tekxiph.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:b1:b6:94:7d:84:00:f8:23:46:91:8e:3b:28:a3:71:f6:32 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tekxiph.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:b1:b6:94:7d:84:00:f8:23:46:91:8e:3b:28:a3:71:f6:32Serial Number (int): 321809527241214383704776066776463416882738
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 04:9a:98:ff:f3:96:86:28:f9:f4:6b:fa:69:7a:2e:d2:64:e5:96:f0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 44:2a:f5:65:90:35:c3:05:f9:2b:59:e7:9e:10:c5:ff:30:10:11:46
Fingerprint (sha256): c4:dc:dd:e7:9d:e8:7c:36:9e:8e:29:32:d0:17:b9:61:43:db:61:95:3f:91:f5:05:3f:c2:39:9b:35:b4:96:56
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate tekxiph.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tekxiph.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tekxiph.com
www.tekxiph.com
www.tekxiph.com
Other certificates including the domain name tekxiph.com
(limited to 100 certificates)
tekxiph.com
support.ufone.nz
devether.fr
itsupport.nationalable.org
eased-ui.com
support.ufone.nz
tekxiph.com
support.tekxiph.com
www.muskegonenergy.com
restaurant-bali.de
tekxiph.com
tekxiph.com
gatorzone.shop
spottiswoode.smartbuildings.app
*.tekxiph.com
tekxiph.com
atencion.traffilog.mx
spottiswoode.smartbuildings.app
www.laoslamduan.com
focusi.app
tekxiph.com
focusi.app
itsupport.nationalable.org
app.gulfbrokers.com
postal.gift
tekxiph.com
www.stellarjaysoftware.com
tekxiph.com
www.critterhobbyist.com
*.estoredemo.tekxiph.com
www.critterhobbyist.com
www.movix.cf
e2e-domain1.enotice.io
knownfraud.com
tekxiph.com
eased-ui.com
dashboard.swattup.com
tekxiph.com
www.keyforher.com
support.ufone.nz
tekxiph.com
tekxiph.com
support.tekxiph.com
piedpiper.stg.unthread.io
tekxiph.com
tekxiph.com
tekxiph.com
b2b.tekxiph.com
www.laoslamduan.com
jjugul.kr
tekxiph.com
ravo.wiki
tekxiph.com
www.mohan.dev
jabwemake.com
support.ufone.nz
devether.fr
itsupport.nationalable.org
eased-ui.com
support.ufone.nz
tekxiph.com
support.tekxiph.com
www.muskegonenergy.com
restaurant-bali.de
tekxiph.com
tekxiph.com
gatorzone.shop
spottiswoode.smartbuildings.app
*.tekxiph.com
tekxiph.com
atencion.traffilog.mx
spottiswoode.smartbuildings.app
www.laoslamduan.com
focusi.app
tekxiph.com
focusi.app
itsupport.nationalable.org
app.gulfbrokers.com
postal.gift
tekxiph.com
www.stellarjaysoftware.com
tekxiph.com
www.critterhobbyist.com
*.estoredemo.tekxiph.com
www.critterhobbyist.com
www.movix.cf
e2e-domain1.enotice.io
knownfraud.com
tekxiph.com
eased-ui.com
dashboard.swattup.com
tekxiph.com
www.keyforher.com
support.ufone.nz
tekxiph.com
tekxiph.com
support.tekxiph.com
piedpiper.stg.unthread.io
tekxiph.com
tekxiph.com
tekxiph.com
b2b.tekxiph.com
www.laoslamduan.com
jjugul.kr
tekxiph.com
ravo.wiki
tekxiph.com
www.mohan.dev
jabwemake.com
Certificate
The complete raw certificate details for tekxiph.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGCjCCBPKgAwIBAgISA7G2lH2EAPgjRpGOOyijcfYyMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzExMjExNzI0MTlaFw0x ODAyMTkxNzI0MTlaMBYxFDASBgNVBAMTC3Rla3hpcGguY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEArJyF9yBBfa/6ILoHXU3A97k7xDW9o6PZMuew zx5+Ap1WJHxuVFYuaB7M0UvpNpfurtwmSH73rvM5qBw0aSnhNk+KkhU1/lDHS46E fC1Q2rOXd3TlQ9uiVK+isrOKJG7nlNOTxLy6M6s5Bgt0vUHsXqeApRa7yWV550Re sPPSsq4zZCItySGGTy2ezP67esphZcnyK+rFfVC0yL5P2EdXMBinTTMAdW9W7Txd wY9N4Nss/GgSYxs3SLp2v+Bb20PvawuhzDgr6AdEH+rujgWpxp5kIwWgVcJsAoM9 rclwstS/4XeqDy0YT7ceKHEJ9UWq4Zi6S3sHEIjBh69u9hM6ik/NkcUVvTjWUcp1 vSMGmvhP//aNHFwM8n1j1rjmc3PaU3yesk9nWQbxfe7kEac99/BBC+4ynBurn45u WPY1C3U2YE2fsjFRqf6ereKgh0cGNbQMu+GoqvHDo9l7inIUvWzdnYMibZUn1fwi m/kMNhUYsPO+hxjhm2LDG8SRoXu4oam42odboLH0uNkaq8I4Q0y8TxWq8P8naSbL