miro-sailing.com
Issued by StartCom Class 1 DV Server CA
About this certificate
This digital certificate with serial number 2b:ba:90:c4:ed:48:76:8f:67:9f:f3:36:d2:32:16:55 was issued on by StartCom Ltd..
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=miro-sailing.com
StartCom Ltd.
Organization:
StartCom Ltd.
Organization unit: StartCom Certification Authority
Organization unit: StartCom Certification Authority
Country:
IL
This certificate has expire since
Certificate Details
Serial Number (hex): 2b:ba:90:c4:ed:48:76:8f:67:9f:f3:36:d2:32:16:55Serial Number (int): 58125507303577188981388962519026112085
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 3f:91:17:16:33:97:b4:b7:4c:b2:f8:af:25:0d:1a:10:d0:a4:19:f1
AuthorityKeyId: d7:91:4e:01:c4:b0:bf:f8:c8:67:93:44:9c:e7:33:fa:ad:93:0c:af
Fingerprint (sha1): b5:16:e9:63:de:45:bb:78:44:ad:73:34:ca:16:95:70:3f:35:e0:0e
Fingerprint (sha256): ad:41:61:ef:87:bd:14:be:e8:94:27:8a:0c:4f:9a:dc:3a:5a:1b:6c:f4:9b:f1:04:57:27:d1:90:93:73:b8:b3
Issuing Certificate URL: http://aia.startssl.com/certs/sca.server1.crt
Revocation information
OCSP Server: http://ocsp.startssl.comCRL Distribution Point: http://crl.startssl.com/sca-server1.crl
Check the revocation status for certificate miro-sailing.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for miro-sailing.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
miro-sailing.com
www.miro-sailing.com
support.miro-sailing.com
cdn.miro-sailing.com
rt.miro-sailing.com
www.miro-sailing.com
support.miro-sailing.com
cdn.miro-sailing.com
rt.miro-sailing.com
Other certificates including the domain name miro-sailing.com
(limited to 100 certificates)
en.miro-sailing.com
shop.miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
dev.miro-sailing.com
miro-sailing.com
miro-sailing.com
cdn.miro-sailing.com
miro-sailing.com
booking.miro-sailing.com
miro-sailing.com
sl.miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
www.miro-sailing.com
miro-sailing.com
sl.miro-sailing.com
booking.miro-sailing.com
shop.miro-sailing.com
booking.miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
shop.miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
dev.miro-sailing.com
miro-sailing.com
miro-sailing.com
cdn.miro-sailing.com
miro-sailing.com
booking.miro-sailing.com
miro-sailing.com
sl.miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
www.miro-sailing.com
miro-sailing.com
sl.miro-sailing.com
booking.miro-sailing.com
shop.miro-sailing.com
booking.miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
miro-sailing.com
Certificate
