*.celiac.org
Issued by Sectigo RSA Domain Validation Secure Server CA
About this certificate
This digital certificate with serial number 60:30:4d:66:e7:fc:03:3c:97:7c:20:e5:0b:cd:20:1c was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.celiac.org,OU=Domain Control Validated+OU=PositiveSSL Wildcard
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 60:30:4d:66:e7:fc:03:3c:97:7c:20:e5:0b:cd:20:1cSerial Number (int): 127856687743169355018613346314463551516
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: c2:6c:cf:c7:98:97:6e:9a:73:83:e6:3d:1f:c8:66:af:9d:95:ec:1b
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1
Fingerprint (sha1): 63:00:a0:3d:69:e4:a7:3e:96:2a:b9:0d:ec:06:93:59:d5:f2:cf:d6
Fingerprint (sha256): 92:9e:a7:7e:ef:fd:46:8a:74:79:6b:5d:94:d3:da:8a:1f:a1:b2:ac:5f:ab:87:a2:8a:57:74:61:3a:0b:86:0d
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCheck the revocation status for certificate *.celiac.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.celiac.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.celiac.org
celiac.org
celiac.org
Other certificates including the domain name celiac.org
(limited to 100 certificates)
icure.celiac.org
www.trials.braintumor.org
braintumor-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
icure.celiac.org
arthritis-org.clinicaltrialconnect.com
braintumor-org.clinicaltrialconnect.com
survey.celiac.org
arthritis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
breast-cancer.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
trials.celiac.org
survey.celiac.org
celiac.org
dino18.celiac.org
www.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
iffgd-org.clinicaltrialconnect.com
sni.cloudflaressl.com
braintumor-org.clinicaltrialconnect.com
trials.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
adaptive.celiac.org
breast-cancer.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
braintumor-org.clinicaltrialconnect.com
phactmi-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
aqua.celiac.org
irecruit.celiac.org
adaptive.celiac.org
trials.celiac.org
celiac.org
*.celiac.org
focused-ultrasound-foundation.clinicaltrialconnect.com
iqualify.celiac.org
aqua.celiac.org
braintumor-org.clinicaltrialconnect.com
www.trials.celiac.org
adaptive.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
clinical.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
lazarex.clinicaltrialconnect.com
arthritis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
colontown-org.clinicaltrialconnect.com
arthritis-org.clinicaltrialconnect.com
iffgd-org.clinicaltrialconnect.com
trials.celiac.org
*.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
dino18.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
arthritis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
icure.celiac.org
adaptive.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
celiac.org
iqualify.celiac.org
cure-search.clinicaltrialconnect.com
apollo.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
adaptive.celiac.org
irecruit.celiac.org
v8dev.celiac.org
braintumor-org.clinicaltrialconnect.com
trials.celiac.org
v8dev.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
apollo.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
arthritis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
v8dev.celiac.org
v8dev.celiac.org
v8dev.celiac.org
trials.celiac.org
sni.cloudflaressl.com
arthritis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
celiac.org
breast-cancer.clinicaltrialconnect.com
www.trials.braintumor.org
braintumor-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
icure.celiac.org
arthritis-org.clinicaltrialconnect.com
braintumor-org.clinicaltrialconnect.com
survey.celiac.org
arthritis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
breast-cancer.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
trials.celiac.org
survey.celiac.org
celiac.org
dino18.celiac.org
www.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
iffgd-org.clinicaltrialconnect.com
sni.cloudflaressl.com
braintumor-org.clinicaltrialconnect.com
trials.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
adaptive.celiac.org
breast-cancer.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
braintumor-org.clinicaltrialconnect.com
phactmi-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
aqua.celiac.org
irecruit.celiac.org
adaptive.celiac.org
trials.celiac.org
celiac.org
*.celiac.org
focused-ultrasound-foundation.clinicaltrialconnect.com
iqualify.celiac.org
aqua.celiac.org
braintumor-org.clinicaltrialconnect.com
www.trials.celiac.org
adaptive.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
clinical.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
lazarex.clinicaltrialconnect.com
arthritis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
colontown-org.clinicaltrialconnect.com
arthritis-org.clinicaltrialconnect.com
iffgd-org.clinicaltrialconnect.com
trials.celiac.org
*.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
dino18.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
