vatoapp-hdx.acc.ato.gov.au
- Australian Taxation Office -
Issued by Thawte TLS RSA CA G1
About this certificate
This digital certificate with serial number 0d:40:11:61:ff:51:67:e8:2c:53:5c:5c:6f:81:4e:f1 was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Australian Taxation Office
Organization:
Australian Taxation Office
State / Province:
Australian Capital Territory
Locality: Canberra
Country: AU
Locality: Canberra
Country: AU
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0d:40:11:61:ff:51:67:e8:2c:53:5c:5c:6f:81:4e:f1Serial Number (int): 17612623509262252460431533500606271217
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 4b:5e:df:52:4e:9b:c0:46:93:c0:f2:fd:d7:95:9d:dd:c7:5d:7e:49
AuthorityKeyId: a5:8c:fe:32:cc:eb:0f:2c:d4:19:c6:08:b8:00:24:88:5d:c3:c5:b7
Fingerprint (sha1): 71:46:29:67:a8:98:5a:25:01:ee:e0:a8:49:58:ee:84:f9:95:01:fb
Fingerprint (sha256): 05:05:c8:87:e9:0c:0c:64:4c:d6:9c:b7:69:2e:08:7e:dc:97:80:a6:0a:05:56:2b:89:31:53:c0:30:1e:32:83
Issuing Certificate URL: http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteTLSRSACAG1.crl
Check the revocation status for certificate vatoapp-hdx.acc.ato.gov.au
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vatoapp-hdx.acc.ato.gov.au
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vatoapp-hdx.acc.ato.gov.au
vatoapp-hdx1.acc.ato.gov.au
vatoapp-hdx2.acc.ato.gov.au
vatoapp-hdx1.acc.ato.gov.au
vatoapp-hdx2.acc.ato.gov.au
Other certificates including the domain name ato.gov.au
(limited to 100 certificates)
provider.tr.super.ato.gov.au
basp.status.ato.gov.au
EDCM001.ato.gov.au
auth.efix.ato.gov.au
bp.status.ato.gov.au
provider.tr.super.ato.gov.au
bp.status.ato.gov.au
api-status.360cities.net
api-status.360cities.net
andrei.sterda.com
govcms.gov.au
cfg-statuspage.avetta.com
wickenby.ato.gov.au
*.dcl.ato.gov.au
basp.status.ato.gov.au
secure02.lithium.com
EDCH052PV.ato.gov.au
govcms.gov.au
as.zacharyhill.dev
basp.status.ato.gov.au
GSUH071PV.ato.gov.au
softwaredevelopers.ato.gov.au
basp.status.ato.gov.au
govcms.gov.au
ipp.efix.ato.gov.au
acme.kstars.org
govcms.gov.au
cfg-statuspage.avetta.com
appstatus.justworks.com
datatransfer.acc.ato.gov.au
cfg-statuspage.avetta.com
www.ato.gov.au
as.zacharyhill.dev
as.zacharyhill.dev
ion-status.rockcontent.com
por.ato.gov.au
secure02.lithium.com
vatoapp-hdx.acc.ato.gov.au
api-status.360cities.net
api-status.360cities.net
govcms.gov.au
acme.kstars.org
basp.status.ato.gov.au
am.ato.gov.au
cfg-statuspage.avetta.com
cfg-statuspage.avetta.com
secure10.lithium.com
basp.status.ato.gov.au
www.ato.gov.au
basp.status.ato.gov.au
auth.evte.ato.gov.au
bp.status.ato.gov.au
www.tdv.ato.gov.au
cfg-statuspage.avetta.com
staff.acc.ato.gov.au
basp.status.ato.gov.au
cfg-statuspage.avetta.com
onlineservices.reliance.efix.ato.gov.au
acme.kstars.org
api-status.360cities.net
awmdm.acc.ato.gov.au
govcms.gov.au
secure02.lithium.com
GSUH074PV.ato.gov.au
cfg-statuspage.avetta.com
as.zacharyhill.dev
vpn.ato.gov.au
secure02.lithium.com
as.zacharyhill.dev
bp.status.ato.gov.au
por.ato.gov.au
omnichannel.ato.gov.au
datatransfer.ato.gov.au
itsystemstatus.rfdsse.org.au
softwaredevelopers.ato.gov.au
govcms.gov.au
ausid1.perf.acc.ato.gov.au
community.ato.gov.au
acme.kstars.org
ion-status.rockcontent.com
roamvpn.acc.ato.gov.au
pki.ato.gov.au
www.ato.gov.au
GSUH072PV.ato.gov.au
sws.ato.gov.au
EDCB001.ato.gov.au
secure10.lithium.com
acme.kstars.org
bp.status.ato.gov.au
