*.cafeexpresso.rnp.br
- REDE NACIONAL DE ENSINO E PESQUISA - RNP -
Issued by ICPEdu
About this certificate
This digital certificate with serial number 44:8c:3c:a4:6e:8c:b0:3a:fb:fd:be:8e was issued on by Rede Nacional de Ensino e Pesquisa - RNP.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
REDE NACIONAL DE ENSINO E PESQUISA - RNP
Organization:
REDE NACIONAL DE ENSINO E PESQUISA - RNP
State / Province:
RJ
Locality: Rio de Janeiro
Country: BR
Locality: Rio de Janeiro
Country: BR
Rede Nacional de Ensino e Pesquisa - RNP
Organization:
Rede Nacional de Ensino e Pesquisa - RNP
Organization unit: Gerencia de Servicos (GSer)
Organization unit: Gerencia de Servicos (GSer)
State / Province:
Rio de Janeiro
Locality: Rio de Janeiro
Country: BR
Locality: Rio de Janeiro
Country: BR
This certificate has expire since
Certificate Details
Serial Number (hex): 44:8c:3c:a4:6e:8c:b0:3a:fb:fd:be:8eSerial Number (int): 21214516657818448633117130382
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: 6c:0e:de:de:60:c5:df:05:a9:b3:70:7e:de:d5:e6:68:4e:ec:7b:bd
AuthorityKeyId: 95:f0:a4:84:1a:a7:5c:20:36:a6:c5:08:d7:65:42:02:e5:77:68:e3
Fingerprint (sha1): 44:00:3d:92:c8:0f:f5:1c:4d:f2:c2:f4:95:fa:36:29:6d:bb:54:90
Fingerprint (sha256): 06:8b:49:59:22:f9:ed:97:eb:df:16:84:d1:05:da:24:0c:b8:05:e1:ac:ca:36:b1:13:b7:cc:84:8f:e9:2d:9c
Issuing Certificate URL: http://secure.globalsign.com/cacert/icpedusha2g2.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/icpedusha2g2CRL Distribution Point: http://crl.globalsign.com/gs/icpedusha2g2.crl
Check the revocation status for certificate *.cafeexpresso.rnp.br
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.cafeexpresso.rnp.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.cafeexpresso.rnp.br
cafeexpresso.rnp.br
cafeexpresso.rnp.br
Other certificates including the domain name rnp.br
(limited to 100 certificates)
cert00047-azurecdn.akamaized.net
lcp-drm.prd.app.rnp.br
cert00047-azurecdn.akamaized.net
viaipe.rnp.br
*.pop-mt.rnp.br
homolog.perfil.rnp.br
marker-eduroam.rnp.br
*.dev.mconf.rnp.br
cert00047-azurecdn.akamaized.net
hipchat-pratico.rnp.br
hmg.splunk.rnp.br
atendimento.rnp.br
www.pop-pi.rnp.br
filesender.rnp.br
va05-cps.rnp.br
*.ebc.rnp.br
splunk.rnp.br
nuvem.esr.rnp.br
mp.mconf.rnp.br
p1.icpedu.rnp.br
*.pop-ba.rnp.br
*.cafe.rnp.br
viaipecoletor-rn.rnp.br
*.pop-pr.rnp.br
*.repositorio.rnp.br
cert00047-azurecdn.akamaized.net
*.fies.hmg.apps.rnp.br
portal-fibre.cafeexpresso.rnp.br
git.pop-pi.rnp.br
dados.rnp.br
*.curadoria-homolog.rnp.br
centreon-cdc-pe.rnp.br
*.pop-pe.rnp.br
appstarter-exemplo.tst.apps.rnp.br
*.intbr.loadtest.apps.rnp.br
*.cafeexpresso.rnp.br
flow.hmg-nasnuvens.rnp.br
*.pop-al.rnp.br
cert00047-azurecdn.akamaized.net
*.pop-ce.rnp.br
*.pop-mg.rnp.br
mconf.rnp.br
*.cipo.rnp.br
cert00047-azurecdn.akamaized.net
centreon-ac.rnp.br
portal.iguassu.rnp.br
*.nasnuvens.gsc-tst.rnp.br
cert00047-azurecdn.akamaized.net
api.ciencianaescola.dev.apps.kloud.rnp.br
redecinema.rnp.br
*.ceo.rnp.br
hmg-git.rnp.br
*.h.mconf.rnp.br
*.impactaclima-hmg.rnp.br
monitoramento-hml.rnp.br
mail.pop-pi.rnp.br
edge-ac-01.eduplay.rnp.br
*.pop-ac.rnp.br
intbr.tst.apps.rnp.br
atestoweb-api.hmg.apps.kloud.rnp.br
