donate.allina.com
- Allina Health System -
Issued by GeoTrust SSL CA - G2
About this certificate
This digital certificate with serial number 34:a8:68:85:1b:34:1b:02:2e:7f:98:41:20:e6:01:9b was issued on by GeoTrust Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Allina Health System
Organization:
Allina Health System
Organization unit: hosting
Organization unit: hosting
State / Province:
Minnesota
Locality: Minneapolis
Country: US
Locality: Minneapolis
Country: US
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 34:a8:68:85:1b:34:1b:02:2e:7f:98:41:20:e6:01:9bSerial Number (int): 69994281569412957555407448227138896283
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 11:4a:d0:73:39:d5:5b:69:08:5c:ba:3d:bf:64:9a:a8:8b:1c:55:bc
Fingerprint (sha1): 67:03:cf:62:aa:d1:8c:a1:0e:ec:ea:40:32:b0:de:b8:aa:fe:90:5a
Fingerprint (sha256): 01:22:c7:38:8b:3a:69:42:3f:65:66:6f:b7:fd:a0:50:95:ab:a9:04:2f:af:77:36:6b:fc:bc:77:00:ce:ab:31
Issuing Certificate URL: http://gtssl2-aia.geotrust.com/gtssl2.cer
Revocation information
OCSP Server: http://gtssl2-ocsp.geotrust.comCRL Distribution Point: http://gtssl2-crl.geotrust.com/gtssl2.crl
Check the revocation status for certificate donate.allina.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for donate.allina.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
donate.allina.com
Other certificates including the domain name allina.com
(limited to 100 certificates)
donate.allina.com
securelink.allina.com
accwebsecure.allina.com
remoteapps.allina.com
donate.allina.com
vid-polycom-rpadext-01.Allina.com
donate.allina.com
akn.allina.com
epiccarelink.allina.com
*.allina.com
mail.allina.com
webmail.allina.com
devsoapproxy.allina.com
eft.allina.com
tstsecurelink.allina.com
adfs.allina.com
adfs.allina.com
devexcellianmobile.allina.com
*.rsasso.allina.com
remoteapps.allina.com
webmail.allina.com
webproxy.allina.com
adfs.allina.com
webproxy.allina.com
learn.allina.com
apps.allina.com
mainspring.allina.com
polyregistration.allina.com
learn.allina.com
epiccarelink.allina.com
remoteapps.allina.com
*.allina.com
sip.allina.com
websched01.allina.com
ww2.allina.com
excellianweb.allina.com
psservices.allina.com
eft.allina.com
www.allina.com
vip-afstoreint.allina.com
radev.allina.com
mychart.allina.com
accwebsecure.allina.com
webproxy.allina.com
remoteapps.allina.com
webmail.allina.com
learn.allina.com
*.allina.com
sip.allina.com
vpn.allina.com
ww2.allina.com
www.allina.com
webmail.allina.com
devwebproxy.allina.com
webproxy.allina.com
*.allina.com
devsoapproxy.allina.com
donate.allina.com
health.allina.com
vdiprod.allina.com
akn.allina.com
health.allina.com
handheld.excellian.net
excellianmobile.allina.com
identityiq.allina.com
epiccarelink.allina.com
adfs.allina.com
mychart.allina.com
donate.allina.com
accwebsecure.allina.com
adfs.allina.com
*.allina.com
remoteapps.allina.com
vdidev.allina.com
vdidev.allina.com
apps.allina.com
radev.allina.com
*.allina.com
fmpsrv02.allina.com
hybrid.allina.com
webcarf.allina.com
mdcisedev03.allina.com
eft.allina.com
apps.allina.com
devsoapproxy.allina.com
