cloud.hicloud.com
- Huawei Software Technologies CO.Ltd -
Issued by CFCA OV OCA
About this certificate
This digital certificate with serial number 20:15:01:47:67:2c:b5:5c:27:87:43:2b:29:27:b5:2a was issued on by China Financial Certification Authority.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Huawei Software Technologies CO.Ltd
Organization:
Huawei Software Technologies CO.Ltd
Organization unit: Cloud Platform CNDR Dept
Organization unit: Cloud Platform CNDR Dept
State / Province:
JiangSu
Locality: nanjing
Country: CN
Locality: nanjing
Country: CN
China Financial Certification Authority
Organization:
China Financial Certification Authority
Country:
CN
This certificate has expire since
Certificate Details
Serial Number (hex): 20:15:01:47:67:2c:b5:5c:27:87:43:2b:29:27:b5:2aSerial Number (int): 42644360038686686673503118532146607402
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: bd:fd:d1:05:2a:7a:bd:76:0e:ad:bb:7e:0f:5d:f9:35:d5:4f:fa:61
AuthorityKeyId: 66:b3:ef:fb:54:95:87:e9:ac:a5:96:56:ae:e6:7d:ed:3a:d0:43:d1
Fingerprint (sha1): ba:28:ea:cc:0d:f8:97:7c:36:ca:93:7b:4b:fb:84:86:b6:a1:c2:a5
Fingerprint (sha256): 06:de:c1:60:de:2c:a3:54:b8:c9:2e:22:1a:68:ab:3a:f8:b5:72:df:20:4e:bc:52:01:8e:70:91:fd:fc:11:08
Issuing Certificate URL: http://gtc.cfca.com.cn/ovoca/ovoca.cer
Revocation information
OCSP Server: http://ocsp.cfca.com.cn/ocspCRL Distribution Point: http://crl.cfca.com.cn/OVOCA/RSA/crl25.crl
Check the revocation status for certificate cloud.hicloud.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cloud.hicloud.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cloud.hicloud.com
*.cloud.hicloud.com
*.cloud.dbankcloud.com
*.cloud.hicloud.com
*.cloud.dbankcloud.com
Other certificates including the domain name hicloud.com
(limited to 100 certificates)
update.hicloud.com
*.op.hicloud.com
cinemalive-tx.hicloud.com
*.hicloud.com
*.iap.hicloud.com
cinema-eu.hicloud.com
dnkeeper.hicloud.com
eumsgcn02.hicloud.com
*.hispace.hicloud.com
appdlssl.hicloud.com
www.cloud.dbankcloud.com
billsvc7.hicloud.com
europefoldercms.hicloud.com
nsp.hicloud.com
appdlssl.hicloud.com
upfile7.hicloud.com
ai-rcm-dre.dt.hicloud.com
upfile7.hicloud.com
e2u.hicloud.com
update.hicloud.com
iap.cloud.huawei.com
*.nsp.hicloud.com
appfile-drcn.op.hicloud.com
*.cloud.hicloud.com
wo2.hicloud.com
*.game.hicloud.com
nearby-drru.platform.dbankcloud.ru
appdlssl.hicloud.com
nfcws7.hicloud.com
update.hicloud.com
mosplay-drcn.himovie.hicloud.com
iap.hicloud.com
cloud.hicloud.com
cloud.hicloud.com
hisync-eu.hicloud.com
*.hicloud.com
homevision-drcn.things.hicloud.com
*.hispace.hicloud.com
static.hicloud.com
edugw-drcn.hispace.dbankcloud.cn
hisync7.hicloud.com
hivoicedevtrs-drcn.emui.hicloud.com
appdlssl.hicloud.com
hiai.op.hicloud.com
dcc7.hicloud.com
*.game.hicloud.com
