bestsf.com.br
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:f3:f6:f4:18:c4:e2:a7:9b:d1:fa:4b:86:2b:e5:d1:d5:bb was issued on by Let's Encrypt.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bestsf.com.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:f3:f6:f4:18:c4:e2:a7:9b:d1:fa:4b:86:2b:e5:d1:d5:bbSerial Number (int): 431466016398602301589878935578512377107899
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: cd:b6:0b:97:e2:ac:3d:99:60:0d:bb:43:67:87:8e:cc:c7:08:66:75
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ff:cf:d5:c9:d9:6a:99:03:ad:a6:23:c8:67:5f:95:b0:79:26:21:c3
Fingerprint (sha256): a7:74:fd:eb:8a:3b:4b:37:0f:f1:a0:f2:40:26:c2:08:35:e8:0d:8a:a3:db:67:24:1e:d3:d4:e6:56:5c:a2:cd
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate bestsf.com.br
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bestsf.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.bestsf.com.br
app.bestsf.com.br
bestsf.com.br
master.bestsf.com.br
seja.best
www.bestsf.com.br
www.seja.best
app.bestsf.com.br
bestsf.com.br
master.bestsf.com.br
seja.best
www.bestsf.com.br
www.seja.best
Other certificates including the domain name bestsf.com.br
(limited to 100 certificates)
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
app.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
app.bestsf.com.br
leads.bestsf.com.br
sni181392.cloudflaressl.com
portal.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
api.bestsf.com.br
sni181392.cloudflaressl.com
api.bestsf.com.br
api.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
api.bestsf.com.br
bestsf.com.br
sni181392.cloudflaressl.com
bestsf.com.br
sni181392.cloudflaressl.com
leads.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
api.bestsf.com.br
sni181392.cloudflaressl.com
bestsf.com.br
leads.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
www.bestsf.com.br
app.bestsf.com.br
sni181392.cloudflaressl.com
bestsf.com.br
bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
leads.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
sni181392.cloudflaressl.com
bestsf.com.br
bestsf.com.br
sni181392.cloudflaressl.com
bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
leads.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
app.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
app.bestsf.com.br
leads.bestsf.com.br
sni181392.cloudflaressl.com
portal.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
api.bestsf.com.br
sni181392.cloudflaressl.com
api.bestsf.com.br
api.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
api.bestsf.com.br
bestsf.com.br
sni181392.cloudflaressl.com
bestsf.com.br
sni181392.cloudflaressl.com
leads.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
api.bestsf.com.br
sni181392.cloudflaressl.com
bestsf.com.br
leads.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
www.bestsf.com.br
app.bestsf.com.br
sni181392.cloudflaressl.com
bestsf.com.br
bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
leads.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
sni181392.cloudflaressl.com
bestsf.com.br
bestsf.com.br
sni181392.cloudflaressl.com
bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
bestsf.com.br
leads.bestsf.com.br
sni181392.cloudflaressl.com
sni181392.cloudflaressl.com
Certificate
