kiwi.uwo.ca
- The University of Western Ontario -
Issued by thawte SSL CA - G2
About this certificate
This digital certificate with serial number 72:22:f6:ed:61:3c:cd:24:a0:98:27:d2:86:2d:95:d4 was issued on by thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
The University of Western Ontario
Organization:
The University of Western Ontario
Organization unit: Western Technology Services
Organization unit: Western Technology Services
State / Province:
Ontario
Locality: London
Country: CA
Locality: London
Country: CA
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 72:22:f6:ed:61:3c:cd:24:a0:98:27:d2:86:2d:95:d4Serial Number (int): 151713537892601158104607509816160392660
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60
Fingerprint (sha1): b6:7d:3c:ff:38:ac:b2:02:ad:c8:81:68:e1:3b:86:3a:c8:fd:ab:29
Fingerprint (sha256): 04:5a:db:08:97:35:4d:e4:79:0b:a2:bd:e7:0e:79:e6:12:5c:bb:b5:90:fd:36:77:14:eb:56:6f:c2:17:2e:ac
Issuing Certificate URL: http://tj.symcb.com/tj.crt
Revocation information
OCSP Server: http://tj.symcd.comCRL Distribution Point: http://tj.symcb.com/tj.crl
Check the revocation status for certificate kiwi.uwo.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kiwi.uwo.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kiwi.uwo.ca
Other certificates including the domain name uwo.ca
(limited to 100 certificates)
internalapps.uwo.ca
win4.uwo.ca
www.ipb.uwo.ca
www.schulich.uwo.ca
ssts.uwo.ca
dropz.its.uwo.ca
jira.schulich.uwo.ca
sofl2a.uwo.ca
grad.uwo.ca
recruit.uwo.ca
star.schulich.uwo.ca
www.uwo.ca
*.sp.uwo.ca
www.extranet.uwo.ca
draftmyschedule.uwo.ca
owl.uwo.ca
rest.has.uwo.ca
*.sp.uwo.ca
notifylink.uwo.ca
hospitalityservices.uwo.ca
outlook.kings.uwo.ca
ce.uwo.ca
pma.uwo.ca
instruct.uwo.ca
pma.uwo.ca
ivey.uwo.ca
spamtrap.uwo.ca
internalapps-qat.uwo.ca
applywesternrem.uwo.ca
kiwi.uwo.ca
webapps.uwo.ca
mail.edu.uwo.ca
www.edu.uwo.ca
firstnationsstudies.uwo.ca
sso.uwo.ca
outlook.kings.uwo.ca
myhr.uwo.ca
www.edu.uwo.ca
kucprint01.kc.uwo.ca
remote-gate.uwo.ca
appointmentsdev.uwo.ca
mysurveys.uwo.ca
iveytrading.ivey.uwo.ca
webapps.fims.uwo.ca
ssc.uwo.ca
ohstraining.uwo.ca
spamtrap.uwo.ca
edq.uwo.ca
eateries.uwo.ca
residence.uwo.ca
servlet-dev.uwo.ca
owlhelp.uwo.ca
tableau.uwo.ca
mystarrez.uwo.ca
cas.schulich.uwo.ca
*.eng.uwo.ca
m.onsite.uwo.ca
law.uwo.ca
westerncalendar.uwo.ca
api-qat.ramp.uwo.ca
www.graphicservices.uwo.ca
ir.lib.uwo.ca
security.uwo.ca
*.communications.uwo.ca
spamtrap.uwo.ca
sert.uwo.ca
retain.has.uwo.ca
events.uwo.ca
kiwi.uwo.ca
rezlife.uwo.ca
chrldb.nca.uwo.ca
api-qat.ramp.uwo.ca
www.fims.uwo.ca
eateries.uwo.ca
papercut.uwo.ca
sakdev.uwo.ca
ssocas.uwo.ca
wcs.uwo.ca
catering.has.uwo.ca
ir.lib.uwo.ca
discourse.syllabus.fims.uwo.ca
am.uwo.ca
chrldb.nca.uwo.ca
student.uwo.ca
wcs.uwo.ca
redcap.schulich.uwo.ca
apps.iwesterne.uwo.ca
www.kings.uwo.ca
webtest2.has.uwo.ca
dl.nca.uwo.ca
impact.uwo.ca
myhousing.uwo.ca
dropz.its.uwo.ca
imap.nca.uwo.ca
www.ivey.uwo.ca
