imperva.com
Issued by GlobalSign Atlas R3 DV TLS CA 2024 Q1
About this certificate
This digital certificate with serial number 01:b8:b2:8d:3a:11:56:7c:9f:70:86:3d:87:a3:6a:89 was issued on by GlobalSign nv-sa.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=imperva.com
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate will expire on
Certificate Details
Serial Number (hex): 01:b8:b2:8d:3a:11:56:7c:9f:70:86:3d:87:a3:6a:89Serial Number (int): 2288232075806779396134566545011731081
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: e1:12:7b:d6:7d:63:91:21:9c:f1:cb:82:31:d2:e3:28:30:93:68:ca
AuthorityKeyId: 66:c0:c7:a3:9a:cd:fe:f3:ea:ce:4b:53:0b:61:5e:af:33:05:b3:e1
Fingerprint (sha1): ad:78:e8:f4:61:9a:7e:3e:28:5a:47:08:ca:2d:29:e1:a7:2d:66:52
Fingerprint (sha256): 03:71:21:66:0a:f0:84:f6:fb:fa:d6:b0:72:05:30:ea:54:eb:15:8a:6e:b8:0b:d4:76:b3:18:6f:f3:2f:29:dc
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2024q1.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2024q1CRL Distribution Point: http://crl.globalsign.com/ca/gsatlasr3dvtlsca2024q1.crl
Check the revocation status for certificate imperva.com
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for imperva.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.sicom.mu
*.sicomportal.mu
portal.sicomgin.mu
sicomportal.mu
motor-surveyor.sicom.mu
imperva.com
*.sicomportal.mu
portal.sicomgin.mu
sicomportal.mu
motor-surveyor.sicom.mu
imperva.com
Other certificates including the domain name imperva.com
(limited to 100 certificates)
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
incapsula.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
imperva.com
Certificate
The complete raw certificate details for imperva.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGtDCCBZygAwIBAgIQAbiyjToRVnyfcIY9h6NqiTANBgkqhkiG9w0BAQsFADBY MQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEuMCwGA1UE AxMlR2xvYmFsU2lnbiBBdGxhcyBSMyBEViBUTFMgQ0EgMjAyNCBRMTAeFw0yNDAx MTgwNzIxMDNaFw0yNDA3MTYwNzIxMDNaMBYxFDASBgNVBAMMC2ltcGVydmEuY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvpNetAG4/c1gTMBOQ2E Mg2pO9UHAUA1IyEvJp1pv6/Fxk3+/AGIYyi59Hgb/RUVKm9iOERVT/5AD25cRFqC 5VPPMMJJaGo323Gk3OOdkS6RzORrCvYoAoubfnlTaGJ+eEYe58TL8ssfDeh/AIdA mADkKSJsrVvMByNYd+FgdxdUNswn8ZUlQj7sO+hz2c6+slaGfqQcUzBm18j/YPAl i+oGrRlawHUYg2oJiUiopMi1y/o8OcbaR+7GwUaMtz7UT5NIsp5d4WoKlCAL200T 0fKVhoHYEIDDKOQ9SmY2Nf11E6aqRhEFNTH8GdB+kiquWEVlibCNEb5Ab5jE2Sxw xQIDAQABo4IDujCCA7YwcQYDVR0RBGowaIIKKi5zaWNvbS5tdYIQKi5zaWNvbXBv cnRhbC5tdYIScG9ydGFsLnNpY29tZ2luLm11gg5zaWNvbXBvcnRhbC5tdYIXbW90 b3Itc3VydmV5b3Iuc2ljb20ubXWCC2ltcGVydmEuY29tMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHQYDVR0OBBYEFOESe9Z9 Y5EhnPHLgjHS4ygwk2jKMFcGA1UdIARQME4wCAYGZ4EMAQIBMEIGCisGAQQBoDIK AQMwNDAyBggrBgEFBQcCARYmaHR0cHM6Ly93d3cuZ2xvYmFsc2lnbi5jb20vcmVw b3NpdG9yeS8wDAYDVR0TAQH/BAIwADCBngYIKwYBBQUHAQEEgZEwgY4wQAYIKwYB BQUHMAGGNGh0dHA6Ly9vY3NwLmdsb2JhbHNpZ24uY29tL2NhL2dzYXRsYXNyM2R2 dGxzY2EyMDI0cTEwSgYIKwYBBQUHMAKGPmh0dHA6Ly9zZWN1cmUuZ2xvYmFsc2ln bi5jb20vY2FjZXJ0L2dzYXRsYXNyM2R2dGxzY2EyMDI0cTEuY3J0MB8GA1UdIwQY MBaAFGbAx6Oazf7z6s5LUwthXq8zBbPhMEgGA1UdHwRBMD8wPaA7oDmGN2h0dHA6 Ly9jcmwuZ2xvYmFsc2lnbi5jb20vY2EvZ3NhdGxhc3IzZHZ0bHNjYTIwMjRxMS5j cmwwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AO7N0GTV2xrOxVy3nbTNE6Iy h0Z8vOzew1FIWUZxH7WbAAABjRtx37cAAAQDAEcwRQIhAJCaVMvJ7dW2vUOU5nCH QVukn6YaVTM44b0CjRn1sVV7AiAJGVega3saAd1WiNcSezNtBegoXD8p57HlztE8 zHwezAB1AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/KIXs+GRuAAABjRtx4AQA AAQDAEYwRAIgOaTiKdt2SFVw9ObcNZDrKNsZEzAjqlHCHnOf6juIaQ0CIFcXoIRC