handem.com
Issued by R3
About this certificate
This digital certificate with serial number 04:3f:81:d7:9e:7a:85:74:52:8f:15:97:07:52:b2:cb:09:97 was issued on by Let's Encrypt.
With 100 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=handem.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:3f:81:d7:9e:7a:85:74:52:8f:15:97:07:52:b2:cb:09:97Serial Number (int): 370059522812668804255511905525121141115287
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d5:f0:bf:ae:a5:a1:ef:a3:99:40:bb:d5:2b:d8:9e:64:b5:f0:1c:3c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0c:9f:d3:ef:ef:e8:ef:a0:cc:4a:f8:2a:4d:40:40:f9:b2:fa:b8:b2
Fingerprint (sha256): bd:ac:ba:2a:b3:ab:7f:9e:99:67:0e:17:72:f3:c9:11:ff:c9:13:53:d3:3d:bb:59:77:8a:02:14:15:1b:53:30
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate handem.com
100
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for handem.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.6502.com
*.belledujour.com
*.bioliefprints.com
*.boniu.info
*.bricklink.cm
*.cheeschineserestaurant.com
*.chimeng.com
*.cisha.com
*.contexto.com
*.daisuki.com
*.dewwater.com
*.dinoslive.com
*.dutchmaster.com.au
*.euskotren.com
*.gmailhangout.com
*.grannyjam.com
*.grilldogs.com
*.handem.com
*.houblon.com
*.how-to-root.com
*.joshuajackson.com
*.kenney.org
*.kintzer.com
*.kitchenary.com
*.kmrdrivingschool.com
*.krois.com
*.lajkovi.com
*.laparada.com
*.latutela.com
*.leschenes.com
*.marrada.com
*.melillos.com
*.mobiloabs.com
*.mr-3.com
*.ndoye.com
*.obfirefighting.com
*.pentique.com
*.plesha.com
*.precisio.com
*.redashiwo.com
*.rmaarp.com
*.rujiao.com
*.scheumann.com
*.semaforo.net
*.smokymountainiot.com
*.sonhacomigo.com
*.statmodel2.com
*.subwa.com
*.theluxurynetwork.com
*.watchcars.com
6502.com
belledujour.com
bioliefprints.com
boniu.info
bricklink.cm
cheeschineserestaurant.com
chimeng.com
cisha.com
contexto.com
daisuki.com
dewwater.com
dinoslive.com
dutchmaster.com.au
euskotren.com
gmailhangout.com
grannyjam.com
grilldogs.com
handem.com
houblon.com
how-to-root.com
joshuajackson.com
kenney.org
kintzer.com
kitchenary.com
kmrdrivingschool.com
krois.com
lajkovi.com
laparada.com
latutela.com
leschenes.com
marrada.com
melillos.com
mobiloabs.com
mr-3.com
ndoye.com
obfirefighting.com
pentique.com
plesha.com
precisio.com
redashiwo.com
rmaarp.com
rujiao.com
scheumann.com
semaforo.net
smokymountainiot.com
sonhacomigo.com
statmodel2.com
subwa.com
theluxurynetwork.com
watchcars.com
*.belledujour.com
*.bioliefprints.com
*.boniu.info
*.bricklink.cm
*.cheeschineserestaurant.com
*.chimeng.com
*.cisha.com
*.contexto.com
*.daisuki.com
*.dewwater.com
*.dinoslive.com
*.dutchmaster.com.au
*.euskotren.com
*.gmailhangout.com
*.grannyjam.com
*.grilldogs.com
*.handem.com
*.houblon.com
*.how-to-root.com
*.joshuajackson.com
*.kenney.org
*.kintzer.com
*.kitchenary.com
*.kmrdrivingschool.com
*.krois.com
*.lajkovi.com
*.laparada.com
*.latutela.com
*.leschenes.com
*.marrada.com
*.melillos.com
*.mobiloabs.com
*.mr-3.com
*.ndoye.com
*.obfirefighting.com
*.pentique.com
*.plesha.com
*.precisio.com
*.redashiwo.com
*.rmaarp.com
*.rujiao.com
*.scheumann.com
*.semaforo.net
*.smokymountainiot.com
*.sonhacomigo.com
*.statmodel2.com
*.subwa.com
*.theluxurynetwork.com
*.watchcars.com
6502.com
belledujour.com
bioliefprints.com
boniu.info
bricklink.cm
cheeschineserestaurant.com
chimeng.com
cisha.com
contexto.com
daisuki.com
dewwater.com
dinoslive.com
dutchmaster.com.au
euskotren.com
gmailhangout.com
grannyjam.com
grilldogs.com
handem.com
houblon.com
how-to-root.com
joshuajackson.com
kenney.org
kintzer.com
kitchenary.com
kmrdrivingschool.com
