dev.pigma.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:23:72:9e:f7:25:87:71:ea:60:2e:11:a8:4e:9e:18:1c:08 was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=dev.pigma.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:23:72:9e:f7:25:87:71:ea:60:2e:11:a8:4e:9e:18:1c:08Serial Number (int): 273399098024665247380107988876337689926664
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 30:2c:8f:4a:44:bf:ab:d1:68:f6:a6:85:b0:1e:ab:48:96:8e:43:a3
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 46:2e:08:75:ab:86:f6:0f:7a:bc:d1:13:9c:e9:c0:f5:cc:a1:ae:b5
Fingerprint (sha256): dd:71:d1:03:31:f3:5f:a8:36:e7:be:3e:0a:bf:83:57:5c:c2:5d:24:db:17:e6:3d:ec:94:9b:e4:d4:4b:da:f5
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate dev.pigma.org
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dev.pigma.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cms-dev.pigma.org
dev.observatoire-nafu.fr
dev.observatoire-nafu.org
dev.observatoire-risques-nouvelle-aquitaine.fr
dev.observatoire-risques-nouvelle-aquitaine.org
dev.observatoire-risques.fr
dev.observatoire-risques.org
dev.pigma.org
dev.observatoire-nafu.fr
dev.observatoire-nafu.org
dev.observatoire-risques-nouvelle-aquitaine.fr
dev.observatoire-risques-nouvelle-aquitaine.org
dev.observatoire-risques.fr
dev.observatoire-risques.org
dev.pigma.org
Other certificates including the domain name pigma.org
(limited to 100 certificates)
dev.pigma.org
pigma.org
gipatgeri.ovh
gipatgeri.ovh
dev.pigma.org
dev.pigma.org
pigma.org
dev2.pigma.org
www.pigma.org
pigma.org
dev.pigma.org
pigma.org
pigma.org
dev.pigma.org
pigma.org
dev.pigma.org
pigma.org
gipatgeri.ovh
dev.pigma.org
dev2.pigma.org
gipatgeri.ovh
gipatgeri.ovh
pigma.org
gipatgeri.ovh
gipatgeri.ovh
pigma.org
pigma.org
pigma.org
gipatgeri.ovh
gipatgeri.ovh
dev2.pigma.org
pigma.org
pigma.org
www.pigma.org
pigma.org
dev.pigma.org
pigma.org
dev.pigma.org
pigma.org
pigma.org
gipatgeri.ovh
www.pigma.org
pigma.org
www.pigma.org
pigma.org
www.pigma.org
pigma.org
dev2.pigma.org
gipatgeri.ovh
pigma.org
pigma.org
pigma.org
pigma.org
pigma.org
gipatgeri.ovh
www.pigma.org
dev.pigma.org
portail.pigma.org
dev.pigma.org
dev2.pigma.org
dev.pigma.org
pigma.org
dev.pigma.org
dev.pigma.org
dev.pigma.org
pigma.org
gipatgeri.ovh
dev2.pigma.org
pigma.org
www.pigma.org
pigma.org
gipatgeri.ovh
gipatgeri.ovh
dev.pigma.org
dev.pigma.org
pigma.org
dev2.pigma.org
www.pigma.org
pigma.org
dev.pigma.org
pigma.org
pigma.org
dev.pigma.org
pigma.org
dev.pigma.org
pigma.org
gipatgeri.ovh
dev.pigma.org
dev2.pigma.org
gipatgeri.ovh
gipatgeri.ovh
pigma.org
gipatgeri.ovh
gipatgeri.ovh
pigma.org
pigma.org
pigma.org
gipatgeri.ovh
gipatgeri.ovh
dev2.pigma.org
pigma.org
pigma.org
www.pigma.org
pigma.org
dev.pigma.org
pigma.org
dev.pigma.org
pigma.org
pigma.org
gipatgeri.ovh
www.pigma.org
pigma.org
www.pigma.org
pigma.org
www.pigma.org
pigma.org
dev2.pigma.org
gipatgeri.ovh
