www.fontamix.com
Issued by R3
About this certificate
This digital certificate with serial number 03:cc:8e:60:3c:4c:55:0d:99:29:e1:b4:51:d4:e2:12:c8:74 was issued on by Let's Encrypt.
With 30 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.fontamix.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:cc:8e:60:3c:4c:55:0d:99:29:e1:b4:51:d4:e2:12:c8:74Serial Number (int): 330943710706044303119154234469058329364596
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 72:f6:2b:7c:4f:61:bb:5c:9c:12:56:fa:d8:df:c2:05:75:29:be:4f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 07:8b:3c:43:6b:3d:2c:e0:e2:43:83:09:cb:a1:1a:f8:5a:72:6e:46
Fingerprint (sha256): a4:57:2c:bd:52:ff:ae:52:66:50:36:c1:15:d3:49:54:2d:37:24:e0:76:e7:e5:95:5a:24:30:8b:76:d4:42:29
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.fontamix.com
30
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.fontamix.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
andeatittoodiet.com
arkansassportsdoctors.com
eth-tv.com
fontamix.com
glutenfreeinahurry.com
jctministry.com
jesusgolfs.com
poisonivywashaway.com
q-post.com
qrfarchaeology.com
raresucculentsnursery.com
sonorant.com
statebiznews.com
wincarry.com
www.andeatittoodiet.com
www.arkansassportsdoctors.com
www.eth-tv.com
www.fontamix.com
www.glutenfreeinahurry.com
www.jctministry.com
www.jesusgolfs.com
www.poisonivywashaway.com
www.q-post.com
www.qrfarchaeology.com
www.raresucculentsnursery.com
www.sonorant.com
www.statebiznews.com
www.wincarry.com
www.xn--4dbky.com
xn--4dbky.com
arkansassportsdoctors.com
eth-tv.com
fontamix.com
glutenfreeinahurry.com
jctministry.com
jesusgolfs.com
poisonivywashaway.com
q-post.com
qrfarchaeology.com
raresucculentsnursery.com
sonorant.com
statebiznews.com
wincarry.com
www.andeatittoodiet.com
www.arkansassportsdoctors.com
www.eth-tv.com
www.fontamix.com
www.glutenfreeinahurry.com
www.jctministry.com
www.jesusgolfs.com
www.poisonivywashaway.com
www.q-post.com
www.qrfarchaeology.com
www.raresucculentsnursery.com
www.sonorant.com
www.statebiznews.com
www.wincarry.com
www.xn--4dbky.com
xn--4dbky.com
Other certificates including the domain name fontamix.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.fontamix.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHQDCCBiigAwIBAgISA8yOYDxMVQ2ZKeG0UdTiEsh0MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA3MTUwMjM0NTdaFw0yMzEwMTMwMjM0NTZaMBsxGTAXBgNVBAMT EHd3dy5mb250YW1peC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrtPUCr+TvoBYQxMj1o4sJIkXj54tL4ATTCgGKSyXZC58UKTU/xS2sr/5+9g4G s3HvabPo0oSugK9uL8GKm7TKeRCfLZVqgoDpW9va/NZHYsOXuOHQgyLpsk5VlqiP wRgbiIDFYili4RUpDVqvh3+26n3IFq/AVavMdfaKRWYMVm6Q0K5t8LE8X8O8HOmv s6HwRXwc6czeAL/CKkxFm0s22Bx9msvK5+rygGWknoMyjVl4Qw+tp10Wz76qeC/e lD6YDBTEqU7xiT6s5pLiA0Hrptd1ANgS223UBC5ixrY+coCTdmK01c2SAhfHnFUV YIGke4RcSYozpVvOw7Qf3HwJAgMBAAGjggRlMIIEYTAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFHL2K3xPYbtcnBJW+tjfwgV1Kb5PMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMIICbQYDVR0RBIICZDCCAmCCE2FuZGVhdGl0dG9vZGlldC5jb22CGWFya2Fu c2Fzc3BvcnRzZG9jdG9ycy5jb22CCmV0aC10di5jb22CDGZvbnRhbWl4LmNvbYIW Z2x1dGVuZnJlZWluYWh1cnJ5LmNvbYIPamN0bWluaXN0cnkuY29tgg5qZXN1c2dv bGZzLmNvbYIVcG9pc29uaXZ5d2FzaGF3YXkuY29tggpxLXBvc3QuY29tghJxcmZh cmNoYWVvbG9neS5jb22CGXJhcmVzdWNjdWxlbnRzbnVyc2VyeS5jb22CDHNvbm9y YW50LmNvbYIQc3RhdGViaXpuZXdzLmNvbYIMd2luY2FycnkuY29tghd3d3cuYW5k ZWF0aXR0b29kaWV0LmNvbYIdd3d3LmFya2Fuc2Fzc3BvcnRzZG9jdG9ycy5jb22C Dnd3dy5ldGgtdHYuY29tghB3d3cuZm9udGFtaXguY29tghp3d3cuZ2x1dGVuZnJl ZWluYWh1cnJ5LmNvbYITd3d3LmpjdG1pbmlzdHJ5LmNvbYISd3d3Lmplc3VzZ29s ZnMuY29tghl3d3cucG9pc29uaXZ5d2FzaGF3YXkuY29tgg53d3cucS1wb3N0LmNv bYIWd3d3LnFyZmFyY2hhZW9sb2d5LmNvbYIdd3d3LnJhcmVzdWNjdWxlbnRzbnVy c2VyeS5jb22CEHd3dy5zb25vcmFudC5jb22CFHd3dy5zdGF0ZWJpem5ld3MuY29t ghB3d3cud2luY2FycnkuY29tghF3d3cueG4tLTRkYmt5LmNvbYINeG4tLTRkYmt5 LmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA 7wB2AHoyjFTYty22IOo44FIe6YQWcDIThU070ivBOlejUutSAAABiVedqjoAAAQD AEcwRQIgMhICIBTBcuiI9uvxqULVnU0uQ1q6kcDljwcc8t3KifgCIQC9MwPCRkbu XJQuQNs/XESdD66QVu395TMF5QyOa3CZ7QB1AK33vvp8/xDIi509nB4+GGq0Zyld z7EMJMqFhjTr3IKKAAABiVedqmcAAAQDAEYwRAIgARxiUd1SEL60FhV4yLJ8I3zw sANB/LL5sVCUDorrG5MCIByb8NnSkVY7NEzowzYSECK5ikXLVZuINzvdSZ3Twsov MA0GCSqGSIb3DQEBCwUAA4IBAQC310UQumf0RmdWCeVaAY1/eXT5omJiGRwxaJlN JIt4uXKLFGp/zbpLLzzYR1R2aI3E30BXtO6wIrfQGiaPAP0YEIgqQfG51i9YkBx6 