pjfischer.lbl.gov
Issued by GTS CA 1D4
About this certificate
This digital certificate with serial number b4:8c:67:69:8d:ba:3e:e2:09:c2:63:c7:27:dd:02:47 was issued on by Google Trust Services LLC.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pjfischer.lbl.gov
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): b4:8c:67:69:8d:ba:3e:e2:09:c2:63:c7:27:dd:02:47Serial Number (int): 239990058252488516654135962717443129927
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: ae:d8:98:eb:75:9f:75:a3:7e:a5:cd:3a:84:4a:67:a2:0d:24:3d:15
AuthorityKeyId: 25:e2:18:0e:b2:57:91:94:2a:e5:d4:5d:86:90:83:de:53:b3:b8:92
Fingerprint (sha1): e0:01:11:db:d9:13:9e:ad:79:66:e7:00:2e:f6:8a:b2:94:d8:14:32
Fingerprint (sha256): 00:67:67:b5:95:d9:b7:b5:46:0b:ad:af:4b:a1:a4:8c:d8:10:eb:76:81:00:35:9f:68:89:0a:ec:b7:67:58:77
Issuing Certificate URL: http://pki.goog/repo/certs/gts1d4.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1d4/TJLSWGrZedUCRL Distribution Point: http://crls.pki.goog/gts1d4/o75iqDjrGU8.crl
Check the revocation status for certificate pjfischer.lbl.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pjfischer.lbl.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pjfischer.lbl.gov
Other certificates including the domain name lbl.gov
(limited to 100 certificates)
sni.cloudflaressl.com
watershed.lbl.gov
5692462144159744-fe3.pantheonsite.io
nanowiki.lbl.gov
sciencesearch-ncem.lbl.gov
bcp.lbl.gov
sni.cloudflaressl.com
iprequest.lbl.gov
carpepm.almonds.com
sni.cloudflaressl.com
5648554290839552-fe1.pantheonsite.io
cuwip.physics.berkeley.edu
ess-dive.lbl.gov
slidecam-camera.lbl.gov
peabody.lbl.gov
pjfischer.lbl.gov
eesatough.lbl.gov
5769720821186560-fe3.pantheonsite.io
5756433131896832-fe1.pantheonsite.io
5631943370604544-fe1.pantheonsite.io
5757334940811264-fe4.pantheonsite.io
bsbip1-admin.lbl.gov
sni.cloudflaressl.com
5709068098338816-fe3.pantheonsite.io
5643365030821888-fe1.pantheonsite.io
ergoeval.lbl.gov
sni.cloudflaressl.com
ssl937631.cloudflaressl.com
qmm.lbl.gov
babe.lbl.gov
5756433131896832-fe1.pantheonsite.io
flexlab.lbl.gov
calendar.sdzsafaripark.org
conferences.lbl.gov
ee.lbl.gov
sni.cloudflaressl.com
foundry2.lbl.gov
sxworkshop.lbl.gov
5652720409116672-fe3.pantheonsite.io
postdocresources.lbl.gov
5768939674009600-fe3.pantheonsite.io
5650082896543744-fe3.pantheonsite.io
matgen8.lbl.gov
ssl937633.cloudflaressl.com
sni.cloudflaressl.com
www.3scale.net
sni.cloudflaressl.com
sni.cloudflaressl.com
5709068098338816-fe3.pantheonsite.io
5721489412194304-fe1.pantheonsite.io
sni.cloudflaressl.com
dnscontacts.lbl.gov
5650082896543744-fe3.pantheonsite.io
sni.cloudflaressl.com
cdn-test.battlefields.org
5695414665740288-fe2.pantheonsite.io
p3hpc2018.lbl.gov
5768939674009600-fe3.pantheonsite.io
phywebb.lbl.gov
sni.cloudflaressl.com
nancynano.lbl.gov
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
eapx02.lbl.gov
foundry2.lbl.gov
5656619568332800-fe3.pantheonsite.io
spt.lbl.gov
5656619568332800-fe3.pantheonsite.io
5769720821186560-fe3.pantheonsite.io
5709068098338816-fe3.pantheonsite.io
cascade.lbl.gov
waterenergy.lbl.gov
ecep.lbl.gov
callxpresswpm.lbl.gov
bl831.als.lbl.gov
5650082896543744-fe3.pantheonsite.io
chns120.courseresource.yale.edu
shirley.lbl.gov
www.3scale.net
sni.cloudflaressl.com
flexo.lbl.gov
5721489412194304-fe1.pantheonsite.io
energystorage.lbl.gov
www.3scale.net
friendsofberkeleylab.lbl.gov
ultrafast.lbl.gov
5643365030821888-fe1.pantheonsite.io
cuwip.physics.berkeley.edu
www.3scale.net
5649391675244544-fe2.pantheonsite.io
