tls.automattic.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:07:9b:20:07:51:c8:3a:df:25:57:5d:33:6a:ae:cc:91:56 was issued on by Let's Encrypt.
With 51 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tls.automattic.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:07:9b:20:07:51:c8:3a:df:25:57:5d:33:6a:ae:cc:91:56Serial Number (int): 263925031005029760821554985259836822557014
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 71:28:10:a0:6f:d9:70:2e:7f:18:fc:e4:8f:c2:05:e7:63:ab:f1:65
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 92:cf:22:18:5d:7d:e6:b6:98:36:93:98:f6:57:42:7d:c3:8b:bd:7d
Fingerprint (sha256): bb:85:e1:e2:94:d9:8b:23:08:57:96:c0:33:23:42:b3:13:c2:e0:99:9d:97:1b:8b:d6:7d:2c:02:0f:53:83:43
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate tls.automattic.com
51
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tls.automattic.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
blog.historichotels.org
historicbarnssanjuanislands.com
historiccitiesrules.com
historicclubcastrovillari.com
historicdc.com
historicdc.org
historiclittleswitzerland.com
historicmarcosregister.com
historicmichiganroad.org
historicnewyorktours.com
historicobarakaldocf.com
historicoccasions.com
historicophiles.com
historicparkavenue.org
historicparkview.org
historicplaceswellington.org
historicsantabarbara.com
historicslot.com
historicslotcars.com
historicslotcarschallenge.com
historicsocialcirclega.com
historicsocialcirclega.org
historictoddcounty.com
historictoursofnashville.com
historictraderspoint.org
tls.automattic.com
www.historicathenaeum.com
www.historicbarnssanjuanislands.com
www.historiccitiesrules.com
www.historicclubcastrovillari.com
www.historicdc.com
www.historicdc.org
www.historiclittleswitzerland.com
www.historicmarcosregister.com
www.historicmichiganroad.org
www.historicnewyorktours.com
www.historicobarakaldocf.com
www.historicoccasions.com
www.historicophiles.com
www.historicparkavenue.org
www.historicparkview.org
www.historicplaceswellington.org
www.historicsantabarbara.com
www.historicslot.com
www.historicslotcars.com
www.historicslotcarschallenge.com
www.historicsocialcirclega.com
www.historicsocialcirclega.org
www.historictoddcounty.com
www.historictoursofnashville.com
www.historictraderspoint.org
historicbarnssanjuanislands.com
historiccitiesrules.com
historicclubcastrovillari.com
historicdc.com
historicdc.org
historiclittleswitzerland.com
historicmarcosregister.com
historicmichiganroad.org
historicnewyorktours.com
historicobarakaldocf.com
historicoccasions.com
historicophiles.com
historicparkavenue.org
historicparkview.org
historicplaceswellington.org
historicsantabarbara.com
historicslot.com
historicslotcars.com
historicslotcarschallenge.com
historicsocialcirclega.com
historicsocialcirclega.org
historictoddcounty.com
historictoursofnashville.com
historictraderspoint.org
tls.automattic.com
www.historicathenaeum.com
www.historicbarnssanjuanislands.com
www.historiccitiesrules.com
www.historicclubcastrovillari.com
www.historicdc.com
www.historicdc.org
www.historiclittleswitzerland.com
www.historicmarcosregister.com
www.historicmichiganroad.org
www.historicnewyorktours.com
www.historicobarakaldocf.com
www.historicoccasions.com
www.historicophiles.com
www.historicparkavenue.org
www.historicparkview.org
www.historicplaceswellington.org
www.historicsantabarbara.com
www.historicslot.com
www.historicslotcars.com
www.historicslotcarschallenge.com
www.historicsocialcirclega.com
www.historicsocialcirclega.org
www.historictoddcounty.com
www.historictoursofnashville.com
www.historictraderspoint.org
Other certificates including the domain name automattic.com
(limited to 100 certificates)
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
Certificate