arthritis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
icure.celiac.org
adaptive.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
celiac.org
iqualify.celiac.org
cure-search.clinicaltrialconnect.com
apollo.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
adaptive.celiac.org
irecruit.celiac.org
v8dev.celiac.org
braintumor-org.clinicaltrialconnect.com
trials.celiac.org
v8dev.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
apollo.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
arthritis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
v8dev.celiac.org
v8dev.celiac.org
v8dev.celiac.org
trials.celiac.org
sni.cloudflaressl.com
arthritis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
celiac.org
breast-cancer.clinicaltrialconnect.com
Certificate
The complete raw certificate details for *.celiac.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9DCCBNygAwIBAgIQYDBNZuf8AzyXfCDlC80gHDANBgkqhkiG9w0BAQsFADCB jzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTcwNQYDVQQD Ey5TZWN0aWdvIFJTQSBEb21haW4gVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVyIENB MB4XDTE5MDYyMjAwMDAwMFoXDTIwMDYyMTIzNTk1OVowWTEhMB8GA1UECxMYRG9t YWluIENvbnRyb2wgVmFsaWRhdGVkMR0wGwYDVQQLExRQb3NpdGl2ZVNTTCBXaWxk Y2FyZDEVMBMGA1UEAwwMKi5jZWxpYWMub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAseYl4TVl79v52wClASTDQrCZlluaa28f+azknExmK0CRZ5pV L77QyqYJ54riCtaN2QzfDJ6URd42NA7FQRRT24g77sFbDcrwaPOi1nuQf1eCZAQb 5XJTi2kdfuweUtPNU4mzgnue0q9j0ZlqyTpSu28oCDezDrRsq328/qBbBBIiQmdk s8JncY7r2JLCIIfh6JUAA7t/Y4alHHd7t38psRTiVO8W7qq6NCkhSoQLf4PFYmaj gwHHcW7+mgA58iLE3Xbe3UMrtNNT6SpNi6U8Voi4YyxHjf+ZvM8ziYHyVt9/2I9P AGaqlTyBKiWk3ga+BXAR+FHDA16tlOY4n+FEAQIDAQABo4ICfzCCAnswHwYDVR0j BBgwFoAUjYxexFStiuF36Zv5mwXhuAGNYeEwHQYDVR0OBBYEFMJsz8eYl26ac4Pm PR/IZq+dlewbMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgIH MCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAEC ATCBhAYIKwYBBQUHAQEEeDB2ME8GCCsGAQUFBzAChkNodHRwOi8vY3J0LnNlY3Rp Z28uY29tL1NlY3RpZ29SU0FEb21haW5WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0Eu Y3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTAjBgNVHREE HDAaggwqLmNlbGlhYy5vcmeCCmNlbGlhYy5vcmcwggEDBgorBgEEAdZ5AgQCBIH0 BIHxAO8AdQC72d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQlmQ2jh7RhQAAAWuAb3Q9 AAAEAwBGMEQCIEa/uUUxeFHCO0/h22GKdPJSaFhTTZG2EGkO+XPVKKMhAiAXw2hI wKhjObZu/LvQkmlHnniR32zW9DaAoyIkM1M6vgB2AF6nc/nfVsDntTZIfdBJ4DJ6 kZoMhKESEoQYdZaBcUVYAAABa4BvdGAAAAQDAEcwRQIgdlnMGZt+EFmGG7T9db43 axIExxoLNaLpiJz0UqfRmJ8CIQCmPVzJh9MqLub1uE/8WyZanEYM201fOokNWX1o /3xkgDANBgkqhkiG9w0BAQsFAAOCAQEAJaRob6M/PY6zXFR/h67U5Gc80Nrh6WHu YfMc3OpJwZgpI8JHtKMCuZj5MUgiQxvneA6u3GTGAndBU8Ro2d4VT7VoTrvsGfAr Mvs+xMAnnQF/wPKZT+4qSpmqeGRSOEfGOUD3Z/cc3xoIfWip/d03lkUu0Oovokxm w6HbHrvpw25EIt5H4LYA2OyTZPnec/ggVC7/JHtaTnjFO2dVUy5OCyeEOQY4WQ9d pbX4e4zDogGoWASNyDs06ebVQTwAlOBPO4OIdhvW+93d8oRhgGOlW5jdL7und24W wfS5qBSgjZ0yyhjrVBIS2Ys8R3zuIwCUM3zGPwTexTmfPnMLZfrkxw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAseYl4TVl79v52wClASTD QrCZlluaa28f+azknExmK0CRZ5pVL77QyqYJ54riCtaN2QzfDJ6URd42NA7FQRRT 24g77sFbDcrwaPOi1nuQf1eCZAQb5XJTi2kdfuweUtPNU4mzgnue0q9j0ZlqyTpS u28oCDezDrRsq328/qBbBBIiQmdks8JncY7r2JLCIIfh6JUAA7t/Y4alHHd7t38p sRTiVO8W7qq6NCkhSoQLf4PFYmajgwHHcW7+mgA58iLE3Xbe3UMrtNNT6SpNi6U8 Voi4YyxHjf+ZvM8ziYHyVt9/2I9PAGaqlTyBKiWk3ga+BXAR+FHDA16tlOY4n+FE AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 127856687743169355018613346314463551516 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PositiveSSL Wildcard' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.celiac.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22457670171683087011556586672914606863073456761561505510570551847991183526841677440523995656813862428270637145164008550282609484888015333022774406650094316588491574339430661907143843562586521524250851602457353900605603349418658852433757004113273059466419447573588664545975041443343172394443353197870097077034541492598383045801182581325782516910629556704892219471500899037492352830135585121988202384994972458701511526184080159256691425679936958569114256133039675856104429474915374828156586913805401829265110295158412852318714440199450059546625389716688698305964677513147152856685362539687492038713632584086375727449089 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c26ccfc798976e9a7383e63d1fc866af9d95ec1b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.celiac.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'celiac.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016b806f743d0000040300463044022046bfb945317851c23b4fe1db618a74f2526858534d91b610690ef973d528a321022017c36848c0a86339b66efcbbd09269479e7891df6cd6f43680a3222433533abe0076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016b806f7460000004030047304502207659cc199b7e1059861bb4fd75be376b1204c71a0b35a2e9889cf452a7d1989f022100a63d5cc987d32a2ee6f5b84ffc5b265a9c460cdb4d5f3a890d597d68ff7c6480 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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