*.tomtom.com

- TomTom International BV -

Issued by DigiCert High Assurance CA-3

About this certificate

This digital certificate with serial number 0e:64:6e:5a:2f:12:de:8b:18:13:b1:e5:e2:ab:fe:e7 was issued on by DigiCert Inc.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Compliant certificates should use the utf8string encoding for explicitText (RFC 6818: 3)

TomTom International BV

Organization: TomTom International BV
Organization unit: GIT
State / Province: Noord Holland
Locality: Amsterdam
Country: NL

DigiCert Inc

Organization: DigiCert Inc
Organization unit: www.digicert.com
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0e:64:6e:5a:2f:12:de:8b:18:13:b1:e5:e2:ab:fe:e7
Serial Number (int): 19130659837001940008591196837894684391
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: f5:dc:04:78:be:6c:dc:20:10:9d:d8:4c:55:96:64:dd:86:45:f7:da
AuthorityKeyId: 50:ea:73:89:db:29:fb:10:8f:9e:e5:01:20:d4:de:79:99:48:83:f7

Fingerprint (sha1): 7a:94:06:98:c3:86:e5:a7:cd:58:4f:da:5c:7d:01:94:74:ca:95:b9
Fingerprint (sha256): 01:6b:46:bd:d2:bd:3e:39:7a:8e:75:49:d2:0b:a1:d5:2d:30:8b:d2:f4:81:a6:45:e1:ba:77:72:22:25:2e:80

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertHighAssuranceCA-3.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/ca3-g24.crl
CRL Distribution Point: http://crl4.digicert.com/ca3-g24.crl

Check the revocation status for certificate *.tomtom.com

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.tomtom.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.tomtom.com
tomtom.com
connect-us.tomtom.com

Other certificates including the domain name tomtom.com

(limited to 100 certificates)
wadetrim.trubytraining.com
22773.discos.orbis.tomtom.com
tracker.engage.tomtom.com
ind06pr-890.maps-pu-poi.tomtom.com
s1.i.maverick.mep.tomtom.com
*.fcd-ingest.tomtom.com
atom-ws.27373.orbis.tomtom.com
*.tomtom.com
brandguide.tomtom.com
connect-us.tomtom.com
kenai-mod-11943-similar-jobs.preprod.marketing-az.tomtom.com
kenai-master.preprod.marketing-az.tomtom.com
11851.discos.orbis.tomtom.com
cert00017-azurecdn.akamaized.net
reportswithmaps.eu-west-1.maps-central.tomtom.com
fleetsecure.telematics.tomtom.com
6.discos.orbis.tomtom.com
airflow.inc-conf.prod.maps-amf.tomtom.com
bhsa.mysportsanalysis.com
28200.discos.orbis.tomtom.com
backend.pr-44.aqua.poi-dev.orbis.tomtom.com
ns-gss-wfs.inc-conf.dev.maps-amf.tomtom.com
usa06pr-843.maps-pu-poi.tomtom.com
matter-ws.22068.orbis.tomtom.com
fra2409test90-907.maps-pu-poi.tomtom.com
dev.mapexplorer.tomtom.com
atom-ws.67299.orbis.tomtom.com
academy.tomtom.com
atom-ws.20735.orbis.tomtom.com
*.tomtom.com
argo-discos.13999.discos.orbis.tomtom.com
cert00017-azurecdn.akamaized.net
cert00017-azurecdn.akamaized.net
kepler.ts.tomtom.com
mcodnkevtest-901.maps-pu-poi.tomtom.com
alertmanager.test-jk.connected-services.tomtom.com
preprod-vag-hcp3.acs.services.tomtom.com
caesgbitnosw06-844.maps-pu-poi.tomtom.com
wadetrim.trubytraining.com
*.navcloud.tomtom.com
farmviability.oahurcd.org
cert00017-azurecdn.akamaized.net
*.discovery.speech.tomtom.com
aqua-viewer.pr-58.aqua.poi-dev.orbis.tomtom.com
*.fcd-ingest.tomtom.com
alertmanager.prod-blue.connected-services.tomtom.com
api.roadcheck-dev.tomtom.com
backend.pr-47.aqua.poi-dev.orbis.tomtom.com
minerva-rest-api.test-chha.connected-services.tomtom.com
btsqas.tomtom.com
7.discos.orbis.tomtom.com
15408.discos.orbis.tomtom.com
backend.pr-46.aqua.poi-dev.orbis.tomtom.com
kenai-develop.preprod.marketing-az.tomtom.com
cert00017-azurecdn.akamaized.net
vertex.mep.tomtom.com
cert00017-azurecdn.akamaized.net
matter-ws.26195.orbis.tomtom.com
*.fcd-ingest.tomtom.com
*.adas-tile-service.mapcontent-dev.tomtom.com
kenai-mdev-1967-indigo-borders.preprod.marketing-az.tomtom.com
goldstream-develop.prod.marketing-az.tomtom.com
reportswithmaps.maps-central.tomtom.com
aqua-sampler-backend.released.aqua.poi-dev.orbis.tomtom.com
alertmanager.7777.discos-v2.orbis.tomtom.com
22867.discos.orbis.tomtom.com
fra06pr-883.maps-pu-poi.tomtom.com
matter-ws.11100.orbis.tomtom.com
brcachsg06pr-833.maps-pu-poi.tomtom.com
16770.discos-dev.orbis.tomtom.com
preprod-famar-ams.services.tomtom.com
feature-history.mep.tomtom.com
19680.discos.orbis.tomtom.com
ind06pr-889.maps-pu-poi.tomtom.com
brcachsg06pr-833.maps-pu-poi.tomtom.com
6.discos.orbis.tomtom.com
cert00017-azurecdn.akamaized.net
aqua-sampler-backend.pr-11.aqua.poi-dev.orbis.tomtom.com
kafka-bootstrap.prod-green.connected-services.tomtom.com
cpt.cs.tomtom.com
minerva-rest-api.test-lo.connected-services.tomtom.com
matter-ws.54879.orbis.tomtom.com
atom-ws.16233.orbis.tomtom.com
mock.preprod-ams.tomtom.com
22428.discos.orbis.tomtom.com
*.mapcontent-dev.tomtom.com
grafana.12772.discos-v2.orbis.tomtom.com
abddnktestev15-891.maps-pu-poi.tomtom.com
adas-tile-compiler-fca.mapcontent-dev.tomtom.com
preprod-fca-gsdp-sxm.services.tomtom.com
mep.tomtom.com
cert00017-azurecdn.akamaized.net
akamai-san18.exacttarget.com
api-blue.dev.horizon.tomtom.com
backend.pr-1.aqua.poi-dev.orbis.tomtom.com
preprod-kr-vag-hcp3.acs.services.tomtom.com
26587.discos.orbis.tomtom.com
cert00017-azurecdn.akamaized.net
atom-ws.16807.orbis.tomtom.com
17957.discos.orbis.tomtom.com

