huapingdao.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:40:19:b4:2d:ff:94:92:65:00:a7:3b:c5:60:46:f3:eb:e0 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=huapingdao.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:40:19:b4:2d:ff:94:92:65:00:a7:3b:c5:60:46:f3:eb:e0Serial Number (int): 283149095524507555134380267231167634467808
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a4:29:f1:e2:68:46:ba:32:ac:ae:b8:d3:bd:8a:bd:11:12:8d:11:fe
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 9c:9f:b0:cf:d0:fc:f1:7e:ef:7e:5f:73:70:1d:e4:db:88:0c:6e:1a
Fingerprint (sha256): e4:c8:af:80:05:25:a5:28:7c:40:21:4c:e2:7f:f9:c6:ac:1f:20:0e:cf:a9:f6:ce:f1:1a:a8:43:b3:53:6a:aa
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate huapingdao.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for huapingdao.ca
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
huapingdao.ca
www.huapingdao.ca
www.huapingdao.ca
Other certificates including the domain name huapingdao.ca
(limited to 100 certificates)
huapingdao.ca
yowiescope.com
www.irv-uab.com
clockwyse.io
insent.ai
lawfulgood.io
huapingdao.ca
www.nsjtt.org
huapingdao.ca
sup.ai
huapingdao.ca
huapingdao.ca
huapingdao.ca
www.bloquefapim.com
huapingdao.ca
huapingdao.ca
01.ht
www.nsjtt.org
huapingdao.ca
turtleneck.io
biyete.com
puneetkushwah.com
www.startupguru.org
huapingdao.ca
huapingdao.ca
huapingdao.ca
huapingdao.ca
pornsite.cloud
codemysoul.com
huapingdao.ca
huapingdao.ca
huapingdao.ca
huapingdao.ca
www.robsonsimoes.com.br
huapingdao.ca
www.ctctfundracers.co.za
www.huapingdao.ca
huapingdao.ca
insent.ai
huapingdao.ca
huapingdao.ca
huapingdao.ca
laitinen.app
huapingdao.ca
www.calidifunrun.com
huapingdao.ca
huapingdao.ca
rlive.tk
comounexperto.com
huapingdao.ca
huapingdao.ca
huapingdao.ca
huapingdao.ca
huapingdao.ca
www.kattingo.com
huapingdao.ca
huapingdao.ca
huapingdao.ca
yowiescope.com
www.irv-uab.com
clockwyse.io
insent.ai
lawfulgood.io
huapingdao.ca
www.nsjtt.org
huapingdao.ca
sup.ai
huapingdao.ca
huapingdao.ca
huapingdao.ca
www.bloquefapim.com
huapingdao.ca
huapingdao.ca
01.ht
www.nsjtt.org
huapingdao.ca
turtleneck.io
biyete.com
puneetkushwah.com
www.startupguru.org
huapingdao.ca
huapingdao.ca
huapingdao.ca
huapingdao.ca
pornsite.cloud
codemysoul.com
huapingdao.ca
huapingdao.ca
huapingdao.ca
huapingdao.ca
www.robsonsimoes.com.br
huapingdao.ca
www.ctctfundracers.co.za
www.huapingdao.ca
huapingdao.ca
insent.ai
huapingdao.ca
huapingdao.ca
huapingdao.ca
laitinen.app
huapingdao.ca
www.calidifunrun.com
huapingdao.ca
huapingdao.ca
rlive.tk
comounexperto.com
huapingdao.ca
huapingdao.ca
huapingdao.ca
huapingdao.ca
huapingdao.ca
www.kattingo.com
huapingdao.ca
huapingdao.ca
huapingdao.ca
Certificate
The complete raw certificate details for huapingdao.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGETCCBPmgAwIBAgISA0AZtC3/lJJlAKc7xWBG8+vgMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA1MDcxMTU4MDBaFw0x NzA4MDUxMTU4MDBaMBgxFjAUBgNVBAMTDWh1YXBpbmdkYW8uY2EwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQClmtuWszVrmtHnvz7fg4x+jxusSJNmfaUv u85h+8OwA1StC/ROEdYhnCD31E7wa/09rWtIp4q2v5+vfojZCNV9gaUCQbqVpecd ruVkwnzyaik3ZO+pzqKnJNwXPOdDRThC9kcfUU+pY9w9Umv+erKCET+3aUeb5HBr 1JYsl8Eu/5RzXTr985ca8N/WVFGSFiz6hmajiqgekW9WpNGLmFxm2GjiHmS8umIm ztoGrJ4SK3Cov8FeK+8HY2zt43m33fE1GqQSKkyXJVa2bT8Xo95gjx4O06iB9XEc ejhJhk+NM9SWEyIBpTXidviKPeNf7yfXeAUvuTaGbpkhT4k0uQ3EveXWgXMlM4/R 6/8+1a4BWxTHqr6qQbHzWsgvxYDrkFfdJ8h7GA8u9LDU14Sc/emXA2XGY5a8UOCm QsSVroyQxNDpi3Y1UgSyGgoi6ak7qfPDwIrJ+kbRYynm7lBkMm73h5fmAzTyp9x8 5rFGq7zhd4PH1/kq5NeNtMVAoW/naq1Jku2Vq5fLBfMaHd3fCBxCejK9Tuakrzpv 3s9AGrmSH+Q+7JzAuXjqX5cwm2vLrVbP4yfCUARiEgMrmkcjVMyPYTiFLX3y7tp8 wn+Rj71vhqgMgZSBDNFVor7L2uT+YzOtZxS4GK22AmdYuo8oGw0LVrAJc7nDAjQf sPIvku01sQIDAQABo4ICITCCAh0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSkKfHi