kistimaat.com
Issued by R3
About this certificate
This digital certificate with serial number 03:15:5d:75:e6:63:21:ef:ce:4a:32:a5:da:7d:19:88:c7:22 was issued on by Let's Encrypt.
With 30 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=kistimaat.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:15:5d:75:e6:63:21:ef:ce:4a:32:a5:da:7d:19:88:c7:22Serial Number (int): 268607017875769193265182720697516337710882
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 0c:28:97:76:12:78:fe:fd:be:f1:87:17:b9:94:27:b7:b8:ad:a1:15
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 79:01:57:33:46:ea:41:2f:a6:30:23:13:43:75:73:a3:0d:e3:88:eb
Fingerprint (sha256): c7:1f:41:79:7e:e3:ac:a1:e8:55:26:2e:77:f4:7f:f6:0f:25:8e:f1:97:a2:ab:ec:33:97:d7:e6:b0:9a:b9:9e
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate kistimaat.com
30
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kistimaat.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
1nfants.com
animalsneedlovetoo.com
cincinnatisportsdoctors.com
farmvegetables.com
featuredpet.com
fehrionstudios.com
fshongpeng.com
getfreeshares.com
hempboots.com
kistimaat.com
magic-craft.com
mnmartialarts.com
superbowlpicks.com
totallyfreshfaces.com
waterexcavating.com
www.1nfants.com
www.animalsneedlovetoo.com
www.cincinnatisportsdoctors.com
www.farmvegetables.com
www.featuredpet.com
www.fehrionstudios.com
www.fshongpeng.com
www.getfreeshares.com
www.hempboots.com
www.kistimaat.com
www.magic-craft.com
www.mnmartialarts.com
www.superbowlpicks.com
www.totallyfreshfaces.com
www.waterexcavating.com
animalsneedlovetoo.com
cincinnatisportsdoctors.com
farmvegetables.com
featuredpet.com
fehrionstudios.com
fshongpeng.com
getfreeshares.com
hempboots.com
kistimaat.com
magic-craft.com
mnmartialarts.com
superbowlpicks.com
totallyfreshfaces.com
waterexcavating.com
www.1nfants.com
www.animalsneedlovetoo.com
www.cincinnatisportsdoctors.com
www.farmvegetables.com
www.featuredpet.com
www.fehrionstudios.com
www.fshongpeng.com
www.getfreeshares.com
www.hempboots.com
www.kistimaat.com
www.magic-craft.com
www.mnmartialarts.com
www.superbowlpicks.com
www.totallyfreshfaces.com
www.waterexcavating.com
Other certificates including the domain name kistimaat.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for kistimaat.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHlDCCBnygAwIBAgISAxVddeZjIe/OSjKl2n0ZiMciMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAzMDkwMDE4NDZaFw0yMzA2MDcwMDE4NDVaMBgxFjAUBgNVBAMT DWtpc3RpbWFhdC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP jHgEu7Gu+FdH02s0bUeHG/adYM1MzHBo9BahRkLOSsL7jjnqfpARQqVh3q0XX5Z7 9rQ8F3bYYqy1C1mW4gzTLxAc0zkTeQXjld6yAcxhH2mh60/pFJy6NFZGf8qE9o7V GmsO0ce8RpSAE0A3fVrU8swrL4nEoBBxr3mS18ntm3IHAz6NoZU3+UzdWCm5eHkB Ih33hT0dX+WI/jLtcg3dKp4igrrwYEGrURDQoFMAkglskaYghttjv/s/9jjiYpo+ xi6xOc82oDGJjlH7h+qT7JnDnRiksP7YHAmQ0e3D0oI2HbL0F/IMq4TsNXoNZkaX /L1Sik5g8aHBbO+hWJWDAgMBAAGjggS8MIIEuDAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFAwol3YSeP79vvGHF7mUJ7e4raEVMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MIICiQYDVR0RBIICgDCCAnyCCzFuZmFudHMuY29tghZhbmltYWxzbmVlZGxvdmV0 b28uY29tghtjaW5jaW5uYXRpc3BvcnRzZG9jdG9ycy5jb22CEmZhcm12ZWdldGFi bGVzLmNvbYIPZmVhdHVyZWRwZXQuY29tghJmZWhyaW9uc3R1ZGlvcy5jb22CDmZz aG9uZ3BlbmcuY29tghFnZXRmcmVlc2hhcmVzLmNvbYINaGVtcGJvb3RzLmNvbYIN a2lzdGltYWF0LmNvbYIPbWFnaWMtY3JhZnQuY29tghFtbm1hcnRpYWxhcnRzLmNv bYISc3VwZXJib3dscGlja3MuY29tghV0b3RhbGx5ZnJlc2hmYWNlcy5jb22CE3dh dGVyZXhjYXZhdGluZy5jb22CD3d3dy4xbmZhbnRzLmNvbYIad3d3LmFuaW1hbHNu ZWVkbG92ZXRvby5jb22CH3d3dy5jaW5jaW5uYXRpc3BvcnRzZG9jdG9ycy5jb22C Fnd3dy5mYXJtdmVnZXRhYmxlcy5jb22CE3d3dy5mZWF0dXJlZHBldC5jb22CFnd3 dy5mZWhyaW9uc3R1ZGlvcy5jb22CEnd3dy5mc2hvbmdwZW5nLmNvbYIVd3d3Lmdl dGZyZWVzaGFyZXMuY29tghF3d3cuaGVtcGJvb3RzLmNvbYIRd3d3Lmtpc3RpbWFh dC5jb22CE3d3dy5tYWdpYy1jcmFmdC5jb22CFXd3dy5tbm1hcnRpYWxhcnRzLmNv bYIWd3d3LnN1cGVyYm93bHBpY2tzLmNvbYIZd3d3LnRvdGFsbHlmcmVzaGZhY2Vz LmNvbYIXd3d3LndhdGVyZXhjYXZhdGluZy5jb20wTAYDVR0gBEUwQzAIBgZngQwB AgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRz ZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgC3Pvsk35xNunXy OcW6WPRsXfxCz3qfNcSeHQmBJe20mQAAAYbD8vlAAAAEAwBHMEUCIQCg02ZMhRy/ Ai5oQoZUH2oN6qytlCUE4MvvybmxjsR/sAIgA8FkuOGmux/KJH3TZ+eU20JjxCi3 MSg+IPkcYxIBUVoAdwDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp4Xd9bQa9bgAA AYbD8vk3AAAEAwBIMEYCIQCNfOGkPWmH0wG1jBkyNVJxzrfyqku7AkPfNm73tWr4 4wIhALEom+VdWY2Pht6SsY7htj80a5SOy+okYt2YMssdAdjYMA0GCSqGSIb3DQEB