www2.fsco.gov.on.ca
- Financial Services Commission of Ontario -
Issued by Thawte SGC CA - G2
About this certificate
This digital certificate with serial number 09:fe:74:82:72:6b:ac:cb:2e:fe:26:21:d6:09:31:b6 was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Financial Services Commission of Ontario
Organization:
Financial Services Commission of Ontario
Organization unit: IT
Organization unit: IT
State / Province:
Ontario
Locality: Toronto
Country: CA
Locality: Toronto
Country: CA
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:fe:74:82:72:6b:ac:cb:2e:fe:26:21:d6:09:31:b6Serial Number (int): 13284258458718701699356464246937956790
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId:
AuthorityKeyId:
Fingerprint (sha1): dc:5a:e2:82:1f:6a:22:9d:00:2a:17:19:96:52:29:bf:f1:f3:65:93
Fingerprint (sha256): 06:1e:3e:82:82:5c:e0:ea:62:98:ca:02:7d:11:76:3a:e0:2a:4c:87:55:40:b1:7f:de:7c:7c:0f:67:c8:ae:ba
Issuing Certificate URL: http://svr-sgc-aia.thawte.com/ThawteSGCG2.cer
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-sgc-crl.thawte.com/ThawteSGCG2.crl
Check the revocation status for certificate www2.fsco.gov.on.ca
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www2.fsco.gov.on.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Extended Key Usages
Server Authentication
Client Authentication
Netscape Server-Gated Cryptography
Extensions
4 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name gov.on.ca
(limited to 100 certificates)
www.yoctpa.mcys.gov.on.ca
intra.aris.mto.gov.on.ca
*.uat.ase.gocloud.gov.on.ca
decisia.lexum.com
www.csrtcva.mcscs.jus.gov.on.ca
www.fsco.gov.on.ca
sip.stage.ees.gov.on.ca
intra.stage.grants.gov.on.ca
ws.dev.opc.rus.mto.gov.on.ca
*.dev.app.rlso.cloud.mto.gov.on.ca
stage.applications.lrc.gov.on.ca
www.tts.ssb.gov.on.ca
ws.api.stage.onsis.edu.gov.on.ca
intra.stage.peis.cyssc.gov.on.ca
intra.test.ehosso.sus.gov.on.ca
ws.build.sd.its.gov.on.ca
intra.ws2.dev.jip.jus.gov.on.ca
intra.avl.health.gov.on.ca
stage.apps.lrc.gov.on.ca
www.elto.gov.on.ca
slasto-tsapno.gov.on.ca
www.raqsb.mto.gov.on.ca
www.orgforms.gov.on.ca
load12.stage.onsis.edu.gov.on.ca
sdwis.moh.gov.on.ca
intra.stage.sus.gov.on.ca
intra.landmark.fin.gov.on.ca
www.yoctpa.children.gov.on.ca
www.pas.gov.on.ca
dev.sp.ltc.gov.on.ca
dev2.login.publicsecure.gov.on.ca
hcc3.hcc.moh.gov.on.ca
www.ohp.mcl.gov.on.ca
www2.fsco.gov.on.ca
www.osc.ca
www.edtpre.health.gov.on.ca
stage.oneksso.sus.gov.on.ca
intra.ws2.test.jip.jus.gov.on.ca
stage.energy.gov.on.ca
intra.sharepoint.ddsb.csc.gov.on.ca
load.dmrv.edcs.csc.gov.on.ca
www.ecis.edu.gov.on.ca
intra.load.stage.oid.cmod.csc.gov.on.ca
ws.dss.mto.gov.on.ca
ontario.ca