krois.com
lajkovi.com
laparada.com
latutela.com
leschenes.com
marrada.com
melillos.com
mobiloabs.com
mr-3.com
ndoye.com
obfirefighting.com
pentique.com
plesha.com
precisio.com
redashiwo.com
rmaarp.com
rujiao.com
scheumann.com
semaforo.net
smokymountainiot.com
sonhacomigo.com
statmodel2.com
subwa.com
theluxurynetwork.com
watchcars.com
Other certificates including the domain name handem.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for handem.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIMTzCCCzegAwIBAgISBD+B1556hXRSjxWXB1KyywmXMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAzMTkwNzEwNDZaFw0yMzA2MTcwNzEwNDVaMBUxEzARBgNVBAMT CmhhbmRlbS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC1K7T0 lwdqOUxkt30TkfYpIPG3aNvc4u04fL4SMLpcUYLLL+SIa/RB9jAjo7wnOo0VMfUS CfnJF7miseTdkVGWfb+hmka7MH5Il11+niz1yDEh7J32ZTm63FY53ycrAZaVEHW2 wMPvcUTn3PJMP6zJ5nOCoBJFlKHqqqDEanaX70m0jzV802jkPj8gao0/BqekaA+0 M07hB7T2S545pVefMztrP9KZE2buZ+/6QxukWAmXfiLYIGiTfUUn3DCnYP0MEB3q QZP/D4QiFJDwXdjsg84C5k3uNMdd59m6u+L7LsEo0yUN6CKFZeAn+s/A4AU0+9FU 7XkRHEJBzS1bFYwykYQEdVPEYzn/35A9ycNMuYMDliQHkEsaZsIXqX69cqlOHpQ0 JmurA1Su1ACME9Fhsj2M/F1+Hqpz2wJEZzUaZaocw4yz2wB90iZf82te+wE2RnT+ IKDgVSrVtRsSp7nMrpiKTmIdbwwnZUBj+iCU4xeOyBAECogMqV30Qw97Bl/kQhKV 0lUvXrE82PMHqNSXUZm5PxyL+zdx4QFj/Ajx/krwzoufUEwWSKkRt2O5GNKQQoTR lCkGMlaUrsH93H58kJ9HsI2kp13gZLtyLY2mh6Mx/mWC9dvmpWWY5Bid+dq0IEGs e5amOJhU5gBryqwbFy9PmKCkDvX+k6Ie0+VIFwIDAQABo4IIejCCCHYwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBTV8L+upaHvo5lAu9Ur2J5ktfAcPDAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzCCBkkGA1UdEQSCBkAwggY8ggoqLjY1MDIuY29tghEqLmJl bGxlZHVqb3VyLmNvbYITKi5iaW9saWVmcHJpbnRzLmNvbYIMKi5ib25pdS5pbmZv gg4qLmJyaWNrbGluay5jbYIcKi5jaGVlc2NoaW5lc2VyZXN0YXVyYW50LmNvbYIN Ki5jaGltZW5nLmNvbYILKi5jaXNoYS5jb22CDiouY29udGV4dG8uY29tgg0qLmRh aXN1a2kuY29tgg4qLmRld3dhdGVyLmNvbYIPKi5kaW5vc2xpdmUuY29tghQqLmR1 dGNobWFzdGVyLmNvbS5hdYIPKi5ldXNrb3RyZW4uY29tghIqLmdtYWlsaGFuZ291 dC5jb22CDyouZ3Jhbm55amFtLmNvbYIPKi5ncmlsbGRvZ3MuY29tggwqLmhhbmRl bS5jb22CDSouaG91Ymxvbi5jb22CESouaG93LXRvLXJvb3QuY29tghMqLmpvc2h1 YWphY2tzb24uY29tggwqLmtlbm5leS5vcmeCDSoua2ludHplci5jb22CECoua2l0 Y2hlbmFyeS5jb22CFioua21yZHJpdmluZ3NjaG9vbC5jb22CCyoua3JvaXMuY29t gg0qLmxhamtvdmkuY29tgg4qLmxhcGFyYWRhLmNvbYIOKi5sYXR1dGVsYS5jb22C DyoubGVzY2hlbmVzLmNvbYINKi5tYXJyYWRhLmNvbYIOKi5tZWxpbGxvcy5jb22C DyoubW9iaWxvYWJzLmNvbYIKKi5tci0zLmNvbYILKi5uZG95ZS5jb22CFCoub2Jm aXJlZmlnaHRpbmcuY29tgg4qLnBlbnRpcXVlLmNvbYIMKi5wbGVzaGEuY29tgg4q LnByZWNpc2lvLmNvbYIPKi5yZWRhc2hpd28uY29tggwqLnJtYWFycC5jb22CDCou cnVqaWFvLmNvbYIPKi5zY2hldW1hbm4uY29tgg4qLnNlbWFmb3JvLm5ldIIWKi5z bW9reW1vdW50YWluaW90LmNvbYIRKi5zb25oYWNvbWlnby5jb22CECouc3RhdG1v ZGVsMi5jb22CCyouc3Vid2EuY29tghYqLnRoZWx1eHVyeW5ldHdvcmsuY29tgg8q LndhdGNoY2Fycy5jb22CCDY1MDIuY29tgg9iZWxsZWR1am91ci5jb22CEWJpb2xp ZWZwcmludHMuY29tggpib25pdS5pbmZvggxicmlja2xpbmsuY22CGmNoZWVzY2hp bmVzZXJlc3RhdXJhbnQuY29tggtjaGltZW5nLmNvbYIJY2lzaGEuY29tggxjb250 ZXh0by5jb22CC2RhaXN1a2kuY29tggxkZXd3YXRlci5jb22CDWRpbm9zbGl2ZS5j b22CEmR1dGNobWFzdGVyLmNvbS5hdYINZXVza290cmVuLmNvbYIQZ21haWxoYW5n b3V0LmNvbYINZ3Jhbm55amFtLmNvbYINZ3JpbGxkb2dzLmNvbYIKaGFuZGVtLmNv bYILaG91Ymxvbi5jb22CD2hvdy10by1yb290LmNvbYIRam9zaHVhamFja3Nvbi5j b22CCmtlbm5leS5vcmeCC2tpbnR6ZXIuY29tgg5raXRjaGVuYXJ5LmNvbYIUa21y ZHJpdmluZ3NjaG9vbC5jb22CCWtyb2lzLmNvbYILbGFqa292aS5jb22CDGxhcGFy YWRhLmNvbYIMbGF0dXRlbGEuY29tgg1sZXNjaGVuZXMuY29tggttYXJyYWRhLmNv bYIMbWVsaWxsb3MuY29tgg1tb2JpbG9hYnMuY29tgghtci0zLmNvbYIJbmRveWUu Y29tghJvYmZpcmVmaWdodGluZy5jb22CDHBlbnRpcXVlLmNvbYIKcGxlc2hhLmNv bYIMcHJlY2lzaW8uY29tgg1yZWRhc2hpd28uY29tggpybWFhcnAuY29tggpydWpp