blog.puget.tech
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:24:33:e8:1f:95:70:a1:02:09:f5:e4:dd:36:21:d9:81:b7 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=blog.puget.tech
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:24:33:e8:1f:95:70:a1:02:09:f5:e4:dd:36:21:d9:81:b7Serial Number (int): 273656018885685286309693687849622684926391
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d8:52:0d:10:03:c5:24:41:ee:4e:94:bc:04:86:4f:42:de:5e:63:ac
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e0:b6:38:5b:7e:20:9e:eb:be:a8:3b:73:60:43:d2:10:85:96:7c:69
Fingerprint (sha256): de:54:39:4a:36:b1:9c:45:ea:6a:d1:c0:02:ca:46:ab:b8:e8:24:64:9b:4d:14:cd:3c:7f:79:40:31:2c:da:7f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate blog.puget.tech
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for blog.puget.tech
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
blog.puget.tech
Other certificates including the domain name puget.tech
(limited to 100 certificates)
www.puget.tech
projects.arturo.ai
puget.tech
www.puget.tech
puget.tech
clients.puget.tech
clients.puget.tech
portal.puget.tech
puget.tech
support.a-blogcms.jp
billing.puget.tech
puget.tech
clients.puget.tech
sni.cloudflaressl.com
cisupport.tekchand.com
puget.tech
account.puget.tech
status.puget.tech
invoice.ltol.com
srrit.tachihelp.com
projects.arturo.ai
clients.puget.tech
blog.puget.tech
www.puget.tech
support.deploypartners.com
support.a-blogcms.jp
blog.puget.tech
puget.tech
sni.cloudflaressl.com
projects.platinumwfm.com
clients.puget.tech
clients.puget.tech
support.getforsite.com
clients.puget.tech
billing.puget.tech
clients.puget.tech
puget.tech
billing.puget.tech
puget.tech
blog.puget.tech
blog.puget.tech
blog.puget.tech
www.puget.tech
support.getforsite.com
fee.stir.ae
clients.puget.tech
clients.puget.tech
status.crossknowledge.com
projects.wjddesigns.com
invoice.puget.tech
*.puget.tech
puget.tech
assets.puget.tech
landing.puget.tech
clients.puget.tech
support.sdatec.com
blog.puget.tech
billing.puget.tech
status.telehouse.com.sg
projects.puget.tech
www.puget.tech
puget.tech
status.puget.tech
portal.puget.tech
billing.puget.tech
puget.tech
sni.cloudflaressl.com
clients.puget.tech
community.tago.io
support.sdatec.com
puget.tech
invoice.puget.tech
blog.puget.tech
puget.tech
blog.puget.tech
blog.puget.tech
support.a-blogcms.jp
fee.stir.ae
portal.puget.tech
puget.tech
projects.arturo.ai
puget.tech
www.puget.tech
puget.tech
clients.puget.tech
clients.puget.tech
portal.puget.tech
puget.tech
support.a-blogcms.jp
billing.puget.tech
puget.tech
clients.puget.tech
sni.cloudflaressl.com
cisupport.tekchand.com
puget.tech
account.puget.tech
status.puget.tech
invoice.ltol.com
srrit.tachihelp.com
projects.arturo.ai
clients.puget.tech
blog.puget.tech
www.puget.tech
support.deploypartners.com
support.a-blogcms.jp
blog.puget.tech
puget.tech
sni.cloudflaressl.com
projects.platinumwfm.com
clients.puget.tech
