ochsnerhockey.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:56:bf:3d:dc:83:5d:f6:06:b2:0a:07:4a:5e:ee:dd:86:08 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ochsnerhockey.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:56:bf:3d:dc:83:5d:f6:06:b2:0a:07:4a:5e:ee:dd:86:08Serial Number (int): 290855345100322818979951456009212586198536
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5b:40:da:18:78:b2:8f:66:0f:aa:bf:9a:91:e9:34:d2:ef:03:ef:32
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 8b:d1:6e:de:7a:a0:6b:01:50:8d:ed:96:13:de:cd:61:89:3c:ab:43
Fingerprint (sha256): 77:dc:e7:24:e7:57:1a:ef:16:e8:dc:81:bd:64:09:c9:2c:f3:cd:83:6d:e0:dc:ce:3e:e3:eb:63:17:73:01:92
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate ochsnerhockey.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ochsnerhockey.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ochsnerhockey.ch
www.ochsnerhockey.ch
www.ochsnerhockey.ch
Other certificates including the domain name ochsnerhockey.ch
(limited to 100 certificates)
support.ninatech.co
community.thegreencatalyst.com
mail.ochsnerhockey.ch
support.smartcon.pl
staging.ochsnerhockey.ch
ochsnerhockey.ch
support.ninatech.co
support.smartcon.pl
ochsnerhockey.ch
mail.ochsnerhockey.ch
staging.ochsnerhockey.ch
ochsnerhockey.ch
shop.ochsnerhockey.ch
ochsnerhockey.ch
shop.ochsnerhockey.ch
shop.ochsnerhockey.ch
ochsnerhockey.ch
staging.ochsnerhockey.ch
support.smartcon.pl
ochsnerhockey.ch
support.smartcon.pl
staging.ochsnerhockey.ch
community.thegreencatalyst.com
support.smartcon.pl
community.thegreencatalyst.com
sasupport.benchmarknorth.co.uk
support.ochsnerhockey.ch
support.smartcon.pl
support.smartcon.pl
ochsnerhockey.ch
support.smartcon.pl
support.smartcon.pl
ochsnerhockey.ch
sasupport.benchmarknorth.co.uk
ochsnerhockey.ch
staging.ochsnerhockey.ch
mail.ochsnerhockey.ch
sasupport.benchmarknorth.co.uk
staging.ochsnerhockey.ch
staging.ochsnerhockey.ch
staging.ochsnerhockey.ch
support.smartcon.pl
wc.ochsnerhockey.ch
ochsnerhockey.ch
support.smartcon.pl
staging.ochsnerhockey.ch
mail.ochsnerhockey.ch
ochsnerhockey.ch
support.smartcon.pl
mail.ochsnerhockey.ch
ochsnerhockey.ch
autodiscover.ochsnerhockey.ch
ochsnerhockey.ch
ochsnerhockey.ch
ochsnerhockey.ch
staging.ochsnerhockey.ch
ochsnerhockey.ch
mail.ochsnerhockey.ch
mail.ochsnerhockey.ch
support.ochsnerhockey.ch
sasupport.benchmarknorth.co.uk
support.ochsnerhockey.ch
shop.ochsnerhockey.ch
staging.ochsnerhockey.ch
shop.ochsnerhockey.ch
support.ninatech.co
community.thegreencatalyst.com
shop.ochsnerhockey.ch
support.smartcon.pl
shop.ochsnerhockey.ch
support.smartcon.pl
support.ochsnerhockey.ch
ochsnerhockey.ch
support.smartcon.pl
support.smartcon.pl
community.thegreencatalyst.com
mail.ochsnerhockey.ch
support.smartcon.pl
staging.ochsnerhockey.ch
ochsnerhockey.ch
support.ninatech.co
support.smartcon.pl
ochsnerhockey.ch
mail.ochsnerhockey.ch
staging.ochsnerhockey.ch
ochsnerhockey.ch
shop.ochsnerhockey.ch
ochsnerhockey.ch
shop.ochsnerhockey.ch
shop.ochsnerhockey.ch
ochsnerhockey.ch
staging.ochsnerhockey.ch
support.smartcon.pl
ochsnerhockey.ch
support.smartcon.pl
staging.ochsnerhockey.ch
community.thegreencatalyst.com
support.smartcon.pl
community.thegreencatalyst.com
sasupport.benchmarknorth.co.uk
support.ochsnerhockey.ch
