digi.no
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:1c:10:50:25:0a:35:30:db:f0:44:04:ae:55:fb:e1:91:5e was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=digi.no
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:1c:10:50:25:0a:35:30:db:f0:44:04:ae:55:fb:e1:91:5eSerial Number (int): 270886447852006157089867632281306257264990
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d6:2d:56:a1:ce:cf:34:af:ae:0f:48:54:c1:cd:f3:c4:0a:f9:a1:31
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 52:73:ca:5a:00:35:96:72:2e:d1:af:7a:1c:44:ad:05:c9:f0:d2:0a
Fingerprint (sha256): 96:c7:ed:4a:50:0d:2d:b3:59:b1:65:95:97:9c:48:30:cc:38:8e:c0:50:b7:02:2a:0a:ce:c3:df:ad:cc:37:73
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate digi.no
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for digi.no
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
digi.no
www.digi.no
www.digi.no
Other certificates including the domain name digi.no
(limited to 100 certificates)
wallbrand.co
dcfit.turnosweb.app
erlend2.digi.no
digi.no
digi.no
www.penguinpeople.io
groupm.beaconforce.com
www.trumpcarestories.org
digi.no
www.parrify.com
cloud.workito.co.il
digi.no
digi.no
wallbrand.co
whitepaper.digi.no
f.link.mustard.love
1j2n061x3td.www.digi.no
mysomras.com
digi.no
www.waidy.it
www.couplemonitor.app
new-adventskalender.de
admin.ugyde.io
digi.no
digi.no
digi.no
erlend2.digi.no
ymd.development.fensi.in
www.crudewiser.com
whitepaper.digi.no
erickmendoza.com
employeronboarding.keeper.co.in
www.iamtheliquor.app
static.dev.getbusy.com
www.51hint.com
www.aduug.com
digi.no
digi.no
whitepaper.digi.no
www.marktompkins.me
digital.stratton-press.linkmalloc.com
whitepaper.digi.no
hueanh.com
invertecfoods.cl
trimbo.com
digi.no
digi.no
digi.no
digi.no
www.garrettspence.dev
vedur.arnigu.info
kalk.digi.no
kalkulator.digi.no
digi.no
digi.no
digi.no
admin.job.hoikushi-go.com
f.link.mustard.love
digi.no
whitepaper.digi.no
nakytec.com
www.redstonemail.app
cvmetalproducts.ca
digi.no
digi.no
whitepaper.digi.no
upliftstress.com
whitepaper.digi.no
digi.no
digi.no
dev.viviultra.app
www.matahari-amsterdam.nl
slw.ai
edificiouna.porcelanosapartners.com
whitepaper.digi.no
kolssak.afterword.com
digi.no
kalk.digi.no
digi.no
whitepaper.digi.no
app.bemoved.com.au
digi.no
digi.no
www.chen.enterprises
digi.no
digi.no
www.inthga.io
introvue.robinsoft.biz
www.ministryofpup.com
digi.no
dcfit.turnosweb.app
erlend2.digi.no
digi.no
digi.no
www.penguinpeople.io
groupm.beaconforce.com
www.trumpcarestories.org
digi.no
www.parrify.com
cloud.workito.co.il
digi.no
digi.no
wallbrand.co
whitepaper.digi.no
f.link.mustard.love
1j2n061x3td.www.digi.no
mysomras.com
digi.no
www.waidy.it
www.couplemonitor.app
new-adventskalender.de
admin.ugyde.io
digi.no
digi.no
digi.no
erlend2.digi.no
ymd.development.fensi.in
www.crudewiser.com
whitepaper.digi.no
erickmendoza.com
employeronboarding.keeper.co.in
www.iamtheliquor.app
static.dev.getbusy.com
www.51hint.com
www.aduug.com
digi.no
digi.no
whitepaper.digi.no