HSIMI.COM
stage.ws2.api.agrisuite.omafra.gov.on.ca
www.eydportal.edcs.csc.gov.on.ca
*.mscrm.sdc.gov.on.ca
ws.stage.esdi.mto.gov.on.ca
stage.secure.sp.ltc.gov.on.ca
stage.geohub.lio.gov.on.ca
www.nursingstrategy.health.gov.on.ca
www.osc.gov.on.ca
intra.ws.dev.gtw.apim.mto.gov.on.ca
dev.oms.mto.gov.on.ca
intra.dev.sp.sdc.gov.on.ca
www.eoss.tcu.gov.on.ca
oentrain.edu.gov.on.ca
stage.lrcsde.lrc.gov.on.ca
www.esubmit.health.gov.on.ca
intra.dev.boe.eois.labour.gov.on.ca
www.hoursofwork.labour.gov.on.ca
ws.stage.osapcontrib.iaccess.gov.on.ca
www.csrtcva.mcscs.jus.gov.on.ca
www.apps.lrc.gov.on.ca
ws.apiplatform.mto.gov.on.ca
stage.esclaim.labour.gov.on.ca
intra.myops.gov.on.ca
www.rlso-onlineservices.mto.gov.on.ca
vcse2.jvn.jus.gov.on.ca
www.quarts.mah.gov.on.ca
www.services1.gov.on.ca
RASToken1.gov.on.ca
oscom-tor-ef01.osc.gov.on.ca
www.edt.health.gov.on.ca
www.sts.gov.on.ca
cacgigdcdbdb204.service.cihs.gov.on.ca
vcse1.jvn.jus.gov.on.ca
ws.stage.daudms.css.gov.on.ca
www.premier.gov.on.ca
decisia.lexum.com
www.environet.lrc.gov.on.ca
ws.stage.appco.services.ltc.gov.on.ca
Ws.intra.stage.ims.fin.gov.on.ca
www.samo.css.gov.on.ca
intra.dev03.hyp.ifis.gov.on.ca
intra.stage.conversion.otc.onttax.fin.gov.on.ca
www.firstwatch.gov.on.ca
intra.stage.ltch.training.health.gov.on.ca
hawkular-metrics.pc.prd.ros.gocloud.gov.on.ca
intra.test.chatbot.css.gov.on.ca
stage.cpin.children.gov.on.ca
eforms1.osc.gov.on.ca
grafana-openshift-grafana.pc.prd.ros.gocloud.gov.on.ca
www2.fsco.gov.on.ca
sfis.edu.gov.on.ca
intra.load.opsdocs.gov.on.ca
www.ask.omafra.gov.on.ca
intra.dev.gisetl.lrc.gov.on.ca
intra.aris.mto.gov.on.ca
*.uat.ase.gocloud.gov.on.ca
decisia.lexum.com
www.csrtcva.mcscs.jus.gov.on.ca
www.fsco.gov.on.ca
sip.stage.ees.gov.on.ca
intra.stage.grants.gov.on.ca
ws.dev.opc.rus.mto.gov.on.ca
*.dev.app.rlso.cloud.mto.gov.on.ca
stage.applications.lrc.gov.on.ca
www.tts.ssb.gov.on.ca
ws.api.stage.onsis.edu.gov.on.ca
intra.stage.peis.cyssc.gov.on.ca
intra.test.ehosso.sus.gov.on.ca
ws.build.sd.its.gov.on.ca
intra.ws2.dev.jip.jus.gov.on.ca
intra.avl.health.gov.on.ca
stage.apps.lrc.gov.on.ca
www.elto.gov.on.ca
slasto-tsapno.gov.on.ca
www.raqsb.mto.gov.on.ca
www.orgforms.gov.on.ca
load12.stage.onsis.edu.gov.on.ca
sdwis.moh.gov.on.ca
intra.stage.sus.gov.on.ca
intra.landmark.fin.gov.on.ca
www.yoctpa.children.gov.on.ca
www.pas.gov.on.ca
dev.sp.ltc.gov.on.ca
dev2.login.publicsecure.gov.on.ca
hcc3.hcc.moh.gov.on.ca
www.ohp.mcl.gov.on.ca
www2.fsco.gov.on.ca
www.osc.ca
www.edtpre.health.gov.on.ca
stage.oneksso.sus.gov.on.ca
intra.ws2.test.jip.jus.gov.on.ca
stage.energy.gov.on.ca
intra.sharepoint.ddsb.csc.gov.on.ca
load.dmrv.edcs.csc.gov.on.ca
