guest.napma.nato.int
Issued by Buypass Class 2 CA 5
About this certificate
This digital certificate with serial number 08:2f:bb:0b:b9:66:d9:76:1d:6e:7f was issued on by Buypass AS-983163327.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=guest.napma.nato.int
Buypass AS-983163327
Organization:
Buypass AS-983163327
Country:
NO
This certificate has expire since
Certificate Details
Serial Number (hex): 08:2f:bb:0b:b9:66:d9:76:1d:6e:7fSerial Number (int): 9896808167573179693100671
Serial Number lenght: 84 bits, 11 octets
SubjectKeyId: 57:fd:aa:ab:ee:54:90:a8:3c:90:a0:19:08:e7:99:f6:c1:34:44:4a
AuthorityKeyId: 27:52:a4:6f:2d:2a:ab:40:93:90:ec:d6:69:cb:fe:7c:61:3b:7c:42
Fingerprint (sha1): 49:12:a3:bb:a9:7e:a7:43:24:81:6d:b2:5e:fe:dc:52:5a:8e:00:f8
Fingerprint (sha256): 03:e4:4e:47:f3:39:fa:e6:c3:b2:b0:3c:e9:65:fd:e6:4b:e6:46:74:a4:c1:95:b2:d4:69:93:dc:e5:4b:2d:5b
Issuing Certificate URL: http://crt.buypass.no/crt/BPClass2CA5.cer
Revocation information
OCSP Server: http://ocsp.buypass.comCRL Distribution Point: http://crl.buypass.no/crl/BPClass2CA5.crl
Check the revocation status for certificate guest.napma.nato.int
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for guest.napma.nato.int
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
guest.napma.nato.int
redirect.napma.nato.int
redirect.napma.nato.int
Other certificates including the domain name nato.int
(limited to 100 certificates)
shared.napma.nato.int
meet.nahema.nato.int
ims.nato.int
npc.ncia.nato.int
www.natoschool.nato.int
*.nc3a.nato.int
www.nato.int
extranet.napma.nato.int
extranet.napma.nato.int
ap.ndc.nato.int
ncia.nato.int
apx.ndc.nato.int
elearning.natoschool.nato.int
*.ncia.nato.int
mail.cmre.nato.int
ndcmail.ndc.nato.int
www.asc.nato.int
awds.ndc.nato.int
mdm.napma.nato.int
mail.hrf.tr.nato.int
verity.hq.nato.int
extranet.napma.nato.int
ism.hq.nato.int
captiveportal.nahema.nato.int
msiac.nato.int
guest.napma.nato.int
gss.ncia.nato.int
servicedesk.thwaites.co.uk
ssc.nato.int
ncio.nato.int
dnbl.ncia.nato.int
acquia-sites.com
coi.nato.int
*.nc3a.nato.int
cmre.nato.int
itsupport.valeosnackfoods.com
www.ncia.nato.int
iocore.ivv.ncia.nato.int
www.nspa.nato.int
dnbl.ncia.nato.int
shared.napma.nato.int
awacs.nato.int
*.nacc.nato.int
*.ims.nato.int
redirect.napma.nato.int
nexus.dev.nato.int
acquia-sites.com
iocore-cwix.ivv.ncia.nato.int
*.nciss.nato.int
*.reach.nato.int
acquia-sites.com
emm.hq.nato.int
lldb.jallc.nato.int
apx.ndc.nato.int
ndccds.ndc.nato.int
apy.ndc.nato.int
www.ssc.nato.int
guest.napma.nato.int
sts.reach.nato.int
meet.nahema.nato.int
NSOVPN.natoschool.nato.int
ndccds.ndc.nato.int
skypeaccess.shape.nato.int
labs.academy.ncia.nato.int
shared.napma.nato.int
dev.nato.int
www.ssc.nato.int
amdc2-iss.ncia.nato.int
