kurzy.satomar.cz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:61:6e:c7:79:72:f5:65:54:40:8a:1d:b0:6f:31:0b:e4:0a was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=kurzy.satomar.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:61:6e:c7:79:72:f5:65:54:40:8a:1d:b0:6f:31:0b:e4:0aSerial Number (int): 294491498196502478967798126663056266880010
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 89:d5:c8:27:34:f4:c9:6f:0d:22:0d:c9:f8:7c:e1:fd:6a:3e:78:14
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 73:7a:83:dc:be:36:e4:19:76:73:46:e3:90:36:3a:77:3d:5c:38:cd
Fingerprint (sha256): bf:f1:a6:74:9a:69:4a:02:6d:b1:15:e2:60:3f:8c:f0:d4:83:eb:a0:dc:38:43:7a:9b:c5:ca:fe:38:a6:9d:73
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate kurzy.satomar.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kurzy.satomar.cz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kurzy.satomar.cz
www.kurzy.satomar.cz
www.kurzy.satomar.cz
Other certificates including the domain name satomar.cz
(limited to 100 certificates)
kurzy.satomar.cz
satomar.cz
katalog.satomar.cz
katalog.satomar.cz
s2111.websignal.eu
superveci.cz
kurzy.satomar.cz
s2111.websignal.eu
s2111.websignal.eu
kurzy.satomar.cz
s2111.websignal.eu
s2111.websignal.eu
shop.satomar.cz
satomar.cz
satomar.cz
katalog.satomar.cz
satomar.cz
s2111.websignal.eu
shop.satomar.cz
shop.satomar.cz
s2111.websignal.eu
katalog.satomar.cz
satomar.cz
s2111.websignal.eu
shop.satomar.cz
kurzy.satomar.cz
satomar.cz
satomar.cz
shop.satomar.cz
katalog.satomar.cz
kurzy.satomar.cz
shop.satomar.cz
katalog.satomar.cz
touchcentrum.cz
katalog.satomar.cz
katalog.satomar.cz
katalog.satomar.cz
satomar.cz
satomar.cz
shop.satomar.cz
s2111.websignal.eu
shop.satomar.cz
katalog.satomar.cz
s2111.websignal.eu
satomar.cz
s2111.websignal.eu
s2111.websignal.eu
kurzy.satomar.cz
shop.satomar.cz
satomar.cz
satomar.cz
shop.satomar.cz
satomar.cz
satomar.cz
satomar.cz
satomar.cz
satomar.cz
satomar.cz
s2111.websignal.eu
shop.satomar.cz
shop.satomar.cz
touchcentrum.cz
satomar.cz
satomar.cz
satomar.cz
satomar.cz
s2111.websignal.eu
s2111.websignal.eu
s2111.websignal.eu
shop.satomar.cz
satomar.cz
satomar.cz
satomar.cz
katalog.satomar.cz
katalog.satomar.cz
s2111.websignal.eu
superveci.cz
kurzy.satomar.cz
s2111.websignal.eu
s2111.websignal.eu
kurzy.satomar.cz
s2111.websignal.eu
s2111.websignal.eu
shop.satomar.cz
satomar.cz
satomar.cz
katalog.satomar.cz
satomar.cz
s2111.websignal.eu
shop.satomar.cz
shop.satomar.cz
s2111.websignal.eu
katalog.satomar.cz
satomar.cz
s2111.websignal.eu
shop.satomar.cz
kurzy.satomar.cz
satomar.cz
satomar.cz
shop.satomar.cz
katalog.satomar.cz
kurzy.satomar.cz
shop.satomar.cz
katalog.satomar.cz
touchcentrum.cz
katalog.satomar.cz
katalog.satomar.cz
katalog.satomar.cz
satomar.cz
satomar.cz
shop.satomar.cz
s2111.websignal.eu
shop.satomar.cz
katalog.satomar.cz
s2111.websignal.eu
satomar.cz
s2111.websignal.eu
s2111.websignal.eu
kurzy.satomar.cz
shop.satomar.cz
satomar.cz
satomar.cz
shop.satomar.cz
satomar.cz
satomar.cz
satomar.cz
satomar.cz
satomar.cz
satomar.cz
s2111.websignal.eu
shop.satomar.cz
shop.satomar.cz
touchcentrum.cz
satomar.cz
satomar.cz
satomar.cz
satomar.cz
s2111.websignal.eu
s2111.websignal.eu
s2111.websignal.eu
shop.satomar.cz
satomar.cz
satomar.cz
Certificate
The complete raw certificate details for kurzy.satomar.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGTCCBQGgAwIBAgISA2Fux3ly9WVUQIodsG8xC+QKMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzEyMDEwMjQxMThaFw0x ODAzMDEwMjQxMThaMBsxGTAXBgNVBAMTEGt1cnp5LnNhdG9tYXIuY3owggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDQ+Y4UqBKNGxBegWgsYJ4u5rg9nqss IEcD+ppQtWp9LBNVHVkNcJfZWVgWz0H7w1Byoo+yWbl9pxksa5j87Ypyc1mGwSuu HTNrQB5VDWKFK8Lazibr0xzugXl4efo8xAAYEKH40wppspgu4wcC8RxO68xnLDWT qHC+yFvaw2PV3k/XnFmiV6X8gbWWCedQEK63gnB/71d9sAxjHW/MfLLKBdr54vxw N3Mg3k9xqvwzRSn5iYLv0PsA1KVdAa3Ud2V24IPb8h+8I4ahyvbZLLaop0U341FZ NbGVFrTNkr5sMy6AOSdpZPTlsaLF/Eb88Uk9SF1XQi9oSxEmJhLExw0R6dpqJze8 