gti-df-senhasegura-01.rnp.br
api.cep.tst.apps.kloud.rnp.br
*.intbr.tst.apps.rnp.br
hmg-idp-edu-v3.rnp.br
idp.rnp.br
centreon-mg.rnp.br
plag.prd.apps.rnp.br
diplomadigital.rnp.br
integra.rnp.br
cert00047-azurecdn.akamaized.net
plataformafor.tst.apps.rnp.br
encsirts.rnp.br
cloud.pop-pi.rnp.br
cert00047-azurecdn.akamaized.net
viaipecoletor-am.rnp.br
centreon-rr.rnp.br
listas.rnp.br
*.pop-mg.rnp.br
ustore1.rnp.br
mail.pop-pi.rnp.br
*.nasnuvens.gsc-hmg.rnp.br
evault02.rnp.br
cert00047-azurecdn.akamaized.net
rocketchat.rnp.br
vcenter-infras-locais.rnp.br
cert00047-azurecdn.akamaized.net
cadvisor.prometheus.pop-mg.rnp.br
cert00047-azurecdn.akamaized.net
graylog.pop-ma.rnp.br
cert00047-azurecdn.akamaized.net
intbr.prd.apps.rnp.br
homolog-icd.rnp.br
ustore1.rnp.br
*.filesender.rnp.br
www.pop-pi.rnp.br
vcenter-np.rnp.br
cafeexpresso.rnp.br
ldap.pop-rj.rnp.br
cert00047-azurecdn.akamaized.net
cert00047-azurecdn.akamaized.net
lcp-drm.prd.app.rnp.br
cert00047-azurecdn.akamaized.net
viaipe.rnp.br
*.pop-mt.rnp.br
homolog.perfil.rnp.br
marker-eduroam.rnp.br
*.dev.mconf.rnp.br
cert00047-azurecdn.akamaized.net
hipchat-pratico.rnp.br
hmg.splunk.rnp.br
atendimento.rnp.br
www.pop-pi.rnp.br
filesender.rnp.br
va05-cps.rnp.br
*.ebc.rnp.br
splunk.rnp.br
nuvem.esr.rnp.br
mp.mconf.rnp.br
p1.icpedu.rnp.br
*.pop-ba.rnp.br
*.cafe.rnp.br
viaipecoletor-rn.rnp.br
*.pop-pr.rnp.br
*.repositorio.rnp.br
cert00047-azurecdn.akamaized.net
*.fies.hmg.apps.rnp.br
portal-fibre.cafeexpresso.rnp.br
git.pop-pi.rnp.br
dados.rnp.br
*.curadoria-homolog.rnp.br
centreon-cdc-pe.rnp.br
*.pop-pe.rnp.br
appstarter-exemplo.tst.apps.rnp.br
*.intbr.loadtest.apps.rnp.br
*.cafeexpresso.rnp.br
flow.hmg-nasnuvens.rnp.br
*.pop-al.rnp.br
cert00047-azurecdn.akamaized.net
*.pop-ce.rnp.br
*.pop-mg.rnp.br
mconf.rnp.br
*.cipo.rnp.br
cert00047-azurecdn.akamaized.net
centreon-ac.rnp.br
portal.iguassu.rnp.br
*.nasnuvens.gsc-tst.rnp.br
cert00047-azurecdn.akamaized.net
api.ciencianaescola.dev.apps.kloud.rnp.br
redecinema.rnp.br
*.ceo.rnp.br
hmg-git.rnp.br
*.h.mconf.rnp.br
*.impactaclima-hmg.rnp.br
monitoramento-hml.rnp.br
mail.pop-pi.rnp.br
edge-ac-01.eduplay.rnp.br
*.pop-ac.rnp.br
intbr.tst.apps.rnp.br
atestoweb-api.hmg.apps.kloud.rnp.br
gti-df-senhasegura-01.rnp.br
api.cep.tst.apps.kloud.rnp.br
*.intbr.tst.apps.rnp.br
hmg-idp-edu-v3.rnp.br
idp.rnp.br
centreon-mg.rnp.br
plag.prd.apps.rnp.br
diplomadigital.rnp.br
integra.rnp.br
cert00047-azurecdn.akamaized.net
plataformafor.tst.apps.rnp.br
encsirts.rnp.br
cloud.pop-pi.rnp.br
cert00047-azurecdn.akamaized.net
viaipecoletor-am.rnp.br
centreon-rr.rnp.br
listas.rnp.br
*.pop-mg.rnp.br
ustore1.rnp.br
mail.pop-pi.rnp.br
*.nasnuvens.gsc-hmg.rnp.br
evault02.rnp.br
cert00047-azurecdn.akamaized.net
rocketchat.rnp.br
vcenter-infras-locais.rnp.br
cert00047-azurecdn.akamaized.net
cadvisor.prometheus.pop-mg.rnp.br
cert00047-azurecdn.akamaized.net
graylog.pop-ma.rnp.br
cert00047-azurecdn.akamaized.net
intbr.prd.apps.rnp.br
homolog-icd.rnp.br
ustore1.rnp.br
*.filesender.rnp.br
www.pop-pi.rnp.br
vcenter-np.rnp.br
cafeexpresso.rnp.br
ldap.pop-rj.rnp.br
cert00047-azurecdn.akamaized.net
cert00047-azurecdn.akamaized.net
Certificate
