trust.iatn.net
Issued by R3
About this certificate
This digital certificate with serial number 03:11:b0:3f:5a:ad:db:ab:57:ed:db:cb:35:ee:7f:08:dd:7d was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=trust.iatn.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:11:b0:3f:5a:ad:db:ab:57:ed:db:cb:35:ee:7f:08:dd:7dSerial Number (int): 267355931114088247508838431695332774043005
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 71:cc:9c:c7:02:2a:29:de:12:92:24:72:13:0c:e5:43:fb:22:b6:6f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 44:fe:d4:6f:3b:68:a4:b2:1a:f5:7d:66:3a:0b:4e:4c:ec:34:ce:e9
Fingerprint (sha256): 88:b0:d2:32:0c:fb:65:0b:82:0b:db:4e:8e:53:0f:1e:e2:3e:6d:cd:33:17:48:10:2a:06:bc:2f:28:3d:c8:2b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate trust.iatn.net
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for trust.iatn.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
it-status.psemi.com
mi.portal.sagrado.edu
status.cryproxy.ru
status.dataspace.pl
status.digisoc.domains
status.ewaycorp.com
status.smartz.com
trust.complianceds.com
trust.iatn.net
mi.portal.sagrado.edu
status.cryproxy.ru
status.dataspace.pl
status.digisoc.domains
status.ewaycorp.com
status.smartz.com
trust.complianceds.com
trust.iatn.net
Other certificates including the domain name iatn.net
(limited to 100 certificates)
trust.iatn.net
trust.iatn.net
members.iatn.net
trust.iatn.net
promo.iatn.net
promo.iatn.net
it-status.psemi.com
store.iatn.net
it-status.psemi.com
trust.iatn.net
promo.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
promo.iatn.net
store.iatn.net
*.iatn.net
promo.iatn.net
www.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
members.iatn.net
trust.iatn.net
cumulus.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
*.iatn.net
trust.iatn.net
promo.iatn.net
trust.iatn.net
trust.iatn.net
store.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
members.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
*.iatn.net
store.iatn.net
store.iatn.net
it-status.psemi.com
store.iatn.net
it-status.psemi.com
trust.complianceds.com
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
tms1-status.bbpos.com
store.iatn.net
store.iatn.net
promo.iatn.net
promo.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
cumulus.iatn.net
trust.iatn.net
status.ewaycorp.com
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
*.iatn.net
trust.iatn.net
*.iatn.net
promo.iatn.net
trust.iatn.net
trust.iatn.net
promo.iatn.net
trust.iatn.net
promo.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
promo.iatn.net
trust.iatn.net
members.iatn.net
trust.iatn.net
*.iatn.net
trust.iatn.net
www.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
promo.iatn.net
store.iatn.net
trust.iatn.net
members.iatn.net
trust.iatn.net
promo.iatn.net
promo.iatn.net
it-status.psemi.com
store.iatn.net
it-status.psemi.com
trust.iatn.net
promo.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
promo.iatn.net
store.iatn.net
*.iatn.net
promo.iatn.net
www.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
members.iatn.net
trust.iatn.net
cumulus.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
*.iatn.net
trust.iatn.net
promo.iatn.net
trust.iatn.net
trust.iatn.net
store.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
members.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
*.iatn.net
store.iatn.net
store.iatn.net
it-status.psemi.com
store.iatn.net
it-status.psemi.com
trust.complianceds.com
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
tms1-status.bbpos.com
store.iatn.net
store.iatn.net
promo.iatn.net
promo.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
cumulus.iatn.net
trust.iatn.net
status.ewaycorp.com
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
*.iatn.net
trust.iatn.net
*.iatn.net
promo.iatn.net
trust.iatn.net
trust.iatn.net
promo.iatn.net
trust.iatn.net
promo.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
promo.iatn.net
trust.iatn.net
members.iatn.net
trust.iatn.net
*.iatn.net
trust.iatn.net
www.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
trust.iatn.net
promo.iatn.net
store.iatn.net
Certificate
