hoitoraide.fi
Issued by Let's Encrypt Authority X1
About this certificate
This digital certificate with serial number 01:8e:b5:6e:bc:40:cd:1d:57:ea:76:43:6b:5a:cd:39:df:96 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hoitoraide.fi
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:8e:b5:6e:bc:40:cd:1d:57:ea:76:43:6b:5a:cd:39:df:96Serial Number (int): 135673547272652104850917866957620224057238
Serial Number lenght: 137 bits, 18 octets
SubjectKeyId: 69:68:b4:af:b0:7a:98:77:8f:0c:c2:3a:18:35:0b:ff:6e:8a:eb:9e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 95:e8:38:e0:f9:e1:71:af:8c:5b:5f:c8:7b:7b:54:88:bf:99:5e:fa
Fingerprint (sha256): 7e:2d:69:db:a2:c6:af:3c:e7:37:6f:3d:11:f2:26:eb:bf:21:f6:12:dd:c7:5b:4a:bd:63:4f:50:96:a9:bb:e2
Issuing Certificate URL: http://cert.int-x1.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x1.letsencrypt.org/Check the revocation status for certificate hoitoraide.fi
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hoitoraide.fi
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hoitoraide.fi
www.hoitoraide.fi
www.hoitoraide.fi
Other certificates including the domain name hoitoraide.fi
(limited to 100 certificates)
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitavahengitys.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitavahengitys.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitavahengitys.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitavahengitys.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitavahengitys.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitavahengitys.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
hoitoraide.fi
Certificate
The complete raw certificate details for hoitoraide.fi in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGETCCBPmgAwIBAgISAY61brxAzR1X6nZDa1rNOd+WMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMTAeFw0xNjAzMjQwMDI1MDBaFw0x NjA2MjIwMDI1MDBaMBgxFjAUBgNVBAMTDWhvaXRvcmFpZGUuZmkwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQCujn93viY/j8x8PB7Xiwy/n13gBtZVxZ12 OSVGe2VBWyTkeH10xJT2GLjaHlhzl07XPIVv+wrZhT3k0Q+W5nf2krXI2/PgBdD2 Lv4o2zB/ph1inA4ZYutOSseik80Qy3CJTWByCdZvhH0SbYe8hb04N0YWwKTylUy7 SYgy7FH00Z8SzskaBQ7P4C8ySy317DjmbpNbnjT3+3CtReDxbjrBPtOrMrzXODcC Jh7Ynuw33S50XFORANyQ583Afm2pV64LvQnmbKEuOjAz/Ymu+UQ9gJi3PL3npIZn YHSZ4W+FISC5z0sUT8gcuwE+u+KF6XDTxxathgASrUKx19BjhI5WtDT9eSQw1z2X t7KLlKIcmDOpWHtdMFFsT912mm95zm61VlqTCYlGDBKYkevgpeTdpNIeY5PqDDaF 40sIEqM/Nh8rvKrjxnK9rSoAIDLHE1B7Fq/y2OY6iND/kDhOD/g2KedCtPoQFLYD r28nhmB/6h7vj39owSbMaU4yFFLgIemwUGVOQIWlsTwrCZDRDxY7H5A9blMDTPRJ yQWnXlWdrFoLAHdh0EngZgeabjJTdV9Pn7E6xoWn/6kXYJK1kFvrQmktOLTDct0X Mn1oKMCEyKDo9VpF8rSjTNR/DZxd0lM22uT3R4hT5SYL87sTzyAYb2urP/Mm/Ti+ IT4OSfO7VwIDAQABo4ICITCCAh0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRpaLSv sHqYd48MwjoYNQv/borrnjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBwBggrBgEFBQcBAQRkMGIwLwYIKwYBBQUHMAGGI2h0dHA6Ly9vY3NwLmludC14 MS5sZXRzZW5jcnlwdC5vcmcvMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDEubGV0c2VuY3J5cHQub3JnLzArBgNVHREEJDAigg1ob2l0b3JhaWRlLmZpghF3 d3cuaG9pdG9yYWlkZS5maTCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYB BAGC3xMBAQEwgdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQu b3JnMIGrBggrBgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkg YmUgcmVsaWVkIHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFj Y29yZGFuY2Ugd2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0 dHBzOi8vbGV0c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMA0GCSqGSIb3DQEBCwUA A4IBAQBDD+3GY5G0/HGbcNeArTkGENUvF5DfY9Avz00oXH+djaK0fP22prJ5daKu