aquah2o.pondh2o.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:47:4e:97:16:9c:65:da:24:5d:58:26:18:8c:62:7b:fa:71 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=aquah2o.pondh2o.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:47:4e:97:16:9c:65:da:24:5d:58:26:18:8c:62:7b:fa:71Serial Number (int): 285601370125768359378939410896912677337713
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5f:f0:52:ca:e4:e3:51:c1:0f:57:cb:df:a7:d2:72:a9:70:76:a4:78
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a2:d8:56:d8:67:d1:68:6e:2e:90:ca:e7:9b:fa:f0:37:02:e2:26:68
Fingerprint (sha256): df:74:3c:26:4d:9c:c1:f2:96:b7:95:26:06:55:dd:95:38:2d:65:e3:96:4f:58:44:93:00:eb:76:b0:5b:7a:54
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate aquah2o.pondh2o.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aquah2o.pondh2o.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aquah2o.pondh2o.com
aquariumh2o.com
www.aquah2o.pondh2o.com
www.aquariumh2o.com
aquariumh2o.com
www.aquah2o.pondh2o.com
www.aquariumh2o.com
Other certificates including the domain name pondh2o.com
(limited to 100 certificates)
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
aqua.pondh2o.com
aquah2o.pondh2o.com
dev.pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
aquah2o.pondh2o.com
pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
aqua.pondh2o.com
sni111319.cloudflaressl.com
pondh2o.com
sni111319.cloudflaressl.com
pondh2o.com
pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
pondh2o.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
dev.pondh2o.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
www.pondh2o.com
pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
aquah2o.pondh2o.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
*.pondh2o.com
sni111319.cloudflaressl.com
sni.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
pondh2o.com
dev.pondh2o.com
sni.cloudflaressl.com
aquariumh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
pondh2o.com
aquah2o.pondh2o.com
aquah2o.pondh2o.com
pondh2o.com
sni111319.cloudflaressl.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
dev.pondh2o.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
dev.pondh2o.com
aquah2o.pondh2o.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
aqua.pondh2o.com
aquah2o.pondh2o.com
dev.pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
aquah2o.pondh2o.com
pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
aqua.pondh2o.com
sni111319.cloudflaressl.com
pondh2o.com
sni111319.cloudflaressl.com
pondh2o.com
pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
pondh2o.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
dev.pondh2o.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
www.pondh2o.com
pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
aquah2o.pondh2o.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
*.pondh2o.com
sni111319.cloudflaressl.com
sni.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
pondh2o.com
dev.pondh2o.com
sni.cloudflaressl.com
aquariumh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
pondh2o.com
aquah2o.pondh2o.com
aquah2o.pondh2o.com
pondh2o.com
sni111319.cloudflaressl.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
dev.pondh2o.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
dev.pondh2o.com
aquah2o.pondh2o.com
aquah2o.pondh2o.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
sni111319.cloudflaressl.com
pondh2o.com
sni111319.cloudflaressl.com
Certificate
The complete raw certificate details for aquah2o.pondh2o.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTzCCBTegAwIBAgISA0dOlxacZdokXVgmGIxie/pxMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA4MDEwOTI0NTFaFw0x ODEwMzAwOTI0NTFaMB4xHDAaBgNVBAMTE2FxdWFoMm8ucG9uZGgyby5jb20wggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuVbXdkq9O+wOLX3Q+IklP8j2w VyNSDHXsM8DTlyv7lmjL5MguKtUBAXSLtIABNgAHxMm+J/E5C3azG04WHXfxXMzM G7ClCcmBe37jxbjRa2V/9OTeNBXHQKXiC6w0BbjhCYyNRwaWdRfg0A/3NKKD5ga6 CdhWDFTyegDNQKQZsw1okFQZkii1Ng92RF/CKMT11Q5Xn/gj+MV6PEqBnBfdL2yW u+TYc2/VtYz/gDzcN8pCz3N1RxYysRXK90N0+f2BD7PI+D/ckTmB7hE4edcl2kjN bPt++YPZEbTWXNB+bhjl1GN5sc8j3YRJ6Ds4aZH1LBhArc7KA5zZ9Fkm0PiVAgMB AAGjggNZMIIDVTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFF/wUsrk41HBD1fL36fS cqlwdqR4MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUF BwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNy eXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNy eXB0Lm9yZy8wXQYDVR0RBFYwVIITYXF1YWgyby5wb25kaDJvLmNvbYIPYXF1YXJp dW1oMm8uY29tghd3d3cuYXF1YWgyby5wb25kaDJvLmNvbYITd3d3LmFxdWFyaXVt aDJvLmNvbTCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYBBAGC3xMBAQEw gdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIGrBggr BgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkgYmUgcmVsaWVk IHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFjY29yZGFuY2Ug d2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0dHBzOi8vbGV0 c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDv AHUA23Sv7ssp7LH+yj5xbSzluaq7NveEcYPHXZ1PN7Yfv2QAAAFk9QTR5AAABAMA RjBEAiBJfvFdp+UBOveXC5fA0rE6E0d8jS2H3iTfnqiv20tI7AIgWfNvoT9APUDA 7vHLhwtZU1FF4CUPopkgbmFElJ4EwzkAdgApPFGWVMg5ZbqqUPxYB9S3b79Yeily 3KTDDPTlRUf0eAAAAWT1BNH3AAAEAwBHMEUCIQDlj9UYIG2771XHVSgqs323wUNf BCAM/1hHZ0h6/ZAjjgIgMq3rueGD1VxhtsLsz49i76KvZvEihz16SM+xejS9GL0w DQYJKoZIhvcNAQELBQADggEBAHi0ZE0VW/5mxZ+ZDNeKVDekvdmL7MhSLoBER1wu sWbadywvHiSYy2afFD36as7xHnAzOsO2mP2hnOZq6KtjlEuEUJGBdkcAG04lDsr6 /mUNDPZCzFRD64E4QEbh755ULiuuw3rOYhaZduW9hGdYj1LGDyJpS8xSZOTS656p ZrB6xU0ZXoi7JDmYm4b/A7OkVpThN+Z8g+4sMSr8uK33/C5T3BWTNQCiIG8nMTxu KiLarQhlUe067ciAIJqgiXa0GRbaIL7F8eaOoAtHNRBR/tiqCnpg3H8h0jaJHa77 8d3FUek10PHx2XGDrP8DPPCCzSGgdF/bwH5NxLKzDE/v2QE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArlW13ZKvTvsDi190PiJJ T/I9sFcjUgx17DPA05cr+5Zoy+TILirVAQF0i7SAATYAB8TJvifxOQt2sxtOFh13 8VzMzBuwpQnJgXt+48W40Wtlf/Tk3jQVx0Cl4gusNAW44QmMjUcGlnUX4NAP9zSi g+YGugnYVgxU8noAzUCkGbMNaJBUGZIotTYPdkRfwijE9dUOV5/4I/jFejxKgZwX 3S9slrvk2HNv1bWM/4A83DfKQs9zdUcWMrEVyvdDdPn9gQ+zyPg/3JE5ge4ROHnX JdpIzWz7fvmD2RG01lzQfm4Y5dRjebHPI92ESeg7OGmR9SwYQK3OygOc2fRZJtD4 lQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 285601370125768359378939410896912677337713 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-01 09:24:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-30 09:24:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aquah2o.pondh2o.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22007730443595125966609573953031003757327003792783236814199828602443019191368134521128611241073197853325748090061249723304692816372440423874643888325671656671357801699012996363574868500413133537756189015862532219938816058870883542519936010822660749043013125775279106017984719891647060016053295826481239929032419102218377072153236339517843015741399772174535494319646469716907524271138520539799687455551072062602752370703129484112261212433325152344254249981835861856087186494418859978620931289224339408161929707498437676705221564756765065959373014188751968753131648036921324497480255474822370637379679015924197523257493 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5ff052cae4e351c10f57cbdfa7d272a97076a478 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aquah2o.pondh2o.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aquariumh2o.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aquah2o.pondh2o.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aquariumh2o.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf6400000164f504d1e400000403004630440220497ef15da7e5013af7970b97c0d2b13a13477c8d2d87de24df9ea8afdb4b48ec022059f36fa13f403d40c0eef1cb870b59535145e0250fa299206e6144949e04c339007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000164f504d1f70000040300473045022100e58fd518206dbbef55c755282ab37db7c1435f04200cff584767487afd90238e022032adebb9e183d55c61b6c2eccf8f62efa2af66f122873d7a48cfb17a34bd18bd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0078b4644d155bfe66c59f990cd78a5437a4bdd98becc8522e8044475c2eb166da772c2f1e2498cb669f143dfa6acef11e70333ac3b698fda19ce66ae8ab63944b845091817647001b4e250ecafafe650d0cf642cc5443eb81384046e1ef9e542e2baec37ace62169976e5bd8467588f52c60f22694bcc5264e4d2eb9ea966b07ac54d195e88bb2439989b86ff03b3a45694e137e67c83ee2c312afcb8adf7fc2e53dc15933500a2206f27313c6e2a22daad086551ed3aedc880209aa08976b41916da20bec5f1e68ea00b47351051fed8aa0a7a60dc7f21d236891daefbf1ddc551e935d0f1f1d97183acff033cf082cd21a0745fdbc07e4dc4b2b30c4fefd901