erp.ahg.af
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:e9:5a:87:fa:36:bd:d7:b7:46:8a:0b:cb:d8:bc:5d:2b:80 was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=erp.ahg.af
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e9:5a:87:fa:36:bd:d7:b7:46:8a:0b:cb:d8:bc:5d:2b:80Serial Number (int): 340742985842495421697218793590393849850752
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 08:ef:74:53:e0:cd:9c:93:fb:60:cc:ae:b0:75:72:88:f9:4e:c5:06
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c2:4f:25:a7:bd:68:99:e4:70:a0:89:68:d4:dd:71:5d:14:29:2c:04
Fingerprint (sha256): 92:7d:bb:8d:f3:de:07:c1:38:73:4d:36:32:99:8c:20:2c:5e:c0:df:f3:9c:db:51:ff:19:5a:88:f0:fe:98:3a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate erp.ahg.af
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for erp.ahg.af
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
careers.ahg.af
clients.ahg.af
erp.ahg.af
merchant.ahg.af
www.careers.ahg.af
www.clients.ahg.af
www.erp.ahg.af
www.merchant.ahg.af
clients.ahg.af
erp.ahg.af
merchant.ahg.af
www.careers.ahg.af
www.clients.ahg.af
www.erp.ahg.af
www.merchant.ahg.af
Other certificates including the domain name ahg.af
(limited to 100 certificates)
www.jitsi.ahg.af
empleos.sasseguridadprivada.com.mx
careers.paicsolar.com
www.bdops.ahg.af
careers.movere.ai
demoerp.ahg.af
ahg.af
careers.ahg.af
www.jitsi.ahg.af
cpanel.ahg.af
ahg.af
careers.theskunklabs.com
undperp.ahg.af
erp.ahg.af
www.erp.ahg.af
jobs.3sixtydental.com
erp.ahg.af
careers.ahg.af
jobs.pointerremoteroles.com.au
test.ahg.af
test.ahg.af
erp.ahg.af
ahg.af
www.jitsi.ahg.af
job.manpowerspecialists.com
ahg.af
careers.theskunklabs.com
erp.ahg.af
erp.ahg.af
cpcalendars.ahg.af
ahg.af
careers.ahg.af
ahg.af
undperp.ahg.af
jobs.3sixtydental.com
erp.ahg.af
www.ahg.af
erp.ahg.af
*.ahg.af
test.ahg.af
recruit.ahg.af
careers.ahg.af
*.ahg.af
careers.ahg.af
jobs.cryptopia.com
job.innovationgenes.com
erp.ahg.af
ahg.af
clients.ahg.af
careers.sttrinity.com.au
careers.theskunklabs.com
careers.theskunklabs.com
erp.ahg.af
test.ahg.af
careers.truelightit.com
careers.cognativinc.com
careers.ahg.af
erp.ahg.af
www.ahg.af
www.bdops.ahg.af
jobs.finlanza.com
www.archive.ahg.af
demoerp.ahg.af
www.ahg.af
careers.tharwah.net
careers.theskunklabs.com
erp.ahg.af
careers.solidsystems.co.za
www.erp.ahg.af
recruitment.gpdavies.co.uk
erp.ahg.af
talent.vernal.is
careers.solidsystems.co.za
careers.mindcaresolutions.com
demoerp.ahg.af
erp.ahg.af
empleos.sasseguridadprivada.com.mx
careers.paicsolar.com
www.bdops.ahg.af
careers.movere.ai
demoerp.ahg.af
ahg.af
careers.ahg.af
www.jitsi.ahg.af
cpanel.ahg.af
ahg.af
careers.theskunklabs.com
undperp.ahg.af
erp.ahg.af
www.erp.ahg.af
jobs.3sixtydental.com
erp.ahg.af
careers.ahg.af
jobs.pointerremoteroles.com.au
test.ahg.af
test.ahg.af
erp.ahg.af
ahg.af
www.jitsi.ahg.af
job.manpowerspecialists.com
ahg.af
careers.theskunklabs.com
erp.ahg.af
erp.ahg.af
cpcalendars.ahg.af