jos.hicloud.com
grs.hicloud.com
hicloud.com
nsp1.hicloud.com
*.wallet.hicloud.com
iap.cloud.huawei.com
*.hispace.hicloud.com
update.hicloud.com
*.nsp1.hicloud.com
ocean-otc.hicloud.com
developer-dre.op.hicloud.com
appgallery.cloud.huawei.com
hitouch.hicloud.com
cloud.huawei.com
jos.hicloud.com
metrics1.data.hicloud.com
setting.hicloud.com
appstore.huawei.com
*.iap.hicloud.com
*.appfile7.hicloud.com
upfile7.hicloud.com
omp7.hicloud.com
smarthome-dra.things.hicloud.com
grs.hicloud.com
www.hicloud.com
*.cloud.hicloud.com
logbak.hicloud.com
grs.hicloud.com
e2u.hicloud.com
*.himovie.hicloud.com
*.push.hicloud.com
appdlssl.hicloud.com
pushtrs.push.hicloud.com
nfcws7.hicloud.com
api.push.hicloud.com
pushtrs.push.hicloud.com
appgallery.cloud.huawei.com
sp-drcn.wallet.hicloud.com
hivoice.hicloud.com
waps1.hispace.hicloud.com
dcc7.hicloud.com
*.wallet.hicloud.com
query.hicloud.com
coupon-drcn.iap.hicloud.com
appdlssl.hicloud.com
*.op.hicloud.com
wp-drru.iap.hicloud.com
hicall-drcn.emui.hicloud.com
appstore.huawei.com
appdlssl.hicloud.com
mosplay-dra.himovie.hicloud.com
appdlssl.hicloud.com
update-query-global.platform.dbankcloud.com
*.appfile7.hicloud.com
*.op.hicloud.com
cinemalive-tx.hicloud.com
*.hicloud.com
*.iap.hicloud.com
cinema-eu.hicloud.com
dnkeeper.hicloud.com
eumsgcn02.hicloud.com
*.hispace.hicloud.com
appdlssl.hicloud.com
www.cloud.dbankcloud.com
billsvc7.hicloud.com
europefoldercms.hicloud.com
nsp.hicloud.com
appdlssl.hicloud.com
upfile7.hicloud.com
ai-rcm-dre.dt.hicloud.com
upfile7.hicloud.com
e2u.hicloud.com
update.hicloud.com
iap.cloud.huawei.com
*.nsp.hicloud.com
appfile-drcn.op.hicloud.com
*.cloud.hicloud.com
wo2.hicloud.com
*.game.hicloud.com
nearby-drru.platform.dbankcloud.ru
appdlssl.hicloud.com
nfcws7.hicloud.com
update.hicloud.com
mosplay-drcn.himovie.hicloud.com
iap.hicloud.com
cloud.hicloud.com
cloud.hicloud.com
hisync-eu.hicloud.com
*.hicloud.com
homevision-drcn.things.hicloud.com
*.hispace.hicloud.com
static.hicloud.com
edugw-drcn.hispace.dbankcloud.cn
hisync7.hicloud.com
hivoicedevtrs-drcn.emui.hicloud.com
appdlssl.hicloud.com
hiai.op.hicloud.com
dcc7.hicloud.com
*.game.hicloud.com
jos.hicloud.com
grs.hicloud.com
hicloud.com
nsp1.hicloud.com
*.wallet.hicloud.com
iap.cloud.huawei.com
*.hispace.hicloud.com
update.hicloud.com
*.nsp1.hicloud.com
ocean-otc.hicloud.com
developer-dre.op.hicloud.com
appgallery.cloud.huawei.com
hitouch.hicloud.com
cloud.huawei.com
jos.hicloud.com
metrics1.data.hicloud.com
setting.hicloud.com
appstore.huawei.com
*.iap.hicloud.com
*.appfile7.hicloud.com
upfile7.hicloud.com
omp7.hicloud.com
smarthome-dra.things.hicloud.com
grs.hicloud.com
www.hicloud.com
*.cloud.hicloud.com
logbak.hicloud.com
grs.hicloud.com
e2u.hicloud.com
*.himovie.hicloud.com
*.push.hicloud.com
appdlssl.hicloud.com
pushtrs.push.hicloud.com
