*.nacc.nato.int
Issued by GlobalSign Domain Validation CA - SHA256 - G2
About this certificate
This digital certificate with serial number 59:5b:b2:33:60:3d:b3:ff:86:1c:d0:c8 was issued on by GlobalSign nv-sa.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.nacc.nato.int,OU=Domain Control Validated
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 59:5b:b2:33:60:3d:b3:ff:86:1c:d0:c8Serial Number (int): 27655019652637437838707445960
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: 75:36:8f:63:7d:f4:50:87:ea:86:f1:66:bd:d9:6c:48:ca:a9:34:d6
AuthorityKeyId: ea:4e:7c:d4:80:2d:e5:15:81:86:26:8c:82:6d:c0:98:a4:cf:97:0f
Fingerprint (sha1): 1e:31:a7:da:94:c0:5a:b1:13:26:9e:47:3c:70:b2:46:bc:2d:50:6b
Fingerprint (sha256): 06:de:c3:6e:80:24:87:ed:4e:7e:0c:c3:3b:46:ad:49:5e:b9:9b:b0:71:04:de:d1:5c:f3:8c:5b:f8:68:38:74
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsdomainvalsha2g2CRL Distribution Point: http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl
Check the revocation status for certificate *.nacc.nato.int
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.nacc.nato.int
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.nacc.nato.int
nacc.nato.int
nacc.nato.int
Other certificates including the domain name nato.int
(limited to 100 certificates)
shared.napma.nato.int
meet.nahema.nato.int
ims.nato.int
npc.ncia.nato.int
www.natoschool.nato.int
*.nc3a.nato.int
www.nato.int
extranet.napma.nato.int
extranet.napma.nato.int
ap.ndc.nato.int
ncia.nato.int
apx.ndc.nato.int
elearning.natoschool.nato.int
*.ncia.nato.int
mail.cmre.nato.int
ndcmail.ndc.nato.int
www.asc.nato.int
awds.ndc.nato.int
mdm.napma.nato.int
mail.hrf.tr.nato.int
verity.hq.nato.int
extranet.napma.nato.int
ism.hq.nato.int
captiveportal.nahema.nato.int
msiac.nato.int
guest.napma.nato.int
gss.ncia.nato.int
servicedesk.thwaites.co.uk
ssc.nato.int
ncio.nato.int
dnbl.ncia.nato.int
acquia-sites.com
coi.nato.int
*.nc3a.nato.int
cmre.nato.int
itsupport.valeosnackfoods.com
www.ncia.nato.int
iocore.ivv.ncia.nato.int
www.nspa.nato.int
dnbl.ncia.nato.int
shared.napma.nato.int
awacs.nato.int
*.nacc.nato.int
*.ims.nato.int
redirect.napma.nato.int
nexus.dev.nato.int
acquia-sites.com
iocore-cwix.ivv.ncia.nato.int
*.nciss.nato.int
*.reach.nato.int
acquia-sites.com
emm.hq.nato.int
lldb.jallc.nato.int
apx.ndc.nato.int
ndccds.ndc.nato.int
apy.ndc.nato.int
www.ssc.nato.int
guest.napma.nato.int
sts.reach.nato.int
meet.nahema.nato.int
NSOVPN.natoschool.nato.int
ndccds.ndc.nato.int
skypeaccess.shape.nato.int
labs.academy.ncia.nato.int
shared.napma.nato.int
dev.nato.int
www.ssc.nato.int
amdc2-iss.ncia.nato.int
mail.cmre.nato.int
e-isaf.act.nato.int
*.nshq.nato.int
mdm.napma.nato.int
servicedesk.usspeaking.com
webmail.pia.nato.int
acquia-sites.com
diana.nato.int
jftc.nato.int
