www.kjg-fulda.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:af:99:45:a8:ec:09:8d:9e:15:be:b9:b1:a0:64:31:66:0e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.kjg-fulda.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:af:99:45:a8:ec:09:8d:9e:15:be:b9:b1:a0:64:31:66:0eSerial Number (int): 321090005584428918414633907686165953209870
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5e:1c:19:2b:5b:6d:35:e8:09:f3:8f:ae:9b:dd:80:dd:b4:27:75:bc
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3d:d0:8a:3a:aa:45:1b:6d:a5:0b:24:20:6b:da:48:e2:0d:c3:d4:3b
Fingerprint (sha256): a3:be:c1:2d:40:4c:89:08:ef:83:63:7a:f5:17:96:8b:09:d2:e1:93:9e:4c:3d:1d:05:4e:71:be:3e:6b:9c:16
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate www.kjg-fulda.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.kjg-fulda.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.kjg-fulda.de
Other certificates including the domain name kjg-fulda.de
(limited to 100 certificates)
piwik.kjg-fulda.de
mail.kjg-fulda.de
kjg-fulda.de
trac.kjg-fulda.de
kjg-fulda.de
kjg-fulda.de
drupal.kjg-fulda.de
stats.kjg-fulda.de
stats.kjg-fulda.de
kjg-fulda.de
pool.kjg-fulda.de
kjg-fulda.de
pool.kjg-fulda.de
kjg-fulda.de
webmail.kjg-fulda.de
piwik.kjg-fulda.de
stats.kjg-fulda.de
drupal.kjg-fulda.de
git.kjg-fulda.de
piwik.kjg-fulda.de
kjg-fulda.de
alt.kjg-fulda.de
kjg-fulda.de
kjg-fulda.de
pool.kjg-fulda.de
kjg-fulda.de
drupal.kjg-fulda.de
webmail.kjg-fulda.de
trac.kjg-fulda.de
kjg-fulda.de
mail.kjg-fulda.de
stats.kjg-fulda.de
piwik.kjg-fulda.de
pool.kjg-fulda.de
kjg-fulda.de
piwik.kjg-fulda.de
www.kjg-fulda.de
kjg-fulda.de
kjg-fulda.de
webmail.kjg-fulda.de
kjg-fulda.de
www.kjg-fulda.de
www.kjg-fulda.de
kjg-fulda.de
piwik.kjg-fulda.de
www.kjg-fulda.de
kjg-fulda.de
pool.kjg-fulda.de
kjg-fulda.de
pool.kjg-fulda.de
drupal.kjg-fulda.de
kjg-fulda.de
pad.kjg-fulda.de
git.kjg-fulda.de
alt.kjg-fulda.de
stats.kjg-fulda.de
drupal.kjg-fulda.de
www.kjg-fulda.de
kjg-fulda.de
www.kjg-fulda.de
git.kjg-fulda.de
kjg-fulda.de
pool.kjg-fulda.de
pool.kjg-fulda.de
kjg-fulda.de
git.kjg-fulda.de
trac.kjg-fulda.de
kjg-fulda.de
kjg-fulda.de
mail.kjg-fulda.de
kjg-fulda.de
trac.kjg-fulda.de
kjg-fulda.de
kjg-fulda.de
drupal.kjg-fulda.de
stats.kjg-fulda.de
stats.kjg-fulda.de
kjg-fulda.de
pool.kjg-fulda.de
kjg-fulda.de
pool.kjg-fulda.de
kjg-fulda.de
webmail.kjg-fulda.de
piwik.kjg-fulda.de
stats.kjg-fulda.de
drupal.kjg-fulda.de
git.kjg-fulda.de
piwik.kjg-fulda.de
kjg-fulda.de
alt.kjg-fulda.de
kjg-fulda.de
kjg-fulda.de
pool.kjg-fulda.de
kjg-fulda.de
drupal.kjg-fulda.de
webmail.kjg-fulda.de
trac.kjg-fulda.de
kjg-fulda.de
mail.kjg-fulda.de
stats.kjg-fulda.de
piwik.kjg-fulda.de
pool.kjg-fulda.de
kjg-fulda.de
piwik.kjg-fulda.de
www.kjg-fulda.de
kjg-fulda.de
kjg-fulda.de
