forums.mbgsd.org
- Mechanicsburg Area School District -
Issued by StartCom Class 2 Primary Intermediate Server CA
About this certificate
This digital certificate with serial number 27:1e was issued on by StartCom Ltd..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificate with an RSA key contains invalid key usage(s): KeyUsageKeyAgreement Key usage values digitalSignature, nonRepudiation, keyEncipherment, and dataEncipherment may only be present in an end entity certificate with an RSA key (RFC 3279: 2.3.1)
- Compliant certificates SHOULD NOT use the noticeRef option (RFC 5280: 4.2.1.4)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Mechanicsburg Area School District
Organization:
Mechanicsburg Area School District
Organization unit: StartCom Verified Certificate Member
Organization unit: StartCom Verified Certificate Member
State / Province:
Pennsylvania
Locality: Mechanicsburg
Country: US
Locality: Mechanicsburg
Country: US
StartCom Ltd.
Organization:
StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Organization unit: Secure Digital Certificate Signing
Country:
IL
This certificate has expire since
Certificate Details
Serial Number (hex): 27:1eSerial Number (int): 10014
Serial Number lenght: 14 bits, 2 octets
SubjectKeyId: 5e:77:4d:5a:c3:d1:2b:cc:3a:25:a0:7f:fe:a7:24:3f:ed:05:00:79
AuthorityKeyId: 11:db:23:45:fd:54:cc:6a:71:6f:84:8a:03:d7:be:f7:01:2f:26:86
Fingerprint (sha1): dc:9f:a1:1e:99:68:25:74:2f:55:30:8c:82:28:b2:e8:59:3f:70:d7
Fingerprint (sha256): 03:cc:6d:9b:fe:7b:09:92:53:02:f4:49:3a:2b:00:8a:fa:37:06:2d:55:dd:dc:82:fc:cc:f7:3e:f8:54:ca:1a
Issuing Certificate URL: http://www.startssl.com/certs/sub.class2.server.ca.crt
Revocation information
OCSP Server: http://ocsp.startssl.com/sub/class2/server/caCRL Distribution Point: http://www.startssl.com/crt2-crl.crl
CRL Distribution Point: http://crl.startssl.com/crt2-crl.crl
Check the revocation status for certificate forums.mbgsd.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for forums.mbgsd.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Key Agreement
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
forums.mbgsd.org
mbgsd.org
mbgsd.org
Other certificates including the domain name mbgsd.org
(limited to 100 certificates)
sapphire.mbgsd.org
www.bartlettschools.org
helpdesk.mbgsd.org
eschool.mbgsd.org
forums.mbgsd.org
adams.cleburne.k12.tx.us
0-3.texasdhhresources.org
admin.bayhaven.org
admin.aceroschools.org
6gc.mead354.org
mbgsd.org
admin.broadstreet.mbgsd.org
shepherdstown.mbgsd.org
materdeicatholic.org
libanswers.mbgsd.org
libanswers.mbgsd.org
admin.bhs.baker5j.org
stmmsa.org
admin.bms.davidson.k12.nc.us
eschool.mbgsd.org
nms.mbgsd.org
blogs.mbgsd.org
admin.elmwood.mbgsd.org
mbgsd.org
summer.materdeicatholic.org
libanswers.mbgsd.org
www.mbgsd.org
asu.mbgsd.org
adams.cleburne.k12.tx.us
bhs.bcsdk12.org
sapphire.mbgsd.org
0-3.texasdhhresources.org
admin.scs.ealas.org
admin.asgl-lausd.org
6gc.mead354.org
moodle.mbgsd.org
mbgsd.org
upperallen.mbgsd.org
mbgsd.org
blogs.mbgsd.org
blogs.mbgsd.org
elementary.troupisd.org
admin.bhs.baker5j.org
aceroschools.org
admin.bayhaven.org
www.mbgsd.org
sapphire.mbgsd.org
www.mbgsd.org
0-3.texasdhhresources.org
admin.aimschools.org
dudley.centerusd.org
admin.bms.davidson.k12.nc.us
admin.bhs.baker5j.org
