meheritagedna.com
Issued by R3
About this certificate
This digital certificate with serial number 04:a1:23:3a:13:c3:9b:80:5b:e3:9a:fc:88:98:e4:f7:03:ed was issued on by Let's Encrypt.
With 100 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=meheritagedna.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:a1:23:3a:13:c3:9b:80:5b:e3:9a:fc:88:98:e4:f7:03:edSerial Number (int): 403281429335245745792277429663703798055917
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d8:41:69:3b:70:a4:f9:4d:e5:d2:29:56:0e:b5:57:20:6c:28:bf:af
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d0:15:75:8b:63:5f:21:69:e1:75:df:ca:8c:01:ce:8d:97:f3:9d:89
Fingerprint (sha256): cb:1d:d9:b8:3e:8e:4e:bd:06:76:a2:16:60:dd:5b:10:29:06:a8:ab:4e:93:04:25:1d:c8:8b:f4:94:69:43:b1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate meheritagedna.com
100
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for meheritagedna.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.ahugedomains.com
*.aliainsuranceservices.com
*.alionaseurobake.com
*.amtntagroup.com
*.appetgy.com
*.arousalcontrolseeker.com
*.ateateightsoire.com
*.blueskyplumbingco.com
*.buyparksideflowers.com
*.clarityvu.com
*.cyclinweekly.com
*.dizipal446.com
*.dizipal447.com
*.dizipal449.com
*.doramamp4.com
*.electronixworld.co
*.eltempletapasyburguer.es
*.esyrec.com
*.godneprogramy.pl
*.havetheyplayedthatwizardgame2.com
*.hotrodtrading.com
*.incorparte.com
*.kg011.com
*.las.am
*.lasvegashighheatbaseball.club
*.meheritagedna.com
*.nwecardapply.com
*.oinvoicecloud.com
*.omahaparkview.com
*.pasadenalumberandsupplies.com
*.ppmclaimsamtntagroup.com
*.pringels.es
*.publishschoolreview.com
*.qualityrugsforsale.com
*.quantumtradingsolutions.com
*.quxif.com
*.random-episode.ru
*.republicbroadcastnetwork.com
*.restaurantelasanabresa.es
*.slotsstreet.com
*.socialwirenews.us
*.stapesaudio.com
*.styleeloft.com
*.thehungrylabs.com
*.ttrscheat.com
*.vendosimple.com
*.waterpilk.com
*.wwwpsoklahoma.com
*.wynmineral.com
*.yamon.in
ahugedomains.com
aliainsuranceservices.com
alionaseurobake.com
amtntagroup.com
appetgy.com
arousalcontrolseeker.com
ateateightsoire.com
blueskyplumbingco.com
buyparksideflowers.com
clarityvu.com
cyclinweekly.com
dizipal446.com
dizipal447.com
dizipal449.com
doramamp4.com
electronixworld.co
eltempletapasyburguer.es
esyrec.com
godneprogramy.pl
havetheyplayedthatwizardgame2.com
hotrodtrading.com
incorparte.com
kg011.com
las.am
lasvegashighheatbaseball.club
meheritagedna.com
nwecardapply.com
oinvoicecloud.com
omahaparkview.com
pasadenalumberandsupplies.com
ppmclaimsamtntagroup.com
pringels.es
publishschoolreview.com
qualityrugsforsale.com
quantumtradingsolutions.com
quxif.com
random-episode.ru
republicbroadcastnetwork.com
restaurantelasanabresa.es
slotsstreet.com
socialwirenews.us
stapesaudio.com
styleeloft.com
thehungrylabs.com
ttrscheat.com
vendosimple.com
waterpilk.com
wwwpsoklahoma.com
wynmineral.com
yamon.in
*.aliainsuranceservices.com
*.alionaseurobake.com
*.amtntagroup.com
*.appetgy.com
*.arousalcontrolseeker.com
*.ateateightsoire.com
*.blueskyplumbingco.com
*.buyparksideflowers.com
*.clarityvu.com
*.cyclinweekly.com
*.dizipal446.com
*.dizipal447.com
*.dizipal449.com
*.doramamp4.com
*.electronixworld.co
*.eltempletapasyburguer.es
*.esyrec.com
*.godneprogramy.pl
*.havetheyplayedthatwizardgame2.com
*.hotrodtrading.com
*.incorparte.com
*.kg011.com
*.las.am
*.lasvegashighheatbaseball.club
*.meheritagedna.com
*.nwecardapply.com
*.oinvoicecloud.com
*.omahaparkview.com
*.pasadenalumberandsupplies.com
*.ppmclaimsamtntagroup.com
*.pringels.es
*.publishschoolreview.com
*.qualityrugsforsale.com
*.quantumtradingsolutions.com
*.quxif.com
*.random-episode.ru
*.republicbroadcastnetwork.com
*.restaurantelasanabresa.es
*.slotsstreet.com
*.socialwirenews.us
*.stapesaudio.com
*.styleeloft.com
*.thehungrylabs.com
*.ttrscheat.com
*.vendosimple.com
*.waterpilk.com
*.wwwpsoklahoma.com
*.wynmineral.com
*.yamon.in
ahugedomains.com