The complete raw certificate details for *.cafeexpresso.rnp.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHETCCBfmgAwIBAgIMRIw8pG6MsDr7/b6OMA0GCSqGSIb3DQEBCwUAMIGpMQsw CQYDVQQGEwJCUjEXMBUGA1UECBMOUmlvIGRlIEphbmVpcm8xFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMSQwIgYDVQQLExtHZXJlbmNpYSBkZSBTZXJ2aWNvcyAoR1Nl cikxMTAvBgNVBAoTKFJlZGUgTmFjaW9uYWwgZGUgRW5zaW5vIGUgUGVzcXVpc2Eg LSBSTlAxDzANBgNVBAMTBklDUEVkdTAeFw0xODA4MjAxOTE2MDRaFw0yMDA4MjAx OTE2MDRaMIGGMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMTEwLwYDVQQKEyhSRURFIE5BQ0lPTkFMIERFIEVOU0lOTyBF IFBFU1FVSVNBIC0gUk5QMR4wHAYDVQQDDBUqLmNhZmVleHByZXNzby5ybnAuYnIw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP3M3O2A33PDhq3BN7/AnV 2LVxCF69MbXkLhGpyjwvB+GtJ9LJdwH/FzYhn/92ZyMmpWSXYvQvbfW3ggY0I3UD LONjYODVX8Ojc1S+qi0ykf7MTs4PF5ruXeKXtvhUZVRNi36Do7FM0ZvuA52kQpNm 0kaFVDOdwqEK/GzdWfyXPRNM8BtruY1FWbrQ6lNwd5M+utC7O9aIGDQS57kiepcJ 8Gmfs3iZ7FycRWAVMFPXwZl6xy82Ur1o40h6Zmiov/qgN4/4WNJLXwGU17oJzEs1 vGPnc99MapIiUkitQrbqYTm2GAznZRY+6gRbzoi6Zwf0E4iIQIRz4KGENA/P5g6R AgMBAAGjggNYMIIDVDAOBgNVHQ8BAf8EBAMCBaAwgYYGCCsGAQUFBwEBBHoweDBA BggrBgEFBQcwAoY0aHR0cDovL3NlY3VyZS5nbG9iYWxzaWduLmNvbS9jYWNlcnQv aWNwZWR1c2hhMmcyLmNydDA0BggrBgEFBQcwAYYoaHR0cDovL29jc3AyLmdsb2Jh bHNpZ24uY29tL2ljcGVkdXNoYTJnMjBWBgNVHSAETzBNMEEGCSsGAQQBoDIBFDA0 MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9iYWxzaWduLmNvbS9yZXBvc2l0 b3J5LzAIBgZngQwBAgIwCQYDVR0TBAIwADA+BgNVHR8ENzA1MDOgMaAvhi1odHRw Oi8vY3JsLmdsb2JhbHNpZ24uY29tL2dzL2ljcGVkdXNoYTJnMi5jcmwwNQYDVR0R BC4wLIIVKi5jYWZlZXhwcmVzc28ucm5wLmJyghNjYWZlZXhwcmVzc28ucm5wLmJy MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQUbA7e3mDF 3wWps3B+3tXmaE7se70wHwYDVR0jBBgwFoAUlfCkhBqnXCA2psUI12VCAuV3aOMw ggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AFWB1MIWkDYBSuoLm1c8U/DA5Dh4 cCUIFy+jqh0HE9MMAAABZVjEBK0AAAQDAEcwRQIhANaZa8looOh0n9LXQYA/5DYA FNMrgqYR/+0I/KScU8OaAiAUZjv/xLR8E4WSyyAYouqz8pFw971VJ8AIXNG2b5U+ 8gB2AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABZVjEBe8AAAQD AEcwRQIgWJZ/mQknI0ycY6lXPRYeWxei88QyKjaeU+ZBjlfKKOACIQDffYY5/zEN CgpcyUv91Wkf5Eb91IDg9Ix75PIB6iAhpgB2AG9Tdqwx8DEZ2JkApFEV/3cVHBHZ AsEAKQaNsgiaN9kTAAABZVjEBOUAAAQDAEcwRQIgVaOGPG+EKwODvt5CFDJtMxul oLQr4gjPeQP5LUgJLL0CIQCm8hJVhQ1OrqlmG7IaupbL4zjZgHMGJ+4lOHngwxkY MzANBgkqhkiG9w0BAQsFAAOCAQEAFSHAxuTJqc3yTVM0Wh6G9D6wm3YQjQLgqztt ySD1W2Kr6Y01kkwc389mNzs3egdrtGzZf8vwp7RiunzvEa4AYHX2xM77tBRJ8r+S ayNsoYbL44cdQoE/pjw1xkEf/dHuxZ7FGCNhh6veP07tH4CLziYYB8XxxYo5OMis VdIoy+f0YMz1acv5DNmy+H1HUktb2vBKfZN21+uZNbB6Ks/hNceKnk9xkTwEQVDd ENTBS1ykUEu8o3BaOW+nEaTNNbQstruvjOY4u9GRVarfG92J7OCbpCpp6KSAo98b Wkk/vJPBXgNim2b+8YmDg+cviuVaTJe0KQQpYlNSlcbPApi5jg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz9zNztgN9zw4atwTe/wJ 1di1cQhevTG15C4Rqco8LwfhrSfSyXcB/xc2IZ//dmcjJqVkl2L0L231t4IGNCN1 AyzjY2Dg1V/Do3NUvqotMpH+zE7ODxea7l3il7b4VGVUTYt+g6OxTNGb7gOdpEKT ZtJGhVQzncKhCvxs3Vn8lz0TTPAba7mNRVm60OpTcHeTPrrQuzvWiBg0Eue5InqX CfBpn7N4mexcnEVgFTBT18GZescvNlK9aONIemZoqL/6oDeP+FjSS18BlNe6CcxL Nbxj53PfTGqSIlJIrUK26mE5thgM52UWPuoEW86IumcH9BOIiECEc+ChhDQPz+YO kQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 21214516657818448633117130382 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rio de Janeiro' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rio de