ticketing.alphamead.com
selfservice.act.nato.int
verity.hq.nato.int
acquia-sites.com
gp.csp.nato.int
mobile.pan.nato.int
meet.nahema.nato.int
redirect.napma.nato.int
acquia-sites.com
napma.nato.int
msiac.nato.int
extranet.napma.nato.int
extranet.napma.nato.int
guest.napma.nato.int
webmail.cmre.nato.int
haivision.hq.nato.int
*.ndss.nato.int
ssc.nato.int
www.msiac.nato.int
ithelpdesk.dccoilireland.com
servicedesk.thwaites.co.uk
eportal.nspa.nato.int
www.nspa.nato.int
meet.nahema.nato.int
ims.nato.int
npc.ncia.nato.int
www.natoschool.nato.int
*.nc3a.nato.int
www.nato.int
extranet.napma.nato.int
extranet.napma.nato.int
ap.ndc.nato.int
ncia.nato.int
apx.ndc.nato.int
elearning.natoschool.nato.int
*.ncia.nato.int
mail.cmre.nato.int
ndcmail.ndc.nato.int
www.asc.nato.int
awds.ndc.nato.int
mdm.napma.nato.int
mail.hrf.tr.nato.int
verity.hq.nato.int
extranet.napma.nato.int
ism.hq.nato.int
captiveportal.nahema.nato.int
msiac.nato.int
guest.napma.nato.int
gss.ncia.nato.int
servicedesk.thwaites.co.uk
ssc.nato.int
ncio.nato.int
dnbl.ncia.nato.int
acquia-sites.com
coi.nato.int
*.nc3a.nato.int
cmre.nato.int
itsupport.valeosnackfoods.com
www.ncia.nato.int
iocore.ivv.ncia.nato.int
www.nspa.nato.int
dnbl.ncia.nato.int
shared.napma.nato.int
awacs.nato.int
*.nacc.nato.int
*.ims.nato.int
redirect.napma.nato.int
nexus.dev.nato.int
acquia-sites.com
iocore-cwix.ivv.ncia.nato.int
*.nciss.nato.int
*.reach.nato.int
acquia-sites.com
emm.hq.nato.int
lldb.jallc.nato.int
apx.ndc.nato.int
ndccds.ndc.nato.int
apy.ndc.nato.int
www.ssc.nato.int
guest.napma.nato.int
sts.reach.nato.int
meet.nahema.nato.int
NSOVPN.natoschool.nato.int
ndccds.ndc.nato.int
skypeaccess.shape.nato.int
labs.academy.ncia.nato.int
shared.napma.nato.int
dev.nato.int
www.ssc.nato.int
amdc2-iss.ncia.nato.int
mail.cmre.nato.int
e-isaf.act.nato.int
*.nshq.nato.int
mdm.napma.nato.int
servicedesk.usspeaking.com
webmail.pia.nato.int
acquia-sites.com
diana.nato.int
jftc.nato.int
ticketing.alphamead.com
selfservice.act.nato.int
verity.hq.nato.int
acquia-sites.com
gp.csp.nato.int
mobile.pan.nato.int
meet.nahema.nato.int
redirect.napma.nato.int
acquia-sites.com
napma.nato.int
msiac.nato.int
extranet.napma.nato.int
extranet.napma.nato.int
guest.napma.nato.int
webmail.cmre.nato.int
haivision.hq.nato.int
*.ndss.nato.int
ssc.nato.int
www.msiac.nato.int
ithelpdesk.dccoilireland.com
servicedesk.thwaites.co.uk
eportal.nspa.nato.int
www.nspa.nato.int
Certificate