webmail.kjg-fulda.de
kjg-fulda.de
www.kjg-fulda.de
www.kjg-fulda.de
kjg-fulda.de
piwik.kjg-fulda.de
www.kjg-fulda.de
kjg-fulda.de
pool.kjg-fulda.de
kjg-fulda.de
pool.kjg-fulda.de
drupal.kjg-fulda.de
kjg-fulda.de
pad.kjg-fulda.de
git.kjg-fulda.de
alt.kjg-fulda.de
stats.kjg-fulda.de
drupal.kjg-fulda.de
www.kjg-fulda.de
kjg-fulda.de
www.kjg-fulda.de
git.kjg-fulda.de
kjg-fulda.de
pool.kjg-fulda.de
pool.kjg-fulda.de
kjg-fulda.de
git.kjg-fulda.de
trac.kjg-fulda.de
kjg-fulda.de
kjg-fulda.de
Certificate
The complete raw certificate details for www.kjg-fulda.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBDCCBOygAwIBAgISA6+ZRajsCY2eFb65saBkMWYOMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjA5MTMwOTM2MDBaFw0x NjEyMTIwOTM2MDBaMBsxGTAXBgNVBAMTEHd3dy5ramctZnVsZGEuZGUwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC+qDMjqlQ17L68eegEOjTLkeZzJu4v 1tHgQFgIrmg2WB/+VvNPfGGlinqAu25sY15Hy4E7CyVetKcU8xjS9jPTWkwPj6/D PE0Jaw+LumvtNAdK2NzEx6xTOu3Ju/zyynAPA4WNsmusqZEGXH6KzRHS6Zerh+YH /sRpu31gk7SHYc+UrAoSj2PB7+33/OkkzESGn/x71XZ4xaM6a947XWhQXWS6rPyL j8h/pMXY6q6Zuu5HIF/txeq1tuo6wshKsiu3ix4HoIsZmtY//FOhgqjlUvTVHLac s0NC+OU5/aJhZ8W88gs+gH5kZXKjWZhlhO5kZt/HG9GdqkNNRSsJ7SZtqOxlX3ln WZPSQjr8u6dfI08bpT43yy+zjy6CfUOTItX+/CANCoRewi3jgweoN0gp3snR7c4M abM5wZ50eeYB6EXAj4+A2CagMIzKgRRqZjdM/8ejBygM7gRdo2Jy7bmHgiWOybeT UjxL3nt76S44Cqm/ynO3tPs7pecxe5T2RxUcKG0SDjDWAz/kRrrZQ+y4uUvFDOQ8 W3eMb/RdJqUgjEu5lhco+PuBcFocWXJmHUdgadhoXmeC2Mv5XhXcmwsMBT9VVJT4 TME1V+jWVtwFGQxh6f23XC+a94D/g4d/mJw06eWHsmcu2Kf+fHlBqVe8WSibdKf/ 8UjsenTiVttc8QIDAQABo4ICETCCAg0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRe HBkrW2016Anzj66b3YDdtCd1vDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBwBggrBgEFBQcBAQRkMGIwLwYIKwYBBQUHMAGGI2h0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p bnQteDMubGV0c2VuY3J5cHQub3JnLzAbBgNVHREEFDASghB3d3cua2pnLWZ1bGRh LmRlMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUF BwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBv biBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRo IHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5j cnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBABLKFEmRo/WK mmtrDoFzH1rd5+9ulfs+kho9OAvRug2fzgeIuBSf7+IL/nmK+ufqUer+kCruXd20 /IWK0mnZY4Eoa3zeWlCwmEdgKxnq0kijp6MtRNPph6Nyxb2awaYMvPQIxE498zFV vZMJO4vM+lSWNCmpRN8D1fM4VwsWGrp7UYlbJzRRQt42aaK1RNFlqGOEfwZm5SEk /thj4AExjOr18CRFgxwhSF/W40xwvU2EE0ssUNoFUH5pwPW8bpMc00ci2yCQZQKD jWCMpy3QoHBn6IWq9Z6SmqHR+0+rdmIBjZurKx3Vmy64OCIhpEhukgkXoYGukVFB dOcTVGYqFzw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvqgzI6pUNey+vHnoBDo0 y5HmcybuL9bR4EBYCK5oNlgf/lbzT3xhpYp6gLtubGNeR8uBOwslXrSnFPMY0vYz 01pMD4+vwzxNCWsPi7pr7TQHStjcxMesUzrtybv88spwDwOFjbJrrKmRBlx+is0R 0umXq4fmB/7Eabt9YJO0h2HPlKwKEo9jwe/t9/zpJMxEhp/8e9V2eMWjOmveO11o