YW8uY29tgg1zY2hldW1hbm4uY29tggxzZW1hZm9yby5uZXSCFHNtb2t5bW91bnRh aW5pb3QuY29tgg9zb25oYWNvbWlnby5jb22CDnN0YXRtb2RlbDIuY29tgglzdWJ3 YS5jb22CFHRoZWx1eHVyeW5ldHdvcmsuY29tgg13YXRjaGNhcnMuY29tMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDv AHUAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGG+OvGMAAABAMA RjBEAiBxbIjKdYBQVFygd2DeoWPMzeT9faru6KgQCSjPwi7v6gIgDZMtVQTrEBtE U+M4aRG8fnhIs4i45EHOYn2WKPpquZUAdgC3Pvsk35xNunXyOcW6WPRsXfxCz3qf NcSeHQmBJe20mQAAAYb468YiAAAEAwBHMEUCIF/KD5dZ2iF1Gm94DU5z8ERj7b88 ZkkPQ/fMSO/HCoQkAiEArEeywIZnD9jX2EtYxTGUL2vILMid8uFJMUNM0liku/Iw DQYJKoZIhvcNAQELBQADggEBAEB6shUgFFtHStto7tsZJJx1+iIe25c26yWHp3XR 8HDfxLn/oefiykYpJgzDgRXt1xT9VW5pCbgce2azMLrOmzwTALAUO5BW8xxrrUHl PiTKfabEfTQOoTPE0Ku5LLFJfeUi/eSrVdJgx29qDEsZWltA9oaNHmytVxqWu8Hq BhZg+UhUG3F7BsA6VzWm4NgvRGTTOF5CxJmxWHnZ83jYiNDCmBz6P5AbSETGuiP9 fFPr46S9uzDqS02BhiKbnfCkYU8AT6dlyyFZkahg02Htp8PA0ClqOBJqahqinXoH Hj6wQd0QqZO5TM8DcVaKd1dfcfTUPuXS0xTqg3ZkKVR1hM8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtSu09JcHajlMZLd9E5H2 KSDxt2jb3OLtOHy+EjC6XFGCyy/kiGv0QfYwI6O8JzqNFTH1Egn5yRe5orHk3ZFR ln2/oZpGuzB+SJddfp4s9cgxIeyd9mU5utxWOd8nKwGWlRB1tsDD73FE59zyTD+s yeZzgqASRZSh6qqgxGp2l+9JtI81fNNo5D4/IGqNPwanpGgPtDNO4Qe09kueOaVX nzM7az/SmRNm7mfv+kMbpFgJl34i2CBok31FJ9wwp2D9DBAd6kGT/w+EIhSQ8F3Y 7IPOAuZN7jTHXefZurvi+y7BKNMlDegihWXgJ/rPwOAFNPvRVO15ERxCQc0tWxWM MpGEBHVTxGM5/9+QPcnDTLmDA5YkB5BLGmbCF6l+vXKpTh6UNCZrqwNUrtQAjBPR YbI9jPxdfh6qc9sCRGc1GmWqHMOMs9sAfdImX/NrXvsBNkZ0/iCg4FUq1bUbEqe5 zK6Yik5iHW8MJ2VAY/oglOMXjsgQBAqIDKld9EMPewZf5EISldJVL16xPNjzB6jU l1GZuT8ci/s3ceEBY/wI8f5K8M6Ln1BMFkipEbdjuRjSkEKE0ZQpBjJWlK7B/dx+ fJCfR7CNpKdd4GS7ci2NpoejMf5lgvXb5qVlmOQYnfnatCBBrHuWpjiYVOYAa8qs GxcvT5igpA71/pOiHtPlSBcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 370059522812668804255511905525121141115287 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-19 07:10:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-17 07:10:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'handem.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 739112093579181118649932514032485644626206135794599541757297704405417111181016873814488453131325237474652478610853972004115752337283631790365985119086672591710023252054368595009480361486889738130180232491416470090246125543231609099736643060877251149008326651950977308601129241096321274089821592335365740601052833830266280609500601629730012604614174862873131276654222053594841355348615053596390270133445550415757296909074326499593105718326624330277286795178286852688646213361952064423557026429524317032505822312220896257023733646043246220351369266466926021007866798409742247192838882922379418708594533237360778521134210722450351243510393192185610265346928001052114599457985767084024301469233058468922755564388133604450501254220984687781543880401535346790238112824493916021402623559231139632423316241038456976883941756158475378742259998321126137654182537271631926845187670494303775384762756254076890287315616494364501122809001256474669721040828121631676763177254052555137908761314043673629481909192550862661372967089767370338550520926502599658208390302144668922412205756053388814986957202509408839948156172144445062509528374692064244880145533197434937480380653346711085304909417347182041906054950420758268102066490861629571054231177239 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d5f0bfaea5a1efa39940bbd52bd89e64b5f01c3c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1600 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.6502.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.belledujour.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bioliefprints.