roam2.britishcouncil.org
- British Council -
Issued by VeriSign Class 3 International Server CA - G3
About this certificate
This digital certificate with serial number 54:0f:a0:34:31:dd:b5:12:69:be:7a:c1:1f:bc:44:09 was issued on by VeriSign, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
- Subscriber Certificate: extKeyUsage values other than id-kp-serverAuth, id-kp-clientAuth, and id-kp-emailProtection SHOULD NOT be present. (BRs: 7.1.2.3)
British Council
Organization:
British Council
Organization unit: Terms of use at www.verisign.com/rpa (c)05
Organization unit: Terms of use at www.verisign.com/rpa (c)05
State / Province:
Manchester
Locality: Manchester
Country: GB
Locality: Manchester
Country: GB
VeriSign, Inc.
Organization:
VeriSign, Inc.
Organization unit: VeriSign Trust Network
Organization unit: Terms of use at https://www.verisign.com/rpa (c)10
Organization unit: VeriSign Trust Network
Organization unit: Terms of use at https://www.verisign.com/rpa (c)10
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 54:0f:a0:34:31:dd:b5:12:69:be:7a:c1:1f:bc:44:09Serial Number (int): 111736285419644783922736333670095537161
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: d7:9b:7c:d8:22:a0:15:f7:dd:ad:5f:ce:29:9b:58:c3:bc:46:00:b5
Fingerprint (sha1): 13:67:ee:ad:6f:86:52:aa:ca:7b:44:d1:d7:97:58:41:4b:51:36:7a
Fingerprint (sha256): 01:93:24:e5:45:15:40:7f:56:a5:63:90:65:2f:89:13:f4:11:1b:07:f0:22:fa:e4:e6:a6:cc:73:50:57:51:d2
Issuing Certificate URL: http://SVRIntl-G3-aia.verisign.com/SVRIntlG3.cer
Revocation information
OCSP Server: http://ocsp.verisign.comCRL Distribution Point: http://SVRIntl-G3-crl.verisign.com/SVRIntlG3.crl
Check the revocation status for certificate roam2.britishcouncil.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for roam2.britishcouncil.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Netscape Server-Gated Cryptography
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
roam2.britishcouncil.org
Other certificates including the domain name britishcouncil.org
(limited to 100 certificates)
statuspage.io
survey.britishcouncil.org
primaryplus.britishcouncil.org
dns-vetting1-mims-pawel.map.fastly.net
taqaddam-tasters.britishcouncil.org
accreditation.lumanity.com
bcppx.fabs.britishcouncil.org
e2.shared.global.fastly.net
f.ssl.fastly.net
alumnicredentials.kcl.ac.uk
www.mylibrary.britishcouncil.org
e2.shared.global.fastly.net
a2.ssl.fastly.net
dns-vetting1-mims-pawel.map.fastly.net
vst.britishcouncil.org
monitor.jumio.com
domains.clickmeter.com
monitor.jumio.com
achievements.launchyou.com
agent-training.britishcouncil.org
roam2.britishcouncil.org
dns-vetting1-mims-pawel.map.fastly.net
f.ssl.fastly.net
literature.britishcouncil.org
achievements.launchyou.com
distribution-status.rbb-online.de
e2.shared.global.fastly.net
*.BritishCouncil.org
examinertraining.britishcouncil.org
e2.shared.global.fastly.net
americas.portal.britishcouncil.org
literature.britishcouncil.org
e2.shared.global.fastly.net
e2.shared.global.fastly.net