Xxf+oLbJSYGuMVUz/sOPgRuN18LAAihqvLOuMIN/rnRTnA2vlDjx9minK3W/KfRm 1ZfwSsMorqhKXJKc4eUhvCJB+T0XHoSCZrQG4t1BJlWKFV9lvD0UJinpkgRWfOsz S2masz5BAAY0vIDPhNp+VhMyKIGb+GWPXUdwENVlOi6cbdmrVqm/lmKm1lbUUgxK uDEF0oCTXk0Y3cwQLh00VThvdFrqYgl3wgCOom7NgouuKWpD -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA67T1Aq/k76AWEMTI9aOL CSJF4+eLS+AE0woBiksl2QufFCk1P8UtrK/+fvYOBrNx72mz6NKEroCvbi/Bipu0 ynkQny2VaoKA6Vvb2vzWR2LDl7jh0IMi6bJOVZaoj8EYG4iAxWIpYuEVKQ1ar4d/ tup9yBavwFWrzHX2ikVmDFZukNCubfCxPF/DvBzpr7Oh8EV8HOnM3gC/wipMRZtL NtgcfZrLyufq8oBlpJ6DMo1ZeEMPraddFs++qngv3pQ+mAwUxKlO8Yk+rOaS4gNB 66bXdQDYEttt1AQuYsa2PnKAk3ZitNXNkgIXx5xVFWCBpHuEXEmKM6VbzsO0H9x8 CQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 330943710706044303119154234469058329364596 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-15 02:34:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-13 02:34:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.fontamix.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29755234925120160950371794984234414540779739938218098931964420356511433216069652696961358041911431286070351220851834462605133659151285661190364139343078640699387507224315605679644315594352384699196102975317641486615247746579748714518887880106219443954130652210680552480319226563247162167824886138372245838688353806387467189667714995839007037002723679269388773435226139502036061267397463923403769564958073254761186754672805479283052700261313612484781985632740011120103220393746716076035399319331776346173951593671321539894991147489815434811935395203595096971717171222245875153658195837207580747279162466005671334411273 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 72f62b7c4f61bb5c9c1256fad8dfc2057529be4f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (612 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'andeatittoodiet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'arkansassportsdoctors.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eth-tv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fontamix.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'glutenfreeinahurry.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jctministry.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jesusgolfs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'poisonivywashaway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'q-post.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qrfarchaeology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'raresucculentsnursery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sonorant.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'statebiznews.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wincarry.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.andeatittoodiet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.arkansassportsdoctors.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.eth-tv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fontamix.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.glutenfreeinahurry.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jctministry.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jesusgolfs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.poisonivywashaway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.q-post.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.qrfarchaeology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.raresucculentsnursery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sonorant.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.statebiznews.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wincarry.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xn--4dbky.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xn--4dbky.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000189579daa3a000004030047304502203212022014c172e888f6ebf1a942d59d4d2e435aba91c0e58f071cf2ddca89f8022100bd3303c24646ee5c942e40db3f5c449d0fae9056edfde53305e50c8e6b7099ed007500adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a00000189579daa6700000403004630440220011c6251dd5210beb4161578c8b27c237cf0b00341fcb2f9b150940e8aeb1b9302201c9bf0d9d291563b344ce8c336121022b98a45cb559b88373bdd499dd3c2ca2f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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