district.ode.state.or.us
- Oregon Department of Education -
Issued by thawte Extended Validation SHA256 SSL CA
About this certificate
This digital certificate with serial number 5d:03:92:85:64:34:1f:19:19:65:0d:34:ef:7a:de:ed was issued on by thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Oregon Department of Education
Company registration number:
Government Entity
Organization: Oregon Department of Education
Organization unit: IT
Organization: Oregon Department of Education
Organization unit: IT
State / Province:
Oregon
Locality: Salem
Country: US
Locality: Salem
Country: US
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 5d:03:92:85:64:34:1f:19:19:65:0d:34:ef:7a:de:edSerial Number (int): 123636752298732040185092366070999342829
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 3b:24:c8:31:a0:b7:5a:d0:6a:b8:d2:ca:07:74:cc:1e:24:d4:c4:dc
Fingerprint (sha1): 56:2c:9e:7a:59:ce:c0:74:e0:cb:5b:de:cb:dc:3d:1a:09:0c:1e:6f
Fingerprint (sha256): 06:3d:76:6a:27:3d:6e:3c:88:7b:45:d9:5c:64:bc:4e:39:46:02:46:10:be:51:d7:0c:e6:d2:72:67:b8:ac:83
Issuing Certificate URL: http://tf.symcb.com/tf.crt
Revocation information
OCSP Server: http://tf.symcd.comCRL Distribution Point: http://tf.symcb.com/tf.crl
Check the revocation status for certificate district.ode.state.or.us
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for district.ode.state.or.us
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
district.ode.state.or.us
Other certificates including the domain name state.or.us
(limited to 100 certificates)
asleds2kwebprod.hr.state.or.us
micore.prd.state.or.us
techmedweb.omb.state.or.us
*.leg.state.or.us
mds.hr.state.or.us
talkingbooks.osl.state.or.us
surveys.dhsoha.state.or.us
qa.portal.sos.state.or.us
inside.ode.state.or.us
empportal.emp.state.or.us
risktool.ocjc.state.or.us
lrn.hr.state.or.us
asm.secure.sos.state.or.us
*.deq.state.or.us
digital.osl.state.or.us
dfpatime.odf.state.or.us
ferns.odf.state.or.us
a-pebbtest.state.or.us
*.das.state.or.us
dojdev.canvasvps.com
intranet.ojd.state.or.us
dasapp.state.or.us
libcal.osl.state.or.us
*.osp.state.or.us
nrimp.dfw.state.or.us
appellate-efile.ojd.state.or.us
*.oregonlegislature.gov
*.odoe.state.or.us
ojdmail1.ojd.state.or.us
pmtinfo.das.state.or.us
sharedsystems-dev.dhsoha.state.or.us
inside.energy.state.or.us
apps.wrd.state.or.us
mallard.dfw.state.or.us
omsis.ode.state.or.us
insidetest.dhsoha.state.or.us
doc400web.state.or.us
mail.ost.state.or.us
libguides.osl.state.or.us
intranet.dhs.state.or.us
orcatrain.dhsoha.state.or.us
login.lottery.state.or.us
*.ode.state.or.us
hdchlp1.deq.state.or.us
bitlocker.ad.state.or.us
district.ode.state.or.us
www.ojd.state.or.us
apps.state.or.us
pmtinfo.das.state.or.us
ipam.state.or.us
mdm.cfb.state.or.us
or-vitalevents.hr.state.or.us
ACCESS-01.DHSOHA.STATE.OR.US
www.dhs.state.or.us
elite.hlo.state.or.us
lyncfe-test.ad.state.or.us
*.deq.state.or.us
dojdev.canvasvps.com
cbsweb2.cbs.state.or.us
intime.oya.state.or.us
cbsweb2.cbs.state.or.us
epiweb.oha.state.or.us
dojdev.canvasvps.com
phinms.hr.state.or.us
district.ode.state.or.us
asleds2kwebprod.hr.state.or.us
access-01.dhsoha.state.or.us
www.ojd.state.or.us
doc400web.state.or.us
intime.oya.state.or.us
outlook.odf.state.or.us
arcgis.wrd.state.or.us
my.oda.state.or.us
*.dasapp.state.or.us
navigator.state.or.us
webmail.osmb.state.or.us
catfish.dfw.state.or.us
mail.dhs.oregon.gov
*.emp.state.or.us
*.dhsoha.state.or.us
or-vitaleventstest.hr.state.or.us
egov.hcs.state.or.us
*.deq.state.or.us