pigma.org
pigma.org
pigma.org
pigma.org
pigma.org
gipatgeri.ovh
www.pigma.org
dev.pigma.org
portail.pigma.org
dev.pigma.org
dev2.pigma.org
dev.pigma.org
pigma.org
dev.pigma.org
dev.pigma.org
dev.pigma.org
pigma.org
gipatgeri.ovh
dev2.pigma.org
pigma.org
www.pigma.org
Certificate
The complete raw certificate details for dev.pigma.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG5TCCBc2gAwIBAgISAyNynvclh3HqYC4RqE6eGBwIMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzAyMDMxMDEzMDBaFw0x NzA1MDQxMDEzMDBaMBgxFjAUBgNVBAMTDWRldi5waWdtYS5vcmcwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQChIyNvJSXRb1P3brBjP/Z6ZPDsailvm8df 2Bt8N8I1uy4qAOQa7uGqVuddc3HCwwfzT/jrPnqrIO2n/Qgc7kdtiVyIkXB2T7rP GW3gGYHPmiUSaZ1PSc1lElKvQkDWM/D4SjUjxfjXPNu41Gf0MI3bVD+mMNI5Yth0 5cMe4g97/9sQ8205OnBNEVbf7c4qddpABezpisfuGGLoyIhqTZo+IrcQpJQJB5xj AYmAi7toLoWYA3zjrdmv97QdPQwtKT6buaTEMgq/9pHXGWyZ7bR6aMZEcNtxeePO mtwo8A6lJzdP5gCw2gvbfAs6Qi+1+AWIA4hp6yFiTfyASFJr4XcjMIF/rCa8E2fF nakhxkpRE06AApY7umf/GAhZ65mRwNGMAgdCugQ3mN3ifHkNTRSHLYS/3bpC5FFh fJR0epsC4pPcZlEUWSxs5nF/PmBaRcwf8K5g++xraDmASnKnH25ReYkpjn5K3uWQ aebtqYc1VeCJ1DhLDulK/whgFfYhm66zZjkIVrTgyBO5zAmM/RC7rmHPFNXLJG9F 2qv+Ovp686frnJq6aFAW61t0VijfetyzU3/opVuGZ3k89HvxhxK9shfGjyqywi75 LnecV7Rv/it1weUBDyvDOBMe/IUkeAqLbXb+KLwpT82y1RQpCx0y1M8hMVYgpBO2 Qw9gmQ+Y6QIDAQABo4IC9TCCAvEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQwLI9K RL+r0Wj2poWwHqtIlo5DozAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBwBggrBgEFBQcBAQRkMGIwLwYIKwYBBQUHMAGGI2h0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcvMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzCB/gYDVR0RBIH2MIHzghFjbXMtZGV2LnBpZ21h Lm9yZ4IYZGV2Lm9ic2VydmF0b2lyZS1uYWZ1LmZyghlkZXYub2JzZXJ2YXRvaXJl LW5hZnUub3Jngi5kZXYub2JzZXJ2YXRvaXJlLXJpc3F1ZXMtbm91dmVsbGUtYXF1 aXRhaW5lLmZygi9kZXYub2JzZXJ2YXRvaXJlLXJpc3F1ZXMtbm91dmVsbGUtYXF1 aXRhaW5lLm9yZ4IbZGV2Lm9ic2VydmF0b2lyZS1yaXNxdWVzLmZyghxkZXYub2Jz ZXJ2YXRvaXJlLXJpc3F1ZXMub3Jngg1kZXYucGlnbWEub3JnMIH+BgNVHSAEgfYw gfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcCARYaaHR0 cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGbVGhpcyBD ZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBh cnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0 ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3Np dG9yeS8wDQYJKoZIhvcNAQELBQADggEBAHFd9NRbWZSool7Ri9d7+/FQQL+sOKUl H9MRfWyb68EJS5717oUmwioMZM2J+Egzfp1wMIi4CEml2isUcy6tggnrhpRJs1b3 3iqSft1TjdxS2YFcLqTmoW8EwRejx/15lDW7OqIPJ2nrRXqGhOpawzw9HN6mA7Q4 Gzg7aGixbXxamhg1bllHS0yU/9easoetYqrnsfUgzU3Y3Z9mqvV5U+ZTg3MRnqke dC4pjQK5qE+Vq5Kh7CKWroS3Hqig+Mgecs8UdUAyVXR0AF6079UPxgbJOI2fQ0v8 xHCuOIZgqUAvwYc5mydGtI+UP2ozmQIDLsFx2rwYB0NsBuCmAu7/oXY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoSMjbyUl0W9T926wYz/2 emTw7Gopb5vHX9gbfDfCNbsuKgDkGu7hqlbnXXNxwsMH80/46z56qyDtp/0IHO5H bYlciJFwdk+6zxlt4BmBz5olEmmdT0nNZRJSr0JA1jPw+Eo1I8X41zzbuNRn9DCN 21Q/pjDSOWLYdOXDHuIPe//bEPNtOTpwTRFW3+3OKnXaQAXs6YrH7hhi6MiIak2a