dprkorea.un.org
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 04:88:47:d0:39:31:ec:f9:49:55:f0:cf:0d:eb:4e:6e was issued on by DigiCert, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=dprkorea.un.org
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:88:47:d0:39:31:ec:f9:49:55:f0:cf:0d:eb:4e:6eSerial Number (int): 6024520904141064286669107300571762286
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: ca:cc:05:1c:09:6d:1d:18:a8:1b:47:84:fd:ec:1a:44:e9:07:38:58
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): 6c:d3:5f:42:e0:a2:5e:d8:9d:d9:0e:64:43:d5:b6:2a:d4:fc:70:da
Fingerprint (sha256): 02:ab:86:e2:5d:f8:52:51:02:1d:e1:f4:6f:a1:fb:e9:4c:35:c7:09:0c:ba:b2:80:9a:34:a1:7a:dd:08:9e:6d
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate dprkorea.un.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dprkorea.un.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dprkorea.un.org
Other certificates including the domain name un.org
(limited to 100 certificates)
*.un.org
*.un.org
lpk-cms.ilearn.un.org
kh.one.un.org
lpk-cms.ilearn.un.org
*.wf.un.org
cims-test.so.one.un.org
5726971199750144-fe1.pantheonsite.io
ilearn-cms.umoja.un.org
cerf.un.org
5679778661138432-fe3.pantheonsite.io
un.org
ask.un.org
jo.one.un.org
un.org
dprkorea.un.org
afghanistan.un.org
untermportal.un.org
mw.one.un.org
bkkuccx02.escap.un.org
ask.un.org
ask.un.org
*.qa.un.org
syria.un.org
5673073118281728-fe4.pantheonsite.io
hcc-hpsb-training.ilearn.un.org
*.news.un.org
elearning-cms.unstats.un.org
5684961520648192-fe4.pantheonsite.io
ci.one.un.org
*.escap.un.org
sdgprimer.un.org
expccl.ptc.un.org
elearning-cms.unstats.un.org
inspira.un.org
learning.un.org
5726971199750144-fe1.pantheonsite.io
ss.one.un.org
ask.un.org
cims.so.one.un.org
conf.un.org
kh.one.un.org
*.dss.un.org
papuanewguinea.un.org
migrationnetwork.un.org
ungsc-remotesupport.un.org
inspira.un.org
un.org
elearning.un.org
india.un.org
unp.un.org
5673073118281728-fe4.pantheonsite.io
*.dfs.un.org
uniteaware.un.org
peru.un.org
www.tm.one.un.org
lyncsip.dfs.un.org
roadsafetyfund.un.org
research.un.org
lpk.ilearn.un.org
ilearn-cms.umoja.un.org
ilearn.un.org
zm.one.un.org
research.un.org
expecl.video.un.org
mail.stc.un.org
apidocs.cna.com
*.unite.un.org
enterpriseenrollment.dfs.un.org
un-az.org
shop.un.org
countryteam.org
officewebapp.dfs.un.org
5673073118281728-fe4.pantheonsite.io
cims.so.one.un.org
roadsafetyfund.un.org
hcc-cms.ilearn.un.org
digitallibrary.in.one.un.org
journal.qa.un.org
morocco.un.org
crmlearning.un.org
crmlearning-cms.un.org
*.umoja.un.org
cims.so.one.un.org
af.one.un.org
cameroon.un.org
*.dfs.un.org
service.ilearn.un.org
fdp.un.org
remote.dfs.un.org
hcc-cms.ilearn.un.org
remote.dfs.un.org
lpk-cms.ilearn.un.org
cm.one.un.org
hcc-hpsb-training.ilearn.un.org
cd.one.un.org
mm.one.un.org
vdi.dfs.un.org
www.un.or.th
ci.one.un.org
*.un.org
lpk-cms.ilearn.un.org
kh.one.un.org
lpk-cms.ilearn.un.org
*.wf.un.org
cims-test.so.one.un.org
5726971199750144-fe1.pantheonsite.io
ilearn-cms.umoja.un.org