ahg.af
careers.ahg.af
ahg.af
undperp.ahg.af
jobs.3sixtydental.com
erp.ahg.af
www.ahg.af
erp.ahg.af
*.ahg.af
test.ahg.af
recruit.ahg.af
careers.ahg.af
*.ahg.af
careers.ahg.af
jobs.cryptopia.com
job.innovationgenes.com
erp.ahg.af
ahg.af
clients.ahg.af
careers.sttrinity.com.au
careers.theskunklabs.com
careers.theskunklabs.com
erp.ahg.af
test.ahg.af
careers.truelightit.com
careers.cognativinc.com
careers.ahg.af
erp.ahg.af
www.ahg.af
www.bdops.ahg.af
jobs.finlanza.com
www.archive.ahg.af
demoerp.ahg.af
www.ahg.af
careers.tharwah.net
careers.theskunklabs.com
erp.ahg.af
careers.solidsystems.co.za
www.erp.ahg.af
recruitment.gpdavies.co.uk
erp.ahg.af
talent.vernal.is
careers.solidsystems.co.za
careers.mindcaresolutions.com
demoerp.ahg.af
erp.ahg.af
Certificate
The complete raw certificate details for erp.ahg.af in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFzDCCBLSgAwIBAgISA+lah/o2vde3RooLy9i8XSuAMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MDEwMjU2MzlaFw0x OTA5MjkwMjU2MzlaMBUxEzARBgNVBAMTCmVycC5haGcuYWYwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDLCoUUXyNJbTvxVzy2nTmPh22v0PTUriCWPUac kew9JPnNmscI8mixYhhzeXKCOa6kF6nAZa5sWh0+txxd6QNjz+sfw78LdnrATBKc yS6EG7yd7FnJrtsHIJ3XwhBuN9JWb+YJj05OKK2LgGIJvBycmmAHbV4I+tlDQQ6S YgGOg6AMtwROn+70L6HgvaAgtQibxt5DkM6GQl7Qsv+9xH8GtAAneriVFHJ7OsR5 fgaqWMzb6DHNIjCLrU78k6ZkeRgInuLC8Hv4fIFf1ZDEAI+Oyw3ElvyBe9wmstwX BNe5mIa1i9RqvI7pFXgRQHHK/UStLI2c22nH8XPyMRGL6CoJAgMBAAGjggLfMIIC 2zAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFAjvdFPgzZyT+2DMrrB1coj5TsUGMB8G A1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAu BggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAv BggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8w gZUGA1UdEQSBjTCBioIOY2FyZWVycy5haGcuYWaCDmNsaWVudHMuYWhnLmFmggpl cnAuYWhnLmFmgg9tZXJjaGFudC5haGcuYWaCEnd3dy5jYXJlZXJzLmFoZy5hZoIS d3d3LmNsaWVudHMuYWhnLmFmgg53d3cuZXJwLmFoZy5hZoITd3d3Lm1lcmNoYW50 LmFoZy5hZjBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYG CCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB 1nkCBAIEgfQEgfEA7wB1AHR+2oMxrTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xW AAABa6utdH8AAAQDAEYwRAIgEe1m4ZZi1HzjkJHqfX8AWHbxgd2I3Buw3sxmhwRt LwoCIGdbjUEizFPR9z6dAMErUheuQpL5S/sw9l9ssJhq5jiOAHYAKTxRllTIOWW6 qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFrq612hgAABAMARzBFAiBmIo+e8qpy wp41ahPrdjlNCfYaBnOgZYWDm9R4IoTgUwIhAPEVa4IxD3940XhslI13N1qSoOIJ hL4WKOg5lUgBhH7zMA0GCSqGSIb3DQEBCwUAA4IBAQA+V68F2ddurLecYJYoLgKY H53SjoeSRWb0pCNFV3WS0DJKmrcox9/y7Dqsi2oQSKF/FAMNbyfAy5+HoWMHmN0j 3uOge0Zz28+rsbpjYErblVZIb4LvfdTrbnNVOClIzqkv4MW1iPFshEM1xN9MnQE1 Qvz55dNSpKAH9hXmPm+sPFLDTMdNbc3P6ex5V7wZChy/HZhh2cedOtYVyfURIV+X XYLMunIMDw+h0Q2FY+HodEVDta7nuHMjLr13fhxAopnml1PwYMTnZeFasaKbFE/A qxinx48QHVagxTGPH6VRQwUCOWChqbqcnNz9kVwUh83MsuNJkTtdmL5cC1KkXKdi -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywqFFF8jSW078Vc8tp05 j4dtr9D01K4glj1GnJHsPST5zZrHCPJosWIYc3lygjmupBepwGWubFodPrccXekD