aliainsuranceservices.com
alionaseurobake.com
amtntagroup.com
appetgy.com
arousalcontrolseeker.com
ateateightsoire.com
blueskyplumbingco.com
buyparksideflowers.com
clarityvu.com
cyclinweekly.com
dizipal446.com
dizipal447.com
dizipal449.com
doramamp4.com
electronixworld.co
eltempletapasyburguer.es
esyrec.com
godneprogramy.pl
havetheyplayedthatwizardgame2.com
hotrodtrading.com
incorparte.com
kg011.com
las.am
lasvegashighheatbaseball.club
meheritagedna.com
nwecardapply.com
oinvoicecloud.com
omahaparkview.com
pasadenalumberandsupplies.com
ppmclaimsamtntagroup.com
pringels.es
publishschoolreview.com
qualityrugsforsale.com
quantumtradingsolutions.com
quxif.com
random-episode.ru
republicbroadcastnetwork.com
restaurantelasanabresa.es
slotsstreet.com
socialwirenews.us
stapesaudio.com
styleeloft.com
thehungrylabs.com
ttrscheat.com
vendosimple.com
waterpilk.com
wwwpsoklahoma.com
wynmineral.com
yamon.in
Other certificates including the domain name meheritagedna.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for meheritagedna.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIN4DCCDMigAwIBAgISBKEjOhPDm4Bb45r8iJjk9wPtMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMDkxMTU1NDRaFw0yNDAxMDcxMTU1NDNaMBwxGjAYBgNVBAMT EW1laGVyaXRhZ2VkbmEuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC AgEAnEiiqBWuqgNLgq3FkIhPkS+e/M7rWsaubDZBnAJWC7zVD1bJaehFeVC38tDu 2qFQyxoCAS3aOKeY5gaW0JJ9dIA+APt00KaHSLcRofUEVWkj+/sjKxOjMybi/6/g u+Jmy3bJC8ql0H57/nqeyJdsbVXnEzO+Rp471lcTFkDeNrG7gYT3jU/dO9p49RJZ 4LLnv3uyd2klPmspVPpCMOZuxR2l8uWSS6Pq+RBn01G7IrutfPunmvmBH/fswLsL 79SAhBjZmAxSX+0g6NWxXsdHGLCEgLojkFjVpqJSxu7RHDmFUevHEHXF2/cq4rNd b9r7LdhNSoG+Nslgfaw7JPBpNqS7A6wcyY9yp7FRJBB7phKLH/Xdn5OgODRm2sCc CYLt//LIe0QpI03RutQ0FKi+tpMF9L4jFUmFcUlOtM30R+ztdySg1GdXK6Q701KX ZMpBf54Wob8t0mrgnfzM1fDFAhgSzjG+QPdsA0T9P9mLLFOy5KkIis6CPzHCTEv6 6kPnwdAMxs9yppNYHRVKWb5bBJqbZFDTODutcQgP4l1v0Wvmqwy4QKMHQJMzWAsb +tBrvfoxoN6zkhWlCZ9DjwE4wOGfLVUjztGg2x4eu1HnlGFQf8Egpk3cjI6n8zKo zPwF8EiV3DnS1sG1YFufC0Dk1Y8Rzrm5D9BeF91U58QH9eMCAwEAAaOCCgQwggoA MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU2EFpO3Ck+U3l0ilWDrVXIGwov68wHwYD VR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEG CCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0 dHA6Ly9yMy5pLmxlbmNyLm9yZy8wgggJBgNVHREEgggAMIIH/IISKi5haHVnZWRv bWFpbnMuY29tghsqLmFsaWFpbnN1cmFuY2VzZXJ2aWNlcy5jb22CFSouYWxpb25h c2V1cm9iYWtlLmNvbYIRKi5hbXRudGFncm91cC5jb22CDSouYXBwZXRneS5jb22C GiouYXJvdXNhbGNvbnRyb2xzZWVrZXIuY29tghUqLmF0ZWF0ZWlnaHRzb2lyZS5j b22CFyouYmx1ZXNreXBsdW1iaW5nY28uY29tghgqLmJ1eXBhcmtzaWRlZmxvd2Vy cy5jb22CDyouY2xhcml0eXZ1LmNvbYISKi5jeWNsaW53ZWVrbHkuY29tghAqLmRp emlwYWw0NDYuY29tghAqLmRpemlwYWw0NDcuY29tghAqLmRpemlwYWw0NDkuY29t gg8qLmRvcmFtYW1wNC5jb22CFCouZWxlY3Ryb25peHdvcmxkLmNvghoqLmVsdGVt cGxldGFwYXN5YnVyZ3Vlci5lc4IMKi5lc3lyZWMuY29tghIqLmdvZG5lcHJvZ3Jh bXkucGyCIyouaGF2ZXRoZXlwbGF5ZWR0aGF0d2l6YXJkZ2FtZTIuY29tghMqLmhv dHJvZHRyYWRpbmcuY29tghAqLmluY29ycGFydGUuY29tggsqLmtnMDExLmNvbYII Ki5sYXMuYW2CHyoubGFzdmVnYXNoaWdoaGVhdGJhc2ViYWxsLmNsdWKCEyoubWVo ZXJpdGFnZWRuYS5jb22CEioubndlY2FyZGFwcGx5LmNvbYITKi5vaW52b2ljZWNs b3VkLmNvbYITKi5vbWFoYXBhcmt2aWV3LmNvbYIfKi5wYXNhZGVuYWx1bWJlcmFu ZHN1cHBsaWVzLmNvbYIaKi5wcG1jbGFpbXNhbXRudGFncm91cC5jb22CDSoucHJp bmdlbHMuZXOCGSoucHVibGlzaHNjaG9vbHJldmlldy5jb22CGCoucXVhbGl0eXJ1 Z3Nmb3JzYWxlLmNvbYIdKi5xdWFudHVtdHJhZGluZ3NvbHV0aW9ucy5jb22CCyou cXV4aWYuY29tghMqLnJhbmRvbS1lcGlzb2RlLnJ1gh4qLnJlcHVibGljYnJvYWRj YXN0bmV0d29yay5jb22CGyoucmVzdGF1cmFudGVsYXNhbmFicmVzYS5lc4IRKi5z bG90c3N0cmVldC5jb22CEyouc29jaWFsd2lyZW5ld3MudXOCESouc3RhcGVzYXVk aW8uY29tghAqLnN0eWxlZWxvZnQuY29tghMqLnRoZWh1bmdyeWxhYnMuY29tgg8q LnR0cnNjaGVhdC5jb22CESoudmVuZG9zaW1wbGUuY29tgg8qLndhdGVycGlsay5j b22CEyoud3d3cHNva2xhaG9tYS5jb22CECoud3lubWluZXJhbC5jb22CCioueWFt b24uaW6CEGFodWdlZG9tYWlucy5jb22CGWFsaWFpbnN1cmFuY2VzZXJ2aWNlcy5j b22CE2FsaW9uYXNldXJvYmFrZS5jb22CD2FtdG50YWdyb3VwLmNvbYILYXBwZXRn eS5jb22CGGFyb3VzYWxjb250cm9sc2Vla2VyLmNvbYITYXRlYXRlaWdodHNvaXJl