The complete raw certificate details for miro-sailing.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGNDCCBRygAwIBAgIQK7qQxO1Ido9nn/M20jIWVTANBgkqhkiG9w0BAQsFADB4 MQswCQYDVQQGEwJJTDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjEpMCcGA1UECxMg U3RhcnRDb20gQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkxJjAkBgNVBAMTHVN0YXJ0 Q29tIENsYXNzIDEgRFYgU2VydmVyIENBMB4XDTE2MDIxMDA3MDcxMloXDTE3MDIx MDA3MDcxMlowGzEZMBcGA1UEAwwQbWlyby1zYWlsaW5nLmNvbTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAKWDGdf6fJD3JVdyU09gNiZgPMGdZqhOjDDO DhCEgz5XceTdNGNgqMXvWKdiZOJFFzyFBSP0IDwVmyR6dXs9MtZuZlPwAgEEhRxx HsKIeOKrDl5rljDI/07XIGzR+hDz7MMqV20seMkp/6T0rWo0PnVfvb1vAVAkuGo/ Msbek6D7wLMsEiiAhyPVUfOZ25ru2VHiHmtYNEBlUHdza4GZbOk0ddNns9HAvcQ9 pPEZtnHnQj58GWzuPjHq/G1zZiWF5TpXJ6jq2t3DYIxT1hlkoNB80eIvjUbH6NAY yU7hm0/Dh3WZmwL2P4TH4BQtW2NmX44qSgSFQJ0xEKt475YT/UnMBm27Ox+gmeFB yihV/nv4kjBEkloCOBhvzUl6BSuibwchQXX0vxzhMh7m1su1Kgho6JBfc2kiCqPu 5tiBvcXYDGREXlC7q7lyjdIjFH7UD24ONma4V5jma+0XYCi/DGdEVRO/WiXKvewb L1nI61PWCsTLWNQ3L9NRjmdP6Vl3S4Y68NolobmKJ4HosE4BYXLwc8jrU6byylJe wqmfGibF1mpXOjz9H5BKF8lmvDxJj0sUp4z/HrtLk47ZiKB6iB2vVcohWJFFufsD Ytxr5F0skVpPDzM/NObid9reRicCLpoKfgjdvr1SxZFEz2cSDvq7ifJpiD/+sgdV 3kRSsi8dAgMBAAGjggIVMIICETALBgNVHQ8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwIGCCsGAQUFBwMBMAkGA1UdEwQCMAAwHQYDVR0OBBYEFD+RFxYzl7S3TLL4 ryUNGhDQpBnxMB8GA1UdIwQYMBaAFNeRTgHEsL/4yGeTRJznM/qtkwyvMG8GCCsG AQUFBwEBBGMwYTAkBggrBgEFBQcwAYYYaHR0cDovL29jc3Auc3RhcnRzc2wuY29t MDkGCCsGAQUFBzAChi1odHRwOi8vYWlhLnN0YXJ0c3NsLmNvbS9jZXJ0cy9zY2Eu c2VydmVyMS5jcnQwOAYDVR0fBDEwLzAtoCugKYYnaHR0cDovL2NybC5zdGFydHNz bC5jb20vc2NhLXNlcnZlcjEuY3JsMHYGA1UdEQRvMG2CEG1pcm8tc2FpbGluZy5j b22CFHd3dy5taXJvLXNhaWxpbmcuY29tghhzdXBwb3J0Lm1pcm8tc2FpbGluZy5j b22CFGNkbi5taXJvLXNhaWxpbmcuY29tghNydC5taXJvLXNhaWxpbmcuY29tMCMG A1UdEgQcMBqGGGh0dHA6Ly93d3cuc3RhcnRzc2wuY29tLzBQBgNVHSAESTBHMAgG BmeBDAECATA7BgsrBgEEAYG1NwECBDAsMCoGCCsGAQUFBwIBFh5odHRwOi8vd3d3 LnN0YXJ0c3NsLmNvbS9wb2xpY3kwDQYJKoZIhvcNAQELBQADggEBACFb1bCWFMd6 wOYAXIFgYvxRWGjdtfPLlWHOf8Q36fLUeV2eB3vr/+OF4nDyfeqDXgjHnLH5cs3Q 169eoKK0QpqP9fjONEqfN4ZuYCYt2drlXX0/YlCuQm/8c6DRz29C9z6TbHpjQsBT yc/89f/rlttg/D1QGn9RyZBMl3HTH27RAHtOpqSgC/tMxh23Gs8uKqjuiLiu1KME 4JI7Jz49vaZaBa1DrOdnnA7qx1E7DdD1l+1XyR4v2RKw+FigTYOkxgpCxORaE9iD ey+0WVFoCA6AHErloSsJo8o287sdxIOu6ELn1t0XqBrlPJtS70+9sRxb0hHlFjL+ wRUM4jFyJoA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApYMZ1/p8kPclV3JTT2A2 JmA8wZ1mqE6MMM4OEISDPldx5N00Y2Coxe9Yp2Jk4kUXPIUFI/QgPBWbJHp1ez0y 1m5mU/ACAQSFHHEewoh44qsOXmuWMMj/TtcgbNH6EPPswypXbSx4ySn/pPStajQ+ dV+9vW8BUCS4aj8yxt6ToPvAsywSKICHI9VR85nbmu7ZUeIea1g0QGVQd3NrgZls 6TR102ez0cC9xD2k8Rm2cedCPnwZbO4+Mer8bXNmJYXlOlcnqOra3cNgjFPWGWSg 0HzR4i+NRsfo0BjJTuGbT8OHdZmbAvY/hMfgFC1bY2ZfjipKBIVAnTEQq3jvlhP9 ScwGbbs7H6CZ4UHKKFX+e/iSMESSWgI4GG/NSXoFK6JvByFBdfS/HOEyHubWy7Uq CGjokF9zaSIKo+7m2IG9xdgMZEReULuruXKN0iMUftQPbg42ZrhXmOZr7RdgKL8M Z0RVE79aJcq97BsvWcjrU9YKxMtY1Dcv01GOZ0/pWXdLhjrw2iWhuYongeiwTgFh cvBzyOtTpvLKUl7CqZ8aJsXWalc6PP0fkEoXyWa8PEmPSxSnjP8eu0uTjtmIoHqI Ha9VyiFYkUW5+wNi3GvkXSyRWk8PMz805uJ32t5GJwIumgp+CN2+vVLFkUTPZxIO +ruJ8mmIP/6yB1XeRFKyLx0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 58125507303577188981388962519026112085 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Certification Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Class 1 DV Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-02-10 07:07:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-10 07:07:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'miro-sailing.