tecnomica.com
Issued by R3
About this certificate
This digital certificate with serial number 04:36:db:65:5e:fc:80:b8:51:e6:44:09:2e:9b:aa:57:fa:cb was issued on by Let's Encrypt.
With 30 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tecnomica.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:36:db:65:5e:fc:80:b8:51:e6:44:09:2e:9b:aa:57:fa:cbSerial Number (int): 367116018820383108814493155073266334300875
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: f6:81:63:e9:7f:4a:a1:e0:75:70:f1:0f:6b:90:1b:4b:7d:3c:4c:02
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ca:17:0d:ea:ca:86:85:51:7c:2e:be:16:d0:a7:aa:a6:38:db:b8:48
Fingerprint (sha256): e5:f0:9d:66:f3:29:29:05:99:ab:2f:83:1a:69:f2:04:8c:a0:37:7f:3c:fc:3a:a1:c5:39:0f:bd:01:0d:10:bd
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate tecnomica.com
30
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tecnomica.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
5gmobility.ca
abadal.life
clicksolo.com
consumerpricetracker.com
dyo-tr.com
fotocromatico.com
patriotmushroom.com
programmercertification.com
repairmydell.com
scanawave.com
tecnomica.com
thetruthaboutcreditrepair.com
tourismcorner.com
videocollator.com
www.5gmobility.ca
www.abadal.life
www.clicksolo.com
www.consumerpricetracker.com
www.dyo-tr.com
www.fotocromatico.com
www.patriotmushroom.com
www.programmercertification.com
www.repairmydell.com
www.scanawave.com
www.tecnomica.com
www.thetruthaboutcreditrepair.com
www.tourismcorner.com
www.videocollator.com
www.xcreme.com
xcreme.com
abadal.life
clicksolo.com
consumerpricetracker.com
dyo-tr.com
fotocromatico.com
patriotmushroom.com
programmercertification.com
repairmydell.com
scanawave.com
tecnomica.com
thetruthaboutcreditrepair.com
tourismcorner.com
videocollator.com
www.5gmobility.ca
www.abadal.life
www.clicksolo.com
www.consumerpricetracker.com
www.dyo-tr.com
www.fotocromatico.com
www.patriotmushroom.com
www.programmercertification.com
www.repairmydell.com
www.scanawave.com
www.tecnomica.com
www.thetruthaboutcreditrepair.com
www.tourismcorner.com
www.videocollator.com
www.xcreme.com
xcreme.com
Other certificates including the domain name tecnomica.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for tecnomica.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHgTCCBmmgAwIBAgISBDbbZV78gLhR5kQJLpuqV/rLMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAzMDgxMzIxMjdaFw0yMzA2MDYxMzIxMjZaMBgxFjAUBgNVBAMT DXRlY25vbWljYS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO Tq87IqXKAeOxGOgel/b5fRpkuXmLV5dAPgJJlY8LdEWVCJJr+0Ki7TohTHYLEE87 oghekZmywMyuvWFDaUnAz9Gug4e/OqnZv6MIZUXQmaeezDD56msmMtynQwXCqHP9 YqimHUGFUvIJCMpAFW6GJMYoDjH+PrPGdiiA/X2rqvCAIfZ/Ep6ENkh2VfoqrLkF NL/0bi3in+i2q2Ol5artxQbWx+NNHQk7D7GpItQ5WhdZMoi0R2YYTnenQZ2mMN7L qJSEiVEKUp8/UjnCsAijnYQFnBPTm7pZd0GwZU+GcVOerEmGqLOIb5rWdqeDzE59 t2hhb3x9lsO+5VzoSOtlAgMBAAGjggSpMIIEpTAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFPaBY+l/SqHgdXDxD2uQG0t9PEwCMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MIICdwYDVR0RBIICbjCCAmqCDTVnbW9iaWxpdHkuY2GCC2FiYWRhbC5saWZlgg1j bGlja3NvbG8uY29tghhjb25zdW1lcnByaWNldHJhY2tlci5jb22CCmR5by10ci5j b22CEWZvdG9jcm9tYXRpY28uY29tghNwYXRyaW90bXVzaHJvb20uY29tghtwcm9n cmFtbWVyY2VydGlmaWNhdGlvbi5jb22CEHJlcGFpcm15ZGVsbC5jb22CDXNjYW5h d2F2ZS5jb22CDXRlY25vbWljYS5jb22CHXRoZXRydXRoYWJvdXRjcmVkaXRyZXBh aXIuY29tghF0b3VyaXNtY29ybmVyLmNvbYIRdmlkZW9jb2xsYXRvci5jb22CEXd3 dy41Z21vYmlsaXR5LmNhgg93d3cuYWJhZGFsLmxpZmWCEXd3dy5jbGlja3NvbG8u Y29tghx3d3cuY29uc3VtZXJwcmljZXRyYWNrZXIuY29tgg53d3cuZHlvLXRyLmNv bYIVd3d3LmZvdG9jcm9tYXRpY28uY29tghd3d3cucGF0cmlvdG11c2hyb29tLmNv bYIfd3d3LnByb2dyYW1tZXJjZXJ0aWZpY2F0aW9uLmNvbYIUd3d3LnJlcGFpcm15 ZGVsbC5jb22CEXd3dy5zY2FuYXdhdmUuY29tghF3d3cudGVjbm9taWNhLmNvbYIh d3d3LnRoZXRydXRoYWJvdXRjcmVkaXRyZXBhaXIuY29tghV3d3cudG91cmlzbWNv cm5lci5jb22CFXd3dy52aWRlb2NvbGxhdG9yLmNvbYIOd3d3LnhjcmVtZS5jb22C CnhjcmVtZS5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEw KDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgor BgEEAdZ5AgQCBIH1BIHyAPAAdQB6MoxU2LcttiDqOOBSHumEFnAyE4VNO9IrwTpX o1LrUgAAAYbBmTDQAAAEAwBGMEQCIHXbJBjtmeKrZnYBcnBVN+IRCSEISlVGt6u5 JtrYLU2sAiBgs7Ne9yHHcmNGuGTF3qDQJjDEbptHHeYHJinTBsk66QB3AOg+0No+ 9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABhsGZMLkAAAQDAEgwRgIhAPqA 1LGBZ7xfXPyzrIZB0+Iy0emRL/eNlWxBai2K21b4AiEAuuVb4h1XvZco6YogwpKo 4m5jkSczOIKSsYfFcgD9qeIwDQYJKoZIhvcNAQELBQADggEBABvGuiQ+WBsUH1LP