cura-domicil.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:24:72:a5:71:72:cd:3e:d6:44:15:3f:e9:41:15:b9:a9:27 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=cura-domicil.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:24:72:a5:71:72:cd:3e:d6:44:15:3f:e9:41:15:b9:a9:27Serial Number (int): 273739414025943479412144347279689141299495
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ea:6f:d5:97:c6:cc:36:87:42:e8:40:4e:0d:a0:f8:73:76:33:f6:7f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f1:a7:38:9c:aa:8d:12:22:fa:1c:c2:7d:fb:da:0f:ed:4e:15:47:ee
Fingerprint (sha256): fc:a9:a2:e5:84:78:86:6d:e3:18:8f:00:f1:66:43:8a:a5:9f:26:ca:d1:be:f2:08:31:b2:74:5a:01:b6:a3:41
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate cura-domicil.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cura-domicil.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
Other certificates including the domain name cura-domicil.ch
(limited to 100 certificates)
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
cura-domicil.ch
www.cura-domicil.ch
www.cura-domicil.ch
Certificate
The complete raw certificate details for cura-domicil.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGFzCCBP+gAwIBAgISAyRypXFyzT7WRBU/6UEVuaknMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjA5MDcxNTI0MDBaFw0x NjEyMDYxNTI0MDBaMBoxGDAWBgNVBAMTD2N1cmEtZG9taWNpbC5jaDCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAMV2UY5VJnlkrK6WffEKLk8XjNRDgwfl Y7JKtvdgngVLjaOd0jU0U/qly+pPMahHqt/HAR4QsytIxOMmUCGM59RN824TdVl+ AV85ksytvgW5m6hLsQlYCdL5dzxIknjNPNAReNA4ltsxUgJOUhHhUwZDXaFXt5q9 P1FiVy2eItKleyjPF7TMBB8112StyPPZ99bu4y157nt3bKIUzlcg1dFkFjyLTAmW w3vBUGwyfwSBOFF9isGXBhNFwmOPAKm8dbft85aCU+/rmkabQf4+pRtXpppBSaZO P8NmYBoipK2R0D3PA9ne8oKL4RKoCIVBgBXYCLy/RxllMgr2/eV+Kd2ZC9H41nnw +6XEQsRDsd6y0NprqNDBFk2m6B3Zg13zYemou3dQNw7WHqFpRSpCg4Uiq5MUrdZj cPC3GmlSDSWQ3GJrE4/DXtawKFGd9/bv4I3f2GjJ44szLd0NppRru/MBWA79DK9u 4I98/WruTQm6qWCKE2QzFEGuo1a9qVgKMiHD08hxXmKRNAYJOHxCZ9iwDgBRUi98 6rpYI+Lvh26LFsKjjJ8VmgxJAStYq2I76oUZU3aiemv5/PR3rAWOquc5vVsqDApv XZHoaDLS3WOMCME9RW+fN1HotwcK+UzebYxHVdse2oDfFvsz00A1ted0dBvZhj4T 3rPUAru9qyB5AgMBAAGjggIlMIICITAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOpv 1ZfGzDaHQuhATg2g+HN2M/Z/MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMHAGCCsGAQUFBwEBBGQwYjAvBggrBgEFBQcwAYYjaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMC8GA1UdEQQoMCaCD2N1cmEtZG9taWNpbC5j aIITd3d3LmN1cmEtZG9taWNpbC5jaDCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB 5gYLKwYBBAGC3xMBAQEwgdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2Vu Y3J5cHQub3JnMIGrBggrBgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5 IG9ubHkgYmUgcmVsaWVkIHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5 IGluIGFjY29yZGFuY2Ugd2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5k IGF0IGh0dHBzOi8vbGV0c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMA0GCSqGSIb3 DQEBCwUAA4IBAQBwLhdawJkqebLVfitKs4IfNGrKnAYvfwj2+MVeCnZ0PUvjkfgD hdkIR+Y5wfQ8qAeLvroa7UINkUNmL7JEyZPMGplMmN/h17qOtsVsTG5/COOwo5zh UQ8NxIsUWTOmUpJzHXlNC4Y79c8yhY97SqlwK/ZB7hFbfaUHYGV07Sy84cBqmYe+ rEODvRjNRMfSfS3dYfp4Cqs2821tkYCTSYlV2rarFRNkNFx8L6i/BTvhQKSaizDr