domino.research.ibm.com
- International Business Machines Corporation -
Issued by GeoTrust RSA CA 2018
About this certificate
This digital certificate with serial number 01:a2:f6:43:03:e9:33:f9:49:ec:b2:00:21:1a:7a:f3 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
International Business Machines Corporation
Organization:
International Business Machines Corporation
State / Province:
New York
Locality: Armonk
Country: US
Locality: Armonk
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:a2:f6:43:03:e9:33:f9:49:ec:b2:00:21:1a:7a:f3Serial Number (int): 2175374869127324900051629939237747443
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 0e:43:bb:dd:ba:b9:14:07:3e:b6:65:26:19:8f:a4:f8:83:5a:fc:43
AuthorityKeyId: 90:58:ff:b0:9c:75:a8:51:54:77:b1:ed:f2:a3:43:16:38:9e:6c:c5
Fingerprint (sha1): ca:cb:b8:dd:ec:40:61:64:3a:e2:db:de:a4:12:88:21:7b:01:7d:aa
Fingerprint (sha256): 00:a1:17:2e:ff:26:53:b7:ad:c8:d9:c4:56:fd:bf:d4:c9:62:cc:21:72:5d:bc:3a:30:a6:c5:1a:d5:7f:2a:93
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustRSACA2018.crl
Check the revocation status for certificate domino.research.ibm.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for domino.research.ibm.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
domino.research.ibm.com
Other certificates including the domain name ibm.com
(limited to 100 certificates)
sasvpn03.pok.ibm.com
webdk.dst.ibm.com
eventstreams.cloud.ibm.com
*.admin.cfapps.sapcp.cloud.ibm.com
eu-de-2-0.eu-de.apiconnect.test.cloud.ibm.com
www-919.ibm.com
*.cau.ibm.com
w3-501.ibm.com
statuspage.io
iespccu.sras.ibm.com
devops.test.cloud.ibm.com
prod-0.eu-de.apiconnect.cloud.ibm.com
sni.cloudflaressl.com
ssl515828.cloudflaressl.com
statuspage.io
iha01wdc.private.us-south.websphereappsvr.cloud.ibm.com
el01.podc.sl.edst.ibm.com
sni.cloudflaressl.com
sni.cloudflaressl.com
mhasportal.mhas.ibm.com
ssl965152.cloudflaressl.com
watsonwork.ibm.com
gbnh2is220sdmxm.uk.ibm.com
gbsjira.in.edst.ibm.com
sni.cloudflaressl.com
ssl942376.cloudflaressl.com
ic-prestage-1-1.eu-de.apiconnect.test.cloud.ibm.com
sni.cloudflaressl.com
*.us-south.db2oncloud.cloud.ibm.com
ssl965007.cloudflaressl.com
*.cloudantnosqldb.cloud.ibm.com
statuspage.io
www.ess5.de.smi.ibm.com
download3.boulder.ibm.com
statuspage.io
dev-api-us.sec.ibm.com
web-chat.assistant.watson.cloud.ibm.com
containers.cloud.ibm.com
eu.smi.ibm.com
d24bml09.br.ibm.com
*.swg.usma.ibm.com
ssl748572.cloudflaressl.com
statuspage.io
mea.newsroom.ibm.com
frgr11ng23008.ng2.mop.ssm.sdc.gts.ibm.com
*.resource-controller.preprod.cloud.ibm.com
sni.cloudflaressl.com
ssl944689.cloudflaressl.com
resource-controller.cloud.ibm.com
sni.cloudflaressl.com
sni.cloudflaressl.com
domino.research.ibm.com
www.ibm.com
appflow.test.saas.ibm.com
staples.us-east.apiconnect.cloud.ibm.com
sni.cloudflaressl.com
ssl903019.cloudflaressl.com
ssl875348.cloudflaressl.com
service5.boulder.ibm.com
confluence-dev.wce.ibm.com
*.iacs.ibm.com
*.tools.ibm.com
w3.tap.ibm.com
ssl439395.cloudflaressl.com
sni.cloudflaressl.com
ssl876250.cloudflaressl.com
sni.cloudflaressl.com
status-beta.cloud.tenable.com
ssl505185.cloudflaressl.com
sni.cloudflaressl.com
hostedb2-scale-fyp.eu-de.db2oncloud.cloud.ibm.com
*.bastionx.cloud.ibm.com
ssoqa-mssiam.sec.ibm.com
ocp-550002y9v5-qx16.cloud.techzone.ibm.com
ssl389895.cloudflaressl.com
*.sandbox.maximomro.ibmiot.ibm.com
eventstreams.cloud.ibm.com
www.ibm.com
