act.gavinnewsom.com
Issued by R3
About this certificate
This digital certificate with serial number 04:af:0d:b9:18:46:61:28:4a:44:05:3d:e7:a9:af:d8:25:92 was issued on by Let's Encrypt.
With 90 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=act.gavinnewsom.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:af:0d:b9:18:46:61:28:4a:44:05:3d:e7:a9:af:d8:25:92Serial Number (int): 408016798969423121159379106849435785110930
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 62:0c:55:d0:e2:f2:e7:8e:88:92:19:f6:b6:d4:5b:dc:0a:a6:3c:3c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): de:c9:da:d3:25:22:d2:ea:60:13:6c:b8:e1:1a:ac:05:4a:73:c9:9d
Fingerprint (sha256): c2:e4:67:33:dc:17:d3:dd:49:38:93:99:fb:d6:90:9d:2f:df:5c:76:23:64:35:f6:11:15:03:7f:a9:69:4e:70
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate act.gavinnewsom.com
90
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for act.gavinnewsom.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
act.350.org
act.350actionfund.org
act.abetterminnesota.org
act.abwt.org
act.adamschiff.com
act.alabamavaluesprogress.org
act.albertandp.ca
act.alex-padilla.com
act.angelaalsobrooks.com
act.battlebornprogress.org
act.beaherofund.com
act.berniesanders.com
act.bobferguson.com
act.boldpac.com
act.boldprogressives.org
act.bradypac.org
act.couragecampaign.org
act.cutcruz.com
act.defendvotingrights.org
act.demandjustice.org
act.dirtroaddems.com
act.dirtroadpac.com
act.dsausa.org
act.electsoutherndemocrats.org
act.faithfulamerica.org
act.fcnl.org
act.forwardtn.org
act.friendsplacedc.org
act.fusewashington.org
act.futuredems.org
act.gavinnewsom.com
act.globalpowerup.org
act.gofossilfree.org
act.greennewdealnetwork.org
act.indivisible.org
act.jamieraskin.com
act.jontester.com
act.jstreet.org
act.kairosfellows.org
act.katieporter.com
act.lateefahsimon.com
act.latinovictory.org
act.leaderswedeserve.com
act.losecruzpac.com
act.lucasformo.com
act.lucaskunce.com
act.marchonpac.com
act.momsfedup.org
act.mpowerchange.org
act.ndp.ca
act.novoteleftbehindpac.com
act.npd.ca
act.ocasiocortez.com
act.ontariondp.ca
act.ourrevolution.com
act.ourvoiceourvote.us
act.passmedicareforall.org
act.pfaw.org
act.prairieactionnd.org
act.prochoicewomen.org
act.progressflorida.org
act.progressga.org
act.progressmo.org
act.progressnc.org
act.progressnowcolorado.org
act.progressva.org
act.realjusticepac.org
act.robbonta.com
act.savedemocracypac.com
act.squadvictoryfund.com
act.tammyduckworth.com
act.truthtopowerpac.com
act.vindmanforcongress.com
act.votebymailpac.org
act.votevets.org
act.weareultraviolet.org
act.welchforcongress.com
act.welchforvermont.com
act.westopgunviolence.org
act.winwithoutwar.org
act.womensmarch.com
action.ameripacfund.com
action.justiceforbreonna.org
action.storyofstuff.org
action.wemove.eu
faithfulamerica.com
faithfulamerica.org
go.dscc.org
join.theintercept.com
www.faithfulamerica.org
act.350actionfund.org
act.abetterminnesota.org
act.abwt.org
act.adamschiff.com
act.alabamavaluesprogress.org
act.albertandp.ca
act.alex-padilla.com
act.angelaalsobrooks.com
act.battlebornprogress.org
act.beaherofund.com
act.berniesanders.com
act.bobferguson.com
act.boldpac.com
act.boldprogressives.org
act.bradypac.org
act.couragecampaign.org
act.cutcruz.com
act.defendvotingrights.org
act.demandjustice.org
act.dirtroaddems.com
act.dirtroadpac.com
act.dsausa.org
act.electsoutherndemocrats.org
act.faithfulamerica.org
act.fcnl.org
act.forwardtn.org
act.friendsplacedc.org
act.fusewashington.org
act.futuredems.org
act.gavinnewsom.com
act.globalpowerup.org
act.gofossilfree.org
act.greennewdealnetwork.org
act.indivisible.org
act.jamieraskin.com