cfg-statuspage.avetta.com
cfg-statuspage.avetta.com
api-status.360cities.net
andrei.sterda.com
api-status.360cities.net
andrei.sterda.com
secure10.lithium.com
secure02.lithium.com
govcms.gov.au
govcms.gov.au
acme.kstars.org
basp.status.ato.gov.au
EDCM001.ato.gov.au
auth.efix.ato.gov.au
bp.status.ato.gov.au
provider.tr.super.ato.gov.au
bp.status.ato.gov.au
api-status.360cities.net
api-status.360cities.net
andrei.sterda.com
govcms.gov.au
cfg-statuspage.avetta.com
wickenby.ato.gov.au
*.dcl.ato.gov.au
basp.status.ato.gov.au
secure02.lithium.com
EDCH052PV.ato.gov.au
govcms.gov.au
as.zacharyhill.dev
basp.status.ato.gov.au
GSUH071PV.ato.gov.au
softwaredevelopers.ato.gov.au
basp.status.ato.gov.au
govcms.gov.au
ipp.efix.ato.gov.au
acme.kstars.org
govcms.gov.au
cfg-statuspage.avetta.com
appstatus.justworks.com
datatransfer.acc.ato.gov.au
cfg-statuspage.avetta.com
www.ato.gov.au
as.zacharyhill.dev
as.zacharyhill.dev
ion-status.rockcontent.com
por.ato.gov.au
secure02.lithium.com
vatoapp-hdx.acc.ato.gov.au
api-status.360cities.net
api-status.360cities.net
govcms.gov.au
acme.kstars.org
basp.status.ato.gov.au
am.ato.gov.au
cfg-statuspage.avetta.com
cfg-statuspage.avetta.com
secure10.lithium.com
basp.status.ato.gov.au
www.ato.gov.au
basp.status.ato.gov.au
auth.evte.ato.gov.au
bp.status.ato.gov.au
www.tdv.ato.gov.au
cfg-statuspage.avetta.com
staff.acc.ato.gov.au
basp.status.ato.gov.au
cfg-statuspage.avetta.com
onlineservices.reliance.efix.ato.gov.au
acme.kstars.org
api-status.360cities.net
awmdm.acc.ato.gov.au
govcms.gov.au
secure02.lithium.com
GSUH074PV.ato.gov.au
cfg-statuspage.avetta.com
as.zacharyhill.dev
vpn.ato.gov.au
secure02.lithium.com
as.zacharyhill.dev
bp.status.ato.gov.au
por.ato.gov.au
omnichannel.ato.gov.au
datatransfer.ato.gov.au
itsystemstatus.rfdsse.org.au
softwaredevelopers.ato.gov.au
govcms.gov.au
ausid1.perf.acc.ato.gov.au
community.ato.gov.au
acme.kstars.org
ion-status.rockcontent.com
roamvpn.acc.ato.gov.au
pki.ato.gov.au
www.ato.gov.au
GSUH072PV.ato.gov.au
sws.ato.gov.au
EDCB001.ato.gov.au
secure10.lithium.com
acme.kstars.org
bp.status.ato.gov.au
cfg-statuspage.avetta.com
cfg-statuspage.avetta.com
api-status.360cities.net
andrei.sterda.com
api-status.360cities.net
andrei.sterda.com
secure10.lithium.com
secure02.lithium.com
govcms.gov.au
govcms.gov.au
acme.kstars.org
Certificate
The complete raw certificate details for vatoapp-hdx.acc.ato.gov.au in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG0DCCBbigAwIBAgIQDUARYf9RZ+gsU1xcb4FO8TANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRUaGF3dGUgVExTIFJTQSBDQSBHMTAe Fw0yMzEwMDMwMDAwMDBaFw0yNDExMDIyMzU5NTlaMIGRMQswCQYDVQQGEwJBVTEl MCMGA1UECBMcQXVzdHJhbGlhbiBDYXBpdGFsIFRlcnJpdG9yeTERMA8GA1UEBxMI Q2FuYmVycmExIzAhBgNVBAoTGkF1c3RyYWxpYW4gVGF4YXRpb24gT2ZmaWNlMSMw IQYDVQQDExp2YXRvYXBwLWhkeC5hY2MuYXRvLmdvdi5hdTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAKZ1uhadWIOBKtfMO6YHt2GF6NFhwTuGuNBqMR2m Fa3sDPSs1pvbyMzVhYP4MfdDD+XR2jyqwJdDiHVIEPiUsK2blsRfnOEmfAo2HJcL K2Jj8fmYE9ZIJ5c/xZbiiIlyLniTOTwqXFBhH3KAWXvkFZdh8GW1vtFXCw10I3j6 TK2bBOXyKSfLuhtUiDOyqXXJOZ5UF2mfPwvNkCRvlupXNHBwy0D9PHZ9CYhtUtbU mCw3BNJb7aOxz9Wq0h8ERQJT6DGGKCqF5ugYgfrJT5aJ9eBuTkaARmrcnm2P2VOA g5u56lwJ1kRVHfiSG41X9NMLDZM197YdxvreBnCvK9FAlb8CAwEAAaOCA1QwggNQ MB8GA1UdIwQYMBaAFKWM/jLM6w8s1BnGCLgAJIhdw8W3MB0GA1UdDgQWBBRLXt9S TpvARpPA8v3XlZ3dx11+STBfBgNVHREEWDBWghp2YXRvYXBwLWhkeC5hY2MuYXRv Lmdvdi5hdYIbdmF0b2FwcC1oZHgxLmFjYy5hdG8uZ292LmF1ght2YXRvYXBwLWhk