www.rmz.fi
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:63:36:8d:ff:a7:c3:e5:d5:3c:fc:6e:51:9b:19:26:c0:00 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.rmz.fi
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:63:36:8d:ff:a7:c3:e5:d5:3c:fc:6e:51:9b:19:26:c0:00Serial Number (int): 295097327731389266189553224609062439010304
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f5:12:90:6b:32:85:56:fb:21:7b:32:08:52:72:ad:d9:7f:49:18:81
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): aa:ad:4a:f8:3b:56:0e:bc:b2:ef:e4:5d:a2:4b:79:01:ff:fc:20:c4
Fingerprint (sha256): 85:02:d1:c0:45:2c:6f:68:b9:3d:ad:c0:66:98:c0:25:7e:19:80:5c:ee:ce:5f:6c:b8:74:52:e9:0f:ce:cf:e6
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate www.rmz.fi
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.rmz.fi
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rmz.fi
www.rmz.fi
www.zingg.li
zingg.li
www.rmz.fi
www.zingg.li
zingg.li
Other certificates including the domain name rmz.fi
(limited to 100 certificates)
www.rmz.fi
git.rmz.fi
www.rmz.fi
suomi.rmz.fi
git.rmz.fi
git.rmz.fi
www.rmz.fi
lpi.rmz.fi
suomi.rmz.fi
suomi.rmz.fi
oc.rmz.fi
www.rmz.fi
lpi.rmz.fi
www.rmz.fi
mail.rmz.fi
own.rmz.fi
own.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
own.rmz.fi
www.rmz.fi
www.rmz.fi
git.rmz.fi
mail.rmz.fi
oc.rmz.fi
oc.rmz.fi
www.rmz.fi
suomi.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
lpi.rmz.fi
suomi.rmz.fi
mail.rmz.fi
lpi.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
git.rmz.fi
mail.rmz.fi
sms.rmz.fi
www.rmz.fi
www.rmz.fi
oc.rmz.fi
mail.rmz.fi
www.rmz.fi
lpi.rmz.fi
mail.rmz.fi
www.rmz.fi
oc.rmz.fi
own.rmz.fi
www.rmz.fi
git.rmz.fi
lpi.rmz.fi
www.rmz.fi
suomi.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
rmz.fi
www.rmz.fi
oc.rmz.fi
git.rmz.fi
www.rmz.fi
suomi.rmz.fi
git.rmz.fi
git.rmz.fi
www.rmz.fi
lpi.rmz.fi
suomi.rmz.fi
suomi.rmz.fi
oc.rmz.fi
www.rmz.fi
lpi.rmz.fi
www.rmz.fi
mail.rmz.fi
own.rmz.fi
own.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
own.rmz.fi
www.rmz.fi
www.rmz.fi
git.rmz.fi
mail.rmz.fi
oc.rmz.fi
oc.rmz.fi
www.rmz.fi
suomi.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
lpi.rmz.fi
suomi.rmz.fi
mail.rmz.fi
lpi.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
git.rmz.fi
mail.rmz.fi
sms.rmz.fi
www.rmz.fi
www.rmz.fi
oc.rmz.fi
mail.rmz.fi
www.rmz.fi
lpi.rmz.fi
mail.rmz.fi
www.rmz.fi
oc.rmz.fi
own.rmz.fi
www.rmz.fi
git.rmz.fi
lpi.rmz.fi
www.rmz.fi
suomi.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
www.rmz.fi
rmz.fi
www.rmz.fi
oc.rmz.fi
Certificate
The complete raw certificate details for www.rmz.fi in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGDCCBQCgAwIBAgISA2M2jf+nw+XVPPxuUZsZJsAAMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjA2MDcwMzE4MDBaFw0x NjA5MDUwMzE4MDBaMBUxEzARBgNVBAMTCnd3dy5ybXouZmkwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQCpsDJ667Xv875GBY4nLxg/FYYG1itO6LTwyqkz SR080lwaFCAsOk5SqQ+ffjFXwjurQsQfDubW+r4iIRxQiiIftzqu0JxUO8JHL5Ts Son/4Fw9SFGY+MQiitHhrALoYIN3A4p2Nvlkwr+Vyt/tUH2DgN3ttdV7ymUJJY8c aDx5kXgTQ16GKXpQBrpMWnZqBidgF/9yCU3vXD0E/bFArU26IDhbdqrrkfj9P0XP vp6hbR9H0OiOq1fjjRS5CWufk5xcgjAe+UpOKqWsVld8C0ySmDEaxy4vfZ0R9Udg ig4A87EbuEmsXutu8L4uw9Kz8DlVoumaxEUlD43AvgO4O/HRjdCk3QwSmJVo2fuZ EeDozc9m1iAC3ckJleMwsAi2KZPDrPt7ERwSG8cXyM5mB7hIBbI0qmglBsfhO/mw FAmJ4tx5wjbiEMJO2Oc7+MpP3CnhyTRDCR2G/B3K41aNdMVkff+Nmg94tE8hX7aO EppwAFdK8G6EN6LfgNdQ7lCLlIM6GU3V/Y+cWaWIdKwvIvy7XzyYMjJw5ISzWd1U ccdfO7nTuw79gE57Y+EtU7zv6OUPn4U3Ay9iniVmcSoctSxhJTjrei1KP2t69ZoU lWhjvMmyJ6iVPIkRU5g7xn0y1f1JYNrK5n71FZsMilbTe26APNgxAjRdyDl96dDH 8rTJ3QIDAQABo4ICKzCCAicwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT1EpBrMoVW +yF7MghScq3Zf0kYgTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBw BggrBgEFBQcBAQRkMGIwLwYIKwYBBQUHMAGGI2h0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcvMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzA1BgNVHREELjAsggZybXouZmmCCnd3dy5ybXouZmmC DHd3dy56aW5nZy5saYIIemluZ2cubGkwgf4GA1UdIASB9jCB8zAIBgZngQwBAgEw geYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNl bmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlzIENlcnRpZmljYXRlIG1h eSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcgUGFydGllcyBhbmQgb25s eSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRpZmljYXRlIFBvbGljeSBmb3Vu ZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9yZXBvc2l0b3J5LzANBgkqhkiG 9w0BAQsFAAOCAQEAlSKhf0BBfMpXInNKR2JXcEcFcvyzLZ1+GzCbMUuXaaSu2BRV 0N2SryPx20ZyTewoLvRxsru5ij0ky3eTfdzAwbjF7cV0+k4LjZJDZYc7GtrcGecN rj4uci+zSIwEeeLJWy7X2x8j7P3ymFkvgWky6794V1L/c/rOE7fmV+Ee5dd4fwDE Gpza277isCZkWL/ybsqSK4KWKKQjgO9aPnVUpsT5BbLxPvnfHTqGQqX9l6iHslGs BLUw7RFkW2l20ShVjHNHJVmb5PvFBbDuD1BknerYutOsD6sq1CsF3DTwVgHbM9Sj fv8YJQVJQxEsZaJe8CmHHc1FHAhezW12EO5qJA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqbAyeuu17/O+RgWOJy8Y PxWGBtYrTui08MqpM0kdPNJcGhQgLDpOUqkPn34xV8I7q0LEHw7m1vq+IiEcUIoi H7c6rtCcVDvCRy+U7EqJ/+BcPUhRmPjEIorR4awC6GCDdwOKdjb5ZMK/lcrf7VB9 g4Dd7bXVe8plCSWPHGg8eZF4E0Nehil6UAa6TFp2agYnYBf/cglN71w9BP2xQK1N uiA4W3aq65H4/T9Fz76eoW0fR9DojqtX440UuQlrn5OcXIIwHvlKTiqlrFZXfAtM kpgxGscuL32dEfVHYIoOAPOxG7hJrF7rbvC+LsPSs/A5VaLpmsRFJQ+NwL4DuDvx 0Y3QpN0MEpiVaNn7mRHg6M3PZtYgAt3JCZXjMLAItimTw6z7exEcEhvHF8jOZge4 SAWyNKpoJQbH4Tv5sBQJieLcecI24hDCTtjnO/jKT9wp4ck0QwkdhvwdyuNWjXTF ZH3/jZoPeLRPIV+2jhKacABXSvBuhDei34DXUO5Qi5SDOhlN1f2PnFmliHSsLyL8 u188mDIycOSEs1ndVHHHXzu507sO/YBOe2PhLVO87+jlD5+FNwMvYp4lZnEqHLUs YSU463otSj9revWaFJVoY7zJsieolTyJEVOYO8Z9MtX9SWDayuZ+9RWbDIpW03tu gDzYMQI0Xcg5fenQx/K0yd0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 295097327731389266189553224609062439010304 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-06-07 03:18:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-05 03:18:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.rmz.fi' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 692267745203692834932589739787130036403010958734278679525252099173926754675503320399228039561221731280525775886154939696079768711401926046111546928319767949460393530258993809147944505317444992170963215356832338859234558324453377396608118898381247225927445410139493908608843835572794941330775209672893258350547134214933868024351178889018558250182731162847067588835139923132850670239055821701756406013189315397559156028142341203425934652864674005058612750930206670332551753500103841309270283120081224534083316538021570174305845079909768991475612842891805286865937244956316686686531532812243846823309092827573909486475928809791753749677687506917846404945952442034390008883199960854711492278251461048228024497174303600599180371355788858765821752881884393061547886154626343320370635650715925435904541884858764435450358248775557727786968062103545090606248933918066535899374244161791844016670945429578626808118263424836932380355709642507339443318918129016586248919467711676378354393436342700160376636404828838597061297249414452964035211692802104254812396690732020378205101485730224701713485248791308793164117637774406233452244415999739733018788702125146156824140608853561859457032055737904680639478554235034116866342627478502516457483848157 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f512906b328556fb217b32085272add97f491881 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rmz.fi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rmz.fi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.zingg.li' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zingg.li' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 009522a17f40417cca5722734a47625770470572fcb32d9d7e1b309b314b9769a4aed81455d0dd92af23f1db46724dec282ef471b2bbb98a3d24cb77937ddcc0c1b8c5edc574fa4e0b8d924365873b1adadc19e70dae3e2e722fb3488c0479e2c95b2ed7db1f23ecfdf298592f816932ebbf785752ff73face13b7e657e11ee5d7787f00c41a9cdadbbee2b0266458bff26eca922b829628a42380ef5a3e7554a6c4f905b2f13ef9df1d3a8642a5fd97a887b251ac04b530ed11645b6976d128558c734725599be4fbc505b0ee0f50649dead8bad3ac0fab2ad42b05dc34f05601db33d4a37eff1825054943112c65a25ef029871dcd451c085ecd6d7610ee6a24