lulumea.com
Issued by Starfield Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number d3:35:80:4c:ed:4c:d2:8e was issued on by Starfield Technologies, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=lulumea.com
Starfield Technologies, Inc.
Organization:
Starfield Technologies, Inc.
Organization unit: http://certs.starfieldtech.com/repository/
Organization unit: http://certs.starfieldtech.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): d3:35:80:4c:ed:4c:d2:8eSerial Number (int): 15219211583655563918
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: 41:93:d9:a0:ee:47:2c:cd:da:85:b8:04:02:47:98:5b:ee:74:05:d2
AuthorityKeyId: 25:45:81:68:50:26:38:3d:3b:2d:2c:be:cd:6a:d9:b6:3d:b3:66:63
Fingerprint (sha1): 5d:3f:b3:e9:3c:0f:1b:55:58:bb:74:e1:b9:bb:43:02:a6:58:60:1a
Fingerprint (sha256): bb:b9:f7:a2:e0:8b:2b:f7:6d:30:f0:59:bc:04:ab:ac:08:41:04:ab:56:c5:f1:d4:df:3a:11:66:9c:91:f1:80
Issuing Certificate URL: http://certificates.starfieldtech.com/repository/sfig2.crt
Revocation information
OCSP Server: http://ocsp.starfieldtech.com/CRL Distribution Point: http://crl.starfieldtech.com/sfig2s1-667.crl
Check the revocation status for certificate lulumea.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lulumea.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lulumea.com
www.lulumea.com
www.lulumea.com
Other certificates including the domain name lulumea.com
(limited to 100 certificates)
connect.lulumea.com
vc.lulumea.com
incapsula.com
incapsula.com
sni.cloudflaressl.com
demo6.platform.fit
incapsula.com
2fa.connect.lulumea.com
incapsula.com
lulumea.com
sni.cloudflaressl.com
admin.articwise.pt
mdm.lulumea.com
*.lulumea.com
incapsula.com
incapsula.com
incapsula.com
ucr.lulumea.com
sni.cloudflaressl.com
lulumea.com
incapsula.com
lulumea.com
ssl366448.cloudflaressl.com
uc.lulumea.com
ciqnp.lulumea.com
www.kultify.app
lulumea.com
sni.cloudflaressl.com
sbuat.lulumea.com
2fa.lulumea.com
*.lulumea.com
ucr.lulumea.com
incapsula.com
incapsula.com
nathanssweets.co.in
lulumea.com
sni.cloudflaressl.com
applinksstg.lulumea.com
cpg.lulumea.com
lulumea.com
sni.cloudflaressl.com
cpg.lulumea.com
made4families.shop
incapsula.com
incapsula.com
sni.cloudflaressl.com
incapsula.com
incapsula.com
vds.lulumea.com
dev.domainplug.io
qmms.lulumea.com
cpg.lulumea.com
sni.cloudflaressl.com
lulumea.com
vds.lulumea.com
sb.lulumea.com
vc.lulumea.com
incapsula.com
jesusfireministries.in
lulumea.com
lulumea.com
sni.cloudflaressl.com
fs.lulumea.com
stghybris.lulumea.com
incapsula.com
lulumea.com
incapsula.com
thepub.tresastronautas.com
admecloud.com
sbuat.lulumea.com
sni.cloudflaressl.com
ssl366447.cloudflaressl.com
lulumea.com
expo.staging.properati.com.co
sni.cloudflaressl.com
incapsula.com
incapsula.com
incapsula.com
vds.lulumea.com
mdm.lulumea.com
vds.lulumea.com
admin.chronox.io
sni.cloudflaressl.com
vds.lulumea.com
stghybris.lulumea.com
incapsula.com
vc.lulumea.com
incapsula.com
incapsula.com
sni.cloudflaressl.com
demo6.platform.fit
incapsula.com
2fa.connect.lulumea.com