www-afrd.lbl.gov
5692462144159744-fe3.pantheonsite.io
ssl744665.cloudflaressl.com
onthemove.lbl.gov
5757334940811264-fe4.pantheonsite.io
5652720409116672-fe3.pantheonsite.io
sharp.lbl.gov
5692462144159744-fe3.pantheonsite.io
watershed.lbl.gov
5692462144159744-fe3.pantheonsite.io
nanowiki.lbl.gov
sciencesearch-ncem.lbl.gov
bcp.lbl.gov
sni.cloudflaressl.com
iprequest.lbl.gov
carpepm.almonds.com
sni.cloudflaressl.com
5648554290839552-fe1.pantheonsite.io
cuwip.physics.berkeley.edu
ess-dive.lbl.gov
slidecam-camera.lbl.gov
peabody.lbl.gov
pjfischer.lbl.gov
eesatough.lbl.gov
5769720821186560-fe3.pantheonsite.io
5756433131896832-fe1.pantheonsite.io
5631943370604544-fe1.pantheonsite.io
5757334940811264-fe4.pantheonsite.io
bsbip1-admin.lbl.gov
sni.cloudflaressl.com
5709068098338816-fe3.pantheonsite.io
5643365030821888-fe1.pantheonsite.io
ergoeval.lbl.gov
sni.cloudflaressl.com
ssl937631.cloudflaressl.com
qmm.lbl.gov
babe.lbl.gov
5756433131896832-fe1.pantheonsite.io
flexlab.lbl.gov
calendar.sdzsafaripark.org
conferences.lbl.gov
ee.lbl.gov
sni.cloudflaressl.com
foundry2.lbl.gov
sxworkshop.lbl.gov
5652720409116672-fe3.pantheonsite.io
postdocresources.lbl.gov
5768939674009600-fe3.pantheonsite.io
5650082896543744-fe3.pantheonsite.io
matgen8.lbl.gov
ssl937633.cloudflaressl.com
sni.cloudflaressl.com
www.3scale.net
sni.cloudflaressl.com
sni.cloudflaressl.com
5709068098338816-fe3.pantheonsite.io
5721489412194304-fe1.pantheonsite.io
sni.cloudflaressl.com
dnscontacts.lbl.gov
5650082896543744-fe3.pantheonsite.io
sni.cloudflaressl.com
cdn-test.battlefields.org
5695414665740288-fe2.pantheonsite.io
p3hpc2018.lbl.gov
5768939674009600-fe3.pantheonsite.io
phywebb.lbl.gov
sni.cloudflaressl.com
nancynano.lbl.gov
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
eapx02.lbl.gov
foundry2.lbl.gov
5656619568332800-fe3.pantheonsite.io
spt.lbl.gov
5656619568332800-fe3.pantheonsite.io
5769720821186560-fe3.pantheonsite.io
5709068098338816-fe3.pantheonsite.io
cascade.lbl.gov
waterenergy.lbl.gov
ecep.lbl.gov
callxpresswpm.lbl.gov
bl831.als.lbl.gov
5650082896543744-fe3.pantheonsite.io
chns120.courseresource.yale.edu
shirley.lbl.gov
www.3scale.net
sni.cloudflaressl.com
flexo.lbl.gov
5721489412194304-fe1.pantheonsite.io
energystorage.lbl.gov
www.3scale.net
friendsofberkeleylab.lbl.gov
ultrafast.lbl.gov
5643365030821888-fe1.pantheonsite.io
cuwip.physics.berkeley.edu
www.3scale.net
5649391675244544-fe2.pantheonsite.io
www-afrd.lbl.gov
5692462144159744-fe3.pantheonsite.io
ssl744665.cloudflaressl.com
onthemove.lbl.gov
5757334940811264-fe4.pantheonsite.io
5652720409116672-fe3.pantheonsite.io
sharp.lbl.gov
5692462144159744-fe3.pantheonsite.io
Certificate
The complete raw certificate details for pjfischer.lbl.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgIRALSMZ2mNuj7iCcJjxyfdAkcwDQYJKoZIhvcNAQELBQAw RjELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBM TEMxEzARBgNVBAMTCkdUUyBDQSAxRDQwHhcNMjMxMDIyMDU0NzE5WhcNMjQwMTIw MDYzMjQ4WjAcMRowGAYDVQQDExFwamZpc2NoZXIubGJsLmdvdjCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAPCw4FgdemoBzKESjFS/Mwscj1BnxzLeI3xS roBjYE1ozRwUmdB7sLOtHrsPd+L6K5a98zWtCP+ERUYZOk6DHlq1sgmOYM6JVpPz hMD67L/4b51PXP47TkGiDmV3yu40LAHkSefZkCjpbnpN7Z/XCtVFqB7fMDZUxFpP IWr1Log/6o74jqFb0b7+YWwe8Oa2ly/bCojx0ZfGVXo5o+q0dU+jjmFSSh5+CkVY 7tJlFzuhkhWEQOlC3+a6/2QpONK0FhYwt5qlRQgYGgjmO39Vv0RyTUUhiKOyFUqJ X1NsN4+GUUwjwEeqbgTX41K61/tJBIXg/3uLQN0ZomTu81x6hxMCAwEAAaOCAngw ggJ0MA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBSu2JjrdZ91o36lzTqESmeiDSQ9FTAfBgNVHSMEGDAW