PiK3EKSUCQecYwGJgIu7aC6FmAN8463Zr/e0HT0MLSk+m7mkxDIKv/aR1xlsme20 emjGRHDbcXnjzprcKPAOpSc3T+YAsNoL23wLOkIvtfgFiAOIaeshYk38gEhSa+F3 IzCBf6wmvBNnxZ2pIcZKURNOgAKWO7pn/xgIWeuZkcDRjAIHQroEN5jd4nx5DU0U hy2Ev926QuRRYXyUdHqbAuKT3GZRFFksbOZxfz5gWkXMH/CuYPvsa2g5gEpypx9u UXmJKY5+St7lkGnm7amHNVXgidQ4Sw7pSv8IYBX2IZuus2Y5CFa04MgTucwJjP0Q u65hzxTVyyRvRdqr/jr6evOn65yaumhQFutbdFYo33rcs1N/6KVbhmd5PPR78YcS vbIXxo8qssIu+S53nFe0b/4rdcHlAQ8rwzgTHvyFJHgKi212/ii8KU/NstUUKQsd MtTPITFWIKQTtkMPYJkPmOkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 273399098024665247380107988876337689926664 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-03 10:13:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-04 10:13:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dev.pigma.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 657382664580337017668271216990493577145476719364921502239688596814571980894489942932333211599719667755569973189137590384091364466240119499394923695467720848289014641849160390226288949382313479842537774477646615713682313891999004131203728990981523220552753829007619307960914116053820338024752885028195071318474379630989967199795286294702188433263602455650211350705738653934931612519723716733851404563566314289894577007961785248899373878897709460306089391782041996252923505368704585594623406845769500826230497356292661523326012351403978852931591356187297641406001034191346507598388562642534475920260620576521979255490448963909436668265637166427030735420039891982680193650915154297629276937669043563709238443216383373990047207965041425205998278685973091006995768273369765541658171097814531237747159756852127442848826432356811869200747319753815804578261512768947022042116852462944105212211822608267125913339800821713493440036318411829458727135850458587052413519742341630272696264444139990658067231501412475812722181638175949680263728716475074977325964726428243127407602468087425624969543754063443016964093667709917712439626784119698257419144367929918873237718957843559979584691440801465741001588766178299711710411721752006320586476198121 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 302c8f4a44bfabd168f6a685b01eab48968e43a3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cms-dev.pigma.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.observatoire-nafu.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.observatoire-nafu.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.observatoire-risques-nouvelle-aquitaine.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.observatoire-risques-nouvelle-aquitaine.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.observatoire-risques.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.observatoire-risques.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.pigma.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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