*.dhsoha.state.or.us
webcon.ode.state.or.us
people.dash.das.state.or.us
visual-data.dhsoha.state.or.us
nwrnbs.state.or.us
mailsvr2.doj.state.or.us
www.deqtoo.org
bidev.dhsoha.state.or.us
bprod.prd.state.or.us
*.deq.state.or.us
files.mil.state.or.us
micore.prd.state.or.us
qa.secure.sos.state.or.us
*.deq.state.or.us
www.dhs.state.or.us
*.leg.state.or.us
apps.wrd.state.or.us
micore.prd.state.or.us
techmedweb.omb.state.or.us
*.leg.state.or.us
mds.hr.state.or.us
talkingbooks.osl.state.or.us
surveys.dhsoha.state.or.us
qa.portal.sos.state.or.us
inside.ode.state.or.us
empportal.emp.state.or.us
risktool.ocjc.state.or.us
lrn.hr.state.or.us
asm.secure.sos.state.or.us
*.deq.state.or.us
digital.osl.state.or.us
dfpatime.odf.state.or.us
ferns.odf.state.or.us
a-pebbtest.state.or.us
*.das.state.or.us
dojdev.canvasvps.com
intranet.ojd.state.or.us
dasapp.state.or.us
libcal.osl.state.or.us
*.osp.state.or.us
nrimp.dfw.state.or.us
appellate-efile.ojd.state.or.us
*.oregonlegislature.gov
*.odoe.state.or.us
ojdmail1.ojd.state.or.us
pmtinfo.das.state.or.us
sharedsystems-dev.dhsoha.state.or.us
inside.energy.state.or.us
apps.wrd.state.or.us
mallard.dfw.state.or.us
omsis.ode.state.or.us
insidetest.dhsoha.state.or.us
doc400web.state.or.us
mail.ost.state.or.us
libguides.osl.state.or.us
intranet.dhs.state.or.us
orcatrain.dhsoha.state.or.us
login.lottery.state.or.us
*.ode.state.or.us
hdchlp1.deq.state.or.us
bitlocker.ad.state.or.us
district.ode.state.or.us
www.ojd.state.or.us
apps.state.or.us
pmtinfo.das.state.or.us
ipam.state.or.us
mdm.cfb.state.or.us
or-vitalevents.hr.state.or.us
ACCESS-01.DHSOHA.STATE.OR.US
www.dhs.state.or.us
elite.hlo.state.or.us
lyncfe-test.ad.state.or.us
*.deq.state.or.us
dojdev.canvasvps.com
cbsweb2.cbs.state.or.us
intime.oya.state.or.us
cbsweb2.cbs.state.or.us
epiweb.oha.state.or.us
dojdev.canvasvps.com
phinms.hr.state.or.us
district.ode.state.or.us
asleds2kwebprod.hr.state.or.us
access-01.dhsoha.state.or.us
www.ojd.state.or.us
doc400web.state.or.us
intime.oya.state.or.us
outlook.odf.state.or.us
arcgis.wrd.state.or.us
my.oda.state.or.us
*.dasapp.state.or.us
navigator.state.or.us
webmail.osmb.state.or.us
catfish.dfw.state.or.us
mail.dhs.oregon.gov
*.emp.state.or.us
*.dhsoha.state.or.us
or-vitaleventstest.hr.state.or.us
egov.hcs.state.or.us
*.deq.state.or.us
*.dhsoha.state.or.us
webcon.ode.state.or.us
people.dash.das.state.or.us
visual-data.dhsoha.state.or.us
nwrnbs.state.or.us
mailsvr2.doj.state.or.us
www.deqtoo.org
bidev.dhsoha.state.or.us
bprod.prd.state.or.us
*.deq.state.or.us
files.mil.state.or.us
micore.prd.state.or.us
qa.secure.sos.state.or.us
*.deq.state.or.us
www.dhs.state.or.us
*.leg.state.or.us
apps.wrd.state.or.us
Certificate
The complete raw certificate details for district.ode.state.or.us in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgIQXQOShWQ0HxkZZQ0073re7TANBgkqhkiG9w0BAQsFADBX MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMTEwLwYDVQQDEyh0 aGF3dGUgRXh0ZW5kZWQgVmFsaWRhdGlvbiBTSEEyNTYgU1NMIENBMB4XDTE1MDcy MDAwMDAwMFoXDTE3MDgyMDIzNTk1OVowge0xEzARBgsrBgEEAYI3PAIBAxMCVVMx FzAVBgsrBgEEAYI3PAIBAhQGT3JlZ29uMRowGAYDVQQPExFHb3Zlcm5tZW50IEVu dGl0eTEnMCUGA1UECgweT3JlZ29uIERlcGFydG1lbnQgb2YgRWR1Y2F0aW9uMRow GAYDVQQFExFHb3Zlcm5tZW50IEVudGl0eTELMAkGA1UEBhMCVVMxDzANBgNVBAgM Bk9yZWdvbjEOMAwGA1UEBwwFU2FsZW0xCzAJBgNVBAsMAklUMSEwHwYDVQQDDBhk aXN0cmljdC5vZGUuc3RhdGUub3IudXMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDRYlVnEYBCLtKyB5idC08GecAQyw2OH443TMFpoXbtnfyl/jhCsyGZ ZZk0pPJoMlG+IV2szE1poskp9sO5O2J0H9EHcf1uyXlzRZRgC1v/Y/pRJ+sDfhI6 mE71RFeQmqFUu4JYJwp1EILaJxtmucGvbK9jmH2WBHuLg3EMvzgGs7X4eeBbMgIq 7Yb1zSB1VAjiBqlX6fZznlSea9aRlQg/4AHtm6mOQg0UyeS7/9uPfyLBTC91Aq8C Rl+ob7ilMrGOcqJmeZ8SgXawmyCTINdkcv4tPVJFqo5VPaMKlvoAmqvT+0S/KVk+ YJssZcqYMe1NNWwlYPBQNbcivgFwSUZLAgMBAAGjggGUMIIBkDAjBgNVHREEHDAa ghhkaXN0cmljdC5vZGUuc3RhdGUub3IudXMwCQYDVR0TBAIwADAOBgNVHQ8BAf8E BAMCBaAwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL3RmLnN5bWNiLmNvbS90Zi5j cmwwcwYDVR0gBGwwajBoBgtghkgBhvhFAQcwATBZMCYGCCsGAQUFBwIBFhpodHRw czovL3d3dy50aGF3dGUuY29tL2NwczAvBggrBgEFBQcCAjAjDCFodHRwczovL3d3 dy50aGF3dGUuY29tL3JlcG9zaXRvcnkwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMB8GA1UdIwQYMBaAFDskyDGgt1rQarjSygd0zB4k1MTcMFcGCCsGAQUF BwEBBEswSTAfBggrBgEFBQcwAYYTaHR0cDovL3RmLnN5bWNkLmNvbTAmBggrBgEF BQcwAoYaaHR0cDovL3RmLnN5bWNiLmNvbS90Zi5jcnQwEwYKKwYBBAHWeQIEAwEB /wQCBQAwDQYJKoZIhvcNAQELBQADggEBADGrYEBwwOGU+p63kzfP/mEq7w3dbnUv bPmR3x961qqaDaJWB7oulPzDjEMGgzOhQJr1eCziN9QiyH5X+Rhvz70dSXph0HQG cEwOxEkHYKduEiPqtOqu8TFBnTaRFiblBV+cSdvFYmdnj0tjmuIX8VUjxIL22cUO n8z7nM3ECfV25z4VIgvVivREX9CQV1LY4zs9GRo8AwpNyhqoHBGh0JW67gQl4q3S lmK9XE5jiXc7x19kCCatOmf7rjWJnfcLNWGVv+lX4qAzT+sbobMbAcutlJfozdqg iNOivcTw6Cq0gUmqMU0YvyNpeWxYcBkpYizFSfnf4F8t/7e2fCAum1Q= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0WJVZxGAQi7SsgeYnQtP BnnAEMsNjh+ON0zBaaF27Z38pf44QrMhmWWZNKTyaDJRviFdrMxNaaLJKfbDuTti dB/RB3H9bsl5c0WUYAtb/2P6USfrA34SOphO9URXkJqhVLuCWCcKdRCC2icbZrnB r2yvY5h9lgR7i4NxDL84BrO1+HngWzICKu2G9c0gdVQI4gapV+n2c55UnmvWkZUI P+AB7ZupjkINFMnku//bj38iwUwvdQKvAkZfqG+4pTKxjnKiZnmfEoF2sJsgkyDX ZHL+LT1SRaqOVT2jCpb6AJqr0/tEvylZPmCbLGXKmDHtTTVsJWDwUDW3Ir4BcElG SwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 123636752298732040185092366070999342829 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte Extended Validation SHA256 SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-07-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-20 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Oregon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Oregon Department of Education' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Oregon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Salem' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'district.ode.state.or.us' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26432295845264266226729735846194122412554566061298271829087649979792186470437635295352023287649159034959550843513769181302751566004930922533511514872005071342473477259401068257201170027396907602630814393534493216565945022614422013302778769977121755605915799396173999325770460481253165831348835198441281667519335171709468150849676382507900754929309500687710160576221086678658315847365669891833316589131055855491660730539131547545393437433398586851581767160538330358662708456895118539347233024720434072069610032558145492349336281920612303302368840909573715755849934146213569553655772605668377266486845985418747864237643 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'district.ode.state.or.us' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tf.symcb.com/tf.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.48.1 (Thawte EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3b24c831a0b75ad06ab8d2ca0774cc1e24d4c4dc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tf.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tf.symcb.com/tf.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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