dns-vetting1-mims-pawel.map.fastly.net
careers.britishcouncil.org
school-partner-finder.britishcouncil.org
school-partner-finder.britishcouncil.org
reportcp-uat.britishcouncil.org
dns-vetting1-mims-pawel.map.fastly.net
accreditation.lumanity.com
*.britishcouncil.org
centresupport.britishcouncil.org
monitor.jumio.com
statuspage.io
e2.shared.global.fastly.net
*.britishcouncil.org
statuspage.io
dns-vetting1-mims-pawel.map.fastly.net
*.professionalskills.britishcouncil.org
e2.shared.global.fastly.net
a2.ssl.fastly.net
statuspage.io
*.britishcouncil.org
achievements.launchyou.com
statuspage.io
brandhub.britishcouncil.org
*.sms.britishcouncil.org
a2.ssl.fastly.net
apply.gmt.britishcouncil.org
statuspage.io
spainportal.britishcouncil.org
malaysia.ielts.britishcouncil.org
edinburghshowcase.britishcouncil.org
taqaddam.britishcouncil.org
*.britishcouncil.org
*.britishcouncil.org
achievements.launchyou.com
statuspage.io
ssl514874.cloudflaressl.com
statuspage.io
statuspage.io
taqaddam-tasters.britishcouncil.org
1001ways.britishcouncil.org
f.ssl.fastly.net
accreditation.lumanity.com
statuspage.io
f.ssl.fastly.net
f.ssl.fastly.net
statuspage.io
dns-vetting1-mims-pawel.map.fastly.net
5694979263430656-fe3.pantheonsite.io
e2.shared.global.fastly.net
apply.gmt.britishcouncil.org
aptistraining.britishcouncil.org
e2.shared.global.fastly.net
dns-vetting1-mims-pawel.map.fastly.net
taqaddam.britishcouncil.org
statuspage.io
e2.shared.global.fastly.net
f.ssl.fastly.net
accreditation.lumanity.com
statuspage.io
dns-vetting1-mims-pawel.map.fastly.net
dns-vetting1-mims-pawel.map.fastly.net
distribution-status.rbb-online.de
statuspage.io
statuspage.io
edinburghshowcase.britishcouncil.org
taqaddam.britishcouncil.org
survey.britishcouncil.org
primaryplus.britishcouncil.org
dns-vetting1-mims-pawel.map.fastly.net
taqaddam-tasters.britishcouncil.org
accreditation.lumanity.com
bcppx.fabs.britishcouncil.org
e2.shared.global.fastly.net
f.ssl.fastly.net
alumnicredentials.kcl.ac.uk
www.mylibrary.britishcouncil.org
e2.shared.global.fastly.net
a2.ssl.fastly.net
dns-vetting1-mims-pawel.map.fastly.net
vst.britishcouncil.org
monitor.jumio.com
domains.clickmeter.com
monitor.jumio.com
achievements.launchyou.com
agent-training.britishcouncil.org
roam2.britishcouncil.org
dns-vetting1-mims-pawel.map.fastly.net
f.ssl.fastly.net
literature.britishcouncil.org
achievements.launchyou.com
distribution-status.rbb-online.de
e2.shared.global.fastly.net
*.BritishCouncil.org
examinertraining.britishcouncil.org
e2.shared.global.fastly.net
americas.portal.britishcouncil.org
literature.britishcouncil.org
e2.shared.global.fastly.net
e2.shared.global.fastly.net
dns-vetting1-mims-pawel.map.fastly.net
careers.britishcouncil.org
school-partner-finder.britishcouncil.org
school-partner-finder.britishcouncil.org
reportcp-uat.britishcouncil.org
dns-vetting1-mims-pawel.map.fastly.net
accreditation.lumanity.com
*.britishcouncil.org
centresupport.britishcouncil.org
monitor.jumio.com
statuspage.io
e2.shared.global.fastly.net
*.britishcouncil.org
