*.tomtom.com

- TomTom International BV -

Issued by DigiCert High Assurance CA-3

About this certificate

This digital certificate with serial number 06:4e:5b:d6:da:17:9f:26:ba:0b:b7:69:8a:cd:66:74 was issued on by DigiCert Inc.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Compliant certificates should use the utf8string encoding for explicitText (RFC 6818: 3)

TomTom International BV

Organization: TomTom International BV
Organization unit: GIT
State / Province: Noord Holland
Locality: Amsterdam
Country: NL

DigiCert Inc

Organization: DigiCert Inc
Organization unit: www.digicert.com
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 06:4e:5b:d6:da:17:9f:26:ba:0b:b7:69:8a:cd:66:74
Serial Number (int): 8382229851272211152582468200932664948
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 65:e2:7c:cc:7f:6b:b0:cb:62:fb:67:0e:88:25:fd:72:2e:21:f8:b4
AuthorityKeyId: 50:ea:73:89:db:29:fb:10:8f:9e:e5:01:20:d4:de:79:99:48:83:f7

Fingerprint (sha1): 8e:f5:3c:6f:9f:23:6a:ed:cf:04:a1:82:9f:df:48:14:15:86:ba:54
Fingerprint (sha256): 00:52:a0:ae:d9:61:f4:f5:78:e0:f3:99:44:87:a6:ff:c1:2b:8d:e6:de:8c:7a:af:f2:c2:3b:88:34:ac:2d:80

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertHighAssuranceCA-3.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/ca3-g24.crl
CRL Distribution Point: http://crl4.digicert.com/ca3-g24.crl

Check the revocation status for certificate *.tomtom.com

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.tomtom.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.tomtom.com
tomtom.com
Partnerlink.tomtom.com