www.ecis.edu.gov.on.ca
intra.load.stage.oid.cmod.csc.gov.on.ca
ws.dss.mto.gov.on.ca
ontario.ca
HSIMI.COM
stage.ws2.api.agrisuite.omafra.gov.on.ca
www.eydportal.edcs.csc.gov.on.ca
*.mscrm.sdc.gov.on.ca
ws.stage.esdi.mto.gov.on.ca
stage.secure.sp.ltc.gov.on.ca
stage.geohub.lio.gov.on.ca
www.nursingstrategy.health.gov.on.ca
www.osc.gov.on.ca
intra.ws.dev.gtw.apim.mto.gov.on.ca
dev.oms.mto.gov.on.ca
intra.dev.sp.sdc.gov.on.ca
www.eoss.tcu.gov.on.ca
oentrain.edu.gov.on.ca
stage.lrcsde.lrc.gov.on.ca
www.esubmit.health.gov.on.ca
intra.dev.boe.eois.labour.gov.on.ca
www.hoursofwork.labour.gov.on.ca
ws.stage.osapcontrib.iaccess.gov.on.ca
www.csrtcva.mcscs.jus.gov.on.ca
www.apps.lrc.gov.on.ca
ws.apiplatform.mto.gov.on.ca
stage.esclaim.labour.gov.on.ca
intra.myops.gov.on.ca
www.rlso-onlineservices.mto.gov.on.ca
vcse2.jvn.jus.gov.on.ca
www.quarts.mah.gov.on.ca
www.services1.gov.on.ca
RASToken1.gov.on.ca
oscom-tor-ef01.osc.gov.on.ca
www.edt.health.gov.on.ca
www.sts.gov.on.ca
cacgigdcdbdb204.service.cihs.gov.on.ca
vcse1.jvn.jus.gov.on.ca
ws.stage.daudms.css.gov.on.ca
www.premier.gov.on.ca
decisia.lexum.com
www.environet.lrc.gov.on.ca
ws.stage.appco.services.ltc.gov.on.ca
Ws.intra.stage.ims.fin.gov.on.ca
www.samo.css.gov.on.ca
intra.dev03.hyp.ifis.gov.on.ca
intra.stage.conversion.otc.onttax.fin.gov.on.ca
www.firstwatch.gov.on.ca
intra.stage.ltch.training.health.gov.on.ca
hawkular-metrics.pc.prd.ros.gocloud.gov.on.ca
intra.test.chatbot.css.gov.on.ca
stage.cpin.children.gov.on.ca
eforms1.osc.gov.on.ca
grafana-openshift-grafana.pc.prd.ros.gocloud.gov.on.ca
www2.fsco.gov.on.ca
sfis.edu.gov.on.ca
intra.load.opsdocs.gov.on.ca
www.ask.omafra.gov.on.ca
intra.dev.gisetl.lrc.gov.on.ca
Certificate
The complete raw certificate details for www2.fsco.gov.on.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIERjCCAy6gAwIBAgIQCf50gnJrrMsu/iYh1gkxtjANBgkqhkiG9w0BAQUFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRswGQYDVQQDExJU aGF3dGUgU0dDIENBIC0gRzIwHhcNMTIwNjA2MDAwMDAwWhcNMTQwNjA2MjM1OTU5 WjCBjzELMAkGA1UEBhMCQ0ExEDAOBgNVBAgTB09udGFyaW8xEDAOBgNVBAcUB1Rv cm9udG8xMTAvBgNVBAoUKEZpbmFuY2lhbCBTZXJ2aWNlcyBDb21taXNzaW9uIG9m IE9udGFyaW8xCzAJBgNVBAsUAklUMRwwGgYDVQQDFBN3d3cyLmZzY28uZ292Lm9u LmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJ9KsZSWlm874NqG W/SmIozTRx62wl50w9bsZ4NOg44C/I7TFz21OJfCeuldLmrtP42g+myZErwghoNW /gWiJLaM1rb46OWIdE/pfGFp/vEtf+EVQeRVa+90o8RNS8+hVqtlNk/QmerpeDiY je/6BqRV4iLqYXFVP+vY1CbZcDV0hLIFLcW1iPZd+wrGPJC5SXa7oBOrusz/ejR8 BgRM1YFC6LNURceBRG/BissUCRnJRgH2sMvwQGJiI0nqAzzD6g9L/4vSt+gTUluQ KVs8MLu9ZOJdmfhCTy6yuqzonWynchoa7kh5RJC5FkCTY6hHnAFf6CQcQtPkx6vy YYwc5QIDAQABo4HqMIHnMAwGA1UdEwEB/wQCMAAwPgYDVR0fBDcwNTAzoDGgL4Yt