www.marktompkins.me
digital.stratton-press.linkmalloc.com
whitepaper.digi.no
hueanh.com
invertecfoods.cl
trimbo.com
digi.no
digi.no
digi.no
digi.no
www.garrettspence.dev
vedur.arnigu.info
kalk.digi.no
kalkulator.digi.no
digi.no
digi.no
digi.no
admin.job.hoikushi-go.com
f.link.mustard.love
digi.no
whitepaper.digi.no
nakytec.com
www.redstonemail.app
cvmetalproducts.ca
digi.no
digi.no
whitepaper.digi.no
upliftstress.com
whitepaper.digi.no
digi.no
digi.no
dev.viviultra.app
www.matahari-amsterdam.nl
slw.ai
edificiouna.porcelanosapartners.com
whitepaper.digi.no
kolssak.afterword.com
digi.no
kalk.digi.no
digi.no
whitepaper.digi.no
app.bemoved.com.au
digi.no
digi.no
www.chen.enterprises
digi.no
digi.no
www.inthga.io
introvue.robinsoft.biz
www.ministryofpup.com
digi.no
Certificate
The complete raw certificate details for digi.no in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISAxwQUCUKNTDb8EQErlX74ZFeMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjQwNzUyMzJaFw0x OTEyMjMwNzUyMzJaMBIxEDAOBgNVBAMTB2RpZ2kubm8wggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQDob7AE2CZK48MTSQo7+GhgvQszhlS5FuzSi5VA9Ugk mZlGopyg/M9WarHdAVuWG6KjUMBy+eZPIkZuD8o8mkBpQiuqthTVW1/96OHpuX99 BBBjZ4i1zDltj0w57SWCHoliFbZAsI9xE+gcXHB6v5Fct9geSHhM4VO+ozqsBJmN VSqjh62PDrVPeByIuxa9AgP5co1+7G+AH74bHWIr+YhtswXbBqoAQf3aFEnYVyoF QqFXAzljoUj/1wEivc5zEo7skChotY1fN8aGAAKBZGhlq9/oE+z4H+8G71CspjKY 1ZornK7Oaq23/CYHnu6cAsteDdJAXboTps3kUipGUkLg8rqf0LhYRDC4TFCS5fEM sJ2AO6rML5U6KHeM0m+VeD7fS5PSmSy2GGosQ4tUg4PpyGE/xK1fV0RLA9iMEnYc gn4nrclWCoVwYolNltWPwzGQJaYid2e+9Vh0uY6hlrb8dDtebHkx+FN8f7alLpX/ UU8eWLP3+LxCPyS1iRr6pscjiqRJKtqAllRonGBfMSEBx/C5ypXRjnIN7Pyf5cs3 TeDhbjQgjbXQr1IiY3tBp27s5t85cZRlhnSaEQisPKKyRHbQ7i+/wXAJ+onxtr0h MYc7cO1fDbutkqdy6AmAk9EM71LAxQewajW5xEiK5AjGiMuTxzVMXvYrysFXMNsg fwIDAQABo4ICaDCCAmQwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTWLVahzs80r64P SFTBzfPECvmhMTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggr BgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRz ZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRz ZW5jcnlwdC5vcmcvMB8GA1UdEQQYMBaCB2RpZ2kubm+CC3d3dy5kaWdpLm5vMEwG A1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEW Gmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB 8QDvAHYAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFtYnjjqAAA BAMARzBFAiAbc5H4gns47TYT3pnKalMvS9lUC5EGI+dUAapHlJgilQIhAJoPhiH1 evtMNnaJqqZsEWd8w8BsqOQvcoejuVop9j3EAHUAKTxRllTIOWW6qlD8WAfUt2+/ WHopctykwwz05UVH9HgAAAFtYnji5gAABAMARjBEAiAKYJ0j189IfFhOqGV5pk5R ZjuEvsPuPgFup+vTsobd7AIgOiNej6YfYmgX+DZ8DuiMpTvQU07G46xrZJx+dN0y E0swDQYJKoZIhvcNAQELBQADggEBADw2jj6HsD/z3v31N2V91BuHjdqPMbaC4KE4 toBAVmQPyAKOUvXEFzHof7efPqAS1nh8Vg7Ej55SXi0IibubAJkOYrFFTIAUjeVq 0Zxjw8qgmNtetlUEsgcvHEyHxox+DC1rgLlw4XUn1hBxMqwbh1qwKqMUU2tpoc/L PumZR3bEJNJXy0ZrLm25p0ttStPufQOqXrdDE/LlD+8IhXRZQOpaW4B0fPbpMgvo zTa3dfzTPDCmtD/TPg0FUMfyS7jVpDrWHFBbliVZQEB8kalDeDQ+Op/3WhUlyYKd DTb1JJVjMADl0jaQUMzGYEAIIiMNr2S0CC8YShIcOEk5bG/RWm0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6G+wBNgmSuPDE0kKO/ho