Other certificates including the domain name tomtom.com

(limited to 100 certificates)
wadetrim.trubytraining.com
22773.discos.orbis.tomtom.com
tracker.engage.tomtom.com
ind06pr-890.maps-pu-poi.tomtom.com
s1.i.maverick.mep.tomtom.com
*.fcd-ingest.tomtom.com
atom-ws.27373.orbis.tomtom.com
*.tomtom.com
brandguide.tomtom.com
connect-us.tomtom.com
kenai-mod-11943-similar-jobs.preprod.marketing-az.tomtom.com
kenai-master.preprod.marketing-az.tomtom.com
11851.discos.orbis.tomtom.com
cert00017-azurecdn.akamaized.net
reportswithmaps.eu-west-1.maps-central.tomtom.com
fleetsecure.telematics.tomtom.com
6.discos.orbis.tomtom.com
airflow.inc-conf.prod.maps-amf.tomtom.com
bhsa.mysportsanalysis.com
28200.discos.orbis.tomtom.com
backend.pr-44.aqua.poi-dev.orbis.tomtom.com
ns-gss-wfs.inc-conf.dev.maps-amf.tomtom.com
usa06pr-843.maps-pu-poi.tomtom.com
matter-ws.22068.orbis.tomtom.com
fra2409test90-907.maps-pu-poi.tomtom.com
dev.mapexplorer.tomtom.com
atom-ws.67299.orbis.tomtom.com
academy.tomtom.com
atom-ws.20735.orbis.tomtom.com
*.tomtom.com
argo-discos.13999.discos.orbis.tomtom.com
cert00017-azurecdn.akamaized.net
cert00017-azurecdn.akamaized.net
kepler.ts.tomtom.com
mcodnkevtest-901.maps-pu-poi.tomtom.com
alertmanager.test-jk.connected-services.tomtom.com
preprod-vag-hcp3.acs.services.tomtom.com
caesgbitnosw06-844.maps-pu-poi.tomtom.com
wadetrim.trubytraining.com
*.navcloud.tomtom.com
farmviability.oahurcd.org
cert00017-azurecdn.akamaized.net
*.discovery.speech.tomtom.com
aqua-viewer.pr-58.aqua.poi-dev.orbis.tomtom.com
*.fcd-ingest.tomtom.com
alertmanager.prod-blue.connected-services.tomtom.com
api.roadcheck-dev.tomtom.com
backend.pr-47.aqua.poi-dev.orbis.tomtom.com
minerva-rest-api.test-chha.connected-services.tomtom.com
btsqas.tomtom.com
7.discos.orbis.tomtom.com
15408.discos.orbis.tomtom.com
backend.pr-46.aqua.poi-dev.orbis.tomtom.com
kenai-develop.preprod.marketing-az.tomtom.com
cert00017-azurecdn.akamaized.net
vertex.mep.tomtom.com
cert00017-azurecdn.akamaized.net
matter-ws.26195.orbis.tomtom.com
*.fcd-ingest.tomtom.com
*.adas-tile-service.mapcontent-dev.tomtom.com
kenai-mdev-1967-indigo-borders.preprod.marketing-az.tomtom.com
goldstream-develop.prod.marketing-az.tomtom.com
reportswithmaps.maps-central.tomtom.com
aqua-sampler-backend.released.aqua.poi-dev.orbis.tomtom.com
alertmanager.7777.discos-v2.orbis.tomtom.com
22867.discos.orbis.tomtom.com
fra06pr-883.maps-pu-poi.tomtom.com
matter-ws.11100.orbis.tomtom.com
brcachsg06pr-833.maps-pu-poi.tomtom.com
16770.discos-dev.orbis.tomtom.com
preprod-famar-ams.services.tomtom.com
feature-history.mep.tomtom.com
19680.discos.orbis.tomtom.com
ind06pr-889.maps-pu-poi.tomtom.com
brcachsg06pr-833.maps-pu-poi.tomtom.com
6.discos.orbis.tomtom.com
cert00017-azurecdn.akamaized.net
aqua-sampler-backend.pr-11.aqua.poi-dev.orbis.tomtom.com
kafka-bootstrap.prod-green.connected-services.tomtom.com
cpt.cs.tomtom.com
minerva-rest-api.test-lo.connected-services.tomtom.com
matter-ws.54879.orbis.tomtom.com
atom-ws.16233.orbis.tomtom.com
mock.preprod-ams.tomtom.com
22428.discos.orbis.tomtom.com
*.mapcontent-dev.tomtom.com
grafana.12772.discos-v2.orbis.tomtom.com
abddnktestev15-891.maps-pu-poi.tomtom.com
adas-tile-compiler-fca.mapcontent-dev.tomtom.com
preprod-fca-gsdp-sxm.services.tomtom.com
mep.tomtom.com
cert00017-azurecdn.akamaized.net
akamai-san18.exacttarget.com
api-blue.dev.horizon.tomtom.com
backend.pr-1.aqua.poi-dev.orbis.tomtom.com
preprod-kr-vag-hcp3.acs.services.tomtom.com
26587.discos.orbis.tomtom.com
cert00017-azurecdn.akamaized.net
atom-ws.16807.orbis.tomtom.com
17957.discos.orbis.tomtom.com

