novamarcap.com.br
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:f5:3f:88:eb:00:2e:15:38:07:cb:d4:98:0f:4b:54:47:81 was issued on by Let's Encrypt.
With 24 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=novamarcap.com.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:f5:3f:88:eb:00:2e:15:38:07:cb:d4:98:0f:4b:54:47:81Serial Number (int): 431902775905158639392205678011882673555329
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 0c:0c:06:32:35:06:91:00:6a:d2:84:23:7f:5d:b0:f2:94:24:e4:e5
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a1:3e:4b:af:f9:af:cc:0e:7b:d0:57:5a:37:2e:5b:8e:9f:22:7f:34
Fingerprint (sha256): aa:6f:84:00:76:1f:8b:71:40:e5:6f:ed:f9:3a:8b:64:40:18:a3:15:bb:d0:53:80:42:48:44:86:36:1b:05:0c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate novamarcap.com.br
24
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for novamarcap.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
arimoveis.imobibrasil.net
arimoveis.net.br
cpanel.arimoveis.net.br
cpanel.novamarcap.com.br
cpanel.realizarimovel.com.br
deimoveisbarao.imobibrasil.net
mail.novamarcap.com.br
novamarcap.com.br
novamarcap.imobibrasil.net
realizarimovel.com.br
realizarimovel.imobibrasil.net
valus.imobibrasil.net
webdisk.arimoveis.net.br
webdisk.novamarcap.com.br
webdisk.realizarimovel.com.br
webmail.novamarcap.com.br
www.arimoveis.imobibrasil.net
www.arimoveis.net.br
www.deimoveisbarao.imobibrasil.net
www.novamarcap.com.br
www.novamarcap.imobibrasil.net
www.realizarimovel.com.br
www.realizarimovel.imobibrasil.net
www.valus.imobibrasil.net
arimoveis.net.br
cpanel.arimoveis.net.br
cpanel.novamarcap.com.br
cpanel.realizarimovel.com.br
deimoveisbarao.imobibrasil.net
mail.novamarcap.com.br
novamarcap.com.br
novamarcap.imobibrasil.net
realizarimovel.com.br
realizarimovel.imobibrasil.net
valus.imobibrasil.net
webdisk.arimoveis.net.br
webdisk.novamarcap.com.br
webdisk.realizarimovel.com.br
webmail.novamarcap.com.br
www.arimoveis.imobibrasil.net
www.arimoveis.net.br
www.deimoveisbarao.imobibrasil.net
www.novamarcap.com.br
www.novamarcap.imobibrasil.net
www.realizarimovel.com.br
www.realizarimovel.imobibrasil.net
www.valus.imobibrasil.net
Other certificates including the domain name novamarcap.com.br
(limited to 100 certificates)
Certificate
The complete raw certificate details for novamarcap.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH2DCCBsCgAwIBAgISBPU/iOsALhU4B8vUmA9LVEeBMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMDMwMTIxMzBaFw0y MDAyMDEwMTIxMzBaMBwxGjAYBgNVBAMTEW5vdmFtYXJjYXAuY29tLmJyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArj3m61stILA8NaTZ6OXJ/HG01mco W6wajIECHjP7ahT7LAnfkYF/1HWFznU+6RiaGD2fYxvr+pf6elnzSWqeBlWpZCPF lF5Mgv+WobxgGGZtDkyU59zQgG49o24wloOr3tIA7aUDszJTwtWc4i/ZyVos2VIq v0azIVDe05DGHNBXSKzXHLRI30t31FcIn2Mx3/uThGrNtGh3iOa4QfQK2YV7WUpY RYi+FQUN7R7Jd+ZWAx56s0eolh9LqqX27vCqfTiflQ7MlMV2oRflSTvcBRiEk8a8 imQEy3EoOBCgVlHUqrkj8X78EowphiwahwaA0QGGVUWi0KGYBPEPXY3FWwIDAQAB o4IE5DCCBOAwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQMDAYyNQaRAGrShCN/XbDy lCTk5TAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcB AQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlw dC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlw dC5vcmcvMIICmQYDVR0RBIICkDCCAoyCGWFyaW1vdmVpcy5pbW9iaWJyYXNpbC5u ZXSCEGFyaW1vdmVpcy5uZXQuYnKCF2NwYW5lbC5hcmltb3ZlaXMubmV0LmJyghhj cGFuZWwubm92YW1hcmNhcC5jb20uYnKCHGNwYW5lbC5yZWFsaXphcmltb3ZlbC5j b20uYnKCHmRlaW1vdmVpc2JhcmFvLmltb2JpYnJhc2lsLm5ldIIWbWFpbC5ub3Zh bWFyY2FwLmNvbS5icoIRbm92YW1hcmNhcC5jb20uYnKCGm5vdmFtYXJjYXAuaW1v YmlicmFzaWwubmV0ghVyZWFsaXphcmltb3ZlbC5jb20uYnKCHnJlYWxpemFyaW1v dmVsLmltb2JpYnJhc2lsLm5ldIIVdmFsdXMuaW1vYmlicmFzaWwubmV0ghh3ZWJk aXNrLmFyaW1vdmVpcy5uZXQuYnKCGXdlYmRpc2subm92YW1hcmNhcC5jb20uYnKC HXdlYmRpc2sucmVhbGl6YXJpbW92ZWwuY29tLmJyghl3ZWJtYWlsLm5vdmFtYXJj YXAuY29tLmJygh13d3cuYXJpbW92ZWlzLmltb2JpYnJhc2lsLm5ldIIUd3d3LmFy aW1vdmVpcy5uZXQuYnKCInd3dy5kZWltb3ZlaXNiYXJhby5pbW9iaWJyYXNpbC5u ZXSCFXd3dy5ub3ZhbWFyY2FwLmNvbS5icoIed3d3Lm5vdmFtYXJjYXAuaW1vYmli cmFzaWwubmV0ghl3d3cucmVhbGl6YXJpbW92ZWwuY29tLmJygiJ3d3cucmVhbGl6 YXJpbW92ZWwuaW1vYmlicmFzaWwubmV0ghl3d3cudmFsdXMuaW1vYmlicmFzaWwu bmV0MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYB BQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIE AgSB9ASB8QDvAHYAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFu LxFB/wAABAMARzBFAiEA5FD4F8Yfh8T6Ig3uja7tYoVH9VuDkUst1JsEOM4oVa4C