aR3W5y3ZHLAVFMruAgeuovzm4QR9XIb5JYAE+FHI+1bq4yZSyyQg7NQj8suieZLG Q2zuiMBcqtzNU14lFtKZIFN77BHUrWtHyD/8 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxXZRjlUmeWSsrpZ98Qou TxeM1EODB+Vjskq292CeBUuNo53SNTRT+qXL6k8xqEeq38cBHhCzK0jE4yZQIYzn 1E3zbhN1WX4BXzmSzK2+BbmbqEuxCVgJ0vl3PEiSeM080BF40DiW2zFSAk5SEeFT BkNdoVe3mr0/UWJXLZ4i0qV7KM8XtMwEHzXXZK3I89n31u7jLXnue3dsohTOVyDV 0WQWPItMCZbDe8FQbDJ/BIE4UX2KwZcGE0XCY48Aqbx1t+3zloJT7+uaRptB/j6l G1emmkFJpk4/w2ZgGiKkrZHQPc8D2d7ygovhEqgIhUGAFdgIvL9HGWUyCvb95X4p 3ZkL0fjWefD7pcRCxEOx3rLQ2muo0MEWTaboHdmDXfNh6ai7d1A3DtYeoWlFKkKD hSKrkxSt1mNw8LcaaVINJZDcYmsTj8Ne1rAoUZ339u/gjd/YaMnjizMt3Q2mlGu7 8wFYDv0Mr27gj3z9au5NCbqpYIoTZDMUQa6jVr2pWAoyIcPTyHFeYpE0Bgk4fEJn 2LAOAFFSL3zqulgj4u+HbosWwqOMnxWaDEkBK1irYjvqhRlTdqJ6a/n89HesBY6q 5zm9WyoMCm9dkehoMtLdY4wIwT1Fb583Uei3Bwr5TN5tjEdV2x7agN8W+zPTQDW1 53R0G9mGPhPes9QCu72rIHkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 273739414025943479412144347279689141299495 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-07 15:24:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-06 15:24:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cura-domicil.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 805575419232674863172986334183267788991317230304742484522337838512070789866266884371829744234580256828233961625211832172540610351253154972364713851929728070900376191672001351383463467293622306307424622662663059444948973851491062360202831193534331322737740106908269365194760898467621343309215621897770594255070016261179517773496357441098826429392205104458120669115764226421591941957239286728482595285243096540755667744995404206411412473363725008569173926660946969359865797801509175386870852012306063029394624906821971443975630800505192868039724090646017100742071860844282803875918454402249330676647746356344522736745970691464046504978299831999031299564641297811833777273843287387188555903654494433912463997314441686662392339978836593599962340074219867066601988654896790814317734057124334605891832950846686047987108447008412667001675183431454722834699638835308961445065903891959992882635759832015809408595238237284639856697203465906113604864354424376696006635832572505034234496909606239966449925502844344616261917655202695008849775459671073420741806383138174300766616718096755873376215213212584653783059636477381541738738036850742092163921804735297580728385778310599454429207704438856598670935584896092355986974989665222451551800074361 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ea6fd597c6cc368742e8404e0da0f8737633f67f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cura-domicil.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cura-domicil.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00702e175ac0992a79b2d57e2b4ab3821f346aca9c062f7f08f6f8c55e0a76743d4be391f80385d90847e639c1f43ca8078bbeba1aed420d9143662fb244c993cc1a994c98dfe1d7ba8eb6c56c4c6e7f08e3b0a39ce1510f0dc48b145933a65292731d794d0b863bf5cf32858f7b4aa9702bf641ee115b7da507606574ed2cbce1c06a9987beac4383bd18cd44c7d27d2ddd61fa780aab36f36d6d918093498955dab6ab151364345c7c2fa8bf053be140a49a8b30eb691dd6e72dd91cb01514caee0207aea2fce6e1047d5c86f9258004f851c8fb56eae32652cb2420ecd423f2cba27992c6436cee88c05caadccd535e2516d29920537bec11d4ad6b47c83ffc