UDeZ3b2y53q8zsJ/AXsq3uCUmKZ1Au2ZFJWWAHcASLDja9qmRzQP5WoC+p0w6xxS ActW3SyB2bu/qznYhHMAAAGNG3HhLwAABAMASDBGAiEAo/O1/xiDv/0ElK3MJyVA kWGJzh8W6Yw0iAjthVyLGPMCIQCUR2TdTqWYyyJTFfVTUCoc7xKFcGRH5Ax1KD4J BUlG4zANBgkqhkiG9w0BAQsFAAOCAQEAg6au79kDNVddprT49atlhYIMW5ALDM+s w32rhsDvektexxaE47s7Ko0KJdUknAtnjpb7l5pTemA0H3PvdnzZvx61D1VUy63P rzTupWYcwh8ZTnwUKPjrYWkJWQWKaXMRfuKjp76MtrQlVmOA8kCp/pLAqNYUXPur 9NNWPgmsD57MfwrmuUbM+To64uyQunoM1zhOY7CxPVi+QkOzyxBD/D/0eYvWSkwo w+6LTa9Jpmc1axxC58noBZ/eeP5GeVR+Ky7S3rU0mKT+Yfbxorlymq+j+3cviAFx 7zarLKV4NkMAJKj4GT8ZhJxI33KbUihA6YGPClzCzokvfEuVo6QZvg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvpNetAG4/c1gTMBOQ2E Mg2pO9UHAUA1IyEvJp1pv6/Fxk3+/AGIYyi59Hgb/RUVKm9iOERVT/5AD25cRFqC 5VPPMMJJaGo323Gk3OOdkS6RzORrCvYoAoubfnlTaGJ+eEYe58TL8ssfDeh/AIdA mADkKSJsrVvMByNYd+FgdxdUNswn8ZUlQj7sO+hz2c6+slaGfqQcUzBm18j/YPAl i+oGrRlawHUYg2oJiUiopMi1y/o8OcbaR+7GwUaMtz7UT5NIsp5d4WoKlCAL200T 0fKVhoHYEIDDKOQ9SmY2Nf11E6aqRhEFNTH8GdB+kiquWEVlibCNEb5Ab5jE2Sxw xQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2288232075806779396134566545011731081 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Atlas R3 DV TLS CA 2024 Q1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-18 07:21:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-16 07:21:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'imperva.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24108706783096775410807026301305275315489034709292860192505397178286410296804044532750222966259324687623034665051595156727788926495885583058561415563416026755366613004712386076294535439319981316971767753446350290521933366392987647922652819931180678662703282890950245185204742227181077726353642845018812703259073551793710098242775937479854588703826172256416693453306570306962226580802915663183245794957795590675143554449957009358529466398335485997044439479358493746650769521971017888134608105219906556216651751251080844059060945969358245245330321602537168396052668645913239954750100233913479946757157349460669419516101 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sicom.mu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sicomportal.mu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.sicomgin.mu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sicomportal.mu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'motor-surveyor.sicom.mu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imperva.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e1127bd67d6391219cf1cb8231d2e328309368ca . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.10.1.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (145 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/ca/gsatlasr3dvtlsca2024q1' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsatlasr3dvtlsca2024q1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 66c0c7a39acdfef3eace4b530b615eaf3305b3e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/ca/gsatlasr3dvtlsca2024q1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0083a6aeefd90335575da6b4f8f5ab6585820c5b900b0ccfacc37dab86c0ef7a4b5ec71684e3bb3b2a8d0a25d5249c0b678e96fb979a537a60341f73ef767cd9bf1eb50f5554cbadcfaf34eea5661cc21f194e7c1428f8eb61690959058a6973117ee2a3a7be8cb6b425566380f240a9fe92c0a8d6145cfbabf4d3563e09ac0f9ecc7f0ae6b946ccf93a3ae2ec90ba7a0cd7384e63b0b13d58be4243b3cb1043fc3ff4798bd64a4c28c3ee8b4daf49a667356b1c42e7c9e8059fde78fe4679547e2b2ed2deb53498a4fe61f6f1a2b9729aafa3fb772f880171ef36ab2ca57836430024a8f8193f19849c48df729b522840e9818f0a5cc2ce892f7c4b95a3a419be