tekxiph.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:0d:75:98:4a:f8:a3:92:d0:eb:27:e2:71:c8:d6:00:51:80 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tekxiph.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:0d:75:98:4a:f8:a3:92:d0:eb:27:e2:71:c8:d6:00:51:80Serial Number (int): 353029124922240037582570547324423180931456
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 1f:a9:6b:62:7c:96:56:a8:70:ff:91:0e:79:12:23:e9:8f:4f:f1:93
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 34:5e:87:63:c3:70:d5:37:40:55:6a:b5:c5:97:01:e2:24:c2:5c:40
Fingerprint (sha256): 7d:e4:8b:5e:3f:8b:3e:ca:a5:3e:b4:50:14:a8:78:78:31:eb:ad:4a:34:26:ec:9a:9d:bd:8a:ac:ab:ad:13:5f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate tekxiph.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tekxiph.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tekxiph.com
www.tekxiph.com
www.tekxiph.com
Other certificates including the domain name tekxiph.com
(limited to 100 certificates)
tekxiph.com
support.ufone.nz
devether.fr
itsupport.nationalable.org
eased-ui.com
support.ufone.nz
tekxiph.com
support.tekxiph.com
www.muskegonenergy.com
restaurant-bali.de
tekxiph.com
tekxiph.com
gatorzone.shop
spottiswoode.smartbuildings.app
*.tekxiph.com
tekxiph.com
atencion.traffilog.mx
spottiswoode.smartbuildings.app
www.laoslamduan.com
focusi.app
tekxiph.com
focusi.app
itsupport.nationalable.org
app.gulfbrokers.com
postal.gift
tekxiph.com
www.stellarjaysoftware.com
tekxiph.com
www.critterhobbyist.com
*.estoredemo.tekxiph.com
www.critterhobbyist.com
www.movix.cf
e2e-domain1.enotice.io
knownfraud.com
tekxiph.com
eased-ui.com
dashboard.swattup.com
tekxiph.com
www.keyforher.com
support.ufone.nz
tekxiph.com
tekxiph.com
support.tekxiph.com
piedpiper.stg.unthread.io
tekxiph.com
tekxiph.com
tekxiph.com
b2b.tekxiph.com
www.laoslamduan.com
jjugul.kr
tekxiph.com
ravo.wiki
tekxiph.com
www.mohan.dev
jabwemake.com
support.ufone.nz
devether.fr
itsupport.nationalable.org
eased-ui.com
support.ufone.nz
tekxiph.com
support.tekxiph.com
www.muskegonenergy.com
restaurant-bali.de
tekxiph.com
tekxiph.com
gatorzone.shop
spottiswoode.smartbuildings.app
*.tekxiph.com
tekxiph.com
atencion.traffilog.mx
spottiswoode.smartbuildings.app
www.laoslamduan.com
focusi.app
tekxiph.com
focusi.app
itsupport.nationalable.org
app.gulfbrokers.com
postal.gift
tekxiph.com
www.stellarjaysoftware.com
tekxiph.com
www.critterhobbyist.com
*.estoredemo.tekxiph.com
www.critterhobbyist.com
www.movix.cf
e2e-domain1.enotice.io
knownfraud.com
tekxiph.com
eased-ui.com
dashboard.swattup.com
tekxiph.com
www.keyforher.com
support.ufone.nz
tekxiph.com
tekxiph.com
support.tekxiph.com
piedpiper.stg.unthread.io
tekxiph.com
tekxiph.com
tekxiph.com
b2b.tekxiph.com
www.laoslamduan.com
jjugul.kr
tekxiph.com
ravo.wiki
tekxiph.com
www.mohan.dev
jabwemake.com
Certificate
The complete raw certificate details for tekxiph.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGCjCCBPKgAwIBAgISBA11mEr4o5LQ6yficcjWAFGAMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA4MjMwODMyMDBaFw0x NzExMjEwODMyMDBaMBYxFDASBgNVBAMTC3Rla3hpcGguY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAxfwbiLftxm0olqQ6EYOwIs42FYjUy8qS88Eg rVTVgcGClWHv7Y2vqmHAi5Dl3/N/ufxtzQV/0K0g69XdvLzccHHWv6Sa1gThdLZa TxxGjr6joVE6seIesf3mRbYd0hDygX3fy5VMThIyPDz+lkWAEsPHreOV1e/Noq/D QftQgYyImrsUy0g3geHYBVQUqSSwCBwJHjqpi+p7fWAW/BK+cSe8sBaxiIR61Ixn P60j8zjcqCWsEgDxvS1aujU1klSObl2p74KpdNKvC0LQJlEcfBHIYYIdcqvbTw+3 rZwr3VwgpTUVMxEoBTFqqDVOYxUU0BqQ3cLM6wEsx6eSq2ft07O61lfW1h6ZjZeb 6XMcNPTjnp9yBfty5FHbeEfxQ6BByvTqZP8huhL5qV/Ax694DK9XGiWdXbJ/o6gC kviwRwRvIhxBbssuh0Gl4O/8kNqb+0DU1TDcjzeoal9q14IH4DdrGGgbG4VDvn6h 3gQ5o908ztCxiIAuVRqt5d2rlPbA4QBVy3YCVMxMDDJzTirUp/LtxjEkrrTfqHF6 