support.smartcon.pl
support.smartcon.pl
ochsnerhockey.ch
support.smartcon.pl
support.smartcon.pl
ochsnerhockey.ch
sasupport.benchmarknorth.co.uk
ochsnerhockey.ch
staging.ochsnerhockey.ch
mail.ochsnerhockey.ch
sasupport.benchmarknorth.co.uk
staging.ochsnerhockey.ch
staging.ochsnerhockey.ch
staging.ochsnerhockey.ch
support.smartcon.pl
wc.ochsnerhockey.ch
ochsnerhockey.ch
support.smartcon.pl
staging.ochsnerhockey.ch
mail.ochsnerhockey.ch
ochsnerhockey.ch
support.smartcon.pl
mail.ochsnerhockey.ch
ochsnerhockey.ch
autodiscover.ochsnerhockey.ch
ochsnerhockey.ch
ochsnerhockey.ch
ochsnerhockey.ch
staging.ochsnerhockey.ch
ochsnerhockey.ch
mail.ochsnerhockey.ch
mail.ochsnerhockey.ch
support.ochsnerhockey.ch
sasupport.benchmarknorth.co.uk
support.ochsnerhockey.ch
shop.ochsnerhockey.ch
staging.ochsnerhockey.ch
shop.ochsnerhockey.ch
support.ninatech.co
community.thegreencatalyst.com
shop.ochsnerhockey.ch
support.smartcon.pl
shop.ochsnerhockey.ch
support.smartcon.pl
support.ochsnerhockey.ch
ochsnerhockey.ch
support.smartcon.pl
support.smartcon.pl
Certificate
The complete raw certificate details for ochsnerhockey.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHITCCBgmgAwIBAgISA1a/PdyDXfYGsgoHSl7u3YYIMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA4MDQyMzA0MTNaFw0x ODExMDIyMzA0MTNaMBsxGTAXBgNVBAMTEG9jaHNuZXJob2NrZXkuY2gwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQClnG9VYyDxgi5LwKkhMg74RLsfnsrg WVDn8WBlYQ5CJjosdw2muK1JsO6r2qMFF6R6OwZ0uThbi5ZUpiLgFc+4JcyRHtuT UQrIncpgtVc/zz0j/yt03z7h99wnr9Bhf/+xfG9S7/bAex1ZLcGccRtRDdENSbED MpIzMX3OIP/LjjZdOt95N3TIVCdAoSayMOSYn0OVBu1C1aT5elXfneMxFWF0CFta 92tqPLlfcJjJ15yUXaJJWUjtnjIg03JfjThm04CX+cpiZ1ygP4gBgg9wkPM4ADOZ M1D03NxY8WA60+ge+bfJfKTPHOS06BEYbOOMGDN7PDLT9LM3MxJRkiUMBE6y7BVW lr9HvcVSJojrj2a+nqfWTZdZyu05QrWxePKzRM2BA0w+SiLixad7Z756AyRFyklP w2004bfzXNInuouuSHTxI2H+gHafTYEeJ+8AaybWJL4MJ1Vf4Ec7US6lOiE3UBkw 5ccDUABoSVxp2rwo1CKMi3dSBUTqwH6YwvspC9kJyrTCvak9bMspVaUn4DpHZCZB GkjLFO2HMv1YsTaWPtJsZULSzAjTV0c5naXsAkPT/yOG+bPtKbvtwW+9gvmaEkrU P5bo4KuC3ULZFj2uP1uQFW2SUPtWabt79YkpI1feoUGtQcJ/LIu2BYnkyhq2UTwe 1UKyGORNfjwnxwIDAQABo4IDLjCCAyowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRb QNoYeLKPZg+qv5qR6TTS7wPvMjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMDEGA1UdEQQqMCiCEG9jaHNuZXJob2NrZXku Y2iCFHd3dy5vY2hzbmVyaG9ja2V5LmNoMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIB MIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRz ZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBt YXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9u bHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91 bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wggEEBgor BgEEAdZ5AgQCBIH1BIHyAPAAdwApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTDDPTl RUf0eAAAAWUHZhBVAAAEAwBIMEYCIQD4J4tFBfiskRTl/24iqKkkWqEZyGN6tDbV TFWLggYkTAIhAIXz9nNjQtGg9lQY4nJWrNrLS7EgGbyA/Nn719O66pbgAHUAVYHU whaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAFlB2YS6AAABAMARjBEAiBO I0OrW0gdFg7yL8XCHj34qXvPz//6yiUinz4wRzaItQIgVo2DCLJQlVoDbj1UZWkW iR28VbPkps52zd2wVfKKxTYwDQYJKoZIhvcNAQELBQADggEBAGKDP+uOW0Lfyd+0 z+58dKCL1M7n+y1TPu7GqDKYFEDqEQrFGQAHQuiv6jq3WFB0IBui0a0fcPFK09aj jsalijsAkID7RhDNNwZSPCmIR5W3+/jxhShwkuQTZvL6HRJWmAQTOUPYsnd7yRZH z19bqv+6RDLNV+334L+Ooq9K47pM4MriPsxI1ToaT0/8WYBPSX2IVGJ3+ZRBbcix