gonmedia.es
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:1c:f9:3f:69:ee:2d:35:06:84:56:6d:46:e0:18:20:62:42 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=gonmedia.es
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:1c:f9:3f:69:ee:2d:35:06:84:56:6d:46:e0:18:20:62:42Serial Number (int): 358308357035003097301069836189397971657282
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 95:3d:b1:ef:70:71:33:96:b6:d7:af:57:5a:16:94:41:ad:16:77:c1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 16:65:fe:48:ae:6e:58:3e:90:4a:b8:ac:cf:0f:ce:ca:57:83:76:4e
Fingerprint (sha256): fe:1c:c8:3a:89:42:bf:1d:10:11:fd:04:12:8f:72:be:b1:39:47:46:3c:57:ab:85:3b:c0:bc:fe:3d:da:32:86
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate gonmedia.es
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gonmedia.es
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.gonmedia.es
gonmedia.es
gonmedia.es
Other certificates including the domain name gonmedia.es
(limited to 100 certificates)
cdn.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
gonmedia.es
gonmedia.es
cdn1.gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
gonmedia.es
cdn1.gonmedia.es
gonmedia.es
gonmedia.es
*.gonmedia.es
sni.cloudflaressl.com
cdn1.gonmedia.es
cdn1.gonmedia.es
sni.cloudflaressl.com
gonmedia.es
gonmedia.es
gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
*.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
cdn1.gonmedia.es
gonmedia.es
cdn1.gonmedia.es
gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
gonmedia.es
gonmedia.es
cdn1.gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
gonmedia.es
cdn1.gonmedia.es
gonmedia.es
gonmedia.es
*.gonmedia.es
sni.cloudflaressl.com
cdn1.gonmedia.es
cdn1.gonmedia.es
sni.cloudflaressl.com
gonmedia.es
gonmedia.es
gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
*.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
cdn1.gonmedia.es
gonmedia.es
cdn1.gonmedia.es
gonmedia.es
Certificate
The complete raw certificate details for gonmedia.es in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHDzCCBfegAwIBAgISBBz5P2nuLTUGhFZtRuAYIGJCMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA5MDUxMDM4MDRaFw0x ODEyMDQxMDM4MDRaMBYxFDASBgNVBAMTC2dvbm1lZGlhLmVzMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEA3deA5rJV80MOpvALlDuzoLboLJRsp06scs+U NSb/X6kG5x/NB/1Ew3zwYvBTzDzSuh5qy4vt6D0aMukQws/tXcLqW9V0jvkrk0Dl +YWmpC2pQgUgyjuOBbme35KLZgSiINDPtKbo8vw7D6xH2HO0oogBpXs9tNOOGNNB FP9zCdd3mbxPryjNBSGRHpz6MktYdbi9xyiK6mtgPkSA+U11NX9GNNmrxsB7A56z VD/BZBbzfs6b5VjYpvk1Eg3Wuc2wKWbOYbNdqxSuYEMZnHSaARKfp/BWO1xxb6I7 6gosWvs2AYCKZV+l2ekWq4EKLlV3ialDOlRhxg1XALh+5C12WZRlULZ2Fdh1pT/h 1vLjJXBhUI3NtRM5RedUe4hDhqzRWaYksW7JPrH9oHKXUen3ThL6a7jOulIfy1ca maMjXgRr6If8QRhlS5rChCgZOZArJXJiNkubJXQb5LOXnWPJ6F4jrC5wNFQ51Jhf R2chnLF1bKeWL5V6Ej/Pz0yvv03mNbIeEj/xURwbz/GAk0WB0OL6bA630Mwwbd6e B+q/l+vWqgJcPwtco0/9bA4+z2c8so1Y9HBoMzanQBogKSNvfRhJH2GiP9Qeqcip IFZNLMpHO5c3vqXgrObeUyrsv2P6o0AT1VcrPGY5ubgUxl6Q+WP7QIu26sClmAJP lxCBcWMCAwEAAaOCAyEwggMdMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUlT2x73Bx M5a2169XWhaUQa0Wd8EwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAlBgNVHREEHjAcgg0qLmdvbm1lZGlhLmVzggtnb25t ZWRpYS5lczCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYBBAGC3xMBAQEw gdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIGrBggr BgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkgYmUgcmVsaWVk IHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFjY29yZGFuY2Ug d2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0dHBzOi8vbGV0 c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDv AHUAVYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAFlqYZuWgAABAMA RjBEAiAiWBuU5l9MJNbQ7ncnqRiIG5tWyBtlR3YfXKuq4TLEgQIga5z4Hh6qaHCB 