cdiacservices.ornl.gov
- Oak Ridge National Laboratory -
Issued by Thawte TLS RSA CA G1
About this certificate
This digital certificate with serial number 0a:90:98:ea:a8:ee:12:e1:b1:64:b7:c3:bc:94:e7:5e was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Oak Ridge National Laboratory
Organization:
Oak Ridge National Laboratory
Organization unit: Life Sciences Division
Organization unit: Life Sciences Division
State / Province:
Tennessee
Locality: Oak Ridge
Country: US
Locality: Oak Ridge
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:90:98:ea:a8:ee:12:e1:b1:64:b7:c3:bc:94:e7:5eSerial Number (int): 14043072223409252460256804166991931230
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 4e:0b:34:47:43:de:75:2b:61:95:49:9a:49:f9:2c:ce:c4:a2:7a:97
AuthorityKeyId: a5:8c:fe:32:cc:eb:0f:2c:d4:19:c6:08:b8:00:24:88:5d:c3:c5:b7
Fingerprint (sha1): e6:34:bc:25:93:c3:c9:0f:29:6b:f4:79:95:ab:3b:96:e9:d5:e3:41
Fingerprint (sha256): 02:e2:46:bc:23:56:05:2d:d1:4e:e8:92:43:89:45:bc:6d:7e:ae:37:37:19:58:40:a5:11:e8:de:42:65:8a:52
Issuing Certificate URL: http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteTLSRSACAG1.crl
Check the revocation status for certificate cdiacservices.ornl.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cdiacservices.ornl.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cdiacservices.ornl.gov
Other certificates including the domain name ornl.gov
(limited to 100 certificates)
5098030885765120-fe4.pantheonsite.io
internal.webmap.ornl.gov
radware.phy.ornl.gov
www.arm.gov
jenkins.ccs.ornl.gov
ccms-cdash.ornl.gov
cades.ornl.gov
Recruiting-tst-internal.ornl.gov
armweb0-stgcms.ornl.gov
5098030885765120-fe4.pantheonsite.io
5098030885765120-fe4.pantheonsite.io
itsdpro.ornl.gov
ornlsurv02.ornl.gov
radware.phy.ornl.gov
eber.ed.ornl.gov
vpnprod3.ornl.gov
fsnutown.phy.ornl.gov
its2010.ornl.gov
Recruiting-eq2.ornl.gov
LYNCPOOL01.ORNL.GOV
tech-showcase.ornl.gov
sldtransfer.ornl.gov
visitors.ornl.gov
orca.phy.ornl.gov
5664512065667072-fe2.pantheonsite.io
savitar.ornl.gov
cades.ornl.gov
www.isotopes.gov
5721718521856000-fe2.pantheonsite.io
its2010.ornl.gov
infoviz.ornl.gov
tokens.ornl.gov
sapsys-qas.ornl.gov
cyber-wb.ornl.gov
fusion-neutronics.ornl.gov
5664512065667072-fe2.pantheonsite.io
5664512065667072-fe2.pantheonsite.io
geoai.ornl.gov
cem.ornl.gov
thredds.daac.ornl.gov
devintidp.ornl.gov
5721718521856000-fe2.pantheonsite.io
devaprsweb01.ornl.gov
ftp.ornl.gov
inspirebridge.ornl.gov
web.ornl.gov
api.granite.ccs.ornl.gov
smcdatachallenge.ornl.gov
home.rrd.ornl.gov
itsassets.ornl.gov
trac.ornl.gov
cdiacservices.ornl.gov
www.isotopes.gov
itsassets.ornl.gov
saponbase.ornl.gov
itsdeployment.ornl.gov
bptechday.ornl.gov
isotopes.phy.ornl.gov
g2mobiletest.ornl.gov
udi.ornl.gov
fegtest.ornl.gov
itsassets.ornl.gov
cem.ornl.gov
swc.ornl.gov
ornlaccess.ornl.gov
ornl.gov
LYNCACCESS.ORNL.GOV
g2photosstg.ornl.gov
savitar.ornl.gov
vera.ornl.gov
thredds.daac.ornl.gov
www.olcf.ornl.gov
asc2019.ornl.gov
ready.ornl.gov
sos23.ornl.gov
LYNCPOOL01.ORNL.GOV
innovationcrossroads.ornl.gov
geoai.ornl.gov
bboxaccess.ornl.gov
5631383682678784-fe4.pantheonsite.io