monitoring.mbgsd.org
www.sttheresaschool.com
admin.fontanar.online
0-3.texasdhhresources.org
admin.bayhaven.org
preescolar.semperaltius.edu.mx
wiki.mbgsd.org
admin.delreywoods.mpusd.net
admin.bayhaven.org
admin.bayhaven.org
mech49.mbgsd.org
admin.bhs.baker5j.org
eschool.mbgsd.org
monroe.k12.tn.us
admin.aceroschools.org
admin.bhs.baker5j.org
admin.bayhaven.org
eschool.mbgsd.org
0-3.texasdhhresources.org
admin.aimschools.org
sussexcountycatholicschools.org
admin.mynhas.org
admin.aceroschools.org
www.mbgsd.org
0-3.texasdhhresources.org
remote.mbgsd.org
admin.bhs.baker5j.org
breed.exteraschools.org
adams.cleburne.k12.tx.us
admin.bayhaven.org
remote.mbgsd.org
admin.delreywoods.mpusd.net
mbgsd.org
admin.highschool.mbgsd.org
eschool.mbgsd.org
troupisd.org
admin.bhs.baker5j.org
admin.bayhaven.org
libanswers.mbgsd.org
admin.bhs.baker5j.org
admin.davidson.k12.nc.us
upperallen.mbgsd.org
admin.dimensions.org
admin.bhs.baker5j.org
admin.highschool.mbgsd.org
southeast.varnett.org
www.poecenter246.com
www.bartlettschools.org
helpdesk.mbgsd.org
eschool.mbgsd.org
forums.mbgsd.org
adams.cleburne.k12.tx.us
0-3.texasdhhresources.org
admin.bayhaven.org
admin.aceroschools.org
6gc.mead354.org
mbgsd.org
admin.broadstreet.mbgsd.org
shepherdstown.mbgsd.org
materdeicatholic.org
libanswers.mbgsd.org
libanswers.mbgsd.org
admin.bhs.baker5j.org
stmmsa.org
admin.bms.davidson.k12.nc.us
eschool.mbgsd.org
nms.mbgsd.org
blogs.mbgsd.org
admin.elmwood.mbgsd.org
mbgsd.org
summer.materdeicatholic.org
libanswers.mbgsd.org
www.mbgsd.org
asu.mbgsd.org
adams.cleburne.k12.tx.us
bhs.bcsdk12.org
sapphire.mbgsd.org
0-3.texasdhhresources.org
admin.scs.ealas.org
admin.asgl-lausd.org
6gc.mead354.org
moodle.mbgsd.org
mbgsd.org
upperallen.mbgsd.org
mbgsd.org
blogs.mbgsd.org
blogs.mbgsd.org
elementary.troupisd.org
admin.bhs.baker5j.org
aceroschools.org
admin.bayhaven.org
www.mbgsd.org
sapphire.mbgsd.org
www.mbgsd.org
0-3.texasdhhresources.org
admin.aimschools.org
dudley.centerusd.org
admin.bms.davidson.k12.nc.us
admin.bhs.baker5j.org
monitoring.mbgsd.org
www.sttheresaschool.com
admin.fontanar.online
0-3.texasdhhresources.org
admin.bayhaven.org
preescolar.semperaltius.edu.mx
wiki.mbgsd.org
admin.delreywoods.mpusd.net
admin.bayhaven.org
admin.bayhaven.org
mech49.mbgsd.org
admin.bhs.baker5j.org
eschool.mbgsd.org
monroe.k12.tn.us
admin.aceroschools.org
admin.bhs.baker5j.org
admin.bayhaven.org
eschool.mbgsd.org
0-3.texasdhhresources.org
admin.aimschools.org
sussexcountycatholicschools.org
admin.mynhas.org
admin.aceroschools.org
www.mbgsd.org
0-3.texasdhhresources.org
remote.mbgsd.org
admin.bhs.baker5j.org
breed.exteraschools.org
adams.cleburne.k12.tx.us
admin.bayhaven.org
remote.mbgsd.org
admin.delreywoods.mpusd.net
mbgsd.org
admin.highschool.mbgsd.org
eschool.mbgsd.org
troupisd.org
admin.bhs.baker5j.org
admin.bayhaven.org
libanswers.mbgsd.org
admin.bhs.baker5j.org
admin.davidson.k12.nc.us
upperallen.mbgsd.org
admin.dimensions.org
admin.bhs.baker5j.org
admin.highschool.mbgsd.org
southeast.varnett.org
www.poecenter246.com
Certificate