YL0LM4ZUuRbs0ouVQPVIJJmZRqKcoPzPVmqx3QFblhuio1DAcvnmTyJGbg/KPJpA aUIrqrYU1Vtf/ejh6bl/fQQQY2eItcw5bY9MOe0lgh6JYhW2QLCPcRPoHFxwer+R XLfYHkh4TOFTvqM6rASZjVUqo4etjw61T3gciLsWvQID+XKNfuxvgB++Gx1iK/mI bbMF2waqAEH92hRJ2FcqBUKhVwM5Y6FI/9cBIr3OcxKO7JAoaLWNXzfGhgACgWRo Zavf6BPs+B/vBu9QrKYymNWaK5yuzmqtt/wmB57unALLXg3SQF26E6bN5FIqRlJC 4PK6n9C4WEQwuExQkuXxDLCdgDuqzC+VOih3jNJvlXg+30uT0pksthhqLEOLVIOD 6chhP8StX1dESwPYjBJ2HIJ+J63JVgqFcGKJTZbVj8MxkCWmIndnvvVYdLmOoZa2 /HQ7Xmx5MfhTfH+2pS6V/1FPHliz9/i8Qj8ktYka+qbHI4qkSSragJZUaJxgXzEh AcfwucqV0Y5yDez8n+XLN03g4W40II210K9SImN7Qadu7ObfOXGUZYZ0mhEIrDyi skR20O4vv8FwCfqJ8ba9ITGHO3DtXw27rZKncugJgJPRDO9SwMUHsGo1ucRIiuQI xojLk8c1TF72K8rBVzDbIH8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 270886447852006157089867632281306257264990 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-24 07:52:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-23 07:52:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'digi.no' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 948257289204141657307757707588538343921955065927723182240620943753373600072172785433910905656797103943825797875371819667640467816233030228542134047662118707523156169901328747175017956379313138007704440714886772886102604360125190891743257454489512808759244847554877665442836779587183079469625914594022295281253166553084547245976981527186518477410423143114635706026629714398956905200923019333562374225535477334039004831288913053892821674069691559474958839676816578594090023738568577610164954333660272699521153360214598759659758736964954697690438756943335961933257417461300667951765637588519407426040943444593780642500688146747054476934157205425018750792092370082264616745949558745048026287460500954181078456808257445973267315738740112801106638772836012443626868360211719882895741272017757760117498532820209220626723751845536211072337849462216732988571434062251962867865346676961647155187479304331592035302749296021286377400559067703285710119863539332551591137959933518762791772842453498050526416903927187136263232996676740902649216735548579416415289280264207476529071589528088568918483297205080571478424161215882820380103191664130845142689189828312175740082331363234100194951266254638016874542059412699333167669231436307271537649197183 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d62d56a1cecf34afae0f4854c1cdf3c40af9a131 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digi.no' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digi.no' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016d6278e3a8000004030047304502201b7391f8827b38ed3613de99ca6a532f4bd9540b910623e75401aa47949822950221009a0f8621f57afb4c367689aaa66c11677cc3c06ca8e42f7287a3b95a29f63dc4007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d6278e2e6000004030046304402200a609d23d7cf487c584ea86579a64e51663b84bec3ee3e016ea7ebd3b286ddec02203a235e8fa61f626817f8367c0ee88ca53bd0534ec6e3ac6b649c7e74dd32134b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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