act.jontester.com
act.jstreet.org
act.kairosfellows.org
act.katieporter.com
act.lateefahsimon.com
act.latinovictory.org
act.leaderswedeserve.com
act.losecruzpac.com
act.lucasformo.com
act.lucaskunce.com
act.marchonpac.com
act.momsfedup.org
act.mpowerchange.org
act.ndp.ca
act.novoteleftbehindpac.com
act.npd.ca
act.ocasiocortez.com
act.ontariondp.ca
act.ourrevolution.com
act.ourvoiceourvote.us
act.passmedicareforall.org
act.pfaw.org
act.prairieactionnd.org
act.prochoicewomen.org
act.progressflorida.org
act.progressga.org
act.progressmo.org
act.progressnc.org
act.progressnowcolorado.org
act.progressva.org
act.realjusticepac.org
act.robbonta.com
act.savedemocracypac.com
act.squadvictoryfund.com
act.tammyduckworth.com
act.truthtopowerpac.com
act.vindmanforcongress.com
act.votebymailpac.org
act.votevets.org
act.weareultraviolet.org
act.welchforcongress.com
act.welchforvermont.com
act.westopgunviolence.org
act.winwithoutwar.org
act.womensmarch.com
action.ameripacfund.com
action.justiceforbreonna.org
action.storyofstuff.org
action.wemove.eu
faithfulamerica.com
faithfulamerica.org
go.dscc.org
join.theintercept.com
www.faithfulamerica.org
Other certificates including the domain name gavinnewsom.com
(limited to 100 certificates)
sni32094.cloudflaressl.com
sni32094.cloudflaressl.com
act.johnfetterman.com
gavinnewsom.com
www.gavinnewsom.com
sni32094.cloudflaressl.com
act.boldprogressives.org
act.ilhanomar.com
gavinnewsom.com
sni32094.cloudflaressl.com
act.ourrevolution.com
peoplesmillion.whitehelmets.org
act.colorofchange.org
sni32094.cloudflaressl.com
gavinnewsom.com
act.peoplesconvoy.com
act.elizabethwarren.com
sni32094.cloudflaressl.com
act.campaigntoendqualifiedimmunity.org
gavinnewsom.com
action.pollinis.org
act.jamieraskin.com
sni32094.cloudflaressl.com
gavinnewsom.com
sni32094.cloudflaressl.com
sni32094.cloudflaressl.com
gavinnewsom.com
gavinnewsom.com
gavinnewsom.com
sni32094.cloudflaressl.com
sni32094.cloudflaressl.com
act.gunsensevoter.org
www-default.actionkit.com
sni32094.cloudflaressl.com
act.realjusticepac.org
shop.gavinnewsom.com
gavinnewsom.com
act.powerthepolls.org
faithfulamerica.org
gavinnewsom.com
sni32094.cloudflaressl.com
act.abwt.org
sni32094.cloudflaressl.com
act.ruraldemocratsturnoutfund.com
shop.gavinnewsom.com
action.pollinis.org
act.defendvotingrights.org
sni32094.cloudflaressl.com
act.democratic-strategy.org
gavinnewsom.com
gavinnewsom.com
act.progressflorida.org
sni32094.cloudflaressl.com
sni32094.cloudflaressl.com
sni32094.cloudflaressl.com
act.gavinnewsom.com
shop.gavinnewsom.com
shop.gavinnewsom.com
sni32094.cloudflaressl.com
gavinnewsom.com
act.nuestropac.com
act.jamieraskin.com
act.dsausa.org
gavinnewsom.com
www.nowarwithiran.org
act.bcndp.ca
sni32094.cloudflaressl.com
sni32094.cloudflaressl.com
act.johnfetterman.com
gavinnewsom.com
www.gavinnewsom.com
sni32094.cloudflaressl.com
act.boldprogressives.org
act.ilhanomar.com
gavinnewsom.com
sni32094.cloudflaressl.com
act.ourrevolution.com
peoplesmillion.whitehelmets.org
act.colorofchange.org
sni32094.cloudflaressl.com
gavinnewsom.com
act.peoplesconvoy.com
act.elizabethwarren.com
sni32094.cloudflaressl.com
act.campaigntoendqualifiedimmunity.org
gavinnewsom.com
action.pollinis.org
act.jamieraskin.com
sni32094.cloudflaressl.com
gavinnewsom.com
sni32094.cloudflaressl.com
sni32094.cloudflaressl.com
gavinnewsom.com
gavinnewsom.com
gavinnewsom.com
sni32094.cloudflaressl.com
sni32094.cloudflaressl.com
act.gunsensevoter.org
www-default.actionkit.com
sni32094.cloudflaressl.com
act.realjusticepac.org
shop.gavinnewsom.com
gavinnewsom.com
act.powerthepolls.org
faithfulamerica.org
gavinnewsom.com