cerf.un.org
5679778661138432-fe3.pantheonsite.io
un.org
ask.un.org
jo.one.un.org
un.org
dprkorea.un.org
afghanistan.un.org
untermportal.un.org
mw.one.un.org
bkkuccx02.escap.un.org
ask.un.org
ask.un.org
*.qa.un.org
syria.un.org
5673073118281728-fe4.pantheonsite.io
hcc-hpsb-training.ilearn.un.org
*.news.un.org
elearning-cms.unstats.un.org
5684961520648192-fe4.pantheonsite.io
ci.one.un.org
*.escap.un.org
sdgprimer.un.org
expccl.ptc.un.org
elearning-cms.unstats.un.org
inspira.un.org
learning.un.org
5726971199750144-fe1.pantheonsite.io
ss.one.un.org
ask.un.org
cims.so.one.un.org
conf.un.org
kh.one.un.org
*.dss.un.org
papuanewguinea.un.org
migrationnetwork.un.org
ungsc-remotesupport.un.org
inspira.un.org
un.org
elearning.un.org
india.un.org
unp.un.org
5673073118281728-fe4.pantheonsite.io
*.dfs.un.org
uniteaware.un.org
peru.un.org
www.tm.one.un.org
lyncsip.dfs.un.org
roadsafetyfund.un.org
research.un.org
lpk.ilearn.un.org
ilearn-cms.umoja.un.org
ilearn.un.org
zm.one.un.org
research.un.org
expecl.video.un.org
mail.stc.un.org
apidocs.cna.com
*.unite.un.org
enterpriseenrollment.dfs.un.org
un-az.org
shop.un.org
countryteam.org
officewebapp.dfs.un.org
5673073118281728-fe4.pantheonsite.io
cims.so.one.un.org
roadsafetyfund.un.org
hcc-cms.ilearn.un.org
digitallibrary.in.one.un.org
journal.qa.un.org
morocco.un.org
crmlearning.un.org
crmlearning-cms.un.org
*.umoja.un.org
cims.so.one.un.org
af.one.un.org
cameroon.un.org
*.dfs.un.org
service.ilearn.un.org
fdp.un.org
remote.dfs.un.org
hcc-cms.ilearn.un.org
remote.dfs.un.org
lpk-cms.ilearn.un.org
cm.one.un.org
hcc-hpsb-training.ilearn.un.org
cd.one.un.org
mm.one.un.org
vdi.dfs.un.org
www.un.or.th
ci.one.un.org
Certificate
The complete raw certificate details for dprkorea.un.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHjTCCBXWgAwIBAgIQBIhH0Dkx7PlJVfDPDetObjANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjQwMzA1MDAwMDAwWhcNMjQwOTA0MjM1OTU5WjAaMRgwFgYDVQQDEw9kcHJrb3Jl YS51bi5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoFIIgzHCg +AFLf9/tvMn/hXPgGBCJUqjPjYOdpN3jnRJFtHfRkRANCdSYLSLhCbtPGzEIIxqy 2oT2jfm6xEB/A/18Hof0oCq1shIo5JvL87Nkupl1frArqtaFNfn0BFJ1MRIBHX11 /5dSMbfmg7Wp7gBRjeKCsyUOTx7wwy4do+xc8erIItk/l0s0CYsQlomH/A+s/5Cg aJJeqzG403IcactC+qeSXzLP/k8+lWKvq7a2p2qiHIVeVzkYHWE6X7lvYaQr0ujt PqrWS+o+D7W4nCg/i8cO8jNo4SqhHLoVriNZZTN74RUtehqhqY6t0/97n5wXXk87 Lz+4LUzIKLQ1AgMBAAGjggOLMIIDhzAfBgNVHSMEGDAWgBSltNbrNsTna6bfxGQL ASogBLhmIzAdBgNVHQ4EFgQUyswFHAltHRioG0eE/ewaROkHOFgwGgYDVR0RBBMw EYIPZHBya29yZWEudW4ub3JnMD4GA1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYB BQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGfBgNVHR8EgZcwgZQw SKBGoESGQmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9HZW9UcnVzdEdsb2JhbFRM U1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNybDBIoEagRIZCaHR0cDovL2NybDQuZGln aWNlcnQuY29tL0dlb1RydXN0R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEu Y3JsMIGHBggrBgEFBQcBAQR7MHkwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRp Z2ljZXJ0LmNvbTBRBggrBgEFBQcwAoZFaHR0cDovL2NhY2VydHMuZGlnaWNlcnQu Y29tL0dlb1RydXN0R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEuY3J0MAwG A1UdEwEB/wQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AO7N0GTV2xrO xVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjg+iAsoAAAQDAEcwRQIhAN0eQ/kW fB1SMV9JrPqVoypYFRlU0gtYjfE4SLZhlK2/AiBvPH4QcyvappqaayTb7fmvLPr9 +xR/gg7UEwmBOycKCQB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRz AAABjg+iAv0AAAQDAEYwRAIgUYW1VLp9s1AwiM77PSWOo0KulhAblZDcnNu/sued dCcCIGXX4qMpX/kwI5nIr+J2eCf/1PmTrznjRnthcX+fqB69AHcA2ra/az+1tiKf m8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGOD6IC/AAABAMASDBGAiEA9+7TssHQ vqqjL5lDwFzabjLcFq3vamHs2xUGGUJMt2oCIQCOPfSQr8JhwKuvAQnqElaFR/gA Dm7NybItfY0Vhpu5wTANBgkqhkiG9w0BAQsFAAOCAgEAn0nwOZ9f/xnkaq2JGyvW re8f6WAGqSzT9RHY4rdenRameD0OsTH5GlF/ZlVLxJgZr1Rl/foZfnfaojix/n44 xW5pmsFfBpVw4QK2UJb2Szked7LluJG9Zj1O7az3bqIryjtOe/R8ha2iZpMbuhNZ 7LWjAh61KjG0PnypBRzIJZHRhRzLo05UJ/k/w+iyH0nVfrndIZVB049K3AMUb7gr aUDp7CWsceKj6rAWLE2CKiTWkqHG4FZO6+ljg7e1NsTng6KoJY+EPsGDyjrrjlcN 3rT0Jjr8nZqhKGA5U32fga+iDWV4ILREz+wK30bvLGas0NwdrPT5wvxYXfk9nxTM OofBJnh2XnsVEce6UnS3teMJyMRDeLVVbjshDBDXOAX088L3h24da3kxLdeohVA9 cFtQubtR4TFpSPvn+y5cnlYrw6IngCgpR4FLbZDPAZpYCz/g5XB0AubbIFZUUO6H yDBKb/ficp7SUZkQ16Yw5t88B/R2AyQALw1+dcDrdtVB4MMnJWZ6rt/zaNZ070s1 M8pGg3BML48kXPWwmThIM58OZFWn/ZQ3D5Bk2VYERt+rsDDgK5lYGPMgVoE1C9F+ QQJnRuQYmet/VAcVmFPC+tEJO9881ulTGTJGVHiKDJkBZRvtwvVRS8RVlqDcoUn1 NBdLcwkkG/fVxVIYTt6R1dY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBSCIMxwoPgBS3/f7bzJ /4Vz4BgQiVKoz42DnaTd450SRbR30ZEQDQnUmC0i4Qm7TxsxCCMastqE9o35usRA fwP9fB6H9KAqtbISKOSby/OzZLqZdX6wK6rWhTX59ARSdTESAR19df+XUjG35oO1 qe4AUY3igrMlDk8e8MMuHaPsXPHqyCLZP5dLNAmLEJaJh/wPrP+QoGiSXqsxuNNy HGnLQvqnkl8yz/5PPpVir6u2tqdqohyFXlc5GB1hOl+5b2GkK9Lo7T6q1kvqPg+1 uJwoP4vHDvIzaOEqoRy6Fa4jWWUze+EVLXoaoamOrdP/e5+cF15POy8/uC1MyCi0 NQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6024520904141064286669107300571762286 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-04 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dprkorea.un.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21218148260339430258492237082060432861241521962404395405514480603800205450590567434263659242147597351666090942661538000178856103350512694461210550881482558345523718812149215673496527241395878574950194956530273465376392379714163149642460761075878819080842726112096467905289718614269523727425324197220191815705735169619913876149836274624905698750243937026615243941477907237837628451759741954783806420798256633488866382209512242026242163973790437735706888266968790557099262126619618350914665576555706116398245339864595538682878219870915126713699631343936414060758970110999376548673749968752984256413264361024467975582773 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cacc051c096d1d18a81b4784fdec1a44e9073858 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dprkorea.un.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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