statuspage.io
isrvce.ibm.com
sni.cloudflaressl.com
eu-gb.monitoring.test.cloud.ibm.com
sni.cloudflaressl.com
ctl-remote-access-ps.boulder.us.sni.ibm.com
sni.cloudflaressl.com
msciftpgw.im-ies.ibm.com
hub.8b6a-441cd40b.eu-de.apiconnect.cloud.ibm.com
sni.cloudflaressl.com
*.rmc.test.cloud.ibm.com
sni.cloudflaressl.com
celsiusnetworkstatus.com
monitor.jumio.com
*.icds.ibm.com
ssl419666.cloudflaressl.com
ssl943434.cloudflaressl.com
sni.cloudflaressl.com
ssl942441.cloudflaressl.com
*.cf.sapcp.cloud.ibm.com
bpg-auth-tst.partnerworld.ibm.com
iga-bld-hde-01p.boulder.ibm.com
webdk.dst.ibm.com
eventstreams.cloud.ibm.com
*.admin.cfapps.sapcp.cloud.ibm.com
eu-de-2-0.eu-de.apiconnect.test.cloud.ibm.com
www-919.ibm.com
*.cau.ibm.com
w3-501.ibm.com
statuspage.io
iespccu.sras.ibm.com
devops.test.cloud.ibm.com
prod-0.eu-de.apiconnect.cloud.ibm.com
sni.cloudflaressl.com
ssl515828.cloudflaressl.com
statuspage.io
iha01wdc.private.us-south.websphereappsvr.cloud.ibm.com
el01.podc.sl.edst.ibm.com
sni.cloudflaressl.com
sni.cloudflaressl.com
mhasportal.mhas.ibm.com
ssl965152.cloudflaressl.com
watsonwork.ibm.com
gbnh2is220sdmxm.uk.ibm.com
gbsjira.in.edst.ibm.com
sni.cloudflaressl.com
ssl942376.cloudflaressl.com
ic-prestage-1-1.eu-de.apiconnect.test.cloud.ibm.com
sni.cloudflaressl.com
*.us-south.db2oncloud.cloud.ibm.com
ssl965007.cloudflaressl.com
*.cloudantnosqldb.cloud.ibm.com
statuspage.io
www.ess5.de.smi.ibm.com
download3.boulder.ibm.com
statuspage.io
dev-api-us.sec.ibm.com
web-chat.assistant.watson.cloud.ibm.com
containers.cloud.ibm.com
eu.smi.ibm.com
d24bml09.br.ibm.com
*.swg.usma.ibm.com
ssl748572.cloudflaressl.com
statuspage.io
mea.newsroom.ibm.com
frgr11ng23008.ng2.mop.ssm.sdc.gts.ibm.com
*.resource-controller.preprod.cloud.ibm.com
sni.cloudflaressl.com
ssl944689.cloudflaressl.com
resource-controller.cloud.ibm.com
sni.cloudflaressl.com
sni.cloudflaressl.com
domino.research.ibm.com
www.ibm.com
appflow.test.saas.ibm.com
staples.us-east.apiconnect.cloud.ibm.com
sni.cloudflaressl.com
ssl903019.cloudflaressl.com
ssl875348.cloudflaressl.com
service5.boulder.ibm.com
confluence-dev.wce.ibm.com
*.iacs.ibm.com
*.tools.ibm.com
w3.tap.ibm.com
ssl439395.cloudflaressl.com
sni.cloudflaressl.com
ssl876250.cloudflaressl.com
sni.cloudflaressl.com
status-beta.cloud.tenable.com
ssl505185.cloudflaressl.com
sni.cloudflaressl.com
hostedb2-scale-fyp.eu-de.db2oncloud.cloud.ibm.com
*.bastionx.cloud.ibm.com
ssoqa-mssiam.sec.ibm.com
ocp-550002y9v5-qx16.cloud.techzone.ibm.com
ssl389895.cloudflaressl.com
*.sandbox.maximomro.ibmiot.ibm.com
eventstreams.cloud.ibm.com
www.ibm.com
statuspage.io
isrvce.ibm.com
sni.cloudflaressl.com
eu-gb.monitoring.test.cloud.ibm.com
sni.cloudflaressl.com
ctl-remote-access-ps.boulder.us.sni.ibm.com
sni.cloudflaressl.com
msciftpgw.im-ies.ibm.com
hub.8b6a-441cd40b.eu-de.apiconnect.cloud.ibm.com
sni.cloudflaressl.com
*.rmc.test.cloud.ibm.com
sni.cloudflaressl.com
celsiusnetworkstatus.com
monitor.jumio.com
*.icds.ibm.com
ssl419666.cloudflaressl.com
ssl943434.cloudflaressl.com
sni.cloudflaressl.com
ssl942441.cloudflaressl.com
*.cf.sapcp.cloud.ibm.com
bpg-auth-tst.partnerworld.ibm.com
iga-bld-hde-01p.boulder.ibm.com
Certificate