webcarf.allina.com
psrecruit.allina.com
sip.allina.com
sip.allina.com
excellianweb.allina.com
remoteapps.allina.com
*.allina.com
eft.allina.com
securelink.allina.com
devsoapproxy.allina.com
websched01.allina.com
devsoapproxy.allina.com
learn.allina.com
remoteapps.allina.com
learn.allina.com
securelink.allina.com
accwebsecure.allina.com
remoteapps.allina.com
donate.allina.com
vid-polycom-rpadext-01.Allina.com
donate.allina.com
akn.allina.com
epiccarelink.allina.com
*.allina.com
mail.allina.com
webmail.allina.com
devsoapproxy.allina.com
eft.allina.com
tstsecurelink.allina.com
adfs.allina.com
adfs.allina.com
devexcellianmobile.allina.com
*.rsasso.allina.com
remoteapps.allina.com
webmail.allina.com
webproxy.allina.com
adfs.allina.com
webproxy.allina.com
learn.allina.com
apps.allina.com
mainspring.allina.com
polyregistration.allina.com
learn.allina.com
epiccarelink.allina.com
remoteapps.allina.com
*.allina.com
sip.allina.com
websched01.allina.com
ww2.allina.com
excellianweb.allina.com
psservices.allina.com
eft.allina.com
www.allina.com
vip-afstoreint.allina.com
radev.allina.com
mychart.allina.com
accwebsecure.allina.com
webproxy.allina.com
remoteapps.allina.com
webmail.allina.com
learn.allina.com
*.allina.com
sip.allina.com
vpn.allina.com
ww2.allina.com
www.allina.com
webmail.allina.com
devwebproxy.allina.com
webproxy.allina.com
*.allina.com
devsoapproxy.allina.com
donate.allina.com
health.allina.com
vdiprod.allina.com
akn.allina.com
health.allina.com
handheld.excellian.net
excellianmobile.allina.com
identityiq.allina.com
epiccarelink.allina.com
adfs.allina.com
mychart.allina.com
donate.allina.com
accwebsecure.allina.com
adfs.allina.com
*.allina.com
remoteapps.allina.com
vdidev.allina.com
vdidev.allina.com
apps.allina.com
radev.allina.com
*.allina.com
fmpsrv02.allina.com
hybrid.allina.com
webcarf.allina.com
mdcisedev03.allina.com
eft.allina.com
apps.allina.com
devsoapproxy.allina.com
webcarf.allina.com
psrecruit.allina.com
sip.allina.com
sip.allina.com
excellianweb.allina.com
remoteapps.allina.com
*.allina.com
eft.allina.com
securelink.allina.com
devsoapproxy.allina.com
websched01.allina.com
devsoapproxy.allina.com
learn.allina.com
remoteapps.allina.com
learn.allina.com
Certificate
The complete raw certificate details for donate.allina.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIQNKhohRs0GwIuf5hBIOYBmzANBgkqhkiG9w0BAQUFADBE MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UEAxMU R2VvVHJ1c3QgU1NMIENBIC0gRzIwHhcNMTQwNTMwMDAwMDAwWhcNMTYwNTI5MjM1 OTU5WjCBhDELMAkGA1UEBhMCVVMxEjAQBgNVBAgTCU1pbm5lc290YTEUMBIGA1UE BxQLTWlubmVhcG9saXMxHTAbBgNVBAoUFEFsbGluYSBIZWFsdGggU3lzdGVtMRAw DgYDVQQLFAdob3N0aW5nMRowGAYDVQQDFBFkb25hdGUuYWxsaW5hLmNvbTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMGfDxg1RI5AzdMQiYXC0LtKHH0H m6JT39BGe1BK7CVTHU6thYkiJ0ZENUidgWh5QS9JD7yaVRvhe0O1PFiQ4Bi7Et2Q lEouFVbxWrLokh+/LMY7XJ5H4JKvu/WYKuZQLghxuILq1Sx9cLspuDmpjioruOxt +q3ZGPHx/KhiaAfY6dxQdEwN5jmM6T2BPi3aSCBX9s6K1fRzvw9n1pkVxrNJq7Z5 ItLICudH8y2M9evq+xzMwek+5LhQXi2cwMwJBPVkxoz7SkUPQP4+a53AeLSmF2Fe uoW/PAthXV9TwS60v52pWn4R6xU/4yuCzK0sH4DYrEUhgER6jPmTWGmM6y8CAwEA