Y8/rH8O/C3Z6wEwSnMkuhBu8nexZya7bByCd18IQbjfSVm/mCY9OTiiti4BiCbwc nJpgB21eCPrZQ0EOkmIBjoOgDLcETp/u9C+h4L2gILUIm8beQ5DOhkJe0LL/vcR/ BrQAJ3q4lRRyezrEeX4GqljM2+gxzSIwi61O/JOmZHkYCJ7iwvB7+HyBX9WQxACP jssNxJb8gXvcJrLcFwTXuZiGtYvUaryO6RV4EUBxyv1ErSyNnNtpx/Fz8jERi+gq CQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 340742985842495421697218793590393849850752 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-01 02:56:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-29 02:56:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'erp.ahg.af' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25631563435589450972201545577366959614166672111485689445933792638221205315584467492691233034723611162684514719771613235848233812208517491284456349312043082932223059102068032934842060427713381259172155426674254469014967128224213913136222120209744971675135691264911980327344323632318203964009428707388854579106615861726560860529582801610012676236477781973906800171247063743811780210404866848345634487019241720518455046455007359656902273634625505548092002315966148316626202356433120276960001378911037525121565588517171032546143920725120547335250134367621896816899132234131414760598606461093193826638835097028972453046793 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 08ef7453e0cd9c93fb60ccaeb0757288f94ec506 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (141 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'careers.ahg.af' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clients.ahg.af' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'erp.ahg.af' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'merchant.ahg.af' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.careers.ahg.af' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.clients.ahg.af' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.erp.ahg.af' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.merchant.ahg.af' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016babad747f0000040300463044022011ed66e19662d47ce39091ea7d7f005876f181dd88dc1bb0decc6687046d2f0a0220675b8d4122cc53d1f73e9d00c12b5217ae4292f94bfb30f65f6cb0986ae6388e007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016babad76860000040300473045022066228f9ef2aa72c29e356a13eb76394d09f61a0673a06585839bd4782284e053022100f1156b82310f7f78d1786c948d77375a92a0e20984be1628e839954801847ef3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 003e57af05d9d76eacb79c6096282e02981f9dd28e87924566f4a42345577592d0324a9ab728c7dff2ec3aac8b6a1048a17f14030d6f27c0cb9f87a1630798dd23dee3a07b4673dbcfabb1ba63604adb9556486f82ef7dd4eb6e7355382948cea92fe0c5b588f16c844335c4df4c9d013542fcf9e5d352a4a007f615e63e6fac3c52c34cc74d6dcdcfe9ec7957bc190a1cbf1d9861d9c79d3ad615c9f511215f975d82ccba720c0f0fa1d10d8563e1e8744543b5aee7b873232ebd777e1c40a299e69753f060c4e765e15ab1a29b144fc0ab18a7c78f101d56a0c5318f1fa5514305023960a1a9ba9c9cdcfd915c1487cdccb2e349913b5d98be5c0b52a45ca762