The complete raw certificate details for trust.iatn.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF0jCCBLqgAwIBAgISAxGwP1qt26tX7dvLNe5/CN19MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMTA4MTgxNDM5MzVaFw0yMTExMTYxNDM5MzNaMBkxFzAVBgNVBAMT DnRydXN0LmlhdG4ubmV0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA tE+3/MrYifN6akCMKYsyuxGZS883d1n1NJuGL27KHfuqFV2O0FlYkvH5XJz9pXiB MWRzbktATZ9c4GE8SZANYouoIXlzRTzZqT3wsQ02Dm/GomYsH9DMTthsGl/DMEDQ 3I5EtFn8vn+SN5pPOzWdVxAmAdQYSvO5sCSZTRH6WdKy/i31QrlKDwUR8KsEIbXH Izq8mHfpT2wwFZzorkH/KoYHVFAvsIqK5QDGDzhKshjuLWR0h6CqaiYTuJcE/mF7 udc9NziejeFeYKdhb+7DsAZD7qowg5woNKMjswdnU3RcP4mNPJoJNFY59qu58MaG tv0F3kRyxMxywX8gsVl4JQIDAQABo4IC+TCCAvUwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBRxzJzHAiop3hKSJHITDOVD+yK2bzAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzCByAYDVR0RBIHAMIG9ghNpdC1zdGF0dXMucHNlbWkuY29tghVtaS5wb3J0YWwu c2FncmFkby5lZHWCEnN0YXR1cy5jcnlwcm94eS5ydYITc3RhdHVzLmRhdGFzcGFj ZS5wbIIWc3RhdHVzLmRpZ2lzb2MuZG9tYWluc4ITc3RhdHVzLmV3YXljb3JwLmNv bYIRc3RhdHVzLnNtYXJ0ei5jb22CFnRydXN0LmNvbXBsaWFuY2Vkcy5jb22CDnRy dXN0LmlhdG4ubmV0MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYK KwYBBAHWeQIEAgSB9QSB8gDwAHYAlCC8Ho7VjWyIcx+CiyIsDdHaTV5sT5Q9YdtO L1hNosIAAAF7Wer07wAABAMARzBFAiEAyGMA20sNzMdp6q6dDXxzXm3OWIJl4yy3 /E74zh+ApekCIAbqIqhOXpbcBsS4XOlCMU3pFz/EYlH6Ea+5lxfRwIwEAHYA9lyU L9F3MCIUVBgIMJRWjuNNExkzv98MLyALzE7xZOMAAAF7Wer04QAABAMARzBFAiEA kwPt3iPuccXpVroqkgQDCeIFFJol2N8zfjFWvegAsLkCIFIqLj/0frj4gAydAW0H QSGOYRMKKiYbZde66cITsUzgMA0GCSqGSIb3DQEBCwUAA4IBAQB/gARHcpbmnS/e hbYUMdZL+MEw5KGv3yhY6Q6uNbFOCwPmRDHWymhYbMJlTzf8a+k13I6wUkQwtdJa G8TTMbF/tym/w4luEA/mpTt6PTA4zAwsAWeF86IHpin7XbavdHus8h12nqtu+NuD FuU6lNMH4aH2ME3aD1hKTMfXWum94tvSDw5syjGN0weNPtPh6o7sWsp2APZn4Znr kpgwKXRy1M89xUpIpMrv5tGg8fJtwUv6vb0oNgdOMtQGUo4cpjlyzSTceNU5UsRq DOxTY1fKoVnQ999JiY9o7PCLBtyGR9OZxpnjxlj3oP9S4sxyxevHg22wiXKbFPW0 tishdvDY -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtE+3/MrYifN6akCMKYsy uxGZS883d1n1NJuGL27KHfuqFV2O0FlYkvH5XJz9pXiBMWRzbktATZ9c4GE8SZAN YouoIXlzRTzZqT3wsQ02Dm/GomYsH9DMTthsGl/DMEDQ3I5EtFn8vn+SN5pPOzWd VxAmAdQYSvO5sCSZTRH6WdKy/i31QrlKDwUR8KsEIbXHIzq8mHfpT2wwFZzorkH/ KoYHVFAvsIqK5QDGDzhKshjuLWR0h6CqaiYTuJcE/mF7udc9NziejeFeYKdhb+7D sAZD7qowg5woNKMjswdnU3RcP4mNPJoJNFY59qu58MaGtv0F3kRyxMxywX8gsVl4 JQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 267355931114088247508838431695332774043005 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-18 14:39:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-11-16 14:39:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'trust.iatn.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22762205650512932879778753590667710682825072779623506977527457887180845918508186111707427636129554533042942326808103677225099042348344510754618338631115058541503892186662428423025486625693339274047738263181016987311955461397188845988829815584993199161886695989822880213969156695162819742375509937148846055768061780695260767856746071241976303264806825915621520980668637085037393281777178871239934535714589911634975599532485384836574527465593478475902760999241083169124962348926282453796997209506875437668048877189317180684629268280619647351396843333032509949417606733073982861785958094567141018690512265780955826452517 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 71cc9cc7022a29de12922472130ce543fb22b66f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (192 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'it-status.psemi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mi.portal.sagrado.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'status.cryproxy.ru' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'status.dataspace.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'status.digisoc.domains' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'status.ewaycorp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'status.smartz.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'trust.complianceds.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'trust.iatn.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076009420bc1e8ed58d6c88731f828b222c0dd1da4d5e6c4f943d61db4e2f584da2c20000017b59eaf4ef0000040300473045022100c86300db4b0dccc769eaae9d0d7c735e6dce588265e32cb7fc4ef8ce1f80a5e9022006ea22a84e5e96dc06c4b85ce942314de9173fc46251fa11afb99717d1c08c04007600f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e30000017b59eaf4e100000403004730450221009303edde23ee71c5e956ba2a92040309e205149a25d8df337e3156bde800b0b90220522a2e3ff47eb8f8800c9d016d0741218e61130a2a261b65d7bae9c213b14ce0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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