na21dev2.ornl.gov
armftp.ornl.gov
5736126123868160-fe4.pantheonsite.io
web.ornl.gov
pdt.ornl.gov
prod-web4.adc.arm.gov
5713320610889728-fe3.pantheonsite.io
itsdpro.ornl.gov
healthdata.ornl.gov
web.ornl.gov
RSC.ornl.gov
faf.ornl.gov
docs.excl.ornl.gov
apps.ornl.gov
dtrack2013.ornl.gov
pdt.ornl.gov
cloud.cees.ornl.gov
excl.ornl.gov
finder.extapps.ornl.gov
5631383682678784-fe4.pantheonsite.io
internal.webmap.ornl.gov
radware.phy.ornl.gov
www.arm.gov
jenkins.ccs.ornl.gov
ccms-cdash.ornl.gov
cades.ornl.gov
Recruiting-tst-internal.ornl.gov
armweb0-stgcms.ornl.gov
5098030885765120-fe4.pantheonsite.io
5098030885765120-fe4.pantheonsite.io
itsdpro.ornl.gov
ornlsurv02.ornl.gov
radware.phy.ornl.gov
eber.ed.ornl.gov
vpnprod3.ornl.gov
fsnutown.phy.ornl.gov
its2010.ornl.gov
Recruiting-eq2.ornl.gov
LYNCPOOL01.ORNL.GOV
tech-showcase.ornl.gov
sldtransfer.ornl.gov
visitors.ornl.gov
orca.phy.ornl.gov
5664512065667072-fe2.pantheonsite.io
savitar.ornl.gov
cades.ornl.gov
www.isotopes.gov
5721718521856000-fe2.pantheonsite.io
its2010.ornl.gov
infoviz.ornl.gov
tokens.ornl.gov
sapsys-qas.ornl.gov
cyber-wb.ornl.gov
fusion-neutronics.ornl.gov
5664512065667072-fe2.pantheonsite.io
5664512065667072-fe2.pantheonsite.io
geoai.ornl.gov
cem.ornl.gov
thredds.daac.ornl.gov
devintidp.ornl.gov
5721718521856000-fe2.pantheonsite.io
devaprsweb01.ornl.gov
ftp.ornl.gov
inspirebridge.ornl.gov
web.ornl.gov
api.granite.ccs.ornl.gov
smcdatachallenge.ornl.gov
home.rrd.ornl.gov
itsassets.ornl.gov
trac.ornl.gov
cdiacservices.ornl.gov
www.isotopes.gov
itsassets.ornl.gov
saponbase.ornl.gov
itsdeployment.ornl.gov
bptechday.ornl.gov
isotopes.phy.ornl.gov
g2mobiletest.ornl.gov
udi.ornl.gov
fegtest.ornl.gov
itsassets.ornl.gov
cem.ornl.gov
swc.ornl.gov
ornlaccess.ornl.gov
ornl.gov
LYNCACCESS.ORNL.GOV
g2photosstg.ornl.gov
savitar.ornl.gov
vera.ornl.gov
thredds.daac.ornl.gov
www.olcf.ornl.gov
asc2019.ornl.gov
ready.ornl.gov
sos23.ornl.gov
LYNCPOOL01.ORNL.GOV
innovationcrossroads.ornl.gov
geoai.ornl.gov
bboxaccess.ornl.gov
5631383682678784-fe4.pantheonsite.io
na21dev2.ornl.gov
armftp.ornl.gov
5736126123868160-fe4.pantheonsite.io
web.ornl.gov
pdt.ornl.gov
prod-web4.adc.arm.gov
5713320610889728-fe3.pantheonsite.io
itsdpro.ornl.gov
healthdata.ornl.gov
web.ornl.gov
RSC.ornl.gov
faf.ornl.gov
docs.excl.ornl.gov
apps.ornl.gov
dtrack2013.ornl.gov
pdt.ornl.gov
cloud.cees.ornl.gov
excl.ornl.gov
finder.extapps.ornl.gov
5631383682678784-fe4.pantheonsite.io
Certificate
The complete raw certificate details for cdiacservices.ornl.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIQCpCY6qjuEuGxZLfDvJTnXjANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRUaGF3dGUgVExTIFJTQSBDQSBHMTAe Fw0xODA5MDYwMDAwMDBaFw0xODEyMTgxMjAwMDBaMIGfMQswCQYDVQQGEwJVUzES MBAGA1UECBMJVGVubmVzc2VlMRIwEAYDVQQHEwlPYWsgUmlkZ2UxJjAkBgNVBAoT HU9hayBSaWRnZSBOYXRpb25hbCBMYWJvcmF0b3J5MR8wHQYDVQQLExZMaWZlIFNj aWVuY2VzIERpdmlzaW9uMR8wHQYDVQQDExZjZGlhY3NlcnZpY2VzLm9ybmwuZ292 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0mjb8acPp9riL2a3vhO knMa1Eot5E6DoHmKdoUC++RqLTywyCpcwhPabtF7Ev6B3oz0/ZahiTbnyaflHK4N eMnl1mRJAWIu4wKWSXSynIICXRePOXDT/qX/TAFbyVLZP73LbrBVKPeDrM6NHp1J