trihemofa.vn
Issued by R3
About this certificate
This digital certificate with serial number 04:02:f2:03:fc:ef:3f:af:a4:d3:bb:f1:2e:ec:0d:28:43:bc was issued on by Let's Encrypt.
With 24 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=trihemofa.vn
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:02:f2:03:fc:ef:3f:af:a4:d3:bb:f1:2e:ec:0d:28:43:bcSerial Number (int): 349451402342875849616289163791390957126588
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b3:d5:d9:cf:5b:e8:27:e3:1e:50:7f:89:82:ef:52:5c:98:5d:11:56
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): de:84:c1:8f:e5:76:45:58:ba:dc:79:92:82:2a:8e:2e:28:39:04:6e
Fingerprint (sha256): aa:78:f1:59:97:26:e1:40:5d:e5:8d:ce:cd:3c:9d:6a:86:a3:41:7c:cb:d6:50:19:89:2c:48:89:0c:a2:c9:57
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate trihemofa.vn
24
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for trihemofa.vn
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bpstone.duy5.name.vn
cpanel.duy5.name.vn
cpcalendars.duy5.name.vn
cpcontacts.duy5.name.vn
damaihd.com.vn.duy5.name.vn
duy5.name.vn
hoathuyetduongnaonibifa.com.vn
hoathuyetduongnaonibifa.com.vn.duy5.name.vn
mail.duy5.name.vn
nordvn.duy5.name.vn
studio.colormedia.vn
studio.colormedia.vn.duy5.name.vn
trihemofa.vn
trihemofa.vn.duy5.name.vn
webdisk.duy5.name.vn
webmail.duy5.name.vn
www.bpstone.duy5.name.vn
www.damaihd.com.vn.duy5.name.vn
www.duy5.name.vn
www.hoathuyetduongnaonibifa.com.vn.duy5.name.vn
www.nordvn.duy5.name.vn
www.studio.colormedia.vn.duy5.name.vn
www.trihemofa.vn
www.trihemofa.vn.duy5.name.vn
cpanel.duy5.name.vn
cpcalendars.duy5.name.vn
cpcontacts.duy5.name.vn
damaihd.com.vn.duy5.name.vn
duy5.name.vn
hoathuyetduongnaonibifa.com.vn
hoathuyetduongnaonibifa.com.vn.duy5.name.vn
mail.duy5.name.vn
nordvn.duy5.name.vn
studio.colormedia.vn
studio.colormedia.vn.duy5.name.vn
trihemofa.vn
trihemofa.vn.duy5.name.vn
webdisk.duy5.name.vn
webmail.duy5.name.vn
www.bpstone.duy5.name.vn
www.damaihd.com.vn.duy5.name.vn
www.duy5.name.vn
www.hoathuyetduongnaonibifa.com.vn.duy5.name.vn
www.nordvn.duy5.name.vn
www.studio.colormedia.vn.duy5.name.vn
www.trihemofa.vn
www.trihemofa.vn.duy5.name.vn
Other certificates including the domain name trihemofa.vn
(limited to 100 certificates)
Certificate
The complete raw certificate details for trihemofa.vn in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHWTCCBkGgAwIBAgISBALyA/zvP6+k07vxLuwNKEO8MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMjcyMTE5MTJaFw0yNDA0MjYyMTE5MTFaMBcxFTATBgNVBAMT DHRyaWhlbW9mYS52bjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALSt GjxsTeYF0kbZmPb7OdlKxHs4zT/nSn31S5kZ01AhYq08dPzWA5DsO//OPoEvUjiU hYDBJggYMSRggbdNfW5SwxjEhiL+4ox2BvuX9+W9vQ1Oxxt6KwCxR+gGcdMAhFVS FHO9QHSYHXdWF1eSnuBeLGfcatfLliIxqgLy8Hq7rPnIBTEWuDcd8WXF7xjbgc44 mbaW2Msa3fHMMrrGPpvSLvF1PxcZeEnmYLRKqY8aM93d2FTyt3N58JYpJRvesWMk vt0tc40Og9fHIELSvLM1ggSrHl6XyTT6rQt6Zhflt4x07uAHf1qnNw3zzngbSsK2 UWGULPvStrMMiuo91gcCAwEAAaOCBIIwggR+MA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUs9XZz1voJ+MeUH+Jgu9SXJhdEVYwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w ggKIBgNVHREEggJ/MIICe4IUYnBzdG9uZS5kdXk1Lm5hbWUudm6CE2NwYW5lbC5k dXk1Lm5hbWUudm6CGGNwY2FsZW5kYXJzLmR1eTUubmFtZS52boIXY3Bjb250YWN0 cy5kdXk1Lm5hbWUudm6CG2RhbWFpaGQuY29tLnZuLmR1eTUubmFtZS52boIMZHV5 NS5uYW1lLnZugh5ob2F0aHV5ZXRkdW9uZ25hb25pYmlmYS5jb20udm6CK2hvYXRo dXlldGR1b25nbmFvbmliaWZhLmNvbS52bi5kdXk1Lm5hbWUudm6CEW1haWwuZHV5 NS5uYW1lLnZughNub3Jkdm4uZHV5NS5uYW1lLnZughRzdHVkaW8uY29sb3JtZWRp YS52boIhc3R1ZGlvLmNvbG9ybWVkaWEudm4uZHV5NS5uYW1lLnZuggx0cmloZW1v ZmEudm6CGXRyaWhlbW9mYS52bi5kdXk1Lm5hbWUudm6CFHdlYmRpc2suZHV5NS5u YW1lLnZughR3ZWJtYWlsLmR1eTUubmFtZS52boIYd3d3LmJwc3RvbmUuZHV5NS5u YW1lLnZugh93d3cuZGFtYWloZC5jb20udm4uZHV5NS5uYW1lLnZughB3d3cuZHV5 NS5uYW1lLnZugi93d3cuaG9hdGh1eWV0ZHVvbmduYW9uaWJpZmEuY29tLnZuLmR1 eTUubmFtZS52boIXd3d3Lm5vcmR2bi5kdXk1Lm5hbWUudm6CJXd3dy5zdHVkaW8u Y29sb3JtZWRpYS52bi5kdXk1Lm5hbWUudm6CEHd3dy50cmloZW1vZmEudm6CHXd3 dy50cmloZW1vZmEudm4uZHV5NS5uYW1lLnZuMBMGA1UdIAQMMAowCAYGZ4EMAQIB MIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0 x70ADS1yb+H61BcAAAGNTQFgZwAABAMASDBGAiEAwXJZlSIh2IbE/hC56yrRyhle fTXDlNeBSTS9OPq3AcwCIQCl3NDJjOiW1uwrPPSUKfC5hIqa9IjQoR2ajBxEgaLE XQB2AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAABjU0BYHcAAAQD AEcwRQIhANbc8sNayFq/P6shWi7UJiOwLRgQ3KneXnSkPR1wm0ydAiBacAHn7BW6 lpRfGoTjO3Nc1Xm7oE/gjqfTAiRBrqII9DANBgkqhkiG9w0BAQsFAAOCAQEAA1iU F8aKvfT8GXQjdsWmLJ3WCYNp0AKnciTVTND1HpUAEPTXMvxJOUQrOKcgqH4QxFMn cRVRrwjcegJAgiBHJfnLJHiwh+YYk3Csd7A2ovy8F2B+abIcty/nHGaNGRUXorbz fGx4VUsH6QTTmySludfYQe8414keagTaWS/JB0kOpWS6NRhGwVS0Lkk9AKlQhOp/ OmbNNOT6qV8x+Z5sy5F9gRWcL3+GOmolRDLld8xzA0O80Mk5kBeN52yiydotWDFq sE6N6rRa9iZPF4NqKHe77Lpr6h2JxgFvkD1KAQl0OcVccnnOnY5H4IwgAqsCWj5n vmUCNdpumfu4GNJGgA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtK0aPGxN5gXSRtmY9vs5 2UrEezjNP+dKffVLmRnTUCFirTx0/NYDkOw7/84+gS9SOJSFgMEmCBgxJGCBt019 blLDGMSGIv7ijHYG+5f35b29DU7HG3orALFH6AZx0wCEVVIUc71AdJgdd1YXV5Ke 4F4sZ9xq18uWIjGqAvLwerus+cgFMRa4Nx3xZcXvGNuBzjiZtpbYyxrd8cwyusY+ m9Iu8XU/Fxl4SeZgtEqpjxoz3d3YVPK3c3nwliklG96xYyS+3S1zjQ6D18cgQtK8 szWCBKseXpfJNPqtC3pmF+W3jHTu4Ad/Wqc3DfPOeBtKwrZRYZQs+9K2swyK6j3W BwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 349451402342875849616289163791390957126588 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-27 21:19:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-26 21:19:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'trihemofa.vn' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22808254910400395500323035550857106122270158041477821224445109878520589942443211580443176805045649518842388674837966402950418492270631741963368819086879342188000232829445093230705701791959469618506159813003829911616251084771963757974178055809622970871588729390247387962301775317521533661404147519891522598931092566129608232377400843411584086509052296242587654765895049913017174694172393447836295383011050784451604226599451549186345575408875781673250622591755618806966470866132024516978484330225149945963944953640574134024127331953090939241238517427063372430980282790346767754334189604169813440416902388830311114724871 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b3d5d9cf5be827e31e507f8982ef525c985d1156 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (639 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bpstone.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcalendars.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcontacts.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'damaihd.com.vn.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hoathuyetduongnaonibifa.com.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hoathuyetduongnaonibifa.com.vn.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nordvn.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'studio.colormedia.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'studio.colormedia.vn.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'trihemofa.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'trihemofa.vn.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bpstone.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.damaihd.com.vn.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hoathuyetduongnaonibifa.com.vn.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nordvn.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.studio.colormedia.vn.duy5.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.trihemofa.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.trihemofa.vn.duy5.name.vn' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d4d0160670000040300483046022100c17259952221d886c4fe10b9eb2ad1ca195e7d35c394d7814934bd38fab701cc022100a5dcd0c98ce896d6ec2b3cf49429f0b9848a9af488d0a11d9a8c1c4481a2c45d007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d4d0160770000040300473045022100d6dcf2c35ac85abf3fab215a2ed42623b02d1810dca9de5e74a43d1d709b4c9d02205a7001e7ec15ba96945f1a84e33b735cd579bba04fe08ea7d3022441aea208f4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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