webtest2.has.uwo.ca
sscsecure.uwo.ca
www.schulich.uwo.ca
mediarelations.uwo.ca
jdc.math.uwo.ca
win4.uwo.ca
www.ipb.uwo.ca
www.schulich.uwo.ca
ssts.uwo.ca
dropz.its.uwo.ca
jira.schulich.uwo.ca
sofl2a.uwo.ca
grad.uwo.ca
recruit.uwo.ca
star.schulich.uwo.ca
www.uwo.ca
*.sp.uwo.ca
www.extranet.uwo.ca
draftmyschedule.uwo.ca
owl.uwo.ca
rest.has.uwo.ca
*.sp.uwo.ca
notifylink.uwo.ca
hospitalityservices.uwo.ca
outlook.kings.uwo.ca
ce.uwo.ca
pma.uwo.ca
instruct.uwo.ca
pma.uwo.ca
ivey.uwo.ca
spamtrap.uwo.ca
internalapps-qat.uwo.ca
applywesternrem.uwo.ca
kiwi.uwo.ca
webapps.uwo.ca
mail.edu.uwo.ca
www.edu.uwo.ca
firstnationsstudies.uwo.ca
sso.uwo.ca
outlook.kings.uwo.ca
myhr.uwo.ca
www.edu.uwo.ca
kucprint01.kc.uwo.ca
remote-gate.uwo.ca
appointmentsdev.uwo.ca
mysurveys.uwo.ca
iveytrading.ivey.uwo.ca
webapps.fims.uwo.ca
ssc.uwo.ca
ohstraining.uwo.ca
spamtrap.uwo.ca
edq.uwo.ca
eateries.uwo.ca
residence.uwo.ca
servlet-dev.uwo.ca
owlhelp.uwo.ca
tableau.uwo.ca
mystarrez.uwo.ca
cas.schulich.uwo.ca
*.eng.uwo.ca
m.onsite.uwo.ca
law.uwo.ca
westerncalendar.uwo.ca
api-qat.ramp.uwo.ca
www.graphicservices.uwo.ca
ir.lib.uwo.ca
security.uwo.ca
*.communications.uwo.ca
spamtrap.uwo.ca
sert.uwo.ca
retain.has.uwo.ca
events.uwo.ca
kiwi.uwo.ca
rezlife.uwo.ca
chrldb.nca.uwo.ca
api-qat.ramp.uwo.ca
www.fims.uwo.ca
eateries.uwo.ca
papercut.uwo.ca
sakdev.uwo.ca
ssocas.uwo.ca
wcs.uwo.ca
catering.has.uwo.ca
ir.lib.uwo.ca
discourse.syllabus.fims.uwo.ca
am.uwo.ca
chrldb.nca.uwo.ca
student.uwo.ca
wcs.uwo.ca
redcap.schulich.uwo.ca
apps.iwesterne.uwo.ca
www.kings.uwo.ca
webtest2.has.uwo.ca
dl.nca.uwo.ca
impact.uwo.ca
myhousing.uwo.ca
dropz.its.uwo.ca
imap.nca.uwo.ca
www.ivey.uwo.ca
webtest2.has.uwo.ca
sscsecure.uwo.ca
www.schulich.uwo.ca
mediarelations.uwo.ca
jdc.math.uwo.ca
Certificate
The complete raw certificate details for kiwi.uwo.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF2TCCBMGgAwIBAgIQciL27WE8zSSgmCfShi2V1DANBgkqhkiG9w0BAQsFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMRswGQYDVQQDExJ0 aGF3dGUgU1NMIENBIC0gRzIwHhcNMTcxMTEzMDAwMDAwWhcNMTgxMTI0MjM1OTU5 WjCBmDELMAkGA1UEBhMCQ0ExEDAOBgNVBAgMB09udGFyaW8xDzANBgNVBAcMBkxv bmRvbjEqMCgGA1UECgwhVGhlIFVuaXZlcnNpdHkgb2YgV2VzdGVybiBPbnRhcmlv MSQwIgYDVQQLDBtXZXN0ZXJuIFRlY2hub2xvZ3kgU2VydmljZXMxFDASBgNVBAMM C2tpd2kudXdvLmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGWV JioydkYfNBZaM2ydhnz0qeiNzH0eQyZ9r//nZNTblXyBDoYEgZWkmTwm9xqJB0ED MXssyFAsVrZjZbTgMHPEx9SfGzrXDuH2Ut5BaL8tizqK2X98IUn2qzwU8MXxWRG4 beVHrDgkBG4iI21VsbrERYvRd1DSLMAXtnsZyLpQpjcNgu+KgBPy8hIsfo48/VSy fnakpc49OwAqFxLpieuKZfDTigF1+cMQ3cbHy2ZMFQceIvt46DRTubS9gN7xTxiO yi/lP20+6RpAkvanZVrVJS4lKI8ByCkYrYZs1iQK/35hBwgZGcKB0Zuda0D+cEk5 yU0QS7yoNxY2dBcZHQIDAQABo4ICczCCAm8wFgYDVR0RBA8wDYILa2l3aS51d28u Y2EwCQYDVR0TBAIwADBuBgNVHSAEZzBlMGMGBmeBDAECAjBZMCYGCCsGAQUFBwIB FhpodHRwczovL3d3dy50aGF3dGUuY29tL2NwczAvBggrBgEFBQcCAjAjDCFodHRw czovL3d3dy50aGF3dGUuY29tL3JlcG9zaXRvcnkwDgYDVR0PAQH/BAQDAgWgMB8G A1UdIwQYMBaAFMJPSFf80U+awF04fQ4F29kutVJgMCsGA1UdHwQkMCIwIKAeoByG