The complete raw certificate details for forums.mbgsd.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHCDCCBfCgAwIBAgICJx4wDQYJKoZIhvcNAQEFBQAwgYwxCzAJBgNVBAYTAklM MRYwFAYDVQQKEw1TdGFydENvbSBMdGQuMSswKQYDVQQLEyJTZWN1cmUgRGlnaXRh bCBDZXJ0aWZpY2F0ZSBTaWduaW5nMTgwNgYDVQQDEy9TdGFydENvbSBDbGFzcyAy IFByaW1hcnkgSW50ZXJtZWRpYXRlIFNlcnZlciBDQTAeFw0xMDA2MTUwNzQ0NDVa Fw0xMjA2MTYwMjQ3MzNaMIH6MSAwHgYDVQQNExcyMTIxNzUtTHdRNEJhYXJLOWdF Ykk5TTELMAkGA1UEBhMCVVMxFTATBgNVBAgTDFBlbm5zeWx2YW5pYTEWMBQGA1UE BxMNTWVjaGFuaWNzYnVyZzErMCkGA1UEChMiTWVjaGFuaWNzYnVyZyBBcmVhIFNj aG9vbCBEaXN0cmljdDEtMCsGA1UECxMkU3RhcnRDb20gVmVyaWZpZWQgQ2VydGlm aWNhdGUgTWVtYmVyMRkwFwYDVQQDExBmb3J1bXMubWJnc2Qub3JnMSMwIQYJKoZI hvcNAQkBFhRwb3N0bWFzdGVyQG1iZ3NkLm9yZzCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALENyuP5UT0e0uv6/IxkCo8lmXr1NzkAjyDgrmmZSwaBSNvl clUv4UnfWTXQCeC/asC+lR5d5u8WJ/VikjVIZbEcBrnq/yTJk+G5RteK+TJ12uY/ gU/FLzm1UKzouOJm68mb4sIXDyTvU+UH56N5UC0VpDD8bBegpbLQic7XDYHV016k aRzoc24bl3AlHPbLCeVHFP9bI6gx+KwGEeV7JRR+OCXHsyXWv0U5soJvT+CiZkRS 2xHIK+lB/65bLT4473kAdh8unl11QxDr/D+ANrt79U3/NlR1LumwAZAEV1HWDxEr 3H79YcPLlKZghc7fmjejzzMxgbmKMowJjn9fXs0CAwEAAaOCAwIwggL+MAkGA1Ud EwQCMAAwCwYDVR0PBAQDAgOoMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcD ATAdBgNVHQ4EFgQUXndNWsPRK8w6JaB//qckP+0FAHkwHwYDVR0jBBgwFoAUEdsj Rf1UzGpxb4SKA9e+9wEvJoYwJgYDVR0RBB8wHYIQZm9ydW1zLm1iZ3NkLm9yZ4IJ bWJnc2Qub3JnMIIBQgYDVR0gBIIBOTCCATUwggExBgsrBgEEAYG1NwECAjCCASAw LgYIKwYBBQUHAgEWImh0dHA6Ly93d3cuc3RhcnRzc2wuY29tL3BvbGljeS5wZGYw NAYIKwYBBQUHAgEWKGh0dHA6Ly93d3cuc3RhcnRzc2wuY29tL2ludGVybWVkaWF0 ZS5wZGYwgbcGCCsGAQUFBwICMIGqMBQWDVN0YXJ0Q29tIEx0ZC4wAwIBARqBkUxp bWl0ZWQgTGlhYmlsaXR5LCBzZWUgc2VjdGlvbiAqTGVnYWwgTGltaXRhdGlvbnMq IG9mIHRoZSBTdGFydENvbSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSBQb2xpY3kg YXZhaWxhYmxlIGF0IGh0dHA6Ly93d3cuc3RhcnRzc2wuY29tL3BvbGljeS5wZGYw YQYDVR0fBFowWDAqoCigJoYkaHR0cDovL3d3dy5zdGFydHNzbC5jb20vY3J0Mi1j cmwuY3JsMCqgKKAmhiRodHRwOi8vY3JsLnN0YXJ0c3NsLmNvbS9jcnQyLWNybC5j cmwwgY4GCCsGAQUFBwEBBIGBMH8wOQYIKwYBBQUHMAGGLWh0dHA6Ly9vY3NwLnN0 YXJ0c3NsLmNvbS9zdWIvY2xhc3MyL3NlcnZlci9jYTBCBggrBgEFBQcwAoY2aHR0 cDovL3d3dy5zdGFydHNzbC5jb20vY2VydHMvc3ViLmNsYXNzMi5zZXJ2ZXIuY2Eu Y3J0MCMGA1UdEgQcMBqGGGh0dHA6Ly93d3cuc3RhcnRzc2wuY29tLzANBgkqhkiG 9w0BAQUFAAOCAQEAiBrHEy9i+xEBPP2XspOUYYV82ZahznYOvnKlv4Zi5cGcMmWZ O05KUCNauOKxjztkR80ZASrwn1XPlFTbsALgs9ry2crZ13Sz/1esrY61waOTnBes sjFIzcEmVXobKP4svkxTYWD2JGglBnc8W0tRr0eh6HnhApt9mAX1weojnuV5nGPo dO7lmMdM7JgblYex0LQ11RrS25yPr+2MSkXeC1e3dgDgA+4D6e4ylk+vNdKYWeDG 9Z9Mt4InG6juGzn0Cgccl5/L6fsW8kYB00/CwUSikiDG1UVxcfpsoTzHWKEGZW16 B6XtiQZ3gi9tVlMonh8ose9bhgce7dRLPf8Dhw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQ3K4/lRPR7S6/r8jGQK jyWZevU3OQCPIOCuaZlLBoFI2+VyVS/hSd9ZNdAJ4L9qwL6VHl3m7xYn9WKSNUhl sRwGuer/JMmT4blG14r5MnXa5j+BT8UvObVQrOi44mbryZviwhcPJO9T5Qfno3lQ LRWkMPxsF6ClstCJztcNgdXTXqRpHOhzbhuXcCUc9ssJ5UcU/1sjqDH4rAYR5Xsl FH44JcezJda/RTmygm9P4KJmRFLbEcgr6UH/rlstPjjveQB2Hy6eXXVDEOv8P4A2 u3v1Tf82VHUu6bABkARXUdYPESvcfv1hw8uUpmCFzt+aN6PPMzGBuYoyjAmOf19e zQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10014 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Secure Digital Certificate Signing' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Class 2 Primary Intermediate Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2010-06-15 07:44:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-06-16 02:47:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.13 (description) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '212175-LwQ4BaarK9gEbI9M' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Mechanicsburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Mechanicsburg