mail.cmre.nato.int
e-isaf.act.nato.int
*.nshq.nato.int
mdm.napma.nato.int
servicedesk.usspeaking.com
webmail.pia.nato.int
acquia-sites.com
diana.nato.int
jftc.nato.int
ticketing.alphamead.com
selfservice.act.nato.int
verity.hq.nato.int
acquia-sites.com
gp.csp.nato.int
mobile.pan.nato.int
meet.nahema.nato.int
redirect.napma.nato.int
acquia-sites.com
napma.nato.int
msiac.nato.int
extranet.napma.nato.int
extranet.napma.nato.int
guest.napma.nato.int
webmail.cmre.nato.int
haivision.hq.nato.int
*.ndss.nato.int
ssc.nato.int
www.msiac.nato.int
ithelpdesk.dccoilireland.com
servicedesk.thwaites.co.uk
eportal.nspa.nato.int
www.nspa.nato.int
meet.nahema.nato.int
ims.nato.int
npc.ncia.nato.int
www.natoschool.nato.int
*.nc3a.nato.int
www.nato.int
extranet.napma.nato.int
extranet.napma.nato.int
ap.ndc.nato.int
ncia.nato.int
apx.ndc.nato.int
elearning.natoschool.nato.int
*.ncia.nato.int
mail.cmre.nato.int
ndcmail.ndc.nato.int
www.asc.nato.int
awds.ndc.nato.int
mdm.napma.nato.int
mail.hrf.tr.nato.int
verity.hq.nato.int
extranet.napma.nato.int
ism.hq.nato.int
captiveportal.nahema.nato.int
msiac.nato.int
guest.napma.nato.int
gss.ncia.nato.int
servicedesk.thwaites.co.uk
ssc.nato.int
ncio.nato.int
dnbl.ncia.nato.int
acquia-sites.com
coi.nato.int
*.nc3a.nato.int
cmre.nato.int
itsupport.valeosnackfoods.com
www.ncia.nato.int
iocore.ivv.ncia.nato.int
www.nspa.nato.int
dnbl.ncia.nato.int
shared.napma.nato.int
awacs.nato.int
*.nacc.nato.int
*.ims.nato.int
redirect.napma.nato.int
nexus.dev.nato.int
acquia-sites.com
iocore-cwix.ivv.ncia.nato.int
*.nciss.nato.int
*.reach.nato.int
acquia-sites.com
emm.hq.nato.int
lldb.jallc.nato.int
apx.ndc.nato.int
ndccds.ndc.nato.int
apy.ndc.nato.int
www.ssc.nato.int
guest.napma.nato.int
sts.reach.nato.int
meet.nahema.nato.int
NSOVPN.natoschool.nato.int
ndccds.ndc.nato.int
skypeaccess.shape.nato.int
labs.academy.ncia.nato.int
shared.napma.nato.int
dev.nato.int
www.ssc.nato.int
amdc2-iss.ncia.nato.int
mail.cmre.nato.int
e-isaf.act.nato.int
*.nshq.nato.int
mdm.napma.nato.int
servicedesk.usspeaking.com
webmail.pia.nato.int
acquia-sites.com
diana.nato.int
jftc.nato.int
ticketing.alphamead.com
selfservice.act.nato.int
verity.hq.nato.int
acquia-sites.com
gp.csp.nato.int
mobile.pan.nato.int
meet.nahema.nato.int
redirect.napma.nato.int
acquia-sites.com
napma.nato.int
msiac.nato.int
extranet.napma.nato.int
extranet.napma.nato.int
guest.napma.nato.int
webmail.cmre.nato.int
haivision.hq.nato.int
*.ndss.nato.int
ssc.nato.int
www.msiac.nato.int
ithelpdesk.dccoilireland.com
servicedesk.thwaites.co.uk
eportal.nspa.nato.int
www.nspa.nato.int
Certificate