The complete raw certificate details for domino.research.ibm.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIQAaL2QwPpM/lJ7LIAIRp68zANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRHZW9UcnVzdCBSU0EgQ0EgMjAxODAe Fw0xODEwMDgwMDAwMDBaFw0xOTExMTMxMjAwMDBaMIGJMQswCQYDVQQGEwJVUzER MA8GA1UECBMITmV3IFlvcmsxDzANBgNVBAcTBkFybW9uazE0MDIGA1UEChMrSW50 ZXJuYXRpb25hbCBCdXNpbmVzcyBNYWNoaW5lcyBDb3Jwb3JhdGlvbjEgMB4GA1UE AxMXZG9taW5vLnJlc2VhcmNoLmlibS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO77SakqKP/hl5H44fbXN2s89eQtOTK8365fy3zO2Z0P0rK8po LpzyNCQQmWTzpfgIP+Sukp2fIBuDcJX4qNaDfDiEbKkSu1QRV6LnHj3GY+tOroN7 3ObhY1YxmH6TA7zc0eA6U4LChedWN01DcJKkoKPoCO2suVWbO6xjVEyqcq8LFvAe cZsUt6DaY2LC2JTQ6Y0/g8W9PZQycL/stwgNxZIoZzVsPgra3fJATs7+Oc51TKk1 vD2MtrILtUSiXui29Th9Vv+/6m3ErTDV0100q4Z8fZrZNUH62qEn8qorC3wucO/0 yDuO+zcRNVvLJ21LKawm+YP8SZ22KlgB3qf7AgMBAAGjggG8MIIBuDAfBgNVHSME GDAWgBSQWP+wnHWoUVR3se3yo0MWOJ5sxTAdBgNVHQ4EFgQUDkO73bq5FAc+tmUm GY+k+INa/EMwIgYDVR0RBBswGYIXZG9taW5vLnJlc2VhcmNoLmlibS5jb20wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA+BgNV HR8ENzA1MDOgMaAvhi1odHRwOi8vY2RwLmdlb3RydXN0LmNvbS9HZW9UcnVzdFJT QUNBMjAxOC5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcC ARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwdQYIKwYB BQUHAQEEaTBnMCYGCCsGAQUFBzABhhpodHRwOi8vc3RhdHVzLmdlb3RydXN0LmNv bTA9BggrBgEFBQcwAoYxaHR0cDovL2NhY2VydHMuZ2VvdHJ1c3QuY29tL0dlb1Ry dXN0UlNBQ0EyMDE4LmNydDAJBgNVHRMEAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUA MA0GCSqGSIb3DQEBCwUAA4IBAQB/WuOlaQmQsAVuUhyYSybYdqJhcEoG5izWp57N EiYkDHhJ219SsBu3NoC+5eA104kOeM/+8C4BIFafhOiOKYxdC8a+Dn3fLNYP3AH7 lPDFjkDQw8Q1kirfLh9tScKu4RF/L+Zei2LKgMZAzVMIxAsrSDSh3AzBQWqmAPSe 0ALjW6NH7KwSOaGUk/iQxqJTdK8D1cpnYqlI9vcCoVitsl5qxS1qWUyujX8IOa9b QTVAQXqM00hBVrHFpT7FBjMhszHwAkktfbA8xYiaiVUJwal9UMhoOzDNhjXDR6FN W1ZII9AmYks6D+udKNQCuec/SgwHePZBltYhfWS/flSA5Mvg -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzu+0mpKij/4ZeR+OH21z drPPXkLTkyvN+uX8t8ztmdD9KyvKaC6c8jQkEJlk86X4CD/krpKdnyAbg3CV+KjW g3w4hGypErtUEVei5x49xmPrTq6De9zm4WNWMZh+kwO83NHgOlOCwoXnVjdNQ3CS pKCj6AjtrLlVmzusY1RMqnKvCxbwHnGbFLeg2mNiwtiU0OmNP4PFvT2UMnC/7LcI DcWSKGc1bD4K2t3yQE7O/jnOdUypNbw9jLayC7VEol7otvU4fVb/v+ptxK0w1dNd NKuGfH2a2TVB+tqhJ/KqKwt8LnDv9Mg7jvs3ETVbyydtSymsJvmD/EmdtipYAd6n +wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2175374869127324900051629939237747443 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Armonk' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'International Business Machines Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'domino.research.ibm.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26123294002460931276973661255789523628137747376378874086269796876556545603152001663247521386998667045997755454770985234509150746049558103412776299720654993753674149602996409080022507346351039079783655336248180722001036659908600843937170015114686737182955969911012127444862946160372616572197095365249771423691017603135778301302887269093429849989867259063618838560357725387916967553392728635869697493750386735981878776784587721593731393078190768145551918628059512534954131141662803106863403554796772034642362914914718236242429279827379618040272958405095388569692303468269055126243611514280134562854378024585592381024251 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9058ffb09c75a8515477b1edf2a34316389e6cc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0e43bbddbab914073eb66526198fa4f8835afc43 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domino.research.ibm.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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