gBQl4hgOsleRlCrl1F2GkIPeU7O4kjB4BggrBgEFBQcBAQRsMGowNQYIKwYBBQUH MAGGKWh0dHA6Ly9vY3NwLnBraS5nb29nL3MvZ3RzMWQ0L1RKTFNXR3JaZWRVMDEG CCsGAQUFBzAChiVodHRwOi8vcGtpLmdvb2cvcmVwby9jZXJ0cy9ndHMxZDQuZGVy MBwGA1UdEQQVMBOCEXBqZmlzY2hlci5sYmwuZ292MCEGA1UdIAQaMBgwCAYGZ4EM AQIBMAwGCisGAQQB1nkCBQMwPAYDVR0fBDUwMzAxoC+gLYYraHR0cDovL2NybHMu cGtpLmdvb2cvZ3RzMWQ0L283NWlxRGpyR1U4LmNybDCCAQQGCisGAQQB1nkCBAIE gfUEgfIA8AB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABi1Yj XuUAAAQDAEcwRQIhALhJEvAp3nZa/w7204z2v4mNLYhywAf/Qr2BILgMgGCpAiAz ETC606VNVHUvEwXpwN7UN6lo2NMbg1KS4tFEkipkgQB2ANq2v2s/tbYin5vCu1xr 6HCRcWy7UYSFNL2kPTBI1/urAAABi1YjXvUAAAQDAEcwRQIgRmRk3WzxxmEw4GFX 5wQu3WFhUNvX9ZhpYYg6Td5QdAUCIQDE1FkwxCoPZeEt4Bd5FDrduytb82FAa398 PLnuNQWD3zANBgkqhkiG9w0BAQsFAAOCAQEAQc0pTWSXV68JDOuk64iOzFCKG1zr /HPhNKn1JtWdy7zdStqihG30MP38BOyTkP5U911KolUnDzl8xu75TQyNyBgo12tS EvDbwJn4wHR1kCmwocPkHKq3Efn33LfHqOzrcOTRRlK8fu61EnAzTZs9FLP0FGu7 qpnv0VqoLtXBF3AM4gwcF6ycrv3YmSgYiPo9VM7iReqXsouLGtSq3ERotGciqrDG ci7ljott0sz6qbomP5znDkhWbC/GmNfcN4PYbJvmQDgjnAoIgrgAEVbPNKk3ITss xzdmSXauMWyl3CzcZfE7IWXr6Ue/KPZWtNN0j/zP/v6ZIwSg5aDTbgfsbw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8LDgWB16agHMoRKMVL8z CxyPUGfHMt4jfFKugGNgTWjNHBSZ0Huws60euw934vorlr3zNa0I/4RFRhk6ToMe WrWyCY5gzolWk/OEwPrsv/hvnU9c/jtOQaIOZXfK7jQsAeRJ59mQKOluek3tn9cK 1UWoHt8wNlTEWk8havUuiD/qjviOoVvRvv5hbB7w5raXL9sKiPHRl8ZVejmj6rR1 T6OOYVJKHn4KRVju0mUXO6GSFYRA6ULf5rr/ZCk40rQWFjC3mqVFCBgaCOY7f1W/ RHJNRSGIo7IVSolfU2w3j4ZRTCPAR6puBNfjUrrX+0kEheD/e4tA3RmiZO7zXHqH EwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 239990058252488516654135962717443129927 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1D4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-22 05:47:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-20 06:32:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pjfischer.lbl.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30384414168112349131347326900100539402458834399907372617051163895352592271467411284768233423764639674075762492793051688414179758861014106904802492808330258029865478466650753845621997462635510010219289228480299254299393167844386443267190737169087697480611115784709425544913240668043584357604268045031378855105838422377635768780258240185312252124906286304003704031359590691025126115434154589720016279994130269133465238963969011245873935238299690544185091590297871580581367494257212362203793241627218620908249458881190335682067636805430793630453386693504222458398872704367102012584355903165790956426859968806159977711379 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aed898eb759f75a37ea5cd3a844a67a20d243d15 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 25e2180eb25791942ae5d45d869083de53b3b892 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1d4/TJLSWGrZedU' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1d4.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pjfischer.lbl.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1d4/o75iqDjrGU8.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b56235ee50000040300473045022100b84912f029de765aff0ef6d38cf6bf898d2d8872c007ff42bd8120b80c8060a90220331130bad3a54d54752f1305e9c0ded437a968d8d31b835292e2d144922a6481007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b56235ef500000403004730450220466464dd6cf1c66130e06157e7042edd616150dbd7f5986961883a4dde507405022100c4d45930c42a0f65e12de01779143addbb2b5bf361406b7f7c3cb9ee350583df . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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