PZQG8Bbhd2Yg6p7cnAaYTGK1oKyasVNQ6J05tP8ZkHGKdRIJSqfxH6bcDGT7d3Xf 6lheV8C8LTKnu17f89Sp7D/TQNkxlO0zZnau74cCJXw4XWxduIKGZUEJ8XfxnSJ5 yLO+qmBpIbHQqhVcgJYnc5WaxPyfgA67eSbHtYlo2fF/PgrCpetOXtfR0ZS06xbA cwIDAQABo4IBszCCAa8wHwYDVR0jBBgwFoAUpYz+MszrDyzUGcYIuAAkiF3Dxbcw HQYDVR0OBBYEFE4LNEdD3nUrYZVJmkn5LM7EonqXMCEGA1UdEQQaMBiCFmNkaWFj c2VydmljZXMub3JubC5nb3YwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY2RwLnRo YXd0ZS5jb20vVGhhd3RlVExTUlNBQ0FHMS5jcmwwTAYDVR0gBEUwQzA3BglghkgB hv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQ UzAIBgZngQwBAgIwcAYIKwYBBQUHAQEEZDBiMCQGCCsGAQUFBzABhhhodHRwOi8v c3RhdHVzLnRoYXd0ZS5jb20wOgYIKwYBBQUHMAKGLmh0dHA6Ly9jYWNlcnRzLnRo YXd0ZS5jb20vVGhhd3RlVExTUlNBQ0FHMS5jcnQwCQYDVR0TBAIwADATBgorBgEE AdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC4vdgRQOw/zAJWnmuhhk 4OYRerI/cjp+CLD4Od1eXMaj1OFU8MsDbwRz5OBneIjwHi2u1LO9MKm6pY4n8lxP EuC8N9f5aW/kZwZPdBc5RonI4IRMlFeKM2Qk3JFGbwc6xokzjOYs0VkxhZG+2Ces Z8WUKPOla5m1GBC4IBzcFmDA4G1bWwoykFwcV5GJzLC1RdukobprGQZodeONFMoc ZKuKjoihgpzEnPO7OzbMCq5Pv14u2AeIqbOPAurUNlv/i8WzV+HTGoqi22W5iSmr cTmV18Mkw5UjJHwWU7/BDWrtqqIaL/h1FJt80k3duzxfd9o97ovdOF3mDDyZfnYd 5w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0mjb8acPp9riL2a3vhO knMa1Eot5E6DoHmKdoUC++RqLTywyCpcwhPabtF7Ev6B3oz0/ZahiTbnyaflHK4N eMnl1mRJAWIu4wKWSXSynIICXRePOXDT/qX/TAFbyVLZP73LbrBVKPeDrM6NHp1J PZQG8Bbhd2Yg6p7cnAaYTGK1oKyasVNQ6J05tP8ZkHGKdRIJSqfxH6bcDGT7d3Xf 6lheV8C8LTKnu17f89Sp7D/TQNkxlO0zZnau74cCJXw4XWxduIKGZUEJ8XfxnSJ5 yLO+qmBpIbHQqhVcgJYnc5WaxPyfgA67eSbHtYlo2fF/PgrCpetOXtfR0ZS06xbA cwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14043072223409252460256804166991931230 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-18 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Tennessee' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Oak Ridge' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Oak Ridge National Laboratory' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Life Sciences Division' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cdiacservices.ornl.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21623062609609035674978484088459133757474351562873962327181402052177588236829761864307121142377538681036521578781721121713643395040418025027271489873913899854165653877492916480732248377998351726566342917264041306824651235499522123490961133013598451833545963441366225111408208302493791953863778014651409583871770190998464336046782249009036061333304985378897150495672137300551767488400301606540465209738667836354280298726874941291691904109145307296718586801272716804084648451318428409890253944494887944951896790606205319298635301690044198849119219789876660119323874018592026861420956257321681978941520540427673669124211 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a58cfe32cceb0f2cd419c608b80024885dc3c5b7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4e0b344743de752b6195499a49f92ccec4a27a97 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdiacservices.ornl.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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