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.boniu.info' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bricklink.cm' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cheeschineserestaurant.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.chimeng.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cisha.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.contexto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.daisuki.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dewwater.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dinoslive.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dutchmaster.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.euskotren.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gmailhangout.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.grannyjam.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.grilldogs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.handem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.houblon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.how-to-root.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.joshuajackson.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kenney.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kintzer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kitchenary.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kmrdrivingschool.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.krois.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lajkovi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.laparada.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.latutela.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.leschenes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.marrada.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.melillos.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mobiloabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mr-3.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ndoye.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.obfirefighting.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pentique.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.plesha.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.precisio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.redashiwo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rmaarp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rujiao.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.scheumann.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.semaforo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.smokymountainiot.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sonhacomigo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.statmodel2.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.subwa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.theluxurynetwork.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.watchcars.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '6502.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'belledujour.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bioliefprints.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'boniu.info' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bricklink.cm' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cheeschineserestaurant.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chimeng.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cisha.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'contexto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daisuki.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dewwater.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dinoslive.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dutchmaster.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'euskotren.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gmailhangout.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'grannyjam.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'grilldogs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'handem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'houblon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'how-to-root.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'joshuajackson.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kenney.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kintzer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kitchenary.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kmrdrivingschool.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'krois.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lajkovi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'laparada.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'latutela.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'leschenes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marrada.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'melillos.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mobiloabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mr-3.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ndoye.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'obfirefighting.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pentique.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plesha.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'precisio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redashiwo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rmaarp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rujiao.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scheumann.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'semaforo.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smokymountainiot.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sonhacomigo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'statmodel2.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'subwa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'theluxurynetwork.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'watchcars.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000186f8ebc63000000403004630440220716c88ca758050545ca07760dea163cccde4fd7daaeee8a8100928cfc22eefea02200d932d5504eb101b4453e3386911bc7e7848b388b8e441ce627d9628fa6ab995007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000186f8ebc622000004030047304502205fca0f9759da21751a6f780d4e73f04463edbf3c66490f43f7cc48efc70a8424022100ac47b2c086670fd8d7d84b58c531942f6bc82cc89df2e14931434cd258a4bbf2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00407ab21520145b474adb68eedb19249c75fa221edb9736eb2587a775d1f070dfc4b9ffa1e7e2ca4629260cc38115edd714fd556e6909b81c7b66b330bace9b3c1300b0143b9056f31c6bad41e53e24ca7da6c47d340ea133c4d0abb92cb1497de522fde4ab55d260c76f6a0c4b195a5b40f6868d1e6cad571a96bbc1ea061660f948541b717b06c03a5735a6e0d82f4464d3385e42c499b15879d9f378d888d0c2981cfa3f901b4844c6ba23fd7c53ebe3a4bdbb30ea4b4d8186229b9df0a4614f004fa765cb215991a860d361eda7c3c0d0296a38126a6a1aa29d7a071e3eb041dd10a993b94ccf0371568a77575f71f4d43ee5d2d314ea83766429547584cf