UF1kuqz8i4/If6TF2OqumbruRyBf7cXqtbbqOsLISrIrt4seB6CLGZrWP/xToYKo 5VL01Ry2nLNDQvjlOf2iYWfFvPILPoB+ZGVyo1mYZYTuZGbfxxvRnapDTUUrCe0m bajsZV95Z1mT0kI6/LunXyNPG6U+N8svs48ugn1DkyLV/vwgDQqEXsIt44MHqDdI Kd7J0e3ODGmzOcGedHnmAehFwI+PgNgmoDCMyoEUamY3TP/HowcoDO4EXaNicu25 h4Iljsm3k1I8S957e+kuOAqpv8pzt7T7O6XnMXuU9kcVHChtEg4w1gM/5Ea62UPs uLlLxQzkPFt3jG/0XSalIIxLuZYXKPj7gXBaHFlyZh1HYGnYaF5ngtjL+V4V3JsL DAU/VVSU+EzBNVfo1lbcBRkMYen9t1wvmveA/4OHf5icNOnlh7JnLtin/nx5QalX vFkom3Sn//FI7Hp04lbbXPECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 321090005584428918414633907686165953209870 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-13 09:36:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-12 09:36:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.kjg-fulda.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 777812822787895262895243976753653280434811400511131437454685338603811726863184124062266092723430400360110401218911502040606003005820012048966613207752277191772031512518891585565241410346768167715081194979509819985462656020321885465775562197805735254223437171075164848594824442992405851949052420564466753106385252723332274292140783162634922494602924956779994779445518732382056007667651274051097178804320386310600330860719983744732050933626231340072692702940965474661865653024158800307337782642291191896937801178611010979272105219427100269195575212332899780547794061081941450001753254642255327367470743884196516008528200120016970323556732133372852963715659225229690642580768267092649674560363466464491786334326459046686425539239562014194566259434346347660737565190391509433344726090727079584488252073347863976304589164755305216272772342429619435164194968436655952365124261015904603147023011804399523143980814015405476236916567969041031143553251998300669747291198785289532095910694049302041908782489402784384134019183241499097193176781382629034859806054072628535136856758493279351580100950726148775697340735107625942753966527925817220862783166728742267953540993424640313075282775594143599057779282197041196070302677766038440916662574321 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5e1c192b5b6d35e809f38fae9bdd80ddb42775bc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kjg-fulda.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0012ca144991a3f58a9a6b6b0e81731f5adde7ef6e95fb3e921a3d380bd1ba0d9fce0788b8149fefe20bfe798afae7ea51eafe902aee5dddb4fc858ad269d96381286b7cde5a50b09847602b19ead248a3a7a32d44d3e987a372c5bd9ac1a60cbcf408c44e3df33155bd93093b8bccfa54963429a944df03d5f338570b161aba7b51895b27345142de3669a2b544d165a863847f0666e52124fed863e001318ceaf5f02445831c21485fd6e34c70bd4d84134b2c50da05507e69c0f5bc6e931cd34722db20906502838d608ca72dd0a07067e885aaf59e929aa1d1fb4fab7662018d9bab2b1dd59b2eb8382221a4486e920917a181ae91514174e71354662a173c