tzoleipzig.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:93:24:e9:08:11:5b:3a:5f:0b:c6:a8:c4:2c:9d:37:ef:3f was issued on by Let's Encrypt.
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tzoleipzig.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:93:24:e9:08:11:5b:3a:5f:0b:c6:a8:c4:2c:9d:37:ef:3fSerial Number (int): 311407427909309378949638932604835652431679
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 83:58:f0:15:99:db:bc:b6:66:f5:fb:52:90:8a:03:0a:60:4d:c9:02
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 8a:47:02:d5:bf:8c:2d:2f:a2:a7:11:13:02:97:79:3d:59:27:f6:fc
Fingerprint (sha256): c5:76:f3:23:be:79:b7:69:e5:cb:4a:a2:ff:08:83:14:83:77:a7:b7:66:69:d8:7c:5a:e7:04:21:f7:f3:cd:78
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate tzoleipzig.de
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tzoleipzig.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tzo-leipzig.com
tzo-leipzig.eu
tzoleipzig.com
tzoleipzig.de
tzoleipzig.eu
tzoleipzig.isp-vhost04.domservice.de
www.tzo-leipzig.com
www.tzo-leipzig.eu
www.tzoleipzig.com
www.tzoleipzig.de
www.tzoleipzig.eu
tzo-leipzig.eu
tzoleipzig.com
tzoleipzig.de
tzoleipzig.eu
tzoleipzig.isp-vhost04.domservice.de
www.tzo-leipzig.com
www.tzo-leipzig.eu
www.tzoleipzig.com
www.tzoleipzig.de
www.tzoleipzig.eu
Other certificates including the domain name tzoleipzig.de
(limited to 100 certificates)
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.isp-vhost04.domservice.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.isp-vhost04.domservice.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
tzoleipzig.de
Certificate
The complete raw certificate details for tzoleipzig.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHHjCCBgagAwIBAgISA5Mk6QgRWzpfC8aoxCydN+8/MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMjkwMDMyMDVaFw0y MDA2MjcwMDMyMDVaMBgxFjAUBgNVBAMTDXR6b2xlaXB6aWcuZGUwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDIp0XMll6vd4fouoYT84DFNfY6gsX0UdiC 4tVPRaGl5wl0YRoeF2KbknFcc4FsZtZ32KZ2gzwdp5B6Tp3Y557Qv78bNU6sHbGk Vd++f7z55MFt2vGHWL4dsEyRclRbNE8Cok/OUZ8YogFhBwoW2PZ3sRWRJY6ADFHm mHs+Bkn5S2pjqND52j9kYfl8LUJsOqI/zM1qMWThGPHTPk+XIF4l1aBKCxXtCFqK Di0HfsYdLgoE+QtH/iXF21UAdkZnIGfn1TEDk8gXripm9upvJNzn9qcRd3tH3VJ3 Kzx9g21C3a39rBrBQR7X84hwrdLYETriuI/FfGJvXYQWMuDmvMbhyQ5QRa3KR4A9 niXViwg4V5uPkvtNrpwxnBSslWlj5abtfWdK9voI3zlWzLHregFJEHG7elxWgv0r Fj1xG+j/71DggtcwR3maheC6K0cwO+yvGy6vaXJgVY9nEP8IyYPNIudn4a21NyA2 i18mDXWg+LWeVSVfG8VNFOErQxJ+GIfNcBA7k07iW16hg8sPjR2jXAidFPbvrjly BReH/Y+cJM+/2gI8l7VVFnZS82sxG8GjSBOH9lV6ePRBcNZ/qg/jtejSyyF0zCXn vU297cUdPaLCHixEWQFeX4uIcmEm2uipJMAZ2wTtKv/fTwPWVnBuRXegxrngI6P/ JPG+bgP+TwIDAQABo4IDLjCCAyowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSDWPAV mdu8tmb1+1KQigMKYE3JAjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMIHjBgNVHREEgdswgdiCD3R6by1sZWlwemlnLmNv bYIOdHpvLWxlaXB6aWcuZXWCDnR6b2xlaXB6aWcuY29tgg10em9sZWlwemlnLmRl gg10em9sZWlwemlnLmV1giR0em9sZWlwemlnLmlzcC12aG9zdDA0LmRvbXNlcnZp Y2UuZGWCE3d3dy50em8tbGVpcHppZy5jb22CEnd3dy50em8tbGVpcHppZy5ldYIS d3d3LnR6b2xlaXB6aWcuY29tghF3d3cudHpvbGVpcHppZy5kZYIRd3d3LnR6b2xl aXB6aWcuZXUwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEE AdZ5AgQCBIH1BIHyAPAAdgDnEvKwN34aYvuOyQxhhPHqezfLVh0RJlvz4PNL8kFU bgAAAXEj6thpAAAEAwBHMEUCIQDkGryKqGF5B4w2kYiN53JfwGB6D8QRHaC2pBDQ i6RaawIgXGuqEezwsSu+xBDXM2aGTyYqg1DCqgNpBHeQyMjwk7sAdgAHt1wb5X1o //Gwxh0jFce65ld8V5S3au68YToaadOiHAAAAXEj6tiWAAAEAwBHMEUCIQDskB5l SZ6oP8uB42lKVuIR1PREa7c1okLAjbJyteyl2gIgYtjaz4+O/krW+TF2DlMYhmAw U/rOC27UpnBI9WrbrqQwDQYJKoZIhvcNAQELBQADggEBACD+wxOmy5xO0is8yYrE 1fDh2LyCLkEbpe08tL5O8LwFkava9ZKuGCkUAPtyE9dPYDzZIu/K+vzwLcGMvqGD la4yPA4jFZGTBKC1R+smLyio5xL1ZtEi4E4vdw3Y5Lo13BUoBJ2Eu+aMpvYmp1El WhDIN/9nuuuzt+OV00ept/KPrffN8HLoSUmIklYCP5mnGSsz72JZtS4zqqiH/Hyx UBWBRfbBjFsqnAqCp0r94K0leyiVmqWNGipPyUHJy9PboZblJuEZNW1XRZZD0qM7 