incapsula.com
lulumea.com
sni.cloudflaressl.com
admin.articwise.pt
mdm.lulumea.com
*.lulumea.com
incapsula.com
incapsula.com
incapsula.com
ucr.lulumea.com
sni.cloudflaressl.com
lulumea.com
incapsula.com
lulumea.com
ssl366448.cloudflaressl.com
uc.lulumea.com
ciqnp.lulumea.com
www.kultify.app
lulumea.com
sni.cloudflaressl.com
sbuat.lulumea.com
2fa.lulumea.com
*.lulumea.com
ucr.lulumea.com
incapsula.com
incapsula.com
nathanssweets.co.in
lulumea.com
sni.cloudflaressl.com
applinksstg.lulumea.com
cpg.lulumea.com
lulumea.com
sni.cloudflaressl.com
cpg.lulumea.com
made4families.shop
incapsula.com
incapsula.com
sni.cloudflaressl.com
incapsula.com
incapsula.com
vds.lulumea.com
dev.domainplug.io
qmms.lulumea.com
cpg.lulumea.com
sni.cloudflaressl.com
lulumea.com
vds.lulumea.com
sb.lulumea.com
vc.lulumea.com
incapsula.com
jesusfireministries.in
lulumea.com
lulumea.com
sni.cloudflaressl.com
fs.lulumea.com
stghybris.lulumea.com
incapsula.com
lulumea.com
incapsula.com
thepub.tresastronautas.com
admecloud.com
sbuat.lulumea.com
sni.cloudflaressl.com
ssl366447.cloudflaressl.com
lulumea.com
expo.staging.properati.com.co
sni.cloudflaressl.com
incapsula.com
incapsula.com
incapsula.com
vds.lulumea.com
mdm.lulumea.com
vds.lulumea.com
admin.chronox.io
sni.cloudflaressl.com
vds.lulumea.com
stghybris.lulumea.com
incapsula.com
Certificate
The complete raw certificate details for lulumea.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGtjCCBZ6gAwIBAgIJANM1gEztTNKOMA0GCSqGSIb3DQEBCwUAMIHGMQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEl MCMGA1UEChMcU3RhcmZpZWxkIFRlY2hub2xvZ2llcywgSW5jLjEzMDEGA1UECxMq aHR0cDovL2NlcnRzLnN0YXJmaWVsZHRlY2guY29tL3JlcG9zaXRvcnkvMTQwMgYD VQQDEytTdGFyZmllbGQgU2VjdXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcy MB4XDTI0MDExOTE0MzI1MloXDTI1MDExOTE0MzI1MlowFjEUMBIGA1UEAxMLbHVs dW1lYS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCObEFUeKV eRIgdBfUAMpftrTBbDpZlSCxKidqpoiu47OTmZW/5qGeH3DLQV6eeb5cGjSyCkeE K6OXdPc8J0ohUX+LApDUMUBptYbn+pkSYJNJiIanVCaRGvyrQyJozH2XaLxDlLd6 fXIvBlxGqA1GNo4XR4BFN3tso5DG0B8frdg2rdTGRInZql4zn6fB+R9k2wYFHzfP yGYnTXI8t4HVqXIclIhgDXa5+QZnjKcLtgc4XrWep45bX60keXAxtjx1OIXcKIPS fTqxK4JqxQUKuFHyOetNhaSp2ti8DW4sfI/mm0YIXmdEN7WGh02IJjt7HTXYs+aR 4NJTf+048jy3AgMBAAGjggNUMIIDUDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAOBgNVHQ8BAf8EBAMCBaAwPQYDVR0fBDYwNDAy oDCgLoYsaHR0cDovL2NybC5zdGFyZmllbGR0ZWNoLmNvbS9zZmlnMnMxLTY2Ny5j cmwwYwYDVR0gBFwwWjBOBgtghkgBhv1uAQcXATA/MD0GCCsGAQUFBwIBFjFodHRw Oi8vY2VydGlmaWNhdGVzLnN0YXJmaWVsZHRlY2guY29tL3JlcG9zaXRvcnkvMAgG BmeBDAECATCBggYIKwYBBQUHAQEEdjB0MCoGCCsGAQUFBzABhh5odHRwOi8vb2Nz cC5zdGFyZmllbGR0ZWNoLmNvbS8wRgYIKwYBBQUHMAKGOmh0dHA6Ly9jZXJ0aWZp Y2F0ZXMuc3RhcmZpZWxkdGVjaC5jb20vcmVwb3NpdG9yeS9zZmlnMi5jcnQwHwYD VR0jBBgwFoAUJUWBaFAmOD07LSy+zWrZtj2zZmMwJwYDVR0RBCAwHoILbHVsdW1l YS5jb22CD3d3dy5sdWx1bWVhLmNvbTAdBgNVHQ4EFgQUQZPZoO5HLM3ahbgEAkeY W+50BdIwggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB2AE51oydcmhDDOFts1N8/ Uusd8OCOG41pwLH6ZLFimjnfAAABjSIjkoQAAAQDAEcwRQIgWQkPXuD+5EQUxW3q