eDIuYWNjLmF0by5nb3YuYXUwPgYDVR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEF BQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6g LIYqaHR0cDovL2NkcC50aGF3dGUuY29tL1RoYXd0ZVRMU1JTQUNBRzEuY3JsMHAG CCsGAQUFBwEBBGQwYjAkBggrBgEFBQcwAYYYaHR0cDovL3N0YXR1cy50aGF3dGUu Y29tMDoGCCsGAQUFBzAChi5odHRwOi8vY2FjZXJ0cy50aGF3dGUuY29tL1RoYXd0 ZVRMU1JTQUNBRzEuY3J0MAwGA1UdEwEB/wQCMAAwggF/BgorBgEEAdZ5AgQCBIIB bwSCAWsBaQB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABivN1 32EAAAQDAEgwRgIhAOJR/m6b1+U0ajYYwB1oBoIMLbfROE9IByL8PT5Nq0lBAiEA /BkexneikuXxzrkb8eGYmEUq9+WIh4yfpcLGJVCI+/UAdQBIsONr2qZHNA/lagL6 nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYrzdd8KAAAEAwBGMEQCIFR5lQuE/q3vGXmc aW6FzGtiOwKevPUp8vBY4tbGkH/gAiBotoOkdXYPa9jidoRiw12ZQY9eV5+HcFTF M+tJatTixgB3ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABivN1 3ugAAAQDAEgwRgIhAKnMPtlxIcrw56wxNUEf7hDW6IfmX85XZJ1he5+wbDf0AiEA uo40e2fS4Q0BHcpMp2hsyq9l3odqv71Jv1SRDk0Um6EwDQYJKoZIhvcNAQELBQAD ggEBACH/dWBuaFotUHQA/mS0oX0XJNQ+E32oGCMeOawo1tLbASdx1IufFUKulG6x sPrvUEWwh+LenHDIrU18wGf4t8juzZ+knME13OcSIMpzkcJbAD/wSiSR6GXHrkva 5xCwrPh7pwe4uukfKjniUkTu5Tk1La92d2MHdnBbuNmoFauTdz4sR1uDx6HlMpRR dxPTnjgqifwTroP6+Nn4xU2eCt4Bv1+wkOL0MgVWL0yFxBkWNKGNxBFJXQS3Mtd0 qS4AaTheYbU+wWho6Ubdr8Mm5D1nv96ULlHa3uLhQCxkG3+Dv+NTyov3RslqPxkq xD/3Wc7pgU/kPNpthBpw6qMfx0E= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnW6Fp1Yg4Eq18w7pge3 YYXo0WHBO4a40GoxHaYVrewM9KzWm9vIzNWFg/gx90MP5dHaPKrAl0OIdUgQ+JSw rZuWxF+c4SZ8CjYclwsrYmPx+ZgT1kgnlz/FluKIiXIueJM5PCpcUGEfcoBZe+QV l2HwZbW+0VcLDXQjePpMrZsE5fIpJ8u6G1SIM7Kpdck5nlQXaZ8/C82QJG+W6lc0 cHDLQP08dn0JiG1S1tSYLDcE0lvto7HP1arSHwRFAlPoMYYoKoXm6BiB+slPlon1 4G5ORoBGatyebY/ZU4CDm7nqXAnWRFUd+JIbjVf00wsNkzX3th3G+t4GcK8r0UCV vwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17612623509262252460431533500606271217 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Australian Capital Territory' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Canberra' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Australian Taxation Office' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vatoapp-hdx.acc.ato.gov.au' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21013611926165622577267700689350867785412257618730456796604104185185418688644507050283355962892344200131319873535679442577536447205961558655144402759304331683374425740948735708274911446627249359745443715486988212416338488671635851277766189365267126278111763144991216906489356885510412991922807466604227225062059836727985102345706952454868749761127695710274544498617043878071047018888642063253012062093839374066932907120027928668713635247457798839089717478811265440209650364400490733760373502753637721849178332733563886259268516832518963471509456773352820751223526653220239600544391743087631470896055560506359641314751 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a58cfe32cceb0f2cd419c608b80024885dc3c5b7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4b5edf524e9bc04693c0f2fdd7959dddc75d7e49 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (88 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vatoapp-hdx.acc.ato.gov.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vatoapp-hdx1.acc.ato.gov.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vatoapp-hdx2.acc.ato.gov.au' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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