poXsAgQ6WWlPaXfSj1H+Nf0enq+/rqQ3d5+KBPeR07YA1tZnrDLmc9KZ+aoofKeI xm8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyKdFzJZer3eH6LqGE/OA xTX2OoLF9FHYguLVT0WhpecJdGEaHhdim5JxXHOBbGbWd9imdoM8HaeQek6d2Oee 0L+/GzVOrB2xpFXfvn+8+eTBbdrxh1i+HbBMkXJUWzRPAqJPzlGfGKIBYQcKFtj2 d7EVkSWOgAxR5ph7PgZJ+UtqY6jQ+do/ZGH5fC1CbDqiP8zNajFk4Rjx0z5PlyBe JdWgSgsV7Qhaig4tB37GHS4KBPkLR/4lxdtVAHZGZyBn59UxA5PIF64qZvbqbyTc 5/anEXd7R91Sdys8fYNtQt2t/awawUEe1/OIcK3S2BE64riPxXxib12EFjLg5rzG 4ckOUEWtykeAPZ4l1YsIOFebj5L7Ta6cMZwUrJVpY+Wm7X1nSvb6CN85Vsyx63oB SRBxu3pcVoL9KxY9cRvo/+9Q4ILXMEd5moXguitHMDvsrxsur2lyYFWPZxD/CMmD zSLnZ+GttTcgNotfJg11oPi1nlUlXxvFTRThK0MSfhiHzXAQO5NO4lteoYPLD40d o1wInRT27645cgUXh/2PnCTPv9oCPJe1VRZ2UvNrMRvBo0gTh/ZVenj0QXDWf6oP 47Xo0sshdMwl571Nve3FHT2iwh4sRFkBXl+LiHJhJtroqSTAGdsE7Sr/308D1lZw bkV3oMa54COj/yTxvm4D/k8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 311407427909309378949638932604835652431679 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-29 00:32:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-27 00:32:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tzoleipzig.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 818594488942215780568801920266266078358212194792742825274897975618748359818577252707792107527181628451820610931351650584247484410060706004260365386359686148759842281986807485104741615138894241653807906209287776800434364093836130174068932766864224247866711470996272861232372653509976353786827362786461415423700479515497024730640416431738007414282829582562371519690957092330987823257515333353803436428289838498810200679011240738209720059603720256105305763091864704966109763557810451439594826721151383188775187190236757656440199040694646928202413222241490015361810092699527357149881179267071206841374446998324584972265761568316574606962778662940858419646404569129248230496727273163117207476580003820335420999041683893713525073679850468590553739946204201660421208629941863386289739236576478443822626550083988216298668616689580571788660830340094879395027950982946553594572497374114179378335232974361990622906754166180543893748530247826750234407844377836932689496573849344932454786484537547431603567638990883407612504498453657058688018078079949426759141922460289296874244869889350102470744219503711782354867021520035559323429697121402235477982509840191165865315494026658866068600049929366458620001246546026592090852022090188442510704246351 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8358f01599dbbcb666f5fb52908a030a604dc902 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (219 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzo-leipzig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzo-leipzig.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzoleipzig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzoleipzig.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzoleipzig.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tzoleipzig.isp-vhost04.domservice.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzo-leipzig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzo-leipzig.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzoleipzig.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzoleipzig.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tzoleipzig.eu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e0000017123ead8690000040300473045022100e41abc8aa86179078c3691888de7725fc0607a0fc4111da0b6a410d08ba45a6b02205c6baa11ecf0b12bbec410d73366864f262a8350c2aa0369047790c8c8f093bb00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000017123ead8960000040300473045022100ec901e65499ea83fcb81e3694a56e211d4f4446bb735a242c08db272b5eca5da022062d8dacf8f8efe4ad6f931760e531886603053face0b6ed4a67048f56adbaea4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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