Area School District' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Verified Certificate Member' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'forums.mbgsd.org' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22350981334501533149233068189429815936520869012636900972643871485346644329680507766166163108170777175509841226178842794348988425516606328691360370330851694001662432183431622495585267916057018077496642373307694294995815846651582670634326553917162989986285441523169260170445629143563792467677937812324981300074314485236936980780554960351102539834829939495903911225102966466460187510223856723348862546476585274583486672825641514107998560464755687068101170332704596956867133807086575319731727447139740950257341197312977344406665981482826629441992859504872122681116922329148197230187434367585417832192052046919348544036557 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 03a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5e774d5ac3d12bcc3a25a07ffea7243fed050079 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 11db2345fd54cc6a716f848a03d7bef7012f2686 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'forums.mbgsd.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mbgsd.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (313 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23223.1.2.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.startssl.com/policy.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.startssl.com/intermediate.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'StartCom Ltd.' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [76 105 109 105 116 101 100 32 76 105 97 98 105 108 105 116 121 44 32 115 101 101 32 115 101 99 116 105 111 110 32 42 76 101 103 97 108 32 76 105 109 105 116 97 116 105 111 110 115 42 32 111 102 32 116 104 101 32 83 116 97 114 116 67 111 109 32 67 101 114 116 105 102 105 99 97 116 105 111 110 32 65 117 116 104 111 114 105 116 121 32 80 111 108 105 99 121 32 97 118 97 105 108 97 98 108 101 32 97 116 32 104 116 116 112 58 47 47 119 119 119 46 115 116 97 114 116 115 115 108 46 99 111 109 47 112 111 108 105 99 121 46 112 100 102] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.startssl.com/crt2-crl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.startssl.com/crt2-crl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.startssl.com/sub/class2/server/ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.startssl.com/certs/sub.class2.server.ca.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.18 (issuerAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.startssl.com/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00881ac7132f62fb11013cfd97b2939461857cd996a1ce760ebe72a5bf8662e5c19c3265993b4e4a50235ab8e2b18f3b6447cd19012af09f55cf9454dbb002e0b3daf2d9cad9d774b3ff57acad8eb5c1a3939c17acb23148cdc126557a1b28fe2cbe4c536160f624682506773c5b4b51af47a1e879e1029b7d9805f5c1ea239ee5799c63e874eee598c74cec981b9587b1d0b435d51ad2db9c8fafed8c4a45de0b57b77600e003ee03e9ee32964faf35d29859e0c6f59f4cb782271ba8ee1b39f40a071c979fcbe9fb16f24601d34fc2c144a29220c6d5457171fa6ca13cc758a106656d7a07a5ed890677822f6d5653289e1f28b1ef5b86071eedd44b3dff0387