The complete raw certificate details for *.nacc.nato.int in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHczCCBlugAwIBAgIMWVuyM2A9s/+GHNDIMA0GCSqGSIb3DQEBCwUAMGAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTYwNAYDVQQDEy1H bG9iYWxTaWduIERvbWFpbiBWYWxpZGF0aW9uIENBIC0gU0hBMjU2IC0gRzIwHhcN MTcwNDA2MDcwMTIzWhcNMTkwNTA5MjM1MTM3WjA9MSEwHwYDVQQLExhEb21haW4g Q29udHJvbCBWYWxpZGF0ZWQxGDAWBgNVBAMMDyoubmFjYy5uYXRvLmludDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKkZ3axJjESc8rdIEWWZizFFjz98 BgXPKQ3pDBDif380Kjw+kf2OSHluADOYLWwapQ1mqAci6015+SJuPp1EMsh1nbg5 DQBp8HLS/8pwq8z+WGgR6ZhYM5QWvDEn8h5cAmxrOU5ZAh0s3mt07AF6NxRkLiPj cpXOoLhmpFxjxWOyRxooN9rubUF/EKA5h8oZhtfG5ySdrLdNZwf5EjdhsvS1Coc/ CjA1/OUAcf3pAiGVsGjvNfnLMiL88W1BvyLkk0c4+3GEUZN70XcP54ZwvbNa73Kz U03yE+//0JIupmbletvb+jJ3bbWaWpnT3EXK7NHnX+fbjdWqpYj2/uz4gIcCAwEA AaOCBE4wggRKMA4GA1UdDwEB/wQEAwIFoDCBlAYIKwYBBQUHAQEEgYcwgYQwRwYI KwYBBQUHMAKGO2h0dHA6Ly9zZWN1cmUuZ2xvYmFsc2lnbi5jb20vY2FjZXJ0L2dz ZG9tYWludmFsc2hhMmcycjEuY3J0MDkGCCsGAQUFBzABhi1odHRwOi8vb2NzcDIu Z2xvYmFsc2lnbi5jb20vZ3Nkb21haW52YWxzaGEyZzIwVgYDVR0gBE8wTTBBBgkr BgEEAaAyAQowNDAyBggrBgEFBQcCARYmaHR0cHM6Ly93d3cuZ2xvYmFsc2lnbi5j b20vcmVwb3NpdG9yeS8wCAYGZ4EMAQIBMAkGA1UdEwQCMAAwQwYDVR0fBDwwOjA4 oDagNIYyaHR0cDovL2NybC5nbG9iYWxzaWduLmNvbS9ncy9nc2RvbWFpbnZhbHNo YTJnMi5jcmwwKQYDVR0RBCIwIIIPKi5uYWNjLm5hdG8uaW50gg1uYWNjLm5hdG8u aW50MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQUdTaP Y330UIfqhvFmvdlsSMqpNNYwHwYDVR0jBBgwFoAU6k581IAt5RWBhiaMgm3AmKTP lw8wggJtBgorBgEEAdZ5AgQCBIICXQSCAlkCVwB2AN3rHSt6DU+mIIuBrYFocH4u jp0B1VyIjT0RxM227L7MAAABW0IRVzUAAAQDAEcwRQIhALLJiwkbENpeWM/Xb19A h+8dRMwE65Afal0QGuCI/3YpAiAsahqUzW3sIEkBq+tD03K6ZCVm1ilL7H6q1TOD 8tX1HgB2AFYUBpov18Ls0/XhvUSyPsdGdrm8mRFcwO+UmFXWidDdAAABW0IRV50A AAQDAEcwRQIgPxke/qm7cphoVP9vSSLq2tHwLtNHcgIFlSz/dk5Aw80CIQCvS4RX HYtIhLFFMf4WgDvK6+60/HZWbxwa3ZVv/wbSbwB1AKS5CZC0GFgUh7sTosxncAo8 NZgE+RvfuON3zQ7IDdwQAAABW0IRWkYAAAQDAEYwRAIgNab3zBuVxmSs4UwpiLIr BZQCvUWnUrum5WJwGAdl0TUCIGXB/M3ULgvtOY2Kj1rhOw0EAtUN32m16eViz7hy 7S87AHcAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFbQhFbAwAA BAMASDBGAiEAsRpBm9kF60kg4rFP+9ltRGp/5XOzjUvOWTCZkwSkxioCIQD3TRWN M8oT3fxr7Qycyz9Go5NThmbPT1yAKp22YH8LQAB1AO5Lvbd1zmC64UJpH6vhnmaj D35fsHLYgwDEe4l6qP3LAAABW0IRXT4AAAQDAEYwRAIgMS12fRTI2IA62y874Qeg KHbodorN+9MkjSNV3Jkz1rcCIEHTu6Br60gV5WVUx8BRmjaWZjS05FEM494mAIGL v8E+MA0GCSqGSIb3DQEBCwUAA4IBAQBYwu+TGWiLDIl89tK/GS5hmQG0N4InJN/R ZfYw1TALhBSprxcPs+S1OsEdiMgJ/KI6R5obWycUmFGZDdirmxxvU21qcYdu9q2X dKJNkxjcHMIFbmnb14/kvv8QKzQGjkIZBmsuhWewSFHd68GjsKtt9zCpBytq+6aQ uDpdHLv1lhO4fKOITIenBq21X35cbl3UseYQFSWbKKGPSIf8O+YeKNdYR8oyQltd sZwK9Tsc4fsG/iK8QR+yzsId17E5S+HjBynW2C6f9p7TF5VWSZSfQlAq8wizl3vI +ye053kDEYmVXSrcMVBZxvjS6nh5PcwLlql5LIXTdh9nXK+iryi7 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqRndrEmMRJzyt0gRZZmL MUWPP3wGBc8pDekMEOJ/fzQqPD6R/Y5IeW4AM5gtbBqlDWaoByLrTXn5Im4+nUQy yHWduDkNAGnwctL/ynCrzP5YaBHpmFgzlBa8MSfyHlwCbGs5TlkCHSzea3TsAXo3 FGQuI+Nylc6guGakXGPFY7JHGig32u5tQX8QoDmHyhmG18bnJJ2st01nB/kSN2Gy 9LUKhz8KMDX85QBx/ekCIZWwaO81+csyIvzxbUG/IuSTRzj7cYRRk3vRdw/nhnC9 s1rvcrNTTfIT7//Qki6mZuV629v6MndttZpamdPcRcrs0edf59uN1aqliPb+7PiA hwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 