Janeiro' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gerencia de Servicos (GSer)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rede Nacional de Ensino e Pesquisa - RNP' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ICPEdu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-20 19:16:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-20 19:16:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RJ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rio de Janeiro' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'REDE NACIONAL DE ENSINO E PESQUISA - RNP' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.cafeexpresso.rnp.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26240211607630601590028411757884135501726113607840408818867000554154039352998889794149206721832935491990275018770847480217121967288180561840497572733540064597615927503206899720332861042954869504211391566338521954543139210165029098957754240219386213673277502031296976996495539884903162418241817677830847783036667256968702864834577251822297116428495376456498249821352926064731010969934082863705568014929016095308403413787159716491904523390620130537904023366160214962441472357793497346786189637642823760521917850198060591377632616285046320198617232873784559779339083729549131200496372794251810997981968255929361329688209 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (122 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/icpedusha2g2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/icpedusha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gs/icpedusha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cafeexpresso.rnp.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cafeexpresso.rnp.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6c0edede60c5df05a9b3707eded5e6684eec7bbd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 95f0a4841aa75c2036a6c508d7654202e57768e3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 01680076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c0000016558c404ad0000040300473045022100d6996bc968a0e8749fd2d741803fe4360014d32b82a611ffed08fca49c53c39a022014663bffc4b47c138592cb2018a2eab3f29170f7bd5527c0085cd1b66f953ef2007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000016558c405ef0000040300473045022058967f990927234c9c63a9573d161e5b17a2f3c4322a369e53e6418e57ca28e0022100df7d8639ff310d0a0a5cc94bfdd5691fe446fdd480e0f48c7be4f201ea2021a60076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016558c404e50000040300473045022055a3863c6f842b0383bede4214326d331ba5a0b42be208cf7903f92d48092cbd022100a6f21255850d4eaea9661bb21aba96cbe338d980730627ee253879e0c3191833 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001521c0c6e4c9a9cdf24d53345a1e86f43eb09b76108d02e0ab3b6dc920f55b62abe98d35924c1cdfcf66373b377a076bb46cd97fcbf0a7b462ba7cef11ae006075f6c4cefbb41449f2bf926b236ca186cbe3871d42813fa63c35c6411ffdd1eec59ec518236187abde3f4eed1f808bce261807c5f1c58a3938c8ac55d228cbe7f460ccf569cbf90cd9b2f87d47524b5bdaf04a7d9376d7eb9935b07a2acfe135c78a9e4f71913c044150dd10d4c14b5ca4504bbca3705a396fa711a4cd35b42cb6bbaf8ce638bbd19155aadf1bdd89ece09ba42a69e8a480a3df1b5a493fbc93c15e03629b66fef1898383e72f8ae55a4c97b429042962535295c6cf0298b98e