VjhGcVTVYDVbJG4i3h6dKx/4DbEctuz1B9SudoM7jAfm1IkhP4O9xDZJammoYawb UN7jg9o0OdQ288MKoyG81v8YxeKDfEpN+tnfMay6zqjKjhpvGI9QF3tmoAAMd8vk As2oiyMrFDS46tjYMFDdbgTUcZ5ZLBfGJ1y9OsWWHOGui2SS/c+cBJNdPoLKUJyu DscVcbMe4WSOudQdlX1M93CaNrKZuPer4LytyRSlB77/6+yb7MxLHb+lgrkT3+eu 1WIsE9Md4tuUHnRN69njnYKQrbiTyr2/v7dEyt3VAskesS6fduOyT6lsJ+lEMdKO ErfUHJI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzk6vOyKlygHjsRjoHpf2 +X0aZLl5i1eXQD4CSZWPC3RFlQiSa/tCou06IUx2CxBPO6IIXpGZssDMrr1hQ2lJ wM/RroOHvzqp2b+jCGVF0Jmnnsww+eprJjLcp0MFwqhz/WKoph1BhVLyCQjKQBVu hiTGKA4x/j6zxnYogP19q6rwgCH2fxKehDZIdlX6Kqy5BTS/9G4t4p/otqtjpeWq 7cUG1sfjTR0JOw+xqSLUOVoXWTKItEdmGE53p0GdpjDey6iUhIlRClKfP1I5wrAI o52EBZwT05u6WXdBsGVPhnFTnqxJhqiziG+a1nang8xOfbdoYW98fZbDvuVc6Ejr ZQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 367116018820383108814493155073266334300875 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-08 13:21:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-06 13:21:26 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tecnomica.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26043891594151499844894186821281681462111702924421693259132331036097797143856690293520099368143926177954277779764332248655928780284369933344956437054542870154825428973637437737525685707689571779343128669605655388907994272582708369936529581179543392604282030674290906738817018563165946923245419935491114663784723954653917372263528271246941442298084485797876110069335879663369521015760518630778779816487668679319031140204433444801679810073060073077960970008063833977321785419452898021842200083533043990807053441707763810304376771361338860504384949912498901970316744362030375593706102935131659805403611155112837071301477 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f68163e97f4aa1e07570f10f6b901b4b7d3c4c02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (622 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '5gmobility.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'abadal.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clicksolo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'consumerpricetracker.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dyo-tr.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fotocromatico.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'patriotmushroom.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'programmercertification.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'repairmydell.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scanawave.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tecnomica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thetruthaboutcreditrepair.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tourismcorner.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'videocollator.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.5gmobility.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.abadal.life' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.clicksolo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.consumerpricetracker.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dyo-tr.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fotocromatico.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.patriotmushroom.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.programmercertification.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.repairmydell.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.scanawave.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tecnomica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thetruthaboutcreditrepair.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tourismcorner.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.videocollator.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xcreme.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xcreme.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000186c19930d00000040300463044022075db2418ed99e2ab66760172705537e2110921084a5546b7abb926dad82d4dac022060b3b35ef721c7726346b864c5dea0d02630c46e9b471de6072629d306c93ae9007700e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e00000186c19930b90000040300483046022100fa80d4b18167bc5f5cfcb3ac8641d3e232d1e9912ff78d956c416a2d8adb56f8022100bae55be21d57bd9728e98a20c292a8e26e63912733388292b187c57200fda9e2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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