statuspage.io
dns-vetting1-mims-pawel.map.fastly.net
*.professionalskills.britishcouncil.org
e2.shared.global.fastly.net
a2.ssl.fastly.net
statuspage.io
*.britishcouncil.org
achievements.launchyou.com
statuspage.io
brandhub.britishcouncil.org
*.sms.britishcouncil.org
a2.ssl.fastly.net
apply.gmt.britishcouncil.org
statuspage.io
spainportal.britishcouncil.org
malaysia.ielts.britishcouncil.org
edinburghshowcase.britishcouncil.org
taqaddam.britishcouncil.org
*.britishcouncil.org
*.britishcouncil.org
achievements.launchyou.com
statuspage.io
ssl514874.cloudflaressl.com
statuspage.io
statuspage.io
taqaddam-tasters.britishcouncil.org
1001ways.britishcouncil.org
f.ssl.fastly.net
accreditation.lumanity.com
statuspage.io
f.ssl.fastly.net
f.ssl.fastly.net
statuspage.io
dns-vetting1-mims-pawel.map.fastly.net
5694979263430656-fe3.pantheonsite.io
e2.shared.global.fastly.net
apply.gmt.britishcouncil.org
aptistraining.britishcouncil.org
e2.shared.global.fastly.net
dns-vetting1-mims-pawel.map.fastly.net
taqaddam.britishcouncil.org
statuspage.io
e2.shared.global.fastly.net
f.ssl.fastly.net
accreditation.lumanity.com
statuspage.io
dns-vetting1-mims-pawel.map.fastly.net
dns-vetting1-mims-pawel.map.fastly.net
distribution-status.rbb-online.de
statuspage.io
statuspage.io
edinburghshowcase.britishcouncil.org
taqaddam.britishcouncil.org
Certificate
The complete raw certificate details for roam2.britishcouncil.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIQVA+gNDHdtRJpvnrBH7xECTANBgkqhkiG9w0BAQUFADCB vDELMAkGA1UEBhMCVVMxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMR8wHQYDVQQL ExZWZXJpU2lnbiBUcnVzdCBOZXR3b3JrMTswOQYDVQQLEzJUZXJtcyBvZiB1c2Ug YXQgaHR0cHM6Ly93d3cudmVyaXNpZ24uY29tL3JwYSAoYykxMDE2MDQGA1UEAxMt VmVyaVNpZ24gQ2xhc3MgMyBJbnRlcm5hdGlvbmFsIFNlcnZlciBDQSAtIEczMB4X DTE0MDMxNzAwMDAwMFoXDTE2MDQxNTIzNTk1OVowgakxCzAJBgNVBAYTAkdCMRMw EQYDVQQIEwpNYW5jaGVzdGVyMRMwEQYDVQQHFApNYW5jaGVzdGVyMRgwFgYDVQQK FA9Ccml0aXNoIENvdW5jaWwxMzAxBgNVBAsUKlRlcm1zIG9mIHVzZSBhdCB3d3cu dmVyaXNpZ24uY29tL3JwYSAoYykwNTEhMB8GA1UEAxQYcm9hbTIuYnJpdGlzaGNv dW5jaWwub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArn1mogR7 VyLkW+6Jy5fXHLar4ABBMs+Eg+ozPGFxscTGUyNvPpfYs1nOhXI022dgeIyQhGP6 IoZwWmRfSRnyUN5KMLySl10aNxH3vEC1BdUZF1QcMEAHtgKzZ4dyjWjHZt5XRoHM V6Nc+NQLPKR52lp/nP20J45Z1RSol2a2UqBwb1VAz+shXvtC35M312w+vM3e7pgr o9keZ1+bnVmCkmcQ8+x1nKjGY4nzMmTdtS6uhz9GE9JpPVGVoD3rxhhuRAc+Y8Q7 kp7p/4eeAAUnPb7WhRqdWrBAQqtyn7laUTkyLQbm0C8ANNKUQIJh9+H/cBK8JUtN xq1rU6mjAStS6wIDAQABo4IBizCCAYcwIwYDVR0RBBwwGoIYcm9hbTIuYnJpdGlz aGNvdW5jaWwub3JnMAkGA1UdEwQCMAAwDgYDVR0PAQH/BAQDAgWgMEMGA1UdIAQ8 MDowOAYKYIZIAYb4RQEHNjAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy52ZXJp c2lnbi5jb20vY3BzMEEGA1UdHwQ6MDgwNqA0oDKGMGh0dHA6Ly9TVlJJbnRsLUcz LWNybC52ZXJpc2lnbi5jb20vU1ZSSW50bEczLmNybDAoBgNVHSUEITAfBggrBgEF BQcDAQYIKwYBBQUHAwIGCWCGSAGG+EIEATAfBgNVHSMEGDAWgBTXm3zYIqAV992t X84pm1jDvEYAtTByBggrBgEFBQcBAQRmMGQwJAYIKwYBBQUHMAGGGGh0dHA6Ly9v Y3NwLnZlcmlzaWduLmNvbTA8BggrBgEFBQcwAoYwaHR0cDovL1NWUkludGwtRzMt YWlhLnZlcmlzaWduLmNvbS9TVlJJbnRsRzMuY2VyMA0GCSqGSIb3DQEBBQUAA4IB