The complete raw certificate details for bestsf.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgISBPP29BjE4qeb0fpLhivl0dW7MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MTUxMTU1NDdaFw0x OTA5MTMxMTU1NDdaMBgxFjAUBgNVBAMTDWJlc3RzZi5jb20uYnIwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFM0/kc7uQEzP4C4GosMF/mzzGmKSie88S 7IcCUup7dkwOgyaMKjorZFgIOOp4Ryw+tVHikocsLMA0Nds2yucrmKr0JNhWgR72 1wJvCxgCb12yBsfH7BvOyqnsH2lbVE3LAnBnscbT6ouA9eaIYVgl37Mwn2YDhIRO 3iaOupfWrSzdrpF1Y7M/ajKfKS5F6xjtI4jugEIJuEUzWa4T2+4GAjFSgBnWsGTN D6MIx+ZFVmdXGMpkXfNpuzFTqwd7RzzFDQg078wC+81CM2nwWOpMIhuVbhGTrtLy qJZOuP63c6Ud3lMQSo93pPS9Pspe9nfoEwt8ahM6kg4iC9wPpA1rAgMBAAGjggLN MIICyTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFM22C5firD2ZYA27Q2eHjszHCGZ1 MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMw YTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9y ZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9y Zy8wgYEGA1UdEQR6MHiCEWFwaS5iZXN0c2YuY29tLmJyghFhcHAuYmVzdHNmLmNv bS5icoINYmVzdHNmLmNvbS5icoIUbWFzdGVyLmJlc3RzZi5jb20uYnKCCXNlamEu YmVzdIIRd3d3LmJlc3RzZi5jb20uYnKCDXd3dy5zZWphLmJlc3QwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwBv U3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAWtbNUk4AAAEAwBIMEYC IQCweyDGGvgoO0WqzYG3IMbzWN922o/647n3bASpT+TuzwIhAIce/58bmsfr+RwP A6/wiUVoLTjs26aaxwaoUegft5iJAHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctyk wwz05UVH9HgAAAFrWzVI6AAABAMARzBFAiEAmJNrLb8uYCQfWNMOQohvXM44dXe6 JIaLEb1JaiEVtYQCIERAqhO9WBKoN4VjRths7AmV/W6h4FRlkaqBD6S+DPOJMA0G CSqGSIb3DQEBCwUAA4IBAQCUkjgjUkCG2suDQ+6O7IJ2yHLqrbn08pBSA9c+chFQ v6XnSiyv4akHrBdTADD0kxViWu7AcJfvirJJF3C7t/eZD/Q8E/MLtZA+HHzjdcdk 2efWTODRXTCQnFlXY+qR8XEJYX0J3Qv9/equZWn/Y1LUPLVtizJ6KwMitPePaItq jDtu90l9KF49YSKawNMyXgBgk0TyjhMoUxyR+bk2HKZd5sYnTMUmLMNLOzRdDHkV 7eIEHq9vy2Dux5YE2M4NjrkBmtmdJf2omOFBUvP3c1umg39RaZtKGS4+axtPGieO UHg1/5HLcybbZy/OZD4gixxA1jjaNFYBR0XreK9VzIoP -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTNP5HO7kBMz+AuBqLDB f5s8xpikonvPEuyHAlLqe3ZMDoMmjCo6K2RYCDjqeEcsPrVR4pKHLCzANDXbNsrn K5iq9CTYVoEe9tcCbwsYAm9dsgbHx+wbzsqp7B9pW1RNywJwZ7HG0+qLgPXmiGFY Jd+zMJ9mA4SETt4mjrqX1q0s3a6RdWOzP2oynykuResY7SOI7oBCCbhFM1muE9vu BgIxUoAZ1rBkzQ+jCMfmRVZnVxjKZF3zabsxU6sHe0c8xQ0INO/MAvvNQjNp8Fjq TCIblW4Rk67S8qiWTrj+t3OlHd5TEEqPd6T0vT7KXvZ36BMLfGoTOpIOIgvcD6QN awIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 431466016398602301589878935578512377107899 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-15 11:55:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-13 11:55:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bestsf.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24894249007843102688313039477725880669822003952200509437736642625521587687436762571598148432910205540454077888047652554736641219030371149693343386302853314156473062463913731680764646042883327881382205883602658782007857842553466363326681893853381693426375231465827486127275821240236146490902763556297071435449085029557098073031307158974274433868118550919480488466303928466694107420367116979218125710907341374566498295887705067937101588164104998112523115063931485652249915867467934510505954088255007079201144829204572184835386647868833047604256116118034244062709115404384450301522133819784739400428555773444585536359787 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cdb60b97e2ac3d99600dbb4367878eccc7086675 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (122 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.bestsf.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'app.bestsf.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bestsf.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'master.bestsf.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'seja.best' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bestsf.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.seja.best' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016b5b3549380000040300483046022100b07b20c61af8283b45aacd81b720c6f358df76da8ffae3b9f76c04a94fe4eecf022100871eff9f1b9ac7ebf91c0f03aff08945682d38ecdba69ac706a851e81fb79889007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b5b3548e8000004030047304502210098936b2dbf2e60241f58d30e42886f5cce387577ba24868b11bd496a2115b58402204440aa13bd5812a837856346d86cec0995fd6ea1e0546591aa810fa4be0cf389 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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