The complete raw certificate details for guest.napma.nato.int in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGijCCBHKgAwIBAgILCC+7C7lm2XYdbn8wDQYJKoZIhvcNAQELBQAwSzELMAkG A1UEBhMCTk8xHTAbBgNVBAoMFEJ1eXBhc3MgQVMtOTgzMTYzMzI3MR0wGwYDVQQD DBRCdXlwYXNzIENsYXNzIDIgQ0EgNTAeFw0yMzEwMDIwNjAwMjJaFw0yNDAzMjky MjU5MDBaMB8xHTAbBgNVBAMMFGd1ZXN0Lm5hcG1hLm5hdG8uaW50MIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwXlirewkQNazCOkPuBTBHMVsVEMSVGZm FOrNmiMIa3SHaJLeiIeOqYCcR7bdpv/3wfbJvChCi2wUJirYL7Kah1gMyx1/GGVk XMBBVkWqDsv8nkGd+veVQ6h26MePEfw9RyJQmc7P+U7VW4I27lN0Hb6KN4N3k+kC nMrBE8mFUyjDcK9iOZarHtMKkG1ozmYABWaerAeOZfdg0/nQ2It6bPNB+xiUnF/S lD+NdLk6IqpqULgf0SMDuq5pfDfHc8b+zrcqJwVrwrcj4sZX9AcxRccrRc3ikrKl jYSQ+pFZEneBRCuSiqnwSivkS4bpJ3yhn0rlEIOvnk7zSYHqCrx247ACt6VJgDXu PCWVcRKKjkdlSWElRNc5YEwDxGvPszN53N75H5LbeZ2A0y5DuuasICJgGlyvOv0O DkpjlSGpodlU4zPJWJoHuC15thMFjQohIjk0aoPy353JL/mH9RjBJREx67GHJlL4 sIew3sbOUqLLbsl1BgJj/U+M3aiYJL3IjFTWiAW0ZTomc7Xkh2UOxw8J3lHArVqJ 3dCTcH6wRkr4mcOzM/aNlBfSJzBNq0MYTeJKTaAKY+EACifLdaLnbM9lv56Tvll7 zXUdAXfrtb2wXnmwTA+9v3pa+s8xbNwAX439KznT2bii0aCHgDciSJEdhk082HdY /5V/Y1CKRA8CAwEAAaOCAZkwggGVMAwGA1UdEwEB/wQCMAAwHwYDVR0jBBgwFoAU J1Kkby0qq0CTkOzWacv+fGE7fEIwHQYDVR0OBBYEFFf9qqvuVJCoPJCgGQjnmfbB NERKMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwHwYDVR0gBBgwFjAKBghghEIBGgECBzAIBgZngQwBAgEwOgYDVR0fBDMwMTAv oC2gK4YpaHR0cDovL2NybC5idXlwYXNzLm5vL2NybC9CUENsYXNzMkNBNS5jcmww OAYDVR0RBDEwL4IUZ3Vlc3QubmFwbWEubmF0by5pbnSCF3JlZGlyZWN0Lm5hcG1h Lm5hdG8uaW50MGoGCCsGAQUFBwEBBF4wXDAjBggrBgEFBQcwAYYXaHR0cDovL29j c3AuYnV5cGFzcy5jb20wNQYIKwYBBQUHMAKGKWh0dHA6Ly9jcnQuYnV5cGFzcy5u by9jcnQvQlBDbGFzczJDQTUuY2VyMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqG SIb3DQEBCwUAA4ICAQCrofNHIxYmjCDqOoJC8cHJ2EDQkQv5rJOoSOdS6PGkcuBF 8XpirOCqn9BnUXgo0iw2BT6KGp3h0NHKgNehde0qoueWjyx10sQzHwd2tjH7TZz5 x+OrMnES/C1XwM9zL87KCB9nigO+JOtIXnrGPJOG2Vjeoc4fWQm+SM2jKXKPxddN tflSPi+mvrk/tE0aZAQfuSRAmZcgr3vfgrQKidSaZ6WAZy3mzJlPCkfdiJW/CsCO uGGOHmYdv6pnKy80WWeyL7+FS/mxejHossaWOeR52BeyQnEry4Wdd4Hdf+T4PT7p hXvglxS5zce3VLIcnbLDZQxLyb1cWddnLOeeRUowj4ftjV9oMxkCIzGvPzJhKQNG CBAQpkCRdnEaOc27ZwuLjfUMk6NI6luchqCNVoifP/1lzi8If0Xyfzve8llPgxq8 eDGHAs9i6wh5KQTLzFN8J4zMOB8Ql/e1OG4KV5kcBZ0+gZbv8GrtUX2vveRxKFRd ulzGukuAhXvq0q2YLK6wgkSEdbj4BXS8HwinBGteAGEpsWn6/HO+Z1SQEHvb73Lh optrYCIMcmwnIduSwzcvzdmw3uPcXSNZOwgEkvONYNAyXUz1q0OsB/ZEU7UVgya9 38Sp21zPn4bPtBpIxPjL8BkifuC+l2Igma3BgpLcLKDPmIXissw6hCE9K8Yfjw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwXlirewkQNazCOkPuBTB HMVsVEMSVGZmFOrNmiMIa3SHaJLeiIeOqYCcR7bdpv/3wfbJvChCi2wUJirYL7Ka h1gMyx1/GGVkXMBBVkWqDsv8nkGd+veVQ6h26MePEfw9RyJQmc7P+U7VW4I27lN0 Hb6KN4N3k+kCnMrBE8mFUyjDcK9iOZarHtMKkG1ozmYABWaerAeOZfdg0/nQ2It6 bPNB+xiUnF/SlD+NdLk6IqpqULgf0SMDuq5pfDfHc8b+zrcqJwVrwrcj4sZX9Acx RccrRc3ikrKljYSQ+pFZEneBRCuSiqnwSivkS4bpJ3yhn0rlEIOvnk7zSYHqCrx2 47ACt6VJgDXuPCWVcRKKjkdlSWElRNc5YEwDxGvPszN53N75H5LbeZ2A0y5Duuas ICJgGlyvOv0ODkpjlSGpodlU4zPJWJoHuC15thMFjQohIjk0aoPy353JL/mH9RjB