aHR0cDovL3N2ci1zZ2MtY3JsLnRoYXd0ZS5jb20vVGhhd3RlU0dDRzIuY3JsMCgG A1UdJQQhMB8GCCsGAQUFBwMBBggrBgEFBQcDAgYJYIZIAYb4QgQBMG0GCCsGAQUF BwEBBGEwXzAiBggrBgEFBQcwAYYWaHR0cDovL29jc3AudGhhd3RlLmNvbTA5Bggr BgEFBQcwAoYtaHR0cDovL3N2ci1zZ2MtYWlhLnRoYXd0ZS5jb20vVGhhd3RlU0dD RzIuY2VyMA0GCSqGSIb3DQEBBQUAA4IBAQBy4xxkRlFrQ6ztPecyQugO53/vxjSH qalbYgrGyJwZFg9EU+eG2yKdHr3rZElCRpLDZE/nLppOSX49+Xw2ZrML39kq2KQA QjLju5nXMkicQk6Cf2Qot3E41QnYr0liKsv8WlLyafCFJjY9ZDfPDVZnCpmmVndL CXx8YOdQ1Ppv4jCN7+HI+CguSAyZAEGNfNvJ7LKqIy07uNS3N3O51ONFoYJgYWaT bNOR1T8WbH1kb2vv6rtrxz7WfFL/+PFTbGixgQskcQcqjecdlKBIb+I8b1XHXH0/ NVo0xqp3VGxZpBfd0FGn6XMePz6eVflTsp5m3HBQh0LpXx5Jh7GqGXep -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJ9KsZSWlm874NqGW/Sm IozTRx62wl50w9bsZ4NOg44C/I7TFz21OJfCeuldLmrtP42g+myZErwghoNW/gWi JLaM1rb46OWIdE/pfGFp/vEtf+EVQeRVa+90o8RNS8+hVqtlNk/QmerpeDiYje/6 BqRV4iLqYXFVP+vY1CbZcDV0hLIFLcW1iPZd+wrGPJC5SXa7oBOrusz/ejR8BgRM 1YFC6LNURceBRG/BissUCRnJRgH2sMvwQGJiI0nqAzzD6g9L/4vSt+gTUluQKVs8 MLu9ZOJdmfhCTy6yuqzonWynchoa7kh5RJC5FkCTY6hHnAFf6CQcQtPkx6vyYYwc 5QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13284258458718701699356464246937956790 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SGC CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-06-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-06-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Toronto' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Financial Services Commission of Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'www2.fsco.gov.on.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22801444594331166695784851252414357272181327849004608299101681900481312674254844567741189417777884071921667545199132908041070996058753350716124924068618966011473103681099953626274854252522849945388103422975893029513394258186286153666088967857952875173301177865136457512763186376245991318084752477331994434826984459542214290551217011005413670674412252636910949493891736370140982776288511090318368381793503341495322240305369362593759549206938933778154603395790779367528451759078456371042684239572012619512822588326483805780013022215162961570855154091482987405230682677197800860712459588904636104404197640649946744757477 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-sgc-crl.thawte.com/ThawteSGCG2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (33 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113730.4.1 (serverGatedCrypto) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (97 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-sgc-aia.thawte.com/ThawteSGCG2.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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