sni32094.cloudflaressl.com
act.abwt.org
sni32094.cloudflaressl.com
act.ruraldemocratsturnoutfund.com
shop.gavinnewsom.com
action.pollinis.org
act.defendvotingrights.org
sni32094.cloudflaressl.com
act.democratic-strategy.org
gavinnewsom.com
gavinnewsom.com
act.progressflorida.org
sni32094.cloudflaressl.com
sni32094.cloudflaressl.com
sni32094.cloudflaressl.com
act.gavinnewsom.com
shop.gavinnewsom.com
shop.gavinnewsom.com
sni32094.cloudflaressl.com
gavinnewsom.com
act.nuestropac.com
act.jamieraskin.com
act.dsausa.org
gavinnewsom.com
www.nowarwithiran.org
act.bcndp.ca
sni32094.cloudflaressl.com
Certificate
The complete raw certificate details for act.gavinnewsom.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIINsDCCDJigAwIBAgISBK8NuRhGYShKRAU956mv2CWSMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMzAyMjMxNTZaFw0yNDA0MjkyMjMxNTVaMB4xHDAaBgNVBAMT E2FjdC5nYXZpbm5ld3NvbS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK AoICAQCtVXDXCqWi6DFNt4XtEVLUETzhiX4dgEiGExXPOsUJ8IaxLDTOx7n8DLhr JjaKTkd4KLmflS5Y7QftPq3evBX1oEUgw3uj+xX70E9Xf+BcmHD5gMxuF5+Gjo0V 2zR4Gglvr2vDCY3qsAy4slcrP92Y5ICEk5VxS63Xd3C2P14C9jS3FAk9FFfuCn9x NwvyWmZ19/i/pUVsFpiQEorHpLzAMvf1mzWtgiqO21Vf4+JQkzsdm9bLVDddyqIU vBecbZO//bawlrpceE3NlVc6u5zSX4uYxhgttAN+vXJax52pOhH3AwD7QUIgkWtE 6Rz6EDmuFkFP1+JZfUupwn/Ma+9i0KaNtUv1JX2GZGiul15LERraWCgak6IiUVNW vyhKZ01KlM78rpZAeHL/5tULgQVE1Sx7OrwT4FguFvyLyCGmMj6+yBGvyVzUxLoO RAnEOx7XOSjBcYIJNaOqt01EN3LVqIIzxhjVNYAKdyiMr+SBbO7GLV1ptPDc44t7 qHnGZWJFjfsv8lq19u7rCAg5n6nabuaFXzxBcYjutIFwy8hGA6qqqvyoajMUjZuh +/BicLHK7BC7SNgzoKYINCzC+CcgUl9rSDVFwXBqQH/XBLbgDuD1ISSgiLFhqYOP ICRM+igijkufkyBoE7HFWcQmrlWUKQBcb8KEsvXO8m8wVmUKUwIDAQABo4IJ0jCC Cc4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRiDFXQ4vLnjoiSGfa21FvcCqY8PDAf BgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcw IQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYW aHR0cDovL3IzLmkubGVuY3Iub3JnLzCCB9kGA1UdEQSCB9AwggfMggthY3QuMzUw Lm9yZ4IVYWN0LjM1MGFjdGlvbmZ1bmQub3JnghhhY3QuYWJldHRlcm1pbm5lc290 YS5vcmeCDGFjdC5hYnd0Lm9yZ4ISYWN0LmFkYW1zY2hpZmYuY29tgh1hY3QuYWxh YmFtYXZhbHVlc3Byb2dyZXNzLm9yZ4IRYWN0LmFsYmVydGFuZHAuY2GCFGFjdC5h bGV4LXBhZGlsbGEuY29tghhhY3QuYW5nZWxhYWxzb2Jyb29rcy5jb22CGmFjdC5i YXR0bGVib3JucHJvZ3Jlc3Mub3JnghNhY3QuYmVhaGVyb2Z1bmQuY29tghVhY3Qu YmVybmllc2FuZGVycy5jb22CE2FjdC5ib2JmZXJndXNvbi5jb22CD2FjdC5ib2xk cGFjLmNvbYIYYWN0LmJvbGRwcm9ncmVzc2l2ZXMub3JnghBhY3QuYnJhZHlwYWMu b3JnghdhY3QuY291cmFnZWNhbXBhaWduLm9yZ4IPYWN0LmN1dGNydXouY29tghph Y3QuZGVmZW5kdm90aW5ncmlnaHRzLm9yZ4IVYWN0LmRlbWFuZGp1c3RpY2Uub3Jn ghRhY3QuZGlydHJvYWRkZW1zLmNvbYITYWN0LmRpcnRyb2FkcGFjLmNvbYIOYWN0 LmRzYXVzYS5vcmeCHmFjdC5lbGVjdHNvdXRoZXJuZGVtb2NyYXRzLm9yZ4IXYWN0 LmZhaXRoZnVsYW1lcmljYS5vcmeCDGFjdC5mY25sLm9yZ4IRYWN0LmZvcndhcmR0 bi5vcmeCFmFjdC5mcmllbmRzcGxhY2VkYy5vcmeCFmFjdC5mdXNld2FzaGluZ3Rv bi5vcmeCEmFjdC5mdXR1cmVkZW1zLm9yZ4ITYWN0LmdhdmlubmV3c29tLmNvbYIV YWN0Lmdsb2JhbHBvd2VydXAub3JnghRhY3QuZ29mb3NzaWxmcmVlLm9yZ4IbYWN0 LmdyZWVubmV3ZGVhbG5ldHdvcmsub3JnghNhY3QuaW5kaXZpc2libGUub3JnghNh Y3QuamFtaWVyYXNraW4uY29tghFhY3Quam9udGVzdGVyLmNvbYIPYWN0LmpzdHJl ZXQub3JnghVhY3Qua2Fpcm9zZmVsbG93cy5vcmeCE2FjdC5rYXRpZXBvcnRlci5j b22CFWFjdC5sYXRlZWZhaHNpbW9uLmNvbYIVYWN0LmxhdGlub3ZpY3Rvcnkub3Jn ghhhY3QubGVhZGVyc3dlZGVzZXJ2ZS5jb22CE2FjdC5sb3NlY3J1enBhYy5jb22C EmFjdC5sdWNhc2Zvcm1vLmNvbYISYWN0Lmx1Y2Fza3VuY2UuY29tghJhY3QubWFy Y2hvbnBhYy5jb22CEWFjdC5tb21zZmVkdXAub3JnghRhY3QubXBvd2VyY2hhbmdl Lm9yZ4IKYWN0Lm5kcC5jYYIbYWN0Lm5vdm90ZWxlZnRiZWhpbmRwYWMuY29tggph Y3QubnBkLmNhghRhY3Qub2Nhc2lvY29ydGV6LmNvbYIRYWN0Lm9udGFyaW9uZHAu Y2GCFWFjdC5vdXJyZXZvbHV0aW9uLmNvbYIWYWN0Lm91cnZvaWNlb3Vydm90ZS51 c4IaYWN0LnBhc3NtZWRpY2FyZWZvcmFsbC5vcmeCDGFjdC5wZmF3Lm9yZ4IXYWN0 