LmNvbYIVYmx1ZXNreXBsdW1iaW5nY28uY29tghZidXlwYXJrc2lkZWZsb3dlcnMu Y29tgg1jbGFyaXR5dnUuY29tghBjeWNsaW53ZWVrbHkuY29tgg5kaXppcGFsNDQ2 LmNvbYIOZGl6aXBhbDQ0Ny5jb22CDmRpemlwYWw0NDkuY29tgg1kb3JhbWFtcDQu Y29tghJlbGVjdHJvbml4d29ybGQuY2+CGGVsdGVtcGxldGFwYXN5YnVyZ3Vlci5l c4IKZXN5cmVjLmNvbYIQZ29kbmVwcm9ncmFteS5wbIIhaGF2ZXRoZXlwbGF5ZWR0 aGF0d2l6YXJkZ2FtZTIuY29tghFob3Ryb2R0cmFkaW5nLmNvbYIOaW5jb3JwYXJ0 ZS5jb22CCWtnMDExLmNvbYIGbGFzLmFtgh1sYXN2ZWdhc2hpZ2hoZWF0YmFzZWJh bGwuY2x1YoIRbWVoZXJpdGFnZWRuYS5jb22CEG53ZWNhcmRhcHBseS5jb22CEW9p bnZvaWNlY2xvdWQuY29tghFvbWFoYXBhcmt2aWV3LmNvbYIdcGFzYWRlbmFsdW1i ZXJhbmRzdXBwbGllcy5jb22CGHBwbWNsYWltc2FtdG50YWdyb3VwLmNvbYILcHJp bmdlbHMuZXOCF3B1Ymxpc2hzY2hvb2xyZXZpZXcuY29tghZxdWFsaXR5cnVnc2Zv cnNhbGUuY29tghtxdWFudHVtdHJhZGluZ3NvbHV0aW9ucy5jb22CCXF1eGlmLmNv bYIRcmFuZG9tLWVwaXNvZGUucnWCHHJlcHVibGljYnJvYWRjYXN0bmV0d29yay5j b22CGXJlc3RhdXJhbnRlbGFzYW5hYnJlc2EuZXOCD3Nsb3Rzc3RyZWV0LmNvbYIR c29jaWFsd2lyZW5ld3MudXOCD3N0YXBlc2F1ZGlvLmNvbYIOc3R5bGVlbG9mdC5j b22CEXRoZWh1bmdyeWxhYnMuY29tgg10dHJzY2hlYXQuY29tgg92ZW5kb3NpbXBs ZS5jb22CDXdhdGVycGlsay5jb22CEXd3d3Bzb2tsYWhvbWEuY29tgg53eW5taW5l cmFsLmNvbYIIeWFtb24uaW4wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEGBgorBgEE AdZ5AgQCBIH3BIH0APIAdwA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frU FwAAAYsUgfnYAAAEAwBIMEYCIQCzHBrHU1J7j33gei9sKwaJ3/racb0o2lWAm5ro lyamdAIhAKvowaB4AdVsalPpNi5Im2qsLBfISDVjRmmfm4pK2Em4AHcA7s3QZNXb Gs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGLFIH6VwAABAMASDBGAiEAijrd 81oaAU45LgnS6hBHpRgck7a7zGfgBkQSn64DJl0CIQCRZfjAoHREt4m9BEI3t8Pl /fQVX92/x1koUcBj/xtiBjANBgkqhkiG9w0BAQsFAAOCAQEAFT/xC/18pyf3yqdo 6eab/6lQBp/gXviOqtUXSPxWVqyDA/DfgWR2hVotssnRLZ8D0rlVkle/hdnMYQDm dqLCQ6kcoNNokn8YlDurstPAKV/YFB8sLTbwYCLprmUDHSqErhgqGggwEtqpnNdr zjz0stZ91y+VfD/M2wTY7y+StvSzP17wEdbUe+WJHYRLumgMmC+OuikQJXA3V5yz QidzJ8ebsoKg7oCWKwtgWffdtoMGV1yBRetv5EeBHmvhRqJmaObaZhX1iv67VKeF VqF65dWU0x1W8oAMn3bC2So3P0vmTPJhSszmarZTUztkSPFpHpwyRHGpL9SVn5gx Vb6Tjw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnEiiqBWuqgNLgq3FkIhP kS+e/M7rWsaubDZBnAJWC7zVD1bJaehFeVC38tDu2qFQyxoCAS3aOKeY5gaW0JJ9 dIA+APt00KaHSLcRofUEVWkj+/sjKxOjMybi/6/gu+Jmy3bJC8ql0H57/nqeyJds bVXnEzO+Rp471lcTFkDeNrG7gYT3jU/dO9p49RJZ4LLnv3uyd2klPmspVPpCMOZu xR2l8uWSS6Pq+RBn01G7IrutfPunmvmBH/fswLsL79SAhBjZmAxSX+0g6NWxXsdH GLCEgLojkFjVpqJSxu7RHDmFUevHEHXF2/cq4rNdb9r7LdhNSoG+Nslgfaw7JPBp NqS7A6wcyY9yp7FRJBB7phKLH/Xdn5OgODRm2sCcCYLt//LIe0QpI03RutQ0FKi+ tpMF9L4jFUmFcUlOtM30R+ztdySg1GdXK6Q701KXZMpBf54Wob8t0mrgnfzM1fDF AhgSzjG+QPdsA0T9P9mLLFOy5KkIis6CPzHCTEv66kPnwdAMxs9yppNYHRVKWb5b BJqbZFDTODutcQgP4l1v0Wvmqwy4QKMHQJMzWAsb+tBrvfoxoN6zkhWlCZ9DjwE4 wOGfLVUjztGg2x4eu1HnlGFQf8Egpk3cjI6n8zKozPwF8EiV3DnS1sG1YFufC0Dk 1Y8Rzrm5D9BeF91U58QH9eMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 403281429335245745792277429663703798055917 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-09 11:55:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-07 11:55:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'meheritagedna.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 637581999947091304136852429509039062696014858085371574206434797627382418999602701707952029377803504889699652745350797332257895852243369301620301445997642236323818282072558989778993928533795086004237772851024388911866458624598475920609936494592555276657240652052563797985815434755214280928241529159501411746634041402817918689276988117081182514044655643652731236879716237527071080627811692590623292340396162322548501069623753183331712214731847487295608379002220965434903772079759687963334063889508290865136509490437029880397839960914230671863666674315887333958930325832049659230321041072567266587667242161549642994140411262678229284536542837650768727839467758889742290376620362268885443168342348542225889424485483923097086228881644823469579745508056034551347777837905171932070805205763843134748423593913220353825525463369614563236461126257624000117307509009681145544266672629121891322877512891357572803938860792645194734418835503765330092941643586481671473634694950163992249835334283714501656248115104792705623913892365046161934992244141499885491674235178583273497157470088077076606457838876642663306605356029864752903060350389544842361787850306538160840704104511892025231032587955947500715451202685767792819109755077326268853129836003 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d841693b70a4f94de5d229560eb557206c28bfaf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2048 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ahugedomains.