clients.puget.tech
support.getforsite.com
clients.puget.tech
billing.puget.tech
clients.puget.tech
puget.tech
billing.puget.tech
puget.tech
blog.puget.tech
blog.puget.tech
blog.puget.tech
www.puget.tech
support.getforsite.com
fee.stir.ae
clients.puget.tech
clients.puget.tech
status.crossknowledge.com
projects.wjddesigns.com
invoice.puget.tech
*.puget.tech
puget.tech
assets.puget.tech
landing.puget.tech
clients.puget.tech
support.sdatec.com
blog.puget.tech
billing.puget.tech
status.telehouse.com.sg
projects.puget.tech
www.puget.tech
puget.tech
status.puget.tech
portal.puget.tech
billing.puget.tech
puget.tech
sni.cloudflaressl.com
clients.puget.tech
community.tago.io
support.sdatec.com
puget.tech
invoice.puget.tech
blog.puget.tech
puget.tech
blog.puget.tech
blog.puget.tech
support.a-blogcms.jp
fee.stir.ae
portal.puget.tech
puget.tech
Certificate
The complete raw certificate details for blog.puget.tech in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgISAyQz6B+VcKECCfXk3TYh2YG3MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjcyMzEzMjZaFw0x OTA2MjUyMzEzMjZaMBoxGDAWBgNVBAMTD2Jsb2cucHVnZXQudGVjaDCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAJneQ1KUSZm6jGxgQEgXfXEaKz1gSV4O 7SXir4OwPTGBB0H8W5HP59UMWTGeeqEeliTtXLQgmDBQXIdWh0NjwvdoyOIgNbjS t5eiEh0si9M58w9axbU0gaAr7Kt6+EOAMFdROgujQ/wtLPkGe1D+R0w7YWx9uASW sKviQ4SVKELZyKHjmgmU1YpahMD3GM0ORPf/rT0E5BRnq9lP3q/+maSN3RPDyl83 iKLgW7VbqwOj3LwdI5RYCW4Fyb25OWjoXqFW8vT7HlpZNueoWsMVAG2z01FSlP71 SE8IpTMZcdbvlq59bUcqDQ5KxZu/SzQWmFMjjTkTMzWyeuBmGjsz7RRIDJGz4pgt Py9FXSkREIjNox2kewPxkwp2omeHb07cfJreG5Wq6l/iH5MZntsKzEnYhWxOoapC jzNDN12WBTVCtaNEkmdr5TqmvId65eMJ8qRJTk/TqCSARbbFzoZQD+Xm4kDX5Roq zR12gmf0b3CKyMeDpTnDutqrcqJ6b2PTei80WXEayUSrQmngYE/W5WinbAQIfPqH tVKojvLB/iiUMcEQN6Zt/mzB59ygnaWe5OcR4k+oTknbL7pCGOzWJcm/27rcF+tv k5TnJGdKpIdhLKuYbruaTiqDRkvt/xYoyLB0nX8+5EPUqDXJjQWL23h9wwvemgfm JiiJuEzp4dW3AgMBAAGjggJlMIICYTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNhS DRADxSRB7k6UvASGT0LeXmOsMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPYmxvZy5wdWdldC50ZWNo MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB 9gSB8wDxAHcAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFpwaTx 7AAABAMASDBGAiEAyvBP5GS8RvqlG2WKMEor12KyMQOoRGDm+22Rnq2abfMCIQDe bHrp6Y7A9dsia9kAOox0Gt/rBLPhnSeXa0joDSp2kQB2AGPy283oO8wszwtyhCdX azOkjWF3j711pjixx2hUS9iNAAABacGk8e4AAAQDAEcwRQIgTgcbl1rSEc/Tunpo OaVBkpDe+/2KJZXY6pRqPP+bkvcCIQCR0aeveCUP1kzV8pN+4f5qWu7zyhhV5xD8 eKkFqF517TANBgkqhkiG9w0BAQsFAAOCAQEAOGkn8WzB5bOEOuNM/ccJSOvQmudF gCqQfseW97cA2MCdGxb8pKvFxVOstYc8mlYfmSdRq/TV14lFuNlkWpoEyK4sZv7C JsI2SBiTldLyNaf2Nvp+NzjVk7xeN/A9TACT2QQP2R0jGvr8U92PF8GGceUbN5fY MpCu86RLcmmI001nLuMH6EQfUR+AkpK8fF7M6ChU8+J7vXOAqbAVeLYnoZRjDWcg NPH24sFwKhbvhUdD9RHlhqL/w/3enJszMzr6fORLv4cEHIfOui6ppodhjiAAZ753 Qw4u4fhk8wFhG+nTYjnDjLx8Ddm39/VQuXxJD2BH1Rb1yN3zey2g064seg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAmd5DUpRJmbqMbGBASBd9 cRorPWBJXg7tJeKvg7A9MYEHQfxbkc/n1QxZMZ56oR6WJO1ctCCYMFBch1aHQ2PC 