Gmh0dHA6Ly90ai5zeW1jYi5jb20vdGouY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly90 ai5zeW1jZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly90ai5zeW1jYi5jb20vdGou Y3J0MIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUA3esdK3oNT6Ygi4GtgWhwfi6O nQHVXIiNPRHEzbbsvswAAAFftfLgegAABAMARjBEAiBsWIC3rx6NnulCznHRpDYz Kn9LOn1AzHW33UlzAoSahQIgR94vYsrZSlBn7JnWUQaRxN1znDek6hC1WxRHGLLF Ik8AdQCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAAAV+18uCFAAAE AwBGMEQCID4UB5Uvva0WWliu1cVSVIFZxhf0Za4sNWJs5JDakkpdAiAYjGMC35hH 3cGkE6PpDptOepGRCIKqpKKohQAg1HpEHDANBgkqhkiG9w0BAQsFAAOCAQEAcfQ3 M0BvbTXrvQwBGJx+n66ntA6lGLToflfGJ7Dx4uJUgT8EWqoDQPWzgHKGvX6uccPZ bYYaMYIT2aya+r73OTumxFfC03XGBfDVmPqNydQEvomifWisn33qkfenaYHXZ6w+ c82Fw+gW3TRMaT3OSFKUlR/S7liGhcJ9eFo6aF+VuYEzFYCWAn29neFZxvyp7/b5 +5g9M081v7vFqz0dVxETCO4IWQTTK9e3JBshzlfmcjqd47WjuT9TqbsH1lE0BpIW hmchkp9ilGBM/0DL00Z2nFgIKlQVYoPX15K4c5GzPXSaypEYjU9R2x+uUftJJ2Mq 5ta2vbeTKMf8gwjpPw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGWVJioydkYfNBZaM2yd hnz0qeiNzH0eQyZ9r//nZNTblXyBDoYEgZWkmTwm9xqJB0EDMXssyFAsVrZjZbTg MHPEx9SfGzrXDuH2Ut5BaL8tizqK2X98IUn2qzwU8MXxWRG4beVHrDgkBG4iI21V sbrERYvRd1DSLMAXtnsZyLpQpjcNgu+KgBPy8hIsfo48/VSyfnakpc49OwAqFxLp ieuKZfDTigF1+cMQ3cbHy2ZMFQceIvt46DRTubS9gN7xTxiOyi/lP20+6RpAkvan ZVrVJS4lKI8ByCkYrYZs1iQK/35hBwgZGcKB0Zuda0D+cEk5yU0QS7yoNxY2dBcZ HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 151713537892601158104607509816160392660 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'The University of Western Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Western Technology Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'kiwi.uwo.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22772987147620146089115205887319995578327997978477577273822854169768431897741230767896155869494028762619513410435207069535846439667860215179136540739966521649466853104185500318961007386796132622041528095268439656227366576839109604934245587845313884314694161199722750751966950244285113504749710592382155215887633752867672354069547134917850812700283245354269159320052298450543608758056733976766283676982801138179186526201832021135628440792107472808189204162532293344666524559944800488970636608854715450355424153447970864026019063593315281603056785170111622356920512615337414730964574589817658533736121739950054748657949 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kiwi.uwo.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015fb5f2e07a000004030046304402206c5880b7af1e8d9ee942ce71d1a436332a7f4b3a7d40cc75b7dd497302849a85022047de2f62cad94a5067ec99d6510691c4dd739c37a4ea10b55b144718b2c5224f007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015fb5f2e085000004030046304402203e1407952fbdad165a58aed5c552548159c617f465ae2c35626ce490da924a5d0220188c6302df9847ddc1a413a3e90e9b4e7a91910882aaa4a2a8850020d47a441c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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