Certificate

The complete raw certificate details for *.tomtom.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/G796TrBFk3MFEK7lyq
COBPVtfCSyzgN1GWt2zVry7yktLbMl+8cJ8RqNubLCKsIUlhbYaze+gk1LErG3Z4
itBcvnwPA+w9ubAIYvMr9Qohc7lQaXji8vWaIlGHZS8/Obbtfr5xs+5Qs71FdZbK
l7mN2k61FiIRLF8EK2oU/ASdfSQ4tHBsKk9h7J5LfuioDACaN8F+n5zpDa3xJcyq
NpybdRj9QeADY5v84YZPJr5ObtoTZYzFpC1bldsToGLP5aecInRcmYslVDjqxC2q
NOHSC2NlZeCEobfFRyUNymNOH6iKJEF+0SCr+0tkQU6E0QO8a293RBKMZzzri4Fb
lQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 19130659837001940008591196837894684391
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert High Assurance CA-3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-08-22 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-10-28 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord Holland'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TomTom International BV'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GIT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.tomtom.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27260439167924260335596530422308322867230690101876805778956897570384987007366130648360226095215175665243852622102543761166040284695056369066476367208502505480065896722689516859141638261169907811911290955217638505204963450902258940545606481261557660066754036867416884375151669804274640206309594883497225036077160353240715617681925052883820787652605952607916454203816655253822022528324732456767550326318834546708544785768118822591016563747765406154116508369744043444703517642373120374583914072552959071640246675182168244036804587797591878941125180842369650559716472140222135326144817999944659874126851746199370148699029
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 50ea7389db29fb108f9ee50120d4de79994883f7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							f5dc0478be6cdc20109dd84c559664dd8645f7da
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tomtom.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tomtom.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'connect-us.tomtom.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ca3-g24.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ca3-g24.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (443 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/ssl-cps-repository.htm'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:30|false] BMPString [0 65 0 110 0 121 0 32 0 117 0 115 0 101 0 32 0 111 0 102 0 32 0 116 0 104 0 105 0 115 0 32 0 67 0 101 0 114 0 116 0 105 0 102 0 105 0 99 0 97 0 116 0 101 0 32 0 99 0 111 0 110 0 115 0 116 0 105 0 116 0 117 0 116 0 101 0 115 0 32 0 97 0 99 0 99 0 101 0 112 0 116 0 97 0 110 0 99 0 101 0 32 0 111 0 102 0 32 0 116 0 104 0 101 0 32 0 68 0 105 0 103 0 105 0 67 0 101 0 114 0 116 0 32 0 67 0 80 0 47 0 67 0 80 0 83 0 32 0 97 0 110 0 100 0 32 0 116 0 104 0 101 0 32 0 82 0 101 0 108 0 121 0 105 0 110 0 103 0 32 0 80 0 97 0 114 0 116 0 121 0 32 0 65 0 103 0 114 0 101 0 101 0 109 0 101 0 110 0 116 0 32 0 119 0 104 0 105 0 99 0 104 0 32 0 108 0 105 0 109 0 105 0 116 0 32 0 108 0 105 0 97 0 98 0 105 0 108 0 105 0 116 0 121 0 32 0 97 0 110 0 100 0 32 0 97 0 114 0 101 0 32 0 105 0 110 0 99 0 111 0 114 0 112 0 111 0 114 0 97 0 116 0 101 0 100 0 32 0 104 0 101 0 114 0 101 0 105 0 110 0 32 0 98 0 121 0 32 0 114 0 101 0 102 0 101 0 114 0 101 0 110 0 99 0 101 0 46]
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (111 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertHighAssuranceCA-3.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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