JREx67GHJlL4sIew3sbOUqLLbsl1BgJj/U+M3aiYJL3IjFTWiAW0ZTomc7Xkh2UO xw8J3lHArVqJ3dCTcH6wRkr4mcOzM/aNlBfSJzBNq0MYTeJKTaAKY+EACifLdaLn bM9lv56Tvll7zXUdAXfrtb2wXnmwTA+9v3pa+s8xbNwAX439KznT2bii0aCHgDci SJEdhk082HdY/5V/Y1CKRA8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9896808167573179693100671 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NO' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Buypass AS-983163327' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Buypass Class 2 CA 5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-02 06:00:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-29 22:59:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'guest.napma.nato.int' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 789305717228356642878186286049034546187214107650418681833607813524466566840240849606564730214327908159464321935319884383985316876243202266019022666321440526219130129608470676948369803630220724514629311242213136749026812173657117190294516392917851172733232500964625757442845649163339849798435142723828183634493090552959019606392957355606096275094811619340371940350152776160136503876307517119913152885217751357155998806622154220790538933851929945317857564525999639483456332390802744838509602034569210314795938905250726505612892140042187505716138345178406113491070686049640698061039433178348099329957487493983555286332230190776674802243041803424085432818448425518815069031624285445617146918701303699632668081890680539169140695655543517144579722467526152435757460473524093535216498532637968516519565967858969664235264741130878113678327497958413749672951211062722706168891430921074523411000720483557132088475981888991152653288757457841776134183838918337495779444421056492537460224281805913634033892735938681761051031723723956659241638629527965070812851681506749221640240035640474410775742361711980503219393691830636686100317142712996335665511470899884706117231642482445759363602032803742554269969660116614662850230225141997104012376818703 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2752a46f2d2aab409390ecd669cbfe7c613b7c42 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 57fdaaabee5490a83c90a01908e799f6c134444a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.578.1.26.1.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.buypass.no/crl/BPClass2CA5.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'guest.napma.nato.int' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redirect.napma.nato.int' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.buypass.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.buypass.no/crt/BPClass2CA5.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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