digi.no
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:71:78:a8:a9:f9:88:5c:ab:da:02:74:ea:92:6f:c9:6b:98 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=digi.no
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:71:78:a8:a9:f9:88:5c:ab:da:02:74:ea:92:6f:c9:6b:98Serial Number (int): 299949148370210447544264544104091348462488
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c4:fa:f8:11:5f:ec:53:0b:da:e9:40:bb:71:54:57:75:c2:85:8f:b9
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 4f:27:55:e8:58:ea:8a:81:17:4e:86:21:84:d0:21:90:70:63:44:df
Fingerprint (sha256): b4:72:13:5b:e4:34:d7:fb:b1:07:62:93:f4:53:c6:df:3a:22:7e:ec:52:a5:04:83:41:a0:12:43:31:25:3a:ad
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate digi.no
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for digi.no
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
digi.no
www.digi.no
www.digi.no
Other certificates including the domain name digi.no
(limited to 100 certificates)
wallbrand.co
dcfit.turnosweb.app
erlend2.digi.no
digi.no
digi.no
www.penguinpeople.io
groupm.beaconforce.com
www.trumpcarestories.org
digi.no
www.parrify.com
cloud.workito.co.il
digi.no
digi.no
wallbrand.co
whitepaper.digi.no
f.link.mustard.love
1j2n061x3td.www.digi.no
mysomras.com
digi.no
www.waidy.it
www.couplemonitor.app
new-adventskalender.de
admin.ugyde.io
digi.no
digi.no
digi.no
erlend2.digi.no
ymd.development.fensi.in
www.crudewiser.com
whitepaper.digi.no
erickmendoza.com
employeronboarding.keeper.co.in
www.iamtheliquor.app
static.dev.getbusy.com
www.51hint.com
www.aduug.com
digi.no
digi.no
whitepaper.digi.no
www.marktompkins.me
digital.stratton-press.linkmalloc.com
whitepaper.digi.no
hueanh.com
invertecfoods.cl
trimbo.com
digi.no
digi.no
digi.no
digi.no
www.garrettspence.dev
vedur.arnigu.info
kalk.digi.no
kalkulator.digi.no
digi.no
digi.no
digi.no
admin.job.hoikushi-go.com
f.link.mustard.love
digi.no
whitepaper.digi.no
nakytec.com
www.redstonemail.app
cvmetalproducts.ca
digi.no
digi.no
whitepaper.digi.no
upliftstress.com
whitepaper.digi.no
digi.no
digi.no
dev.viviultra.app
www.matahari-amsterdam.nl
slw.ai
edificiouna.porcelanosapartners.com
whitepaper.digi.no
kolssak.afterword.com
digi.no
kalk.digi.no
digi.no
whitepaper.digi.no
app.bemoved.com.au
digi.no
digi.no
www.chen.enterprises
digi.no
digi.no
www.inthga.io
introvue.robinsoft.biz
www.ministryofpup.com
digi.no
dcfit.turnosweb.app
erlend2.digi.no
digi.no
digi.no
www.penguinpeople.io
groupm.beaconforce.com
www.trumpcarestories.org
digi.no
www.parrify.com
cloud.workito.co.il
digi.no
digi.no
wallbrand.co
whitepaper.digi.no
f.link.mustard.love
1j2n061x3td.www.digi.no
mysomras.com
digi.no
www.waidy.it
www.couplemonitor.app
new-adventskalender.de
admin.ugyde.io
digi.no
digi.no
digi.no
erlend2.digi.no
ymd.development.fensi.in
www.crudewiser.com
whitepaper.digi.no
erickmendoza.com
employeronboarding.keeper.co.in
www.iamtheliquor.app
static.dev.getbusy.com
www.51hint.com
www.aduug.com
digi.no
digi.no
whitepaper.digi.no
www.marktompkins.me
digital.stratton-press.linkmalloc.com
whitepaper.digi.no
hueanh.com
invertecfoods.cl
trimbo.com
digi.no
digi.no
digi.no
digi.no
www.garrettspence.dev
vedur.arnigu.info
kalk.digi.no
kalkulator.digi.no
digi.no
digi.no
digi.no
admin.job.hoikushi-go.com
f.link.mustard.love
digi.no
whitepaper.digi.no
nakytec.com
www.redstonemail.app
cvmetalproducts.ca
digi.no
digi.no
whitepaper.digi.no
upliftstress.com
whitepaper.digi.no
digi.no
digi.no
dev.viviultra.app
www.matahari-amsterdam.nl
slw.ai
edificiouna.porcelanosapartners.com
whitepaper.digi.no
kolssak.afterword.com
digi.no
kalk.digi.no
digi.no
whitepaper.digi.no
app.bemoved.com.au
digi.no
digi.no
www.chen.enterprises
digi.no
digi.no
www.inthga.io
introvue.robinsoft.biz
www.ministryofpup.com
digi.no
Certificate
