cloud.hicloud.com

- Huawei Software Technologies CO.Ltd -

Issued by CFCA OV OCA

About this certificate

This digital certificate with serial number 20:15:01:47:67:2c:b5:5c:27:87:43:2b:29:27:b5:2a was issued on by China Financial Certification Authority.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)

Huawei Software Technologies CO.Ltd

Organization: Huawei Software Technologies CO.Ltd
Organization unit: Cloud Platform CNDR Dept
State / Province: JiangSu
Locality: nanjing
Country: CN

China Financial Certification Authority

Organization: China Financial Certification Authority
Country: CN

This certificate has expire since

Certificate Details

Serial Number (hex): 20:15:01:47:67:2c:b5:5c:27:87:43:2b:29:27:b5:2a
Serial Number (int): 42644360038686686673503118532146607402
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId: bd:fd:d1:05:2a:7a:bd:76:0e:ad:bb:7e:0f:5d:f9:35:d5:4f:fa:61
AuthorityKeyId: 66:b3:ef:fb:54:95:87:e9:ac:a5:96:56:ae:e6:7d:ed:3a:d0:43:d1

Fingerprint (sha1): ba:28:ea:cc:0d:f8:97:7c:36:ca:93:7b:4b:fb:84:86:b6:a1:c2:a5
Fingerprint (sha256): 06:de:c1:60:de:2c:a3:54:b8:c9:2e:22:1a:68:ab:3a:f8:b5:72:df:20:4e:bc:52:01:8e:70:91:fd:fc:11:08

Issuing Certificate URL: http://gtc.cfca.com.cn/ovoca/ovoca.cer

Revocation information

OCSP Server: http://ocsp.cfca.com.cn/ocsp
CRL Distribution Point: http://crl.cfca.com.cn/OVOCA/RSA/crl25.crl

Check the revocation status for certificate cloud.hicloud.com

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for cloud.hicloud.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Client Authentication
Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

cloud.hicloud.com
*.cloud.hicloud.com
*.cloud.dbankcloud.com

Other certificates including the domain name hicloud.com

(limited to 100 certificates)
update.hicloud.com
*.op.hicloud.com
cinemalive-tx.hicloud.com
*.hicloud.com
*.iap.hicloud.com
cinema-eu.hicloud.com
dnkeeper.hicloud.com
eumsgcn02.hicloud.com
*.hispace.hicloud.com
appdlssl.hicloud.com
www.cloud.dbankcloud.com
billsvc7.hicloud.com
europefoldercms.hicloud.com
nsp.hicloud.com
appdlssl.hicloud.com
upfile7.hicloud.com
ai-rcm-dre.dt.hicloud.com
upfile7.hicloud.com
e2u.hicloud.com
update.hicloud.com
iap.cloud.huawei.com
*.nsp.hicloud.com
appfile-drcn.op.hicloud.com
*.cloud.hicloud.com
wo2.hicloud.com
*.game.hicloud.com
nearby-drru.platform.dbankcloud.ru
appdlssl.hicloud.com
nfcws7.hicloud.com
update.hicloud.com
mosplay-drcn.himovie.hicloud.com
iap.hicloud.com
cloud.hicloud.com
cloud.hicloud.com
hisync-eu.hicloud.com
*.hicloud.com
homevision-drcn.things.hicloud.com
*.hispace.hicloud.com
static.hicloud.com
edugw-drcn.hispace.dbankcloud.cn
hisync7.hicloud.com
hivoicedevtrs-drcn.emui.hicloud.com
appdlssl.hicloud.com
hiai.op.hicloud.com
dcc7.hicloud.com
*.game.hicloud.com
jos.hicloud.com
grs.hicloud.com
hicloud.com
nsp1.hicloud.com
*.wallet.hicloud.com
iap.cloud.huawei.com
*.hispace.hicloud.com
update.hicloud.com
*.nsp1.hicloud.com
ocean-otc.hicloud.com
developer-dre.op.hicloud.com
appgallery.cloud.huawei.com
hitouch.hicloud.com
cloud.huawei.com
jos.hicloud.com
metrics1.data.hicloud.com
setting.hicloud.com
appstore.huawei.com
*.iap.hicloud.com
*.appfile7.hicloud.com
upfile7.hicloud.com
omp7.hicloud.com
smarthome-dra.things.hicloud.com
grs.hicloud.com
www.hicloud.com
*.cloud.hicloud.com
logbak.hicloud.com
grs.hicloud.com
e2u.hicloud.com
*.himovie.hicloud.com
*.push.hicloud.com
appdlssl.hicloud.com
pushtrs.push.hicloud.com
nfcws7.hicloud.com
api.push.hicloud.com
pushtrs.push.hicloud.com
appgallery.cloud.huawei.com
sp-drcn.wallet.hicloud.com
hivoice.hicloud.com
waps1.hispace.hicloud.com
dcc7.hicloud.com
*.wallet.hicloud.com
query.hicloud.com
coupon-drcn.iap.hicloud.com
appdlssl.hicloud.com
*.op.hicloud.com
wp-drru.iap.hicloud.com
hicall-drcn.emui.hicloud.com
appstore.huawei.com
appdlssl.hicloud.com
mosplay-dra.himovie.hicloud.com
appdlssl.hicloud.com
update-query-global.platform.dbankcloud.com
*.appfile7.hicloud.com