b7mfGhaaeeAPGMps/VkzNlSHE+sCIQD9ZAivqPDkZxh81iT2PVWGY+8Tt8MAkVdB bKJqEEF6egB1AH1ZHhLheCp7HGFnfF79+NCHXBSgTpWeuQMv2Q6MLnm4AAABjSIj kycAAAQDAEYwRAIgD1qURtLIwSqp7AaK2dCQlmG8klba1LdfOWATaII+IBYCIDU7 S1uDYNbUfwrbjx3wknCep39Ydwi0NogXseKtl19cAHYA5tIxY0B3jMEQQQbXcbnO wdJA9paEhvu6hzId/R43jlAAAAGNIiOT7AAABAMARzBFAiBmZpi7aDjAcn9Lo9l6 ioZ51BgHfwvrpl2BNxG8pNBaYgIhAPeAMosxPkn6mtYBHOcoFl8fIJc4PZL7BIGg 1epuYA+dMA0GCSqGSIb3DQEBCwUAA4IBAQBC4ReIfeyf72YND84FRPmSxngYQFQb O35FcR3+NSDN/HcMfm+ya4DJ87NwCTqCp/zTQb3U/z5LelexEAj5JBrngpOhvxt5 HWxBBZRXyvTJKi/CYZXGTtx4+/PvXdePIbLbpggGuj+O1tt0D8kMRIzSrj4pQohv vrnkMA09XuMCiblNJ3Il7G4M9mwgytegq8NiIT7wNnk33aJqm3SvdOwSloDSLV2g iwsFqT91bDfRQ4PDkDs8oGwXFlIj05ptU2JxPkq+B1Y4eiO+za79xvefOo0hCnlO UneD7oeBj/2Ljh3KGNIgOgBmdCAS7pJu4GIhedeXiRwvaug2BHb/k2uJ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwjmxBVHilXkSIHQX1ADK X7a0wWw6WZUgsSonaqaIruOzk5mVv+ahnh9wy0Fennm+XBo0sgpHhCujl3T3PCdK IVF/iwKQ1DFAabWG5/qZEmCTSYiGp1QmkRr8q0MiaMx9l2i8Q5S3en1yLwZcRqgN RjaOF0eARTd7bKOQxtAfH63YNq3UxkSJ2apeM5+nwfkfZNsGBR83z8hmJ01yPLeB 1alyHJSIYA12ufkGZ4ynC7YHOF61nqeOW1+tJHlwMbY8dTiF3CiD0n06sSuCasUF CrhR8jnrTYWkqdrYvA1uLHyP5ptGCF5nRDe1hodNiCY7ex012LPmkeDSU3/tOPI8 twIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15219211583655563918 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Technologies, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.starfieldtech.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-19 14:32:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-19 14:32:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lulumea.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24518679896163270913616287907705949597254034266081409353222065478154869307607680901334663961395437419997053098444155951748997907928498647441669155186781228489175285541273580433396526040647537573185905017767403207156856337469560060087996893214916199836022190632786214511262937010056918292740247048265809676969900726751976894712460632862164152864111266061474108383697329984980067266623227862958104367577413485516004035963678620995959625611627716752459940008355906754285191252389675631511518054857929789826623762555634569640230253640018551452934128705891803368462421297588347893065091855877027311465086549211535461465271 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.starfieldtech.com/sfig2s1-667.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114414.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.starfieldtech.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.starfieldtech.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.starfieldtech.com/repository/sfig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 254581685026383d3b2d2cbecd6ad9b63db36663 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lulumea.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lulumea.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4193d9a0ee472ccdda85b8040247985bee7405d2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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