2Xc6z9EIxUIdr4Frtl/2zh+n2sBMbcEAdgApPFGWVMg5ZbqqUPxYB9S3b79Yeily 3KTDDPTlRUf0eAAAAWWphm5DAAAEAwBHMEUCIQCqZfCQENdGmy5lNRzvYIExvY6I PkmFzKWw/aavG0MWtwIgFwlm9myrF5wpo7lqaoQlzftKSkG7alJmXPdRpoZ2Ofgw DQYJKoZIhvcNAQELBQADggEBACMoIpaWutDDMrmC5UGfMOYR66rG3v2YnpsUzej6 MWQSD8w21KkFYOH6RzF0vh7afCoDKRrMZq7vqSWLkWI5OvvOjfvIf1kLYDRVshQS b0WOVVuZp1vHQwieQld46fF4eV2s5NoUEcWtg18K/PMojap4HXWWqWFaNZD7UuK0 8u3pv8Qrak4IvwysV64o0UnK2KVm2z6Gw0eV6DJjIr6nySar0GCrYbY4nimfG/Fr vf/AkfDMqWMf0wysYAaVKdUuiGAIWyIutZlwY/N3rFNECbnYsD4SNNFRjofxhyPc gzdKuGLOxPPUNlgBZ3UEsLZBl9D7AnZ6YoDmDunMi4oEZe4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3deA5rJV80MOpvALlDuz oLboLJRsp06scs+UNSb/X6kG5x/NB/1Ew3zwYvBTzDzSuh5qy4vt6D0aMukQws/t XcLqW9V0jvkrk0Dl+YWmpC2pQgUgyjuOBbme35KLZgSiINDPtKbo8vw7D6xH2HO0 oogBpXs9tNOOGNNBFP9zCdd3mbxPryjNBSGRHpz6MktYdbi9xyiK6mtgPkSA+U11 NX9GNNmrxsB7A56zVD/BZBbzfs6b5VjYpvk1Eg3Wuc2wKWbOYbNdqxSuYEMZnHSa ARKfp/BWO1xxb6I76gosWvs2AYCKZV+l2ekWq4EKLlV3ialDOlRhxg1XALh+5C12 WZRlULZ2Fdh1pT/h1vLjJXBhUI3NtRM5RedUe4hDhqzRWaYksW7JPrH9oHKXUen3 ThL6a7jOulIfy1camaMjXgRr6If8QRhlS5rChCgZOZArJXJiNkubJXQb5LOXnWPJ 6F4jrC5wNFQ51JhfR2chnLF1bKeWL5V6Ej/Pz0yvv03mNbIeEj/xURwbz/GAk0WB 0OL6bA630Mwwbd6eB+q/l+vWqgJcPwtco0/9bA4+z2c8so1Y9HBoMzanQBogKSNv fRhJH2GiP9QeqcipIFZNLMpHO5c3vqXgrObeUyrsv2P6o0AT1VcrPGY5ubgUxl6Q +WP7QIu26sClmAJPlxCBcWMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 358308357035003097301069836189397971657282 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-05 10:38:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-04 10:38:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gonmedia.es' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 905035626757533940642868674441542271055583668293420822651164635835331768324772257800325768817293277962527349445321781537420847273600425096988051998056690544596445092448958460858764992139509512988769009512584168544236129074380321356250695044077791419206237478106453690296982948746425085565223747670564796633780146908584592965158124239510441379036492559758705066753481612420558005384316321012278574759095610792645682270679549473498169521848799246677624733625745067981254323258709118789301628814234558265342907506995629603863615524474789307716044934665069701583238232308602261339812258542483636970702195625459371954570205709265010312044108599543220564672149289721454560683345917579042252070886206655004967638518134445160092862336713637602613719837069181448408256522549496249327053986624384684607447446123072262641472370180108223205916897903755493879251883402168933771095175283265925276945545270055648494019325101277144511716022989872059922825087894620274772918655655083399714821611264755372441894115907881851623021382580270811063618628558828296245616584100426405637519738348185327897138280187781225324187501307920321724460955444376513157747942286795139254258948114723911032472238915422247370741923309514852192692319358821760990571491683 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 953db1ef70713396b6d7af575a169441ad1677c1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gonmedia.es' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gonmedia.es' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c00000165a9866e5a0000040300463044022022581b94e65f4c24d6d0ee7727a918881b9b56c81b6547761f5cabaae132c48102206b9cf81e1eaa687081d9773acfd108c5421daf816bb65ff6ce1fa7dac04c6dc1007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000165a9866e430000040300473045022100aa65f09010d7469b2e65351cef608131bd8e883e4985cca5b0fda6af1b4316b70220170966f66cab179c29a3b96a6a8425cdfb4a4a41bb6a52665cf751a6867639f8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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