The complete raw certificate details for digi.no in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/zCCBOegAwIBAgISA3F4qKn5iFyr2gJ06pJvyWuYMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzAzMjcwNzUyMDBaFw0x NzA2MjUwNzUyMDBaMBIxEDAOBgNVBAMTB2RpZ2kubm8wggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQDCLygUq8sLJPTPbrWg85cgWQrLj8yztwVSorDI2cHp IN2jCOz0DLrJj5UnGEQ6SjVRxPLFlQIwIjhYd2LeH9vI7Z3bdm0WjRNjXJr0QkuA c+8+TCbYgYvlbz2PIX97hOpv8qU9WUDWGJSsZsfCBPGMIEi46UhF9kB9S8JcPKPQ M61IeHOCqF73KlpUFYdk9foDt+4e0nnYU1JoU08qiiNp+21UwRMxRZkIV5l/xV+G ZW7i/x6K+315QO0zkD8bZU56oJMqhhCWklYc5pDsvOPraxpiiFq3EkBnMfVIh1cg HzBA3En/ZVh5kiCQxShCPzeM50NEt7YpTZivWKNXcmA9vMX0JP6WyfZQG/3JMQey 8cWs5NwEycSaa8qPeuo3YfXvd6uJjuG9juAZeDwXlQ4M+JE8o5k37yej2wRy1cqz Fv8H25ZOXt4DRMuzCVUyJqLsvGc2hKwWmFIeU5k3JzTmvJUGO+u3IZzYtMzwpMjs U9qDXG005qZzX1UUQTZOdBO+vLITFAlg/QKeA939z9wD60mmxCWmVX3XG3hxYvRQ 0TsT9krSiGWa+V1GLoYiiFTI8zxlxhKUsjB1LQwX38XmU+xdUlSyY5zXOtctXl6O j0a2MbxiHInCLyZRy5tY6EQcYrImxj+94KlbihEzRR9ZRL+g89Z8Gla3CQDDlJkf owIDAQABo4ICFTCCAhEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTE+vgRX+xTC9rp QLtxVFd1woWPuTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBwBggr BgEFBQcBAQRkMGIwLwYIKwYBBQUHMAGGI2h0dHA6Ly9vY3NwLmludC14My5sZXRz ZW5jcnlwdC5vcmcvMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0 c2VuY3J5cHQub3JnLzAfBgNVHREEGDAWggdkaWdpLm5vggt3d3cuZGlnaS5ubzCB /gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYBBAGC3xMBAQEwgdYwJgYIKwYB BQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIGrBggrBgEFBQcCAjCB ngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkgYmUgcmVsaWVkIHVwb24gYnkg UmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFjY29yZGFuY2Ugd2l0aCB0aGUg Q2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0dHBzOi8vbGV0c2VuY3J5cHQu b3JnL3JlcG9zaXRvcnkvMA0GCSqGSIb3DQEBCwUAA4IBAQCNbCex3qs5hpu0wit5 lnaFLwcGy86vW5Qyc9+eJaRSPEGBLf9xL9Tc1uFOthtMb8J6Fbt8L2vyDJyATYkO iBbOcq3Xd2MmXL/QRf1RolC/nxDATTy/Y7jL8mIzvDa60QkNJ+zN4GIiqC0lxGhf 1G/QJs5Nx+bxtYMId7uUtbsgwExe/VXDTq2cpMDJfzUkXSo0t7cLwFKQlS3H/2HS iCPutkA5DGJhDmajJNrrjNjlvl3kRnKDEE9A0ACL+BRwdeHmE91V4WjchKS8rzyq 3Vzx2+cmAapyrFWCW0pd8saa5Y+XpO9puTvhik/qP0okY3pQJ0/pTIc0zj4sseuM ZPip -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwi8oFKvLCyT0z261oPOX IFkKy4/Ms7cFUqKwyNnB6SDdowjs9Ay6yY+VJxhEOko1UcTyxZUCMCI4WHdi3h/b yO2d23ZtFo0TY1ya9EJLgHPvPkwm2IGL5W89jyF/e4Tqb/KlPVlA1hiUrGbHwgTx jCBIuOlIRfZAfUvCXDyj0DOtSHhzgqhe9ypaVBWHZPX6A7fuHtJ52FNSaFNPKooj afttVMETMUWZCFeZf8VfhmVu4v8eivt9eUDtM5A/G2VOeqCTKoYQlpJWHOaQ7Lzj 62saYohatxJAZzH1SIdXIB8wQNxJ/2VYeZIgkMUoQj83jOdDRLe2KU2Yr1ijV3Jg PbzF9CT+lsn2UBv9yTEHsvHFrOTcBMnEmmvKj3rqN2H173eriY7hvY7gGXg8F5UO DPiRPKOZN+8no9sEctXKsxb/B9uWTl7eA0TLswlVMiai7LxnNoSsFphSHlOZNyc0 5ryVBjvrtyGc2LTM8KTI7FPag1xtNOamc19VFEE2TnQTvryyExQJYP0CngPd/c/c A+tJpsQlplV91xt4cWL0UNE7E/ZK0ohlmvldRi6GIohUyPM8ZcYSlLIwdS0MF9/F 5lPsXVJUsmOc1zrXLV5ejo9GtjG8YhyJwi8mUcubWOhEHGKyJsY/veCpW4oRM0Uf WUS/oPPWfBpWtwkAw5SZH6MCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 299949148370210447544264544104091348462488 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-03-27 07:52:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-06-25 07:52:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'digi.no' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 792202441392644261868640765999059552640179989812678097178467009511334606387867236914521976216037569854658289740392097887960165466694263344053114688776107468404721805687146563387586574622643779233818561384824437911260106190499222004035403105602996331961236932419323450592043434787846976219301276382448389249592799836541817480901860588349312954341078410513009144789864318520996871156236152000943839665761443773757620473565591465494510614284821950451048093150090727698690126181470366639042248507042843710639708577460201580600751938990891236577394301093589225101667564869981247131179306472066290776626661480944914082671522421096340649569341773409342435081036860466631115582440450491042052084027908766031757870853262105158498404996590128699704890722154530666302733286925258128248931806946427089358973557673558091925975124550390432862757477292408322919820678339459447568459234473293688940895080218120059387356009794517299061915460705992754917743382778863740565612219259952701977683216766455387652207064576329970959588066337087970675573604358936266380665801376617409080296428674070477345603359266955098025856843632575307060061481480551500823481167804361161903917808672323957500829315907413300804727482585152568025276801824563088496115916707 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c4faf8115fec530bdae940bb71545775c2858fb9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digi.no' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digi.no' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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