nfcws7.hicloud.com
api.push.hicloud.com
pushtrs.push.hicloud.com
appgallery.cloud.huawei.com
sp-drcn.wallet.hicloud.com
hivoice.hicloud.com
waps1.hispace.hicloud.com
dcc7.hicloud.com
*.wallet.hicloud.com
query.hicloud.com
coupon-drcn.iap.hicloud.com
appdlssl.hicloud.com
*.op.hicloud.com
wp-drru.iap.hicloud.com
hicall-drcn.emui.hicloud.com
appstore.huawei.com
appdlssl.hicloud.com
mosplay-dra.himovie.hicloud.com
appdlssl.hicloud.com
update-query-global.platform.dbankcloud.com
*.appfile7.hicloud.com
Certificate
The complete raw certificate details for cloud.hicloud.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIQIBUBR2cstVwnh0MrKSe1KjANBgkqhkiG9w0BAQsFADBV MQswCQYDVQQGEwJDTjEwMC4GA1UECgwnQ2hpbmEgRmluYW5jaWFsIENlcnRpZmlj YXRpb24gQXV0aG9yaXR5MRQwEgYDVQQDDAtDRkNBIE9WIE9DQTAeFw0xOTA5MjAw MzM4MzVaFw0yMTA5MjAwMzM4MzVaMIGeMQswCQYDVQQGEwJDTjEQMA4GA1UECAwH SmlhbmdTdTEQMA4GA1UEBwwHbmFuamluZzEsMCoGA1UECgwjSHVhd2VpIFNvZnR3 YXJlIFRlY2hub2xvZ2llcyBDTy5MdGQxITAfBgNVBAsMGENsb3VkIFBsYXRmb3Jt IENORFIgRGVwdDEaMBgGA1UEAwwRY2xvdWQuaGljbG91ZC5jb20wggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Mcj79au5zMeNA8JwhR8Z/R071XJZntEP zGABz7GxazpS4/f9+TDg6hddqirnd9yUvuWKWuU2IJNDeoP0t0+aRaxOeGJq7ON3 Y/NxA8bEVLF1PZu8QjeUWkiM+aOS4pzgrbh15IRGkh/Q67HQ4jrNMrZM/N/sR5rw iNwu8iUThRUBC9rBH7KyWXNRmyZlxEEFlW56ucXILJPhOENvBPxOTsn15axGjNFa fncjBkfQ8oAUZi7ybmXoMVGuYSgunQrvyAd3buJb+aHKkUzoCLOnWpE/NHkPcWfW 700rJpg7E0HlA9pa8ssHs8cXEWeswQpvhzWw5hbEKxx2E+vf9uBLAgMBAAGjggHO MIIByjAJBgNVHRMEAjAAMGwGCCsGAQUFBwEBBGAwXjAoBggrBgEFBQcwAYYcaHR0 cDovL29jc3AuY2ZjYS5jb20uY24vb2NzcDAyBggrBgEFBQcwAoYmaHR0cDovL2d0 Yy5jZmNhLmNvbS5jbi9vdm9jYS9vdm9jYS5jZXIwSQYDVR0RBEIwQIIRY2xvdWQu aGljbG91ZC5jb22CEyouY2xvdWQuaGljbG91ZC5jb22CFiouY2xvdWQuZGJhbmtj bG91ZC5jb20wCwYDVR0PBAQDAgWgMB0GA1UdDgQWBBS9/dEFKnq9dg6tu34PXfk1 1U/6YTAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEwYKKwYBBAHWeQIE AwEB/wQCBQAwHwYDVR0jBBgwFoAUZrPv+1SVh+mspZZWruZ97TrQQ9EwRgYDVR0g BD8wPTA7BgZngQwBAgIwMTAvBggrBgEFBQcCARYjaHR0cDovL3d3dy5jZmNhLmNv bS5jbi91cy91cy0xMi5odG0wOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5j ZmNhLmNvbS5jbi9PVk9DQS9SU0EvY3JsMjUuY3JsMA0GCSqGSIb3DQEBCwUAA4IB AQA4wknaTx8KZXt4srWw3HOaxauZR1uWlrRzTgNrjx9Ec2InQj0ZJVOEA8U+652i ZZ4G3I84OlAm7T29+Ue1JNDZW+bx73VKBhGUNNd34YtN7TdOXDWr5ZnS6tkm3neZ gARA4eiqUJTgejJGoDsPKtKE+5Vop/q+iGGQ/iRJtujYqcB2T+d1GlwiwOObccfB H/+BqtRUj5Jf6YgiFEPwASpZhmmdq2Yk5pxVzhPzsFrpny0Iob1kXaHe1dNJBGbG QZe7L35w6mCbs23fIYONUrnPlHKOVZw/SX85PFr9kxCK5Cev+yrfAkXsxvaAsu1y 73EdHpD927adSKChuGOm+v5Y -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjHI+/WruczHjQPCcIUf Gf0dO9VyWZ7RD8xgAc+xsWs6UuP3/fkw4OoXXaoq53fclL7lilrlNiCTQ3qD9LdP mkWsTnhiauzjd2PzcQPGxFSxdT2bvEI3lFpIjPmjkuKc4K24deSERpIf0Oux0OI6 zTK2TPzf7Eea8IjcLvIlE4UVAQvawR+ysllzUZsmZcRBBZVuernFyCyT4ThDbwT8 Tk7J9eWsRozRWn53IwZH0PKAFGYu8m5l6DFRrmEoLp0K78gHd27iW/mhypFM6Aiz