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aliainsuranceservices.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.alionaseurobake.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.amtntagroup.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.appetgy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.arousalcontrolseeker.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ateateightsoire.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.blueskyplumbingco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.buyparksideflowers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.clarityvu.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cyclinweekly.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dizipal446.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dizipal447.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dizipal449.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.doramamp4.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.electronixworld.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.eltempletapasyburguer.es' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.esyrec.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.godneprogramy.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.havetheyplayedthatwizardgame2.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hotrodtrading.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.incorparte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kg011.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.las.am' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lasvegashighheatbaseball.club' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.meheritagedna.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.nwecardapply.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.oinvoicecloud.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.omahaparkview.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pasadenalumberandsupplies.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ppmclaimsamtntagroup.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pringels.es' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.publishschoolreview.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.qualityrugsforsale.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.quantumtradingsolutions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.quxif.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.random-episode.ru' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.republicbroadcastnetwork.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.restaurantelasanabresa.es' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.slotsstreet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.socialwirenews.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stapesaudio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.styleeloft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.thehungrylabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ttrscheat.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.vendosimple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.waterpilk.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.wwwpsoklahoma.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.wynmineral.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.yamon.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ahugedomains.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aliainsuranceservices.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alionaseurobake.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amtntagroup.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'appetgy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'arousalcontrolseeker.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ateateightsoire.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blueskyplumbingco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'buyparksideflowers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clarityvu.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cyclinweekly.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dizipal446.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dizipal447.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dizipal449.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'doramamp4.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'electronixworld.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eltempletapasyburguer.es' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'esyrec.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'godneprogramy.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'havetheyplayedthatwizardgame2.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hotrodtrading.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'incorparte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kg011.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'las.am' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lasvegashighheatbaseball.club' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'meheritagedna.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nwecardapply.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oinvoicecloud.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'omahaparkview.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pasadenalumberandsupplies.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ppmclaimsamtntagroup.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pringels.es' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'publishschoolreview.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qualityrugsforsale.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'quantumtradingsolutions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'quxif.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'random-episode.ru' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'republicbroadcastnetwork.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'restaurantelasanabresa.es' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'slotsstreet.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'socialwirenews.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stapesaudio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'styleeloft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thehungrylabs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ttrscheat.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vendosimple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'waterpilk.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwwpsoklahoma.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wynmineral.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'yamon.in' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b1481f9d80000040300483046022100b31c1ac753527b8f7de07a2f6c2b0689dffada71bd28da55809b9ae89726a674022100abe8c1a07801d56c6a53e9362e489b6aac2c17c848356346699f9b8a4ad849b8007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018b1481fa5700000403004830460221008a3addf35a1a014e392e09d2ea1047a5181c93b6bbcc67e00644129fae03265d0221009165f8c0a07444b789bd044237b7c3e5fdf4155fddbfc7592851c063ff1b6206 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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