Certificate

The complete raw certificate details for cloud.hicloud.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgIQIBUBR2cstVwnh0MrKSe1KjANBgkqhkiG9w0BAQsFADBV
MQswCQYDVQQGEwJDTjEwMC4GA1UECgwnQ2hpbmEgRmluYW5jaWFsIENlcnRpZmlj
YXRpb24gQXV0aG9yaXR5MRQwEgYDVQQDDAtDRkNBIE9WIE9DQTAeFw0xOTA5MjAw
MzM4MzVaFw0yMTA5MjAwMzM4MzVaMIGeMQswCQYDVQQGEwJDTjEQMA4GA1UECAwH
SmlhbmdTdTEQMA4GA1UEBwwHbmFuamluZzEsMCoGA1UECgwjSHVhd2VpIFNvZnR3
YXJlIFRlY2hub2xvZ2llcyBDTy5MdGQxITAfBgNVBAsMGENsb3VkIFBsYXRmb3Jt
IENORFIgRGVwdDEaMBgGA1UEAwwRY2xvdWQuaGljbG91ZC5jb20wggEiMA0GCSqG
SIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Mcj79au5zMeNA8JwhR8Z/R071XJZntEP
zGABz7GxazpS4/f9+TDg6hddqirnd9yUvuWKWuU2IJNDeoP0t0+aRaxOeGJq7ON3
Y/NxA8bEVLF1PZu8QjeUWkiM+aOS4pzgrbh15IRGkh/Q67HQ4jrNMrZM/N/sR5rw
iNwu8iUThRUBC9rBH7KyWXNRmyZlxEEFlW56ucXILJPhOENvBPxOTsn15axGjNFa
fncjBkfQ8oAUZi7ybmXoMVGuYSgunQrvyAd3buJb+aHKkUzoCLOnWpE/NHkPcWfW
700rJpg7E0HlA9pa8ssHs8cXEWeswQpvhzWw5hbEKxx2E+vf9uBLAgMBAAGjggHO
MIIByjAJBgNVHRMEAjAAMGwGCCsGAQUFBwEBBGAwXjAoBggrBgEFBQcwAYYcaHR0
cDovL29jc3AuY2ZjYS5jb20uY24vb2NzcDAyBggrBgEFBQcwAoYmaHR0cDovL2d0
Yy5jZmNhLmNvbS5jbi9vdm9jYS9vdm9jYS5jZXIwSQYDVR0RBEIwQIIRY2xvdWQu
aGljbG91ZC5jb22CEyouY2xvdWQuaGljbG91ZC5jb22CFiouY2xvdWQuZGJhbmtj
bG91ZC5jb20wCwYDVR0PBAQDAgWgMB0GA1UdDgQWBBS9/dEFKnq9dg6tu34PXfk1
1U/6YTAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwEwYKKwYBBAHWeQIE
AwEB/wQCBQAwHwYDVR0jBBgwFoAUZrPv+1SVh+mspZZWruZ97TrQQ9EwRgYDVR0g
BD8wPTA7BgZngQwBAgIwMTAvBggrBgEFBQcCARYjaHR0cDovL3d3dy5jZmNhLmNv
bS5jbi91cy91cy0xMi5odG0wOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5j
ZmNhLmNvbS5jbi9PVk9DQS9SU0EvY3JsMjUuY3JsMA0GCSqGSIb3DQEBCwUAA4IB
AQA4wknaTx8KZXt4srWw3HOaxauZR1uWlrRzTgNrjx9Ec2InQj0ZJVOEA8U+652i
ZZ4G3I84OlAm7T29+Ue1JNDZW+bx73VKBhGUNNd34YtN7TdOXDWr5ZnS6tkm3neZ
gARA4eiqUJTgejJGoDsPKtKE+5Vop/q+iGGQ/iRJtujYqcB2T+d1GlwiwOObccfB
H/+BqtRUj5Jf6YgiFEPwASpZhmmdq2Yk5pxVzhPzsFrpny0Iob1kXaHe1dNJBGbG
QZe7L35w6mCbs23fIYONUrnPlHKOVZw/SX85PFr9kxCK5Cev+yrfAkXsxvaAsu1y
73EdHpD927adSKChuGOm+v5Y
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjHI+/WruczHjQPCcIUf
Gf0dO9VyWZ7RD8xgAc+xsWs6UuP3/fkw4OoXXaoq53fclL7lilrlNiCTQ3qD9LdP
mkWsTnhiauzjd2PzcQPGxFSxdT2bvEI3lFpIjPmjkuKc4K24deSERpIf0Oux0OI6
zTK2TPzf7Eea8IjcLvIlE4UVAQvawR+ysllzUZsmZcRBBZVuernFyCyT4ThDbwT8
Tk7J9eWsRozRWn53IwZH0PKAFGYu8m5l6DFRrmEoLp0K78gHd27iW/mhypFM6Aiz
p1qRPzR5D3Fn1u9NKyaYOxNB5QPaWvLLB7PHFxFnrMEKb4c1sOYWxCscdhPr3/bg
SwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 42644360038686686673503118532146607402