4tIk3VsQ9M1Ygt8BW2vq8LfNtIJFxbYLl0jNqLVmdKO/ZvAxLlTYURpTeqr4mPVB OPevlvrfG1mn1HjQPH3MIzRKfZ8qtSpDY8XhjP6iEtD438hxlCj5T/2Tc+d2xaqC Pyd+VXGVZj//W/XlG8EbPC9XdzGOom7JqWfViPE0KEfMOMdt1mVtEYaj+ejIsKXd 3lKtZQenXqo+u4Btudp66/MUShXyhze0Yw0scOPlxDskpEwS/tIF/BH+0QUkA6g9 dZQpFmg7HhvOnc5XrZs2bR5SYcyIxgOLXW7jIxJX6fMm7LtuZ/QIRFFvDjNoEWYt vtD7Of7HcS+8mQIDAQABo4ICJjCCAiIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSJ 1cgnNPTJbw0iDcn4fOH9aj54FDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMDEGA1UdEQQqMCiCEGt1cnp5LnNhdG9tYXIu Y3qCFHd3dy5rdXJ6eS5zYXRvbWFyLmN6MIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIB MIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRz ZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBt YXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9u bHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91 bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZI hvcNAQELBQADggEBAI32//hl7ldljnQdo2dysGFAyNvcdzAU4fc8XKdL7rxIS3qi zvQz2RoJ/bMPOfS7DLPn/YQg5A+0QrKETrY/d1zHSX8hpmIPLxPZUoQxg12r2zYc qYFNCeHd2UKlwxqvytgOBmH23Rigmt++7BUBDJORkQOmQN1RxRFYsuuOudZthPbO tXhSP4Lli4T6t2gotMxSQgd2rWaq1o8xxrsyHZE8IsDy7dltBwCHsl2jZPIQvcJA VMX/GH71oX4MaZksVaHqhmqtn3hm5iYpRmtkMy+AWv8yDspCyMPTVRIUmM2QPn3Y VPYMYCkZ/9EheHpNAAKQBiUefQuooAHkmdI91wE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0PmOFKgSjRsQXoFoLGCe Lua4PZ6rLCBHA/qaULVqfSwTVR1ZDXCX2VlYFs9B+8NQcqKPslm5facZLGuY/O2K cnNZhsErrh0za0AeVQ1ihSvC2s4m69Mc7oF5eHn6PMQAGBCh+NMKabKYLuMHAvEc TuvMZyw1k6hwvshb2sNj1d5P15xZolel/IG1lgnnUBCut4Jwf+9XfbAMYx1vzHyy ygXa+eL8cDdzIN5Pcar8M0Up+YmC79D7ANSlXQGt1HdlduCD2/IfvCOGocr22Sy2 qKdFN+NRWTWxlRa0zZK+bDMugDknaWT05bGixfxG/PFJPUhdV0IvaEsRJiYSxMcN Eenaaic3vOLSJN1bEPTNWILfAVtr6vC3zbSCRcW2C5dIzai1ZnSjv2bwMS5U2FEa U3qq+Jj1QTj3r5b63xtZp9R40Dx9zCM0Sn2fKrUqQ2PF4Yz+ohLQ+N/IcZQo+U/9 k3PndsWqgj8nflVxlWY//1v15RvBGzwvV3cxjqJuyaln1YjxNChHzDjHbdZlbRGG o/noyLCl3d5SrWUHp16qPruAbbnaeuvzFEoV8oc3tGMNLHDj5cQ7JKRMEv7SBfwR /tEFJAOoPXWUKRZoOx4bzp3OV62bNm0eUmHMiMYDi11u4yMSV+nzJuy7bmf0CERR bw4zaBFmLb7Q+zn+x3EvvJkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 294491498196502478967798126663056266880010 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-01 02:41:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-01 02:41:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kurzy.satomar.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 852542902032498997331067431990868370419535893766857068279661309054897154709277314392815867467541747827642662839168639969399278237423583001762140672684022261175923071158233704784372352930496852351275625972558914766528562834420979590993122900444881064651618304864674138405558918683580482260240810412163838633153333101220794999931210763656668775385461555068582981729726398766942883521601824741469182670822469499369181637002179324663713107825055236337567052572758966154035326195078753932540142013540378586267135509827330634632755713640736712520173064057827425238662473237856667209327581691225792756573141973281908626339366899881834231140798773793711549271167802660190628440978404038952168066761951891602344379249162663685771455899810859548070035193294388043524793887771639683312519263627371794769616688995066871041583756479101848870154289879444961699544755210477263721337805476146144185428659021307815885159672478587294253849379509299502118907217298463207408560886264884360348534975185314362686284723661572544454616734233226707992919874287840530807903064601980711952896186088132068977695286292192375107475858360962479612207162165100716670161406354547619201256939322146400680297505169519443256361682791260115664948297696519435699992116377 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 89d5c82734f4c96f0d220dc9f87ce1fd6a3e7814 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kurzy.satomar.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kurzy.satomar.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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