CwUAA4IBAQBdm60GXiGJuSsCaNy4yLBk+1f90u49kfd5ZNPhMoZfib8Vub9DJQ4M x5xIKaPIQRYVCpOCbRT6on8n1YM8Ox95l+rUcumoBpvOBYQSkE+5iBVU4IqEzk9Y P2Q9KPPe3sRBPWrdTUxZzFLzy/aqUaofojzszgev2QyjtXobBk1JZJFZAoII0VJD gTCYG1b3aznio9hAqdEiKjpFbqg7GpmHzYjy94NuaKrxD7fEMyf0AptTOu2XY1EI OK8qKw5IRDrEp8HVf7yPnpKOlcYy5aBG56BubPmWkUydpJ1Tm2uP8zIL+0FFN3Xl p3C+xPZ+l8OHtFQS5cTTYOWmcsMOdoWR -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4x4BLuxrvhXR9NrNG1H hxv2nWDNTMxwaPQWoUZCzkrC+4456n6QEUKlYd6tF1+We/a0PBd22GKstQtZluIM 0y8QHNM5E3kF45XesgHMYR9poetP6RScujRWRn/KhPaO1RprDtHHvEaUgBNAN31a 1PLMKy+JxKAQca95ktfJ7ZtyBwM+jaGVN/lM3VgpuXh5ASId94U9HV/liP4y7XIN 3SqeIoK68GBBq1EQ0KBTAJIJbJGmIIbbY7/7P/Y44mKaPsYusTnPNqAxiY5R+4fq k+yZw50YpLD+2BwJkNHtw9KCNh2y9BfyDKuE7DV6DWZGl/y9UopOYPGhwWzvoViV gwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 268607017875769193265182720697516337710882 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-09 00:18:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-07 00:18:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kistimaat.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26200596885856787222783623536533124310311205517858487457058658884432878356672957348795986061094121901868457628896741704263317901194380820783735548551341930347549075572455795982561608009401692133353940437762931783149930436442017534249173441625485410474632515228692784970497360305460522904212560997079550670555556328322668372336832100018498059732906714893717110736144451688541956599917478609525020739391106947733158367130942093739431897959536438110049235416260017082970087167765034700985797601288183217763520024184199597921037537349492510958511599481403782691105817623972167437935275644703348053679276020284143672268163 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0c2897761278fefdbef18717b99427b7b8ada115 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (640 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '1nfants.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'animalsneedlovetoo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cincinnatisportsdoctors.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'farmvegetables.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'featuredpet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fehrionstudios.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fshongpeng.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'getfreeshares.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hempboots.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kistimaat.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'magic-craft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mnmartialarts.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'superbowlpicks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'totallyfreshfaces.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'waterexcavating.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.1nfants.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.animalsneedlovetoo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cincinnatisportsdoctors.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.farmvegetables.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.featuredpet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fehrionstudios.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fshongpeng.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.getfreeshares.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hempboots.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kistimaat.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.magic-craft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mnmartialarts.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.superbowlpicks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.totallyfreshfaces.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.waterexcavating.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000186c3f2f9400000040300473045022100a0d3664c851cbf022e684286541f6a0deaacad942504e0cbefc9b9b18ec47fb0022003c164b8e1a6bb1fca247dd367e794db4263c428b731283e20f91c631201515a007700e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e00000186c3f2f93700000403004830460221008d7ce1a43d6987d301b58c1932355271ceb7f2aa4bbb0243df366ef7b56af8e3022100b1289be55d598d8f86de92b18ee1b63f346b948ecbea2462dd9832cb1d01d8d8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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