27655019652637437838707445960 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Domain Validation CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-06 07:01:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-09 23:51:37 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.nacc.nato.int' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21347028494940369597702456685407028712765809502897368957668574406350175745091328004798981844782902192691409048731688966665076840283519708296081832993220252958079697384592227568255865246234083474816927271974347731746375906403994726460128778166107400718106868977269343962304103576217920769537481401023154870252962198188570068766138747284434791567087271182534351411334734529818457397370189085253192250951014796092188709086370541751741193466010657050942006375073967235502088885361524316082078609524893563483064141858204846685783401973859034128724979395213647068219204886761917688054916795537661912496112138521454935834759 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsdomainvalsha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10 (globalsignDVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.nacc.nato.int' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nacc.nato.int' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 75368f637df45087ea86f166bdd96c48caa934d6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ea4e7cd4802de5158186268c826dc098a4cf970f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (605 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (601 bytes) 0257007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015b421157350000040300473045022100b2c98b091b10da5e58cfd76f5f4087ef1d44cc04eb901f6a5d101ae088ff762902202c6a1a94cd6dec204901abeb43d372ba642566d6294bec7eaad53383f2d5f51e0076005614069a2fd7c2ecd3f5e1bd44b23ec74676b9bc99115cc0ef949855d689d0dd0000015b4211579d000004030047304502203f191efea9bb72986854ff6f4922eadad1f02ed347720205952cff764e40c3cd022100af4b84571d8b4884b14531fe16803bcaebeeb4fc76566f1c1add956fff06d26f007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015b42115a460000040300463044022035a6f7cc1b95c664ace14c2988b22b059402bd45a752bba6e56270180765d135022065c1fccdd42e0bed398d8a8f5ae13b0d0402d50ddf69b5e9e562cfb872ed2f3b007700bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000015b42115b030000040300483046022100b11a419bd905eb4920e2b14ffbd96d446a7fe573b38d4bce5930999304a4c62a022100f74d158d33ca13ddfc6bed0c9ccb3f46a393538666cf4f5c802a9db6607f0b40007500ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb0000015b42115d3e00000403004630440220312d767d14c8d8803adb2f3be107a02876e8768acdfbd3248d2355dc9933d6b7022041d3bba06beb4815e56554c7c0519a36966634b4e4510ce3de2600818bbfc13e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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