AaOCAXswggF3MBwGA1UdEQQVMBOCEWRvbmF0ZS5hbGxpbmEuY29tMAkGA1UdEwQC MAAwDgYDVR0PAQH/BAQDAgWgMDoGA1UdHwQzMDEwL6AtoCuGKWh0dHA6Ly9ndHNz bDItY3JsLmdlb3RydXN0LmNvbS9ndHNzbDIuY3JsMEwGA1UdIARFMEMwQQYKYIZI AYb4RQEHNjAzMDEGCCsGAQUFBwIBFiVodHRwOi8vd3d3Lmdlb3RydXN0LmNvbS9y ZXNvdXJjZXMvY3BzMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAfBgNV HSMEGDAWgBQRStBzOdVbaQhcuj2/ZJqoixxVvDByBggrBgEFBQcBAQRmMGQwKwYI KwYBBQUHMAGGH2h0dHA6Ly9ndHNzbDItb2NzcC5nZW90cnVzdC5jb20wNQYIKwYB BQUHMAKGKWh0dHA6Ly9ndHNzbDItYWlhLmdlb3RydXN0LmNvbS9ndHNzbDIuY2Vy MA0GCSqGSIb3DQEBBQUAA4IBAQCgcrR6pJss8BpYLPOc317Z6ph/f5o7ahfKCN0W +Lq6/G+4Q8USocPugvqrug8PQTmotS76uZCjRKC/vGi7h1hImSPrzcCwU3fARpOa fF4oqfhkcUJukxkb3wcRPtTNjnTdx/1UGhLib0xU1IvuCN9dTYBPqpTLcOLu8fa7 4v3I1hIqCMCxbxHzPzHVo8DTeAKBUslrxRJFdy2D4XQNmBJM3IwZpf9jeusnrG+a X8LVUDwbcF68FNOaBAkeRYsmm0TXcBq3Uziq62dzM74BSCLTc9W6Q+SZ4LKW1MfR f+G/MCxQLctdfQwNkvamV/ROW0gg21LCHveIMjo2DJpIjek2 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZ8PGDVEjkDN0xCJhcLQ u0ocfQebolPf0EZ7UErsJVMdTq2FiSInRkQ1SJ2BaHlBL0kPvJpVG+F7Q7U8WJDg GLsS3ZCUSi4VVvFasuiSH78sxjtcnkfgkq+79Zgq5lAuCHG4gurVLH1wuym4OamO Kiu47G36rdkY8fH8qGJoB9jp3FB0TA3mOYzpPYE+LdpIIFf2zorV9HO/D2fWmRXG s0mrtnki0sgK50fzLYz16+r7HMzB6T7kuFBeLZzAzAkE9WTGjPtKRQ9A/j5rncB4 tKYXYV66hb88C2FdX1PBLrS/nalafhHrFT/jK4LMrSwfgNisRSGARHqM+ZNYaYzr LwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 69994281569412957555407448227138896283 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-05-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-29 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnesota' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Minneapolis' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Allina Health System' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'hosting' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'donate.allina.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24442427756480331943915847533215946910594031799252104376533724819923219720126702745972751765458429222469605741526494213091924681814765889942431260820102574731919381249735847098810724186356078915533428128804244135528588323590866649712215519975860002869123615570380188174390492136650679665771112690992245858004828851090258817730844635650291628859235015577644220162181107513049885799273922915180556773436974501905234933718369882688979944939338073975754685674559012305964015879220534325533154605466824273699369234549187845134636506045925477331738244687641666250239135147380699177589614822794273464243615924719795749841711 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'donate.allina.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl2-crl.geotrust.com/gtssl2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 114ad07339d55b69085cba3dbf649aa88b1c55bc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (102 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl2-ocsp.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl2-aia.geotrust.com/gtssl2.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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