The complete raw certificate details for tls.automattic.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKvTCCCaWgAwIBAgISAwebIAdRyDrfJVddM2quzJFWMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MTMwMDAwNTZaFw0x OTEwMTEwMDAwNTZaMB0xGzAZBgNVBAMTEnRscy5hdXRvbWF0dGljLmNvbTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMbb5Z//KhYaAo1punmsIJraoRfU LN/FpacTqHviIAaLPdTZIzLZOLnYBlD9IT0tj4MW3h4vqbZi3q2pkp+Swfaolqdr whNjUldVda0vWqkWWdL9nTOdldw4qd+bn3GTtpVkAJzeAjNgtBsah5VahQqVw2M5 PnUhL/DSS7m+XRU75We9TKyLarg5219AfT8hOTMgh+Y+oDl/obwZQKXDlf+q5iVn CeP9QrNvIPWpkBqo/u2ljJQIsDZAGGpAg0nziD3U9i+jGsllCwwfxSH6aPIkA2C6 8le/1xqmmOlyzfLFHXWo1mmAwQg/oBFpgMGbQXi+Kqd6fSm7VxI2vSyazQECAwEA AaOCB8gwggfEMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUcSgQoG/ZcC5/GPzkj8IF 52Or8WUwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzCCBXsGA1UdEQSCBXIwggVughdibG9nLmhpc3RvcmljaG90ZWxzLm9y Z4IfaGlzdG9yaWNiYXJuc3Nhbmp1YW5pc2xhbmRzLmNvbYIXaGlzdG9yaWNjaXRp ZXNydWxlcy5jb22CHWhpc3RvcmljY2x1YmNhc3Ryb3ZpbGxhcmkuY29tgg5oaXN0 b3JpY2RjLmNvbYIOaGlzdG9yaWNkYy5vcmeCHWhpc3RvcmljbGl0dGxlc3dpdHpl cmxhbmQuY29tghpoaXN0b3JpY21hcmNvc3JlZ2lzdGVyLmNvbYIYaGlzdG9yaWNt aWNoaWdhbnJvYWQub3JnghhoaXN0b3JpY25ld3lvcmt0b3Vycy5jb22CGGhpc3Rv cmljb2JhcmFrYWxkb2NmLmNvbYIVaGlzdG9yaWNvY2Nhc2lvbnMuY29tghNoaXN0 b3JpY29waGlsZXMuY29tghZoaXN0b3JpY3BhcmthdmVudWUub3JnghRoaXN0b3Jp Y3Bhcmt2aWV3Lm9yZ4IcaGlzdG9yaWNwbGFjZXN3ZWxsaW5ndG9uLm9yZ4IYaGlz dG9yaWNzYW50YWJhcmJhcmEuY29tghBoaXN0b3JpY3Nsb3QuY29tghRoaXN0b3Jp Y3Nsb3RjYXJzLmNvbYIdaGlzdG9yaWNzbG90Y2Fyc2NoYWxsZW5nZS5jb22CGmhp c3Rvcmljc29jaWFsY2lyY2xlZ2EuY29tghpoaXN0b3JpY3NvY2lhbGNpcmNsZWdh Lm9yZ4IWaGlzdG9yaWN0b2RkY291bnR5LmNvbYIcaGlzdG9yaWN0b3Vyc29mbmFz aHZpbGxlLmNvbYIYaGlzdG9yaWN0cmFkZXJzcG9pbnQub3JnghJ0bHMuYXV0b21h dHRpYy5jb22CGXd3dy5oaXN0b3JpY2F0aGVuYWV1bS5jb22CI3d3dy5oaXN0b3Jp Y2Jhcm5zc2FuanVhbmlzbGFuZHMuY29tght3d3cuaGlzdG9yaWNjaXRpZXNydWxl cy5jb22CIXd3dy5oaXN0b3JpY2NsdWJjYXN0cm92aWxsYXJpLmNvbYISd3d3Lmhp c3RvcmljZGMuY29tghJ3d3cuaGlzdG9yaWNkYy5vcmeCIXd3dy5oaXN0b3JpY2xp dHRsZXN3aXR6ZXJsYW5kLmNvbYIed3d3Lmhpc3RvcmljbWFyY29zcmVnaXN0ZXIu Y29tghx3d3cuaGlzdG9yaWNtaWNoaWdhbnJvYWQub3Jnghx3d3cuaGlzdG9yaWNu ZXd5b3JrdG91cnMuY29tghx3d3cuaGlzdG9yaWNvYmFyYWthbGRvY2YuY29tghl3 d3cuaGlzdG9yaWNvY2Nhc2lvbnMuY29tghd3d3cuaGlzdG9yaWNvcGhpbGVzLmNv bYIad3d3Lmhpc3RvcmljcGFya2F2ZW51ZS5vcmeCGHd3dy5oaXN0b3JpY3Bhcmt2 aWV3Lm9yZ4Igd3d3Lmhpc3RvcmljcGxhY2Vzd2VsbGluZ3Rvbi5vcmeCHHd3dy5o aXN0b3JpY3NhbnRhYmFyYmFyYS5jb22CFHd3dy5oaXN0b3JpY3Nsb3QuY29tghh3 d3cuaGlzdG9yaWNzbG90Y2Fycy5jb22CIXd3dy5oaXN0b3JpY3Nsb3RjYXJzY2hh bGxlbmdlLmNvbYIed3d3Lmhpc3Rvcmljc29jaWFsY2lyY2xlZ2EuY29tgh53d3cu aGlzdG9yaWNzb2NpYWxjaXJjbGVnYS5vcmeCGnd3dy5oaXN0b3JpY3RvZGRjb3Vu dHkuY29tgiB3d3cuaGlzdG9yaWN0b3Vyc29mbmFzaHZpbGxlLmNvbYIcd3d3Lmhp c3RvcmljdHJhZGVyc3BvaW50Lm9yZzBMBgNVHSAERTBDMAgGBmeBDAECATA3Bgsr BgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0 Lm9yZzCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3AHR+2oMxrTMQkSGcziVPQnDC v/1eQiAIxjc1eeYQe8xWAAABa+jY5eEAAAQDAEgwRgIhAKOFwIhhbwgPcAENe9My PqhDrpqY6phiCotfJLJF5EPcAiEAhbAWLTivMWk6QtToiBvSxA9QNXRhou0KRuSl A1nnqsEAdgApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAWvo2OPZ AAAEAwBHMEUCIHZTPh1EPeL1ePtjQk6YldJy0TK/Z9mXHJUmuu9WSipnAiEA2c9L v930okvSJRNM4MdTg9et1Vzu4dw/8xXgcdJzoIUwDQYJKoZIhvcNAQELBQADggEB ADAR/mttSgf0Z5FjXxjqsLFBFPUngfr5zLtewJ5/jmXm3S4K8447272HZHkh9/Qw DEyXbK+025fL/5JtCaowTgYUPczwHqxAjXdH8ssyD4p8DjUg1OCN29eWavFdbaYo ZLb0dU8neaaJpcMPx2cvHo56ECRMuaxmnvsYIhiXXNuy6eESNzkhxv4qnSiHS3OO RJCxgmgS0+VIHDQHtD++QSBTx16IXhWHYKpQO2chExYmb6nyNyOWNWQitWmv57j0 79aj0GZoMYH3etyBG+X5auIyMkzxbomWquWIUqbAjoAmBCW2yEqHr6c5gub/LRL1 TY9PvHElRWVq5O7i7Y3kL/E= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxtvln/8qFhoCjWm6eawg mtqhF9Qs38WlpxOoe+IgBos91NkjMtk4udgGUP0hPS2PgxbeHi+ptmLeramSn5LB 9qiWp2vCE2NSV1V1rS9aqRZZ0v2dM52V3Dip35ufcZO2lWQAnN4CM2C0GxqHlVqF CpXDYzk+dSEv8NJLub5dFTvlZ71MrItquDnbX0B9PyE5MyCH5j6gOX+hvBlApcOV /6rmJWcJ4/1Cs28g9amQGqj+7aWMlAiwNkAYakCDSfOIPdT2L6MayWULDB/FIfpo 8iQDYLryV7/XGqaY6XLN8sUddajWaYDBCD+gEWmAwZtBeL4qp3p9KbtXEja9LJrN AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 263925031005029760821554985259836822557014 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-13 00:00:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-11 00:00:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tls.automattic.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25103619621908534395853716385024483012425190448944039085924478929345596157859141611449869338169327041261471998498948398845934681792528990771246992026903317569172905645431877232963759500126969709219182393841089895137752814469006298427481128729756887248758269704136806468815454974291338535187022988147410141942780834249824445011146933568847471301588184025572822563900737761433554560061450759044603019018347509021865489879638354213652803235134873986616632363026709821595773894132858888589481830737235969859645350509955478641233641581412672434828655904021342286327773242709055813671704832442005863512328340301170989518081 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 712810a06fd9702e7f18fce48fc205e763abf165 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1394 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.historichotels.