Certificate

The complete raw certificate details for *.tomtom.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIG2TCCBcGgAwIBAgIQBk5b1toXnya6C7dpis1mdDANBgkqhkiG9w0BAQUFADBm
MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3
d3cuZGlnaWNlcnQuY29tMSUwIwYDVQQDExxEaWdpQ2VydCBIaWdoIEFzc3VyYW5j
ZSBDQS0zMB4XDTEzMDgyMjAwMDAwMFoXDTE2MTAyODEyMDAwMFowgYAxCzAJBgNV
BAYTAk5MMRYwFAYDVQQIEw1Ob29yZCBIb2xsYW5kMRIwEAYDVQQHEwlBbXN0ZXJk
YW0xIDAeBgNVBAoTF1RvbVRvbSBJbnRlcm5hdGlvbmFsIEJWMQwwCgYDVQQLEwNH
SVQxFTATBgNVBAMMDCoudG9tdG9tLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALaeroCLl95C/YSFHVmSPZnjf49DPiXSb9WRHb65rbSbbGvs7RhL
+yf5Jm3ZkLErjcHZrix9d7jsvMlFo//FRZlcE4tNWQnvZ6wTptgc60HT7Kai1Wpr
DRrJBkjB9EAgNg4PL4QZ+JkD1+YSzIpEBQxTUHpjC8bxJ7b86SWKDuUqwwvhKtS/
Sztu4A3adrL/JPVK2Ab6MVbaMc0OV33hKgUJJNtSvPhxBo2Osl8n1gLHxO6JmUnA
FYsNANUm4bpnTf9YhgY+r5zR8F0Yxuhlf/8rWtv/tEBiI68C9MZicyT/ehXkbiR0
VOG7ivscjieExseDEY89LxHWa0LKqk31zMkCAwEAAaOCA2YwggNiMB8GA1UdIwQY
MBaAFFDqc4nbKfsQj57lASDU3nmZSIP3MB0GA1UdDgQWBBRl4nzMf2uwy2L7Zw6I
Jf1yLiH4tDA7BgNVHREENDAyggwqLnRvbXRvbS5jb22CCnRvbXRvbS5jb22CFlBh
cnRuZXJsaW5rLnRvbXRvbS5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG
CCsGAQUFBwMBBggrBgEFBQcDAjBhBgNVHR8EWjBYMCqgKKAmhiRodHRwOi8vY3Js
My5kaWdpY2VydC5jb20vY2EzLWcyNC5jcmwwKqAooCaGJGh0dHA6Ly9jcmw0LmRp
Z2ljZXJ0LmNvbS9jYTMtZzI0LmNybDCCAcQGA1UdIASCAbswggG3MIIBswYJYIZI
AYb9bAEBMIIBpDA6BggrBgEFBQcCARYuaHR0cDovL3d3dy5kaWdpY2VydC5jb20v
c3NsLWNwcy1yZXBvc2l0b3J5Lmh0bTCCAWQGCCsGAQUFBwICMIIBVh6CAVIAQQBu
AHkAIAB1AHMAZQAgAG8AZgAgAHQAaABpAHMAIABDAGUAcgB0AGkAZgBpAGMAYQB0
AGUAIABjAG8AbgBzAHQAaQB0AHUAdABlAHMAIABhAGMAYwBlAHAAdABhAG4AYwBl
ACAAbwBmACAAdABoAGUAIABEAGkAZwBpAEMAZQByAHQAIABDAFAALwBDAFAAUwAg
AGEAbgBkACAAdABoAGUAIABSAGUAbAB5AGkAbgBnACAAUABhAHIAdAB5ACAAQQBn
AHIAZQBlAG0AZQBuAHQAIAB3AGgAaQBjAGgAIABsAGkAbQBpAHQAIABsAGkAYQBi
AGkAbABpAHQAeQAgAGEAbgBkACAAYQByAGUAIABpAG4AYwBvAHIAcABvAHIAYQB0
AGUAZAAgAGgAZQByAGUAaQBuACAAYgB5ACAAcgBlAGYAZQByAGUAbgBjAGUALjB7
BggrBgEFBQcBAQRvMG0wJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0
LmNvbTBFBggrBgEFBQcwAoY5aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp
Z2lDZXJ0SGlnaEFzc3VyYW5jZUNBLTMuY3J0MAwGA1UdEwEB/wQCMAAwDQYJKoZI
hvcNAQEFBQADggEBAIIlvAb/EepKbpqmAOkGqHN7eySkYbbLTqf+AexLaDimNoOe
9flNbrk6eYylV2rUUkx7nKUSC8aWxDzgx3D9diBNgfmB0dRm8FaYs3VqXy6qsLEX
mU++zwJXq/eumOhV2htrn92B84nvJHgHHKguIzqeA4GyJy1twl0HD9cu8p/0UcXM
NQLc5WaeAg4sejZ52IL0j+luIwBHfa5UZhnoI5C8CVQNWaOxsyD1bK5fKm+xQjo2
WeLbdrE+U1+qmUsbmTvqfF79xnMKoqzNEDxGiLFzOwQ5OgiT5uW4HH2QJueUjAR0
xaSov2NyFQG0ybT1EPTSbzO9GLDBLXgTzGvtEvg=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtp6ugIuX3kL9hIUdWZI9
meN/j0M+JdJv1ZEdvrmttJtsa+ztGEv7J/kmbdmQsSuNwdmuLH13uOy8yUWj/8VF
mVwTi01ZCe9nrBOm2BzrQdPspqLVamsNGskGSMH0QCA2Dg8vhBn4mQPX5hLMikQF
DFNQemMLxvEntvzpJYoO5SrDC+Eq1L9LO27gDdp2sv8k9UrYBvoxVtoxzQ5XfeEq
BQkk21K8+HEGjY6yXyfWAsfE7omZScAViw0A1SbhumdN/1iGBj6vnNHwXRjG6GV/
/yta2/+0QGIjrwL0xmJzJP96FeRuJHRU4buK+xyOJ4TGx4MRjz0vEdZrQsqqTfXM
yQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 8382229851272211152582468200932664948