guPd9fCvU75BEz4WnYpds8nIuBF1huCVT9pjHTGat1IX+sZSkBa0aZ3fDbJrrq6m 2bGwD6pP1kK5UB+4MByDmdjFtLq2fQxrlDuvNo5NATrfRHgosgCiNvGWZySxBohr bIHEwqsCAwEAAaOCAhwwggIYMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUH6lrYnyW Vqhw/5EOeRIj6Y9P8ZMwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAnBgNVHREEIDAeggt0ZWt4aXBoLmNvbYIPd3d3LnRl a3hpcGguY29tMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEB ATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasG CCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxp ZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5j ZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9s ZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBAEHS sAEi8YXfwuxC8IUS0SZ7eKRwtOtWfL6HF09D8OIVnYUMBvf8UXtRLB5yWwKB2OO2 STYM3BOCO33A1rWgwZdp1KPs4ZrBaSyQ30rBMi5d4omQWeoqolIyzYZ9774br255 ksrl7i/TEbMU6qqWTkXx4MEc2pJjWm5BvQQxCS9zZtbntlZ6I2IUokNhl7sxD9O+ xjJn/tE91twC81894qMXRzd8DWU1JBWuixXoPRoov+rKbep+KMf17MuBisIDHky+ 8Na8nmRlKEPdalBmkjyBtZrgMuBCPE7uDD9GRfKhetG9GT60rVhv7h0fRSwcqppZ xLqz8pRnHOCtYb3GaTI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxfwbiLftxm0olqQ6EYOw Is42FYjUy8qS88EgrVTVgcGClWHv7Y2vqmHAi5Dl3/N/ufxtzQV/0K0g69XdvLzc cHHWv6Sa1gThdLZaTxxGjr6joVE6seIesf3mRbYd0hDygX3fy5VMThIyPDz+lkWA EsPHreOV1e/Noq/DQftQgYyImrsUy0g3geHYBVQUqSSwCBwJHjqpi+p7fWAW/BK+ cSe8sBaxiIR61IxnP60j8zjcqCWsEgDxvS1aujU1klSObl2p74KpdNKvC0LQJlEc fBHIYYIdcqvbTw+3rZwr3VwgpTUVMxEoBTFqqDVOYxUU0BqQ3cLM6wEsx6eSq2ft 07O61lfW1h6ZjZeb6XMcNPTjnp9yBfty5FHbeEfxQ6BByvTqZP8huhL5qV/Ax694 DK9XGiWdXbJ/o6gCkviwRwRvIhxBbssuh0Gl4O/8kNqb+0DU1TDcjzeoal9q14IH 4DdrGGgbG4VDvn6h3gQ5o908ztCxiIAuVRqt5d2rlPbA4QBVy3YCVMxMDDJzTirU p/LtxjEkrrTfqHF6guPd9fCvU75BEz4WnYpds8nIuBF1huCVT9pjHTGat1IX+sZS kBa0aZ3fDbJrrq6m2bGwD6pP1kK5UB+4MByDmdjFtLq2fQxrlDuvNo5NATrfRHgo sgCiNvGWZySxBohrbIHEwqsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 353029124922240037582570547324423180931456 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-23 08:32:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-21 08:32:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tekxiph.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 807707495036233771699359666589506234780821253768185553648490509821076174076673997646656566719364172770476826046919940177408018368097672188380251631634616762036393583929518176452581653358779153744515687014866288390474375330579687998083052781912676500049358813568192971015135416127642291016407158414549115140819583150007172265029790334017925288657108042331577022728121144338534159108544462446675145923574911803432810749192470396644511081611667137956908980856878359414105170272616410541101995464093179015294977189256801871889578405471647109234223860660780551895399913881951664463068651726840700505315074718489097707439329962305908803382810854010533350192964736891426532251862822477227095158051097592572847604299325964460423227120128862477691688928319937522868747322480584922774063863557073133367704830805465998993302502707800353105695425861873853080327116679895739883360491843832739006900629636730791192947346973332841961371343945689524604175707317474438591555209527412743871981433382012233422971511087303506713680869814503981402749804563933768503245288030474142766306220422780819297965240045083993405407389786528085066347119461992596359987622781535181271740033222272109907833129866424415703269524661574711903058718370552141537702363819 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1fa96b627c9656a870ff910e791223e98f4ff193 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tekxiph.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tekxiph.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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