92jI4iA1uNK3l6ISHSyL0znzD1rFtTSBoCvsq3r4Q4AwV1E6C6ND/C0s+QZ7UP5H TDthbH24BJawq+JDhJUoQtnIoeOaCZTVilqEwPcYzQ5E9/+tPQTkFGer2U/er/6Z pI3dE8PKXzeIouBbtVurA6PcvB0jlFgJbgXJvbk5aOheoVby9PseWlk256hawxUA bbPTUVKU/vVITwilMxlx1u+Wrn1tRyoNDkrFm79LNBaYUyONORMzNbJ64GYaOzPt FEgMkbPimC0/L0VdKREQiM2jHaR7A/GTCnaiZ4dvTtx8mt4blarqX+Ifkxme2wrM SdiFbE6hqkKPM0M3XZYFNUK1o0SSZ2vlOqa8h3rl4wnypElOT9OoJIBFtsXOhlAP 5ebiQNflGirNHXaCZ/RvcIrIx4OlOcO62qtyonpvY9N6LzRZcRrJRKtCaeBgT9bl aKdsBAh8+oe1UqiO8sH+KJQxwRA3pm3+bMHn3KCdpZ7k5xHiT6hOSdsvukIY7NYl yb/butwX62+TlOckZ0qkh2Esq5huu5pOKoNGS+3/FijIsHSdfz7kQ9SoNcmNBYvb eH3DC96aB+YmKIm4TOnh1bcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 273656018885685286309693687849622684926391 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-27 23:13:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-25 23:13:26 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'blog.puget.tech' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 627727549606454248523083611334206656023269792600754432985674783780685235943558847420211485106427381892012663311209143831153502864040035712104641417553911409057013907425677007801753253842828011694565774164352474399176679777283934764182242953373635780795945461402332979337991148131754126832198381125620189775000991635989522804230578833275757355714668709205664440028603620283020134954986793266824244738046157984490487857808395485847858374932009013942544243277815869418919935941316181957636151494569788926091520403973743469836344844698090137557939778424328943740675327043324500855165531957431456742679445772751466938422597716543886036608118575671117887200846375804914667793250242358593024815339375648794284795408192026897852334004673732538756879759912004661244697136984480348305911210118695516667945601397036160975646252078877131856490341819086446540000695517308624344976768574876175790031864356730143242468855553251075597955792315307936640240035469480441124812159509451173062358555998317589345258251386566153384998567923769808001845145727354143365231403506979244613076927613363367000313168306827860498517780503117462076583924942886255648723113950589894948478243791038081212137277730774676436720440005347321075368712761759390785989629367 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d8520d1003c52441ee4e94bc04864f42de5e63ac . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.puget.tech' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000169c1a4f1ec0000040300483046022100caf04fe464bc46faa51b658a304a2bd762b23103a84460e6fb6d919ead9a6df3022100de6c7ae9e98ec0f5db226bd9003a8c741adfeb04b3e19d27976b48e80d2a769100760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169c1a4f1ee000004030047304502204e071b975ad211cfd3ba7a6839a5419290defbfd8a2595d8ea946a3cff9b92f702210091d1a7af78250fd64cd5f2937ee1fe6a5aeef3ca1855e710fc78a905a85e75ed . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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