aEa6MqyuuNO9ir0REo0R/jAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBwBggrBgEFBQcBAQRkMGIwLwYIKwYBBQUHMAGGI2h0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcvMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzArBgNVHREEJDAigg1odWFwaW5nZGFvLmNhghF3 d3cuaHVhcGluZ2Rhby5jYTCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYB BAGC3xMBAQEwgdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQu b3JnMIGrBggrBgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkg YmUgcmVsaWVkIHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFj Y29yZGFuY2Ugd2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0 dHBzOi8vbGV0c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMA0GCSqGSIb3DQEBCwUA A4IBAQAZbS1bilFGUp8EfMnRr9QY4vuHSqZ0kSzH9P+hKcecbDA0EJOrH34wVulI Zy7Bj7LtYxnTAtrGgliuegn4fqjhqtY0D8EAWqL11+/NKze84j53SlzUtT3U9Zkj wkTUf9qaNtmbtJru77Z+9yZNn4s8EV1n525y4je7sCsVSRRd2xKdGCzWcNYqKFgk NF81i8N1/PhEfk2Piylpg/DzlvR+yhtTuozuVN3MJZFQ7qZIjVz296jV71265We5 0nI2nzkgZqsGIvYDKrI0fNgTPjgJNTPVlwyoZVZAfmGb//FywB9wUbvH0YsZUXf4 uDgIy/07+P7I1L8aupp+2Df5VBbr -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApZrblrM1a5rR578+34OM fo8brEiTZn2lL7vOYfvDsANUrQv0ThHWIZwg99RO8Gv9Pa1rSKeKtr+fr36I2QjV fYGlAkG6laXnHa7lZMJ88mopN2Tvqc6ipyTcFzznQ0U4QvZHH1FPqWPcPVJr/nqy ghE/t2lHm+Rwa9SWLJfBLv+Uc106/fOXGvDf1lRRkhYs+oZmo4qoHpFvVqTRi5hc Ztho4h5kvLpiJs7aBqyeEitwqL/BXivvB2Ns7eN5t93xNRqkEipMlyVWtm0/F6Pe YI8eDtOogfVxHHo4SYZPjTPUlhMiAaU14nb4ij3jX+8n13gFL7k2hm6ZIU+JNLkN xL3l1oFzJTOP0ev/PtWuAVsUx6q+qkGx81rIL8WA65BX3SfIexgPLvSw1NeEnP3p lwNlxmOWvFDgpkLEla6MkMTQ6Yt2NVIEshoKIumpO6nzw8CKyfpG0WMp5u5QZDJu 94eX5gM08qfcfOaxRqu84XeDx9f5KuTXjbTFQKFv52qtSZLtlauXywXzGh3d3wgc QnoyvU7mpK86b97PQBq5kh/kPuycwLl46l+XMJtry61Wz+MnwlAEYhIDK5pHI1TM j2E4hS198u7afMJ/kY+9b4aoDIGUgQzRVaK+y9rk/mMzrWcUuBittgJnWLqPKBsN C1awCXO5wwI0H7DyL5LtNbECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 283149095524507555134380267231167634467808 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-07 11:58:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-05 11:58:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'huapingdao.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 675609101596868080733991545398969653075197340499041535350117169488074245045479653780367364376401408922407478448129231320480217158061253353606941547452327088541236731232027493217838428615370871355043118325028868788023482578721574108334689349076808021828970180974176024580925663358316863684876912628053145732164475875589771984640138919402013622993479917838296103325047613592960538845332874200010250578085687180131216802809272399546318979928199847227914388856866203945355108957244920815201379130602667119119972684381040516186220443728514942867271504308968896133322473937642313944357888531951716961198794672065164542427223737468578890515100709200255283117308495537135217850740998665616753319936266122767319593152787534652838905834237523324363622104209411580381216929022657941833272980936081079503243772074004935321113133491672746520019806091336260509242219246335985599466018829938154617376360080544791138991016982247015119118919787363986814458015083285137141972227903649365198103428830841271019684714692994166643310268812374900330289124713628226325523084943713390826451158837398074268209387162536203399043223414296297937109637592978504461092401547027111096900871276018704237974087725057968395396133824529643284078815125441529260494632369 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a429f1e26846ba32acaeb8d3bd8abd11128d11fe . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'huapingdao.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.huapingdao.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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