v6+nAgkw9MuQ2Lu8jkXJue1f6KTD3daM2VBik+q/nyV0DCzR7MSYw+WNGOCHNS6b qAcSr0J3lFIhZ6l/l1IWM/hXE28HF5WElqMfk03Dac1i2NqVLpetsacrwvqddOJz /uLlQsXpOEGeumpUr6c5Va7fNlFwwLho0vx7UTYiFVXBIAXMBJw9YQCZrMsBVXuF NxzMQVLGfsEvoLy9vV9iVNMjqoLsS/YHUu7V/bwK00IN44G5NCl7DstI6urI6zRO uiZCy2sDIB3W64WKn0a8FHGPNCGF -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAro5/d74mP4/MfDwe14sM v59d4AbWVcWddjklRntlQVsk5Hh9dMSU9hi42h5Yc5dO1zyFb/sK2YU95NEPluZ3 9pK1yNvz4AXQ9i7+KNswf6YdYpwOGWLrTkrHopPNEMtwiU1gcgnWb4R9Em2HvIW9 ODdGFsCk8pVMu0mIMuxR9NGfEs7JGgUOz+AvMkst9ew45m6TW5409/twrUXg8W46 wT7TqzK81zg3AiYe2J7sN90udFxTkQDckOfNwH5tqVeuC70J5myhLjowM/2JrvlE PYCYtzy956SGZ2B0meFvhSEguc9LFE/IHLsBPrvihelw08cWrYYAEq1CsdfQY4SO VrQ0/XkkMNc9l7eyi5SiHJgzqVh7XTBRbE/ddppvec5utVZakwmJRgwSmJHr4KXk 3aTSHmOT6gw2heNLCBKjPzYfK7yq48Zyva0qACAyxxNQexav8tjmOojQ/5A4Tg/4 NinnQrT6EBS2A69vJ4Zgf+oe749/aMEmzGlOMhRS4CHpsFBlTkCFpbE8KwmQ0Q8W Ox+QPW5TA0z0SckFp15VnaxaCwB3YdBJ4GYHmm4yU3VfT5+xOsaFp/+pF2CStZBb 60JpLTi0w3LdFzJ9aCjAhMig6PVaRfK0o0zUfw2cXdJTNtrk90eIU+UmC/O7E88g GG9rqz/zJv04viE+Dknzu1cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 135673547272652104850917866957620224057238 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-03-24 00:25:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-06-22 00:25:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hoitoraide.fi' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 712128930326213085341092496953166399709581695259739329440745409473061943528616386071758508110646345505134920943581106045186210993206946164581501229832674057614623291468234186313376341963170538763993515005437105557269249756119853540182397356429879131894186394920413624013845366348237277212452982221743881198419169866773225843729331492252107705388509310658873289241804954205805009003539568767315547646477259826480911986321114408583515387844688882741657534720782209746936730577003103744575403483431400207723836397309867414018408568508993631541262603914011591743820241929509348905272910049226061218765260245727248980858830492208519604742976107612377368506900172277998270929992557127206552927628460793814370365770509066744588393630420767170431669193548357850105226146631748807215357647825082489267340613492338029166575451335841396657061452365438751491470223223758788814094786210734927416585103482804123842124567819207062074816782284191006322277105931164656754726307442113155216746583642302937586454342201832357639023438700693482995570645596517575736439770670549692813951101829105229899070443752639027541666858828369410559238415479256459348402652425731599740069904590209641360818364749438727485241391901409825024426510247410071315613465431 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6968b4afb07a98778f0cc23a18350bff6e8aeb9e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x1.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x1.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hoitoraide.fi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hoitoraide.fi' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00430fedc66391b4fc719b70d780ad390610d52f1790df63d02fcf4d285c7f9d8da2b47cfdb6a6b27975a2aebfafa7020930f4cb90d8bbbc8e45c9b9ed5fe8a4c3ddd68cd9506293eabf9f25740c2cd1ecc498c3e58d18e087352e9ba80712af427794522167a97f97521633f857136f0717958496a31f934dc369cd62d8da952e97adb1a72bc2fa9d74e273fee2e542c5e938419eba6a54afa73955aedf365170c0b868d2fc7b5136221555c12005cc049c3d610099accb01557b85371ccc4152c67ec12fa0bcbdbd5f6254d323aa82ec4bf60752eed5fdbc0ad3420de381b934297b0ecb48eaeac8eb344eba2642cb6b03201dd6eb858a9f46bc14718f342185