noFA4SK6dCZ557DQcgBC0QqtPjkWOjWDuW/aGebBsMB1aV8sNjsZ8biNgd7IdqPE yFDvX8f6QPIyKvtbWzcequZIhkzoHlf5C/CY3EEybgwyPNRH6GpZNjHAuOLWK5hy HD7zYIM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApZxvVWMg8YIuS8CpITIO +ES7H57K4FlQ5/FgZWEOQiY6LHcNpritSbDuq9qjBRekejsGdLk4W4uWVKYi4BXP uCXMkR7bk1EKyJ3KYLVXP889I/8rdN8+4ffcJ6/QYX//sXxvUu/2wHsdWS3BnHEb UQ3RDUmxAzKSMzF9ziD/y442XTrfeTd0yFQnQKEmsjDkmJ9DlQbtQtWk+XpV353j MRVhdAhbWvdrajy5X3CYydeclF2iSVlI7Z4yINNyX404ZtOAl/nKYmdcoD+IAYIP cJDzOAAzmTNQ9NzcWPFgOtPoHvm3yXykzxzktOgRGGzjjBgzezwy0/SzNzMSUZIl DAROsuwVVpa/R73FUiaI649mvp6n1k2XWcrtOUK1sXjys0TNgQNMPkoi4sWne2e+ egMkRcpJT8NtNOG381zSJ7qLrkh08SNh/oB2n02BHifvAGsm1iS+DCdVX+BHO1Eu pTohN1AZMOXHA1AAaElcadq8KNQijIt3UgVE6sB+mML7KQvZCcq0wr2pPWzLKVWl J+A6R2QmQRpIyxTthzL9WLE2lj7SbGVC0swI01dHOZ2l7AJD0/8jhvmz7Sm77cFv vYL5mhJK1D+W6OCrgt1C2RY9rj9bkBVtklD7Vmm7e/WJKSNX3qFBrUHCfyyLtgWJ 5MoatlE8HtVCshjkTX48J8cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 290855345100322818979951456009212586198536 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-04 23:04:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-02 23:04:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ochsnerhockey.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 675634234888056739380271406465517995674907616332225484625601088099870682690991614943325314240377806935087506085453749747774990578914490385498673831112800990036677570581370072356466265846012159946408775670413620136159067383764484959475190282911824080085323301101233380783223708615634165722978498769267413485925098853872838578552888798420441922921024629275851561105738551993318020179766830721265358430896406959554106295288100235701667115965183327419448985787228358346679116097614049683164256401302927095349934717338249355019364547514658506192026879458060569927632839676267711776066840699180036939765396981742814251020348521480071220393947459066669559762345530104157704675291797769908643041608936222113561851743986828438364567492697204249523112317740534579659314139564405877767343898764847375577379091453421233631930501714805481881306928930818753773589078201021874233316977172022756383958671329240688215033411239281285872314726162105792983498073550556834669444671935639436399191146649192292061665121334624666338853320156978192949534796805347113849116177525173673503721990888731235910949165305590652678929932565990012650513857835881843685571803237774917512915864685376666003684699413217392712324601515736689744657156380490468268596537287 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5b40da1878b28f660faabf9a91e934d2ef03ef32 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ochsnerhockey.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ochsnerhockey.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000165076610550000040300483046022100f8278b4505f8ac9114e5ff6e22a8a9245aa119c8637ab436d54c558b8206244c02210085f3f6736342d1a0f65418e27256acdacb4bb12019bc80fcd9fbd7d3baea96e00075005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c00000165076612e8000004030046304402204e2343ab5b481d160ef22fc5c21e3df8a97bcfcffffaca25229f3e30473688b50220568d8308b250955a036e3d54656916891dbc55b3e4a6ce76cdddb055f28ac536 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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