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert High Assurance CA-3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-08-22 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-10-28 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord Holland'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TomTom International BV'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GIT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.tomtom.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23053620341291759548927417656037924739216400084773189328897501537323697634077057608818026622342564660405489901404122831915856838544615268587098328084925201295842910088859038440588826234569036455073746295232616318610017071376663157832395074735595481450002690142270928118182308598776564934819170274343760016642833709451107758132584365901983467744245402250430476409385061431167556720845487841832027809958285994068344766016664191164299083493395166731778437701001628135820418714395056739119444159183949072458150399427152847825830572704107939546582689115738691042079068399006883370435002643038043602834355722338864853273801
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 50ea7389db29fb108f9ee50120d4de79994883f7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							65e27ccc7f6bb0cb62fb670e8825fd722e21f8b4
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tomtom.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tomtom.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Partnerlink.tomtom.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ca3-g24.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ca3-g24.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (443 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/ssl-cps-repository.htm'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:30|false] BMPString [0 65 0 110 0 121 0 32 0 117 0 115 0 101 0 32 0 111 0 102 0 32 0 116 0 104 0 105 0 115 0 32 0 67 0 101 0 114 0 116 0 105 0 102 0 105 0 99 0 97 0 116 0 101 0 32 0 99 0 111 0 110 0 115 0 116 0 105 0 116 0 117 0 116 0 101 0 115 0 32 0 97 0 99 0 99 0 101 0 112 0 116 0 97 0 110 0 99 0 101 0 32 0 111 0 102 0 32 0 116 0 104 0 101 0 32 0 68 0 105 0 103 0 105 0 67 0 101 0 114 0 116 0 32 0 67 0 80 0 47 0 67 0 80 0 83 0 32 0 97 0 110 0 100 0 32 0 116 0 104 0 101 0 32 0 82 0 101 0 108 0 121 0 105 0 110 0 103 0 32 0 80 0 97 0 114 0 116 0 121 0 32 0 65 0 103 0 114 0 101 0 101 0 109 0 101 0 110 0 116 0 32 0 119 0 104 0 105 0 99 0 104 0 32 0 108 0 105 0 109 0 105 0 116 0 32 0 108 0 105 0 97 0 98 0 105 0 108 0 105 0 116 0 121 0 32 0 97 0 110 0 100 0 32 0 97 0 114 0 101 0 32 0 105 0 110 0 99 0 111 0 114 0 112 0 111 0 114 0 97 0 116 0 101 0 100 0 32 0 104 0 101 0 114 0 101 0 105 0 110 0 32 0 98 0 121 0 32 0 114 0 101 0 102 0 101 0 114 0 101 0 110 0 99 0 101 0 46]
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (111 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertHighAssuranceCA-3.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		008225bc06ff11ea4a6e9aa600e906a8737b7b24a461b6cb4ea7fe01ec4b6838a636839ef5f94d6eb93a798ca5576ad4524c7b9ca5120bc696c43ce0c770fd76204d81f981d1d466f05698b3756a5f2eaab0b117994fbecf0257abf7ae98e855da1b6b9fdd81f389ef2478071ca82e233a9e0381b2272d6dc25d070fd72ef29ff451c5cc3502dce5669e020e2c7a3679d882f48fe96e2300477dae546619e82390bc09540d59a3b1b320f56cae5f2a6fb1423a3659e2db76b13e535faa994b1b993bea7c5efdc6730aa2accd103c4688b1733b04393a0893e6e5b81c7d9026e7948c0474c5a4a8bf63721501b4c9b4f510f4d26f33bd18b0c12d7813cc6bed12f8