDA3MDEwMDA0NDdaMBgxFjAUBgNVBAMTDXR6b2xlaXB6aWcuZGUwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQCXHMG7NmnbRoEgUnzkk3FbEfWZvUOX+dTW +7FkiSTSbgnS8gXMbf3tQV9MiOJf9LrF0c1uZjdohnpgVXVddtoXQW7dIxd3Tfpa KaqznO6jCNUJdiA1DtYxR2O2tUVC/x9eqkLwRRhMO6KPuH2V+zG59qwgGNjjMGdl Om16blEyV3raL/DjV77oRlTEnq56NDlEppR7t9NadfkTxZT6CJbKvFClxnJctO4i qgkpLHGv0Dv+oU+NE9Lc/aFemlbC65eYre9eQtWx4SW6Bw9ssmoovR3GanAULNHA IYUlW8F1maX5Bg9e86p4Wa9VnTKl2dnl2t5DBSIBeR6Wjs7VTsm+nrw0RmRrgtwc YEVNpeWCZ12mcPEwwH4Vs3eN3JHf/Ne2BOf1UeJDKgQ2feNKt/FqoJE50+YIxzRh goUvK3rSmAik9qyJ3snFm6pyEcI1DNa6adfXU634+o3JJeLh6ACrmNVcB1dWBENt l/Tv+L592Fb6mmisCHacpa2eCqDTFLs14D0HUkSwv4mS+bV5QKk+YxZ5Ub+Ck52o EmZ13PjW5h/7BbVLw9+wRfW87yrnRsf4GaIfnB4i+46xk4GNUwere8kdV/ZTpFYR Od8Zb4/89bj475L5XN+mLdLHkaxyJFsKbFTklUnnUjLeinBJtsCvL/QGUtcH7o+i TcMqRlgN6QIDAQABo4IDLjCCAyowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRRrYl/ JGjVaHLLwXAoRCRTBCbSEDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMIHjBgNVHREEgdswgdiCD3R6by1sZWlwemlnLmNv bYIOdHpvLWxlaXB6aWcuZXWCDnR6b2xlaXB6aWcuY29tgg10em9sZWlwemlnLmRl gg10em9sZWlwemlnLmV1giR0em9sZWlwemlnLmlzcC12aG9zdDA0LmRvbXNlcnZp Y2UuZGWCE3d3dy50em8tbGVpcHppZy5jb22CEnd3dy50em8tbGVpcHppZy5ldYIS d3d3LnR6b2xlaXB6aWcuY29tghF3d3cudHpvbGVpcHppZy5kZYIRd3d3LnR6b2xl aXB6aWcuZXUwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEE AdZ5AgQCBIH1BIHyAPAAdgBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZ EwAAAXE4a0lwAAAEAwBHMEUCIBTQ9fMWDxTt54J5w7RorRumRaFO11l3mL9Rx5+Q /JUlAiEA4KTf3eM6/73jWGAe1Wl6b9MQvtPXok6gJqpavneBOrYAdgAHt1wb5X1o //Gwxh0jFce65ld8V5S3au68YToaadOiHAAAAXE4a0lwAAAEAwBHMEUCIQC18AUV K3x5sZ5v+0P4dd9fYitiEHYRkEFsKCpK7S9W+gIgDuVW6pUVr6EKxEpFeBrNqrvi Nojq9PgPmzDguvEf4xYwDQYJKoZIhvcNAQELBQADggEBAHmmSMlRbYfqG6cmpzII miEU7LU8o5tufaOKP/QMos5FCJJ0xo2t8Zg4A5es5R02lZ7UvJ84+9rp85q6mhvU tABwGfSCBpfCe6TWlSJ06zZhWCvrMbVKgZuslZaEWtP7fAaJImv1v1cpeb9iDA44 qHHRj6iQi2GlhKiD3ZbCtDq04kpuUEHMDDS5BRUBH9Kqn+qk8yVg7t7uPZXCJ0YM ssw328hBEBLXV+WR74UFOvhZhcHIkw4Ukkvlc2ck37G49Dnl2O+Sxl1MJWayWrpS dn8u4qrbTQgwZ0uCKnbAzIDCTYUwwnlp+6RMydf41EtoGrrooZyUjdqQrJTFQnXe gOM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAlxzBuzZp20aBIFJ85JNx WxH1mb1Dl/nU1vuxZIkk0m4J0vIFzG397UFfTIjiX/S6xdHNbmY3aIZ6YFV1XXba F0Fu3SMXd036Wimqs5zuowjVCXYgNQ7WMUdjtrVFQv8fXqpC8EUYTDuij7h9lfsx ufasIBjY4zBnZTptem5RMld62i/w41e+6EZUxJ6uejQ5RKaUe7fTWnX5E8WU+giW yrxQpcZyXLTuIqoJKSxxr9A7/qFPjRPS3P2hXppWwuuXmK3vXkLVseElugcPbLJq KL0dxmpwFCzRwCGFJVvBdZml+QYPXvOqeFmvVZ0ypdnZ5dreQwUiAXkelo7O1U7J vp68NEZka4LcHGBFTaXlgmddpnDxMMB+FbN3jdyR3/zXtgTn9VHiQyoENn3jSrfx aqCROdPmCMc0YYKFLyt60pgIpPasid7JxZuqchHCNQzWumnX11Ot+PqNySXi4egA q5jVXAdXVgRDbZf07/i+fdhW+pporAh2nKWtngqg0xS7NeA9B1JEsL+Jkvm1eUCp PmMWeVG/gpOdqBJmddz41uYf+wW1S8PfsEX1vO8q50bH+BmiH5weIvuOsZOBjVMH q3vJHVf2U6RWETnfGW+P/PW4+O+S+Vzfpi3Sx5GsciRbCmxU5JVJ51Iy3opwSbbA ry/0BlLXB+6Pok3DKkZYDekCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 353591194013670817458371705057095689625741 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-02 00:04:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-01 00:04:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tzoleipzig.