LnByYWlyaWVhY3Rpb25uZC5vcmeCFmFjdC5wcm9jaG9pY2V3b21lbi5vcmeCF2Fj dC5wcm9ncmVzc2Zsb3JpZGEub3JnghJhY3QucHJvZ3Jlc3NnYS5vcmeCEmFjdC5w cm9ncmVzc21vLm9yZ4ISYWN0LnByb2dyZXNzbmMub3JnghthY3QucHJvZ3Jlc3Nu b3djb2xvcmFkby5vcmeCEmFjdC5wcm9ncmVzc3ZhLm9yZ4IWYWN0LnJlYWxqdXN0 aWNlcGFjLm9yZ4IQYWN0LnJvYmJvbnRhLmNvbYIYYWN0LnNhdmVkZW1vY3JhY3lw YWMuY29tghhhY3Quc3F1YWR2aWN0b3J5ZnVuZC5jb22CFmFjdC50YW1teWR1Y2t3 b3J0aC5jb22CF2FjdC50cnV0aHRvcG93ZXJwYWMuY29tghphY3QudmluZG1hbmZv cmNvbmdyZXNzLmNvbYIVYWN0LnZvdGVieW1haWxwYWMub3JnghBhY3Qudm90ZXZl dHMub3JnghhhY3Qud2VhcmV1bHRyYXZpb2xldC5vcmeCGGFjdC53ZWxjaGZvcmNv bmdyZXNzLmNvbYIXYWN0LndlbGNoZm9ydmVybW9udC5jb22CGWFjdC53ZXN0b3Bn dW52aW9sZW5jZS5vcmeCFWFjdC53aW53aXRob3V0d2FyLm9yZ4ITYWN0LndvbWVu c21hcmNoLmNvbYIXYWN0aW9uLmFtZXJpcGFjZnVuZC5jb22CHGFjdGlvbi5qdXN0 aWNlZm9yYnJlb25uYS5vcmeCF2FjdGlvbi5zdG9yeW9mc3R1ZmYub3JnghBhY3Rp b24ud2Vtb3ZlLmV1ghNmYWl0aGZ1bGFtZXJpY2EuY29tghNmYWl0aGZ1bGFtZXJp Y2Eub3Jnggtnby5kc2NjLm9yZ4IVam9pbi50aGVpbnRlcmNlcHQuY29tghd3d3cu ZmFpdGhmdWxhbWVyaWNhLm9yZzATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisG AQQB1nkCBAIEgfUEgfIA8AB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s5 2IRzAAABjVy3DToAAAQDAEcwRQIhAMfJpGEUiCD2pYCy6rsfCD4K+nu98y+k0GeX Py/MBVITAiAVmMmxK0TxJdN6mqO3KWnQrlJjQ6uDrb+KMVtnXYuavwB2AO7N0GTV 2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjVy3DaUAAAQDAEcwRQIgaUOI heKS8XbI2dDRhvBFx9G0i4W1NabnzqDEvjUJWqgCIQDWqiyEe/B21WeeclnHAB1R B8Akczc0wYMAYKpu48hG2TANBgkqhkiG9w0BAQsFAAOCAQEAEmls6aDHT3qicQZ/ I5mDMCHyHW4nBXg+/oWmYxCbtZPSU4K+ujyMGYrza+8AYBZYFyFYi1imNcTCNkUE +bulrOWwlL8hUqcgyoSfE7iD98tzhz6KEgAdzqhrSxMQQfy4YqhRxIHYsR7KqpTE skKJzJcdUHgrRmxcZjdvByu8OFc+EmuLoD4D4ZmwRrnGL98x7hd6k29AhKTHvZEJ zfL4tOeM1GreyCibGANHNw2V8K2tgwzZQ1+814GYI2K5MHYpN/MUnf2zsPiE3/Ue epH1MdYiTeNL084t38Rx6StbSWn7p4bXk2WnKXvSh5Dc7aNuCLF7NEnotYJ3aQAY NwRR+A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArVVw1wqlougxTbeF7RFS 1BE84Yl+HYBIhhMVzzrFCfCGsSw0zse5/Ay4ayY2ik5HeCi5n5UuWO0H7T6t3rwV 9aBFIMN7o/sV+9BPV3/gXJhw+YDMbhefho6NFds0eBoJb69rwwmN6rAMuLJXKz/d mOSAhJOVcUut13dwtj9eAvY0txQJPRRX7gp/cTcL8lpmdff4v6VFbBaYkBKKx6S8 wDL39Zs1rYIqjttVX+PiUJM7HZvWy1Q3XcqiFLwXnG2Tv/22sJa6XHhNzZVXOruc 0l+LmMYYLbQDfr1yWsedqToR9wMA+0FCIJFrROkc+hA5rhZBT9fiWX1LqcJ/zGvv YtCmjbVL9SV9hmRorpdeSxEa2lgoGpOiIlFTVr8oSmdNSpTO/K6WQHhy/+bVC4EF RNUsezq8E+BYLhb8i8ghpjI+vsgRr8lc1MS6DkQJxDse1zkowXGCCTWjqrdNRDdy 1aiCM8YY1TWACncojK/kgWzuxi1dabTw3OOLe6h5xmViRY37L/Jatfbu6wgIOZ+p 2m7mhV88QXGI7rSBcMvIRgOqqqr8qGozFI2bofvwYnCxyuwQu0jYM6CmCDQswvgn IFJfa0g1RcFwakB/1wS24A7g9SEkoIixYamDjyAkTPooIo5Ln5MgaBOxxVnEJq5V lCkAXG/ChLL1zvJvMFZlClMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 408016798969423121159379106849435785110930 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-30 22:31:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-29 22:31:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'act.gavinnewsom.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 707140017425655953277222131676134241018594852183243452683901479537419326881687292454428687449132469635797278100398511869647242873093358940172793653321532457422197519624033565850743791242645181421521130890624932010096328026713519290879088851195025587372124291976932701063199557356016140129481610090031288109514711058129442341575281434823097613343181727026735166648478968043852772833274549614329410975031652566509814185937940708849802602450711762575859627452833543229669530073555269098163341791144305556063253703636689717444184104826702763538330235288420863452055893608216852019543742879774409277951660708657397785361724046717489151864858027620047891876562716145535587666057095220117189082197920859990439138355764380880543391368446436142514510705301522195124515655398288298811604640902522999329169446352407179701945587882171194105186860969675541822739955759495691519561503971566954997755668193866919157154454946211190451764921032504174460830248654815961919972194074060027184810889685488889329751451412303314787334794133855318310492936485794050193754522932709830129679967616078047146450269080118048305890124781104652584942587373922071817874625622413696098652405900502085870864465904177353742997557515508689120251110685109488182148532819 