IFopgyCMImLOBHTxjSu819Ucsjrm6ygZzTuCOj/4a6RPAHUAB7dcG+V9aP/xsMYd IxXHuuZXfFeUt2ruvGE6GmnTohwAAAFuLxFCAAAABAMARjBEAiBD0oQpa2Cv0EQb LUjiviElX6gNjZU1VgehX3To0DXyFAIgOfBCpfjPAq8Ov+KRbk/O5Xtk5GL5kNQ+ 3A3sHEvLp6cwDQYJKoZIhvcNAQELBQADggEBAF7GenBdp2kRMctLk2XatI5Y8UY8 uoYxsV7pAIy8qcyvfs7Q2hhfzHE4uyDt/DU9gVtC1QMtj/gVW6DaOTt5aJTSxU8M PwqfTtOtBH9oxBNL/41pwPqO0sU4eszlDD8hklazTsGGUfK9H7BePVP8faufNXj1 c09lbHaj0L3Ml77rkUR2zs6cgLbOdBxQwsRa6bN1PRdQF2f4aQ7wMk61bPjnsygJ +dvWRQobRZNVXP/RQHUUeBfCGvro9qvk9n5Y/wxUxqPCJBz7Osmkb7t/p5Ak75Tm lwwOixgCFlr01B4SVRxApWZkiN9C4OaLbl/fTkX1hpCF2NZDxeMEWhMguAQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArj3m61stILA8NaTZ6OXJ /HG01mcoW6wajIECHjP7ahT7LAnfkYF/1HWFznU+6RiaGD2fYxvr+pf6elnzSWqe BlWpZCPFlF5Mgv+WobxgGGZtDkyU59zQgG49o24wloOr3tIA7aUDszJTwtWc4i/Z yVos2VIqv0azIVDe05DGHNBXSKzXHLRI30t31FcIn2Mx3/uThGrNtGh3iOa4QfQK 2YV7WUpYRYi+FQUN7R7Jd+ZWAx56s0eolh9LqqX27vCqfTiflQ7MlMV2oRflSTvc BRiEk8a8imQEy3EoOBCgVlHUqrkj8X78EowphiwahwaA0QGGVUWi0KGYBPEPXY3F WwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 431902775905158639392205678011882673555329 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-03 01:21:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-01 01:21:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'novamarcap.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21995990092154181182101597615861825553932392551742519870680292958017260410764169364928690514751863586313603127421153413457512885602717818711578560243364124898727102443343670746608405346201126669864545821711787684536922426912300607407240688508338173912113752992796649257592533494420958080119605908590883528545142206506255554791255101047727655947436524137571663517129242434426847671938716117344479099987124199987489494874465440609420409173144214206552854895941740688238618607901150681820369873952054056450159287268012475428547657894325051277089823454141354065907425126617797112329845948202385364084018510287573638563163 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0c0c0632350691006ad284237f5db0f29424e4e5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (656 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'arimoveis.imobibrasil.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'arimoveis.net.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.arimoveis.net.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.novamarcap.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.realizarimovel.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'deimoveisbarao.imobibrasil.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.novamarcap.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novamarcap.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novamarcap.imobibrasil.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'realizarimovel.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'realizarimovel.imobibrasil.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'valus.imobibrasil.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.arimoveis.net.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.novamarcap.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.realizarimovel.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.novamarcap.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.arimoveis.imobibrasil.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.arimoveis.net.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.deimoveisbarao.imobibrasil.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.novamarcap.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.novamarcap.imobibrasil.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.realizarimovel.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.realizarimovel.imobibrasil.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.valus.imobibrasil.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016e2f1141ff0000040300473045022100e450f817c61f87c4fa220dee8daeed628547f55b83914b2dd49b0438ce2855ae02205a2983208c2262ce0474f18d2bbcd7d51cb23ae6eb2819cd3b823a3ff86ba44f00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e2f1142000000040300463044022043d284296b60afd0441b2d48e2be21255fa80d8d95355607a15f74e8d035f214022039f042a5f8cf02af0ebfe2916e4fcee57b64e462f990d43edc0dec1c4bcba7a7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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