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicbarnssanjuanislands.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historiccitiesrules.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicclubcastrovillari.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicdc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicdc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historiclittleswitzerland.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicmarcosregister.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicmichiganroad.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicnewyorktours.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicobarakaldocf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicoccasions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicophiles.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicparkavenue.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicparkview.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicplaceswellington.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicsantabarbara.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicslot.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicslotcars.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicslotcarschallenge.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicsocialcirclega.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historicsocialcirclega.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historictoddcounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historictoursofnashville.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'historictraderspoint.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tls.automattic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicathenaeum.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicbarnssanjuanislands.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historiccitiesrules.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicclubcastrovillari.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicdc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicdc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historiclittleswitzerland.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicmarcosregister.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicmichiganroad.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicnewyorktours.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicobarakaldocf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicoccasions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicophiles.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicparkavenue.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicparkview.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicplaceswellington.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicsantabarbara.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicslot.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicslotcars.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicslotcarschallenge.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicsocialcirclega.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historicsocialcirclega.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historictoddcounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historictoursofnashville.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.historictraderspoint.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016be8d8e5e10000040300483046022100a385c088616f080f70010d7bd3323ea843ae9a98ea98620a8b5f24b245e443dc02210085b0162d38af31693a42d4e8881bd2c40f50357461a2ed0a46e4a50359e7aac1007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016be8d8e3d90000040300473045022076533e1d443de2f578fb63424e9895d272d132bf67d9971c9526baef564a2a67022100d9cf4bbfddf4a24bd225134ce0c75383d7add55ceee1dc3ff315e071d273a085 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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