AQAtFJdhkIspDXTMJyUhx5xUGCevhuCKpEj6hqsMCNWYm/knk+untINMopIlKqFN tExMG++gLkdXS0ucUuE45I9dqBahYU/VUH0E+k13FOOWlPmgF1xBvap989sOgbN0 EKjgfCu4cJ4DZg/Fy80cnunQqqRRqL3dRX3mktZq9InjZ5jYLS5F0nUXPYNeNXfK 083opj0cZU16B0HyzBsvQdSdyEfzqDa5iBEhYkno15yng0Wq9PTTKR3kPY/lSQcQ bzmH9L3m2Yx0laUQybFewTlnxcm8mHF1tjqHs7eXSrfqO8PU4jvflvoODcBkOUoz VCYDTB8Qh9STC9yhUUtamR1S -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArn1mogR7VyLkW+6Jy5fX HLar4ABBMs+Eg+ozPGFxscTGUyNvPpfYs1nOhXI022dgeIyQhGP6IoZwWmRfSRny UN5KMLySl10aNxH3vEC1BdUZF1QcMEAHtgKzZ4dyjWjHZt5XRoHMV6Nc+NQLPKR5 2lp/nP20J45Z1RSol2a2UqBwb1VAz+shXvtC35M312w+vM3e7pgro9keZ1+bnVmC kmcQ8+x1nKjGY4nzMmTdtS6uhz9GE9JpPVGVoD3rxhhuRAc+Y8Q7kp7p/4eeAAUn Pb7WhRqdWrBAQqtyn7laUTkyLQbm0C8ANNKUQIJh9+H/cBK8JUtNxq1rU6mjAStS 6wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 111736285419644783922736333670095537161 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'VeriSign, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'VeriSign Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Terms of use at https://www.verisign.com/rpa (c)10' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'VeriSign Class 3 International Server CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-03-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-04-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'British Council' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Terms of use at www.verisign.com/rpa (c)05' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'roam2.britishcouncil.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22027302557377751466477654175615691793294743017267675470140023413882822213594975138196573760047907897478169644002070002209785809678182284853009697317554786868747781513082215195538060150489571919055939095494738073995969450847577081057880734621136724068803857547982937986476150661729842119221768867220609339443138615426029902448745909855155572611154654779283450305103020179238076815765072992647499708534500949164228570793216803784572991858744374359814943761334627459592197845219283178173304754011271160396627719477241386418450385485429494409111724211000229670506780189627622398493315618082216883605382819604062987309803 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roam2.britishcouncil.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.verisign.com/cps' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://SVRIntl-G3-crl.verisign.com/SVRIntlG3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (33 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113730.4.1 (serverGatedCrypto) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d79b7cd822a015f7ddad5fce299b58c3bc4600b5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (102 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.verisign.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://SVRIntl-G3-aia.verisign.com/SVRIntlG3.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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