p1qRPzR5D3Fn1u9NKyaYOxNB5QPaWvLLB7PHFxFnrMEKb4c1sOYWxCscdhPr3/bg SwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 42644360038686686673503118532146607402 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'China Financial Certification Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'CFCA OV OCA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-20 03:38:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-20 03:38:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'JiangSu' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'nanjing' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Huawei Software Technologies CO.Ltd' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Cloud Platform CNDR Dept' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'cloud.hicloud.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22999921448958508384642864523013418289981683939249216115557626961275019627367796829922268608028880435232681508477268387876890671642125833097004139783294395125640972000646738259273373492182284476521459157928406035487538512605795174873795056771534195609263169861714342252050260829358643260082977200714527866678707591723627489778767262194288442750313169297974077199937636111846583885296782084948643410104679620077054772826817137205293244183258727113033991229960789839309757246991802923140396222501158797122652067452845336160293362533373674547222986882758835355667851738171068006420160338561672091986203528242181847834699 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.cfca.com.cn/ocsp' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtc.cfca.com.cn/ovoca/ovoca.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cloud.hicloud.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cloud.hicloud.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cloud.dbankcloud.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bdfdd1052a7abd760eadbb7e0f5df935d54ffa61 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 66b3effb549587e9aca59656aee67ded3ad043d1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (63 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.cfca.com.cn/us/us-12.htm' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.cfca.com.cn/OVOCA/RSA/crl25.crl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0038c249da4f1f0a657b78b2b5b0dc739ac5ab99475b9696b4734e036b8f1f44736227423d1925538403c53eeb9da2659e06dc8f383a5026ed3dbdf947b524d0d95be6f1ef754a06119434d777e18b4ded374e5c35abe599d2ead926de7799800440e1e8aa5094e07a3246a03b0f2ad284fb9568a7fabe886190fe2449b6e8d8a9c0764fe7751a5c22c0e39b71c7c11fff81aad4548f925fe988221443f0012a5986699dab6624e69c55ce13f3b05ae99f2d08a1bd645da1ded5d3490466c64197bb2f7e70ea609bb36ddf21838d52b9cf94728e559c3f497f393c5afd93108ae427affb2adf0245ecc6f680b2ed72ef711d1e90fddbb69d48a0a1b863a6fafe58