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 675230510365522086111889635226987915635914341136585864627601040973183179656235366613363430457841661652223972436152618634404692339815082244383782561280249319484063593579091881337275434122278566163775854027647401869191181817438094322154720846922172340240589389442444832805217395306397083286012073406282976545244634985883325972550427603122116645283100468110122492757496692845329816347228794309073316234798232045203259654430932058037839565052803212324031173135835886019748307447016992423239761483104218037759208572792227215768447176166283121065393180941393470829635097824767785997954337111446199695414160680347146709035140356008803673664394868241081292149735195687449839761301245367918962580708778910485987087717890067981061785435872256286266378500275893758303519107906330357918739867006240062844605611254284374774903538360217495168226877584627437250486156722642149939501934148396688440440148140883172077581129461955827813721051548666963468600153005244089245881766884543488846213962155087954559503120138431999287677079101463604224537482368276339719765075858423340219781059356773013026177189656696400160742849521799933106088073856815034590279957605592073011738844201086011640633478942683704587533522463633719091871578095842440447209385757 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3f9117163397b4b74cb2f8af250d1a10d0a419f1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d7914e01c4b0bff8c86793449ce733faad930caf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.startssl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.startssl.com/certs/sca.server1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.startssl.com/sca-server1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (111 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'miro-sailing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.miro-sailing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'support.miro-sailing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn.miro-sailing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rt.miro-sailing.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.18 (issuerAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.startssl.com/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23223.1.2.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.startssl.com/policy' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00215bd5b09614c77ac0e6005c816062fc515868ddb5f3cb9561ce7fc437e9f2d4795d9e077bebffe385e270f27dea835e08c79cb1f972cdd0d7af5ea0a2b4429a8ff5f8ce344a9f37866e60262dd9dae55d7d3f6250ae426ffc73a0d1cf6f42f73e936c7a6342c053c9cffcf5ffeb96db60fc3d501a7f51c9904c9771d31f6ed1007b4ea6a4a00bfb4cc61db71acf2e2aa8ee88b8aed4a304e0923b273e3dbda65a05ad43ace7679c0eeac7513b0dd0f597ed57c91e2fd912b0f858a04d83a4c60a42c4e45a13d8837b2fb4595168080e801c4ae5a12b09a3ca36f3bb1dc483aee842e7d6dd17a81ae53c9b52ef4fbdb11c5bd211e51632fec1150ce231722680