rXqYRw1NlZ2OgRwesGkNwUAYEVCbVkXGv2DHrM4PTm98FDK+Xro5VrX1TqaSRXX/ X5vqfesiqC1se6NuNW5rm4/9cWYxGRNPZ0krweihOOyQjlkuaM24ZI2sy5ahLos7 mNs6jR0CAwEAAaOCAhwwggIYMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUBJqY//OW hij59Gv6aXou0mTllvAwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAnBgNVHREEIDAeggt0ZWt4aXBoLmNvbYIPd3d3LnRl a3hpcGguY29tMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEB ATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasG CCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxp ZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5j ZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9s ZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBADB4 vAMkXGxD0jdZ04+JzdOaub1iiUuY1wIYvvN1fMDXNtW+v4glJunY03qvpA3goO3z XpmPrF0zrlSPbDkoLFXykCPn8+12wEzqvSQJ07uetukjufbAOfOYRv/y9DnFsFun ckjImbFjgWJeOLFVeotPngXWOaoC9/AUVUgbAl0xc6t6V0VscT5N+OccEPjJuVVn W5f049C4D+Tq5D27UnCV5wieEVp9Zt8bSaDOMBDHtZdDiDtXqDUZcLAXAnfEOyHh ejUSK2baNczFW7U1rXL7v2y0JKlR8d48A8HSKiIi6nZKT6wVbzyoFwfuQeEnAkpi 8yeZ5uOLx9O/bF0WADs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArJyF9yBBfa/6ILoHXU3A 97k7xDW9o6PZMuewzx5+Ap1WJHxuVFYuaB7M0UvpNpfurtwmSH73rvM5qBw0aSnh Nk+KkhU1/lDHS46EfC1Q2rOXd3TlQ9uiVK+isrOKJG7nlNOTxLy6M6s5Bgt0vUHs XqeApRa7yWV550ResPPSsq4zZCItySGGTy2ezP67esphZcnyK+rFfVC0yL5P2EdX MBinTTMAdW9W7TxdwY9N4Nss/GgSYxs3SLp2v+Bb20PvawuhzDgr6AdEH+rujgWp xp5kIwWgVcJsAoM9rclwstS/4XeqDy0YT7ceKHEJ9UWq4Zi6S3sHEIjBh69u9hM6 ik/NkcUVvTjWUcp1vSMGmvhP//aNHFwM8n1j1rjmc3PaU3yesk9nWQbxfe7kEac9 9/BBC+4ynBurn45uWPY1C3U2YE2fsjFRqf6ereKgh0cGNbQMu+GoqvHDo9l7inIU vWzdnYMibZUn1fwim/kMNhUYsPO+hxjhm2LDG8SRoXu4oam42odboLH0uNkaq8I4 Q0y8TxWq8P8naSbLrXqYRw1NlZ2OgRwesGkNwUAYEVCbVkXGv2DHrM4PTm98FDK+ Xro5VrX1TqaSRXX/X5vqfesiqC1se6NuNW5rm4/9cWYxGRNPZ0krweihOOyQjlku aM24ZI2sy5ahLos7mNs6jR0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 321809527241214383704776066776463416882738 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-21 17:24:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-19 17:24:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tekxiph.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 704193152202948757331686222757121694403470789742756348663414915275021127356146673275500632829896869456958943776420613657610204749582650046450633655821384106654686500432138666951990275750957346822963187265256532974085149363487032173204378062969105218908926129327477560750213056590458483964248113490613161566817424397752673730023412543892787010447982740973474495581266967543819943871743618068258268237970902283877666932116568096842698170118833446316589167452982785849851361023624373056185915343454333111257449581607874000816671373099669342927772515575152440709724274525491625636184908967984498151595438969354078661334376217660564400033262995488434537308832603127830764052984832475463119621759855355262470848553861834988528041185940606575920244304466289120859202639753956085217548932877067064153117096697953018076762360644639765758537635664441826485629342076654075008508378025366438112242340387262283670284059341446484487497169910547422004511135044405032892346201797325096479995195113419012336441905538491642497129488141487299488913605946064996390361679337310939606489424377877283655151592917593633946074680401589906323649408803869279980402572908080471020924007053432945979058748909061486453898185787618480493972412389327250476741856541 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 049a98fff3968628f9f46bfa697a2ed264e596f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tekxiph.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tekxiph.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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