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 620c55d0e2f2e78e889219f6b6d45bdc0aa63c3c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2000 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.350.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.350actionfund.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.abetterminnesota.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.abwt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.adamschiff.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.alabamavaluesprogress.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.albertandp.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.alex-padilla.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.angelaalsobrooks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.battlebornprogress.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.beaherofund.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.berniesanders.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.bobferguson.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.boldpac.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.boldprogressives.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.bradypac.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.couragecampaign.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.cutcruz.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.defendvotingrights.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.demandjustice.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.dirtroaddems.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.dirtroadpac.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.dsausa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.electsoutherndemocrats.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.faithfulamerica.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.fcnl.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.forwardtn.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.friendsplacedc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.fusewashington.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.futuredems.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.gavinnewsom.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.globalpowerup.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.gofossilfree.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.greennewdealnetwork.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.indivisible.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.jamieraskin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.jontester.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.jstreet.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.kairosfellows.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.katieporter.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.lateefahsimon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.latinovictory.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.leaderswedeserve.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.losecruzpac.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.lucasformo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.lucaskunce.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.marchonpac.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.momsfedup.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.mpowerchange.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.ndp.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.novoteleftbehindpac.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.npd.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.ocasiocortez.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.ontariondp.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.ourrevolution.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.ourvoiceourvote.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.passmedicareforall.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.pfaw.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.prairieactionnd.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.prochoicewomen.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.progressflorida.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.progressga.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.progressmo.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.progressnc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.progressnowcolorado.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.progressva.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.realjusticepac.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.robbonta.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.savedemocracypac.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.squadvictoryfund.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.tammyduckworth.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.truthtopowerpac.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.vindmanforcongress.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.votebymailpac.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.votevets.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.weareultraviolet.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.welchforcongress.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.welchforvermont.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.westopgunviolence.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.winwithoutwar.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'act.womensmarch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'action.ameripacfund.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'action.justiceforbreonna.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'action.storyofstuff.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'action.wemove.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'faithfulamerica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'faithfulamerica.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'go.dscc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'join.theintercept.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.faithfulamerica.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d5cb70d3a0000040300473045022100c7c9a461148820f6a580b2eabb1f083e0afa7bbdf32fa4d067973f2fcc05521302201598c9b12b44f125d37a9aa3b72969d0ae526343ab83adbf8a315b675d8b9abf007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018d5cb70da50000040300473045022069438885e292f176c8d9d0d186f045c7d1b48b85b535a6e7cea0c4be35095aa8022100d6aa2c847bf076d5679e7259c7001d5107c024733734c1830060aa6ee3c846d9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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