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 616484525197315766552703910092602470883372321916364673286114315541287976248694462332061607644396267579727370893331204943463573998715420543335797843592167557776789022068524767869415307131930091038816916479440322769103773455101177114891311143144865623797965604671827831371480305696172683513690592839806382026656629334787767972020510251268500578156693833965851160200921981557138287510421839026308171687212419628688688016058700852773889016256537769670381332513014166057392239619258632730866142866936945340045010424247684520154128514944630871216057630097208961095023248950003895132553070015870282057930681372211900093462671528075489109980883214473423857195891247707128476090288204186480308480116722924755953126063973326592341555522015957096155497401682416276100552334894210138988754478615559354963788412301464329306576442085634531343089076563598539412602789088939386799681363440315659231447908536564662839414873699622958943164181166384947281842427211273345381520528577161237488204907842557120611759581004470338261292134172535572550326559312550828275551023216681082283351188420817089565161024504986895740079608936354661812409920772438059649737953381213807079926380322209188012744751741986236830656315002687691673056985620186486936318774761 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 51ad897f2468d56872cbc170284424530426d210 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (219 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzo-leipzig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzo-leipzig.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzoleipzig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzoleipzig.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzoleipzig.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzoleipzig.isp-vhost04.domservice.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzo-leipzig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzo-leipzig.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzoleipzig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzoleipzig.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzoleipzig.eu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d91300000171386b49700000040300473045022014d0f5f3160f14ede78279c3b468ad1ba645a14ed7597798bf51c79f90fc9525022100e0a4dfdde33affbde358601ed5697a6fd310bed3d7a24ea026aa5abe77813ab600760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c00000171386b49700000040300473045022100b5f005152b7c79b19e6ffb43f875df5f622b6210761190416c282a4aed2f56fa02200ee556ea9515afa10ac44a45781acdaabbe23688eaf4f80f9b30e0baf11fe316 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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