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CN'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'China Financial Certification Authority'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'CFCA OV OCA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-20 03:38:35 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-20 03:38:35 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CN'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'JiangSu'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'nanjing'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Huawei Software Technologies CO.Ltd'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Cloud Platform CNDR Dept'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'cloud.hicloud.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22999921448958508384642864523013418289981683939249216115557626961275019627367796829922268608028880435232681508477268387876890671642125833097004139783294395125640972000646738259273373492182284476521459157928406035487538512605795174873795056771534195609263169861714342252050260829358643260082977200714527866678707591723627489778767262194288442750313169297974077199937636111846583885296782084948643410104679620077054772826817137205293244183258727113033991229960789839309757246991802923140396222501158797122652067452845336160293362533373674547222986882758835355667851738171068006420160338561672091986203528242181847834699
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.cfca.com.cn/ocsp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtc.cfca.com.cn/ovoca/ovoca.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cloud.hicloud.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cloud.hicloud.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cloud.dbankcloud.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							bdfdd1052a7abd760eadbb7e0f5df935d54ffa61
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 66b3effb549587e9aca59656aee67ded3ad043d1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (63 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.cfca.com.cn/us/us-12.htm'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.cfca.com.cn/OVOCA/RSA/crl25.crl'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0038c249da4f1f0a657b78b2b5b0dc739ac5ab99475b9696b4734e036b8f1f44736227423d1925538403c53eeb9da2659e06dc8f383a5026ed3dbdf947b524d0d95be6f1ef754a06119434d777e18b4ded374e5c35abe599d2ead926de7799800440e1e8aa5094e07a3246a03b0f2ad284fb9568a7fabe886190fe2449b6e8d8a9c0764fe7751a5c22c0e39b71c7c11fff81aad4548f925fe988221443f0012a5986699dab6624e69c55ce13f3b05ae99f2d08a1bd645da1ded5d3490466c64197bb2f7e70ea609bb36ddf21838d52b9cf94728e559c3f497f393c5afd93108ae427affb2adf0245ecc6f680b2ed72ef711d1e90fddbb69d48a0a1b863a6fafe58