payment.sofort.klarna.com
- Klarna Bank AB -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 09:0f:43:7a:56:7a:a4:4c:d0:9b:5d:46:be:90:97:8f was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Klarna Bank AB
Company registration number:
5567370431
Organization: Klarna Bank AB
Organization: Klarna Bank AB
State / Province:
Stockholm
Locality: Stockholm
Country: SE
Locality: Stockholm
Country: SE
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:0f:43:7a:56:7a:a4:4c:d0:9b:5d:46:be:90:97:8fSerial Number (int): 12042305028985512352445923498751203215
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 52:7a:38:e0:da:f6:b5:04:48:bd:06:ce:29:39:1f:af:4d:ee:81:10
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 09:45:15:cf:7e:3f:7a:c0:20:fd:3d:c5:59:96:0b:5e:b4:6b:0f:d7
Fingerprint (sha256): 06:fa:36:53:58:b9:79:07:4b:9a:fa:fe:46:36:c0:61:65:57:b9:f9:98:c5:a8:0a:dc:2e:cd:38:9a:c1:f6:6b
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate payment.sofort.klarna.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for payment.sofort.klarna.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA512 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
payment.sofort.klarna.com
Other certificates including the domain name klarna.com
(limited to 100 certificates)
checkout.klarna.com
guidelines.klarna.com
online.playground.eu1.kred.klarna.net
adltrust.kinnser.com
*.production.us1.core-banking.klarna.net
adltrust.kinnser.com
twentythree4.map.fastly.net
www.klarna.com
brand.klarna.com
klarna-payments-oc.klarna.com
*.playground.ap1.meta.klarna.net
api.klarna.com
connected-card-transaction-listener-us.klarna.com
*.production.eu1.on-demand.klarna.net
*.nonprod.us1.klapp.klarna.net
*.production.c2c.klarna.net
adltrust.kinnser.com
vs-alldoors-frontend-env2.nonprod.eu1.vs-qa.klarna.net
integration-static-legal.production.us1.cdn.klarna.net
*.msat.production.klarna.com
shop.klarna.com
orders.playground.portal.klarna.com
*.production.us1.scheme.klarna.net
savings.klarna.com
skv-api.playground.klarna.com
adltrust.kinnser.com
seniorshopping.klarna.com
acmatic-dns-validation.sandbox.eu1.core-platform.klarna.net
checkout-eu.klarna.com
il-na.klarna.com
restapi.klarna.com
statuspage.io
statuspage.io
*.msat.production.klarna.com
statuspage.io
*.playground.eu1.pgw.klarna.net
*.playground.us1.custom-solutions.klarna.net
adltrust.kinnser.com
*.playground.eu1.file-transfer.klarna.net
cards-oc.klarna.com
api-oc.klarna.com
*.playground.eu1.kred.klarna.net
credit-eu.klarna.com
twentythree4.map.fastly.net
merchantdesignlab.klarna.com
adltrust.kinnser.com
klarna-payments-eu.klarna.com
download.virtual-shopping.klarna.com
csg.status.forcepoint.com
outages.discovery.wisc.edu
dc-api-eu.playground.klarna.com
outages.discovery.wisc.edu
outages.discovery.wisc.edu
csg.status.forcepoint.com
ablink.staging-e.klarna.com
partnerportal.klarna.com
signicat.klarna.com
login.klarna.com
download.virtual-shopping.klarna.com
login.playground.klarna.com
www.klarna.com
cards-eu.klarna.com
*.production.c2c.klarna.net
*.production.c2c.klarna.net
www.klarna.com
system.production.us1.direct-debit.klarna.net
eu.portal.klarna.com
cards-eu.klarna.com
www.klarna.com
cards.playground.klarna.com
*.production.ap1.cobrowse.klarna.net
*.playground.c2c.klarna.net
topup.klarna.com
cms.nonprod.us1.klarna-web.klarna.net
api.staging.us.portal.klarna.com
tripsfe.production.us1.trips-platform-fe.klarna.net
www.gsuite.klarna.com
*.production.eu1.pgw.klarna.net
payment.sofort.klarna.com
*.production.eu1.meta.klarna.net
go.klarna.com
api-na-2.playground.klarna.com
l.klarna.com
salesloft-us.klarna.com
adltrust.kinnser.com
app-api.playground.klarna.com
salesloft-us.klarna.com
credit-na.klarna.com
facetoface.playground.klarna.com
*.nonprod.us1.klapp.klarna.net
klarna.com
*.production.us1.js.klarna.net
*.production.ap1.cobrowse.klarna.net
api.ident.playground.klarna.com
articles.klarna.com
*.playground.eu1.buybutton.klarna.net
settlements.playground.portal.klarna.com
insights.klarna.com
hytalestatus.io
guidelines.klarna.com
online.playground.eu1.kred.klarna.net
adltrust.kinnser.com
*.production.us1.core-banking.klarna.net
adltrust.kinnser.com
twentythree4.map.fastly.net
www.klarna.com
brand.klarna.com
klarna-payments-oc.klarna.com
*.playground.ap1.meta.klarna.net
api.klarna.com
connected-card-transaction-listener-us.klarna.com
*.production.eu1.on-demand.klarna.net
*.nonprod.us1.klapp.klarna.net
*.production.c2c.klarna.net
adltrust.kinnser.com
vs-alldoors-frontend-env2.nonprod.eu1.vs-qa.klarna.net
integration-static-legal.production.us1.cdn.klarna.net
*.msat.production.klarna.com
shop.klarna.com
orders.playground.portal.klarna.com
*.production.us1.scheme.klarna.net
savings.klarna.com
skv-api.playground.klarna.com
adltrust.kinnser.com
seniorshopping.klarna.com
acmatic-dns-validation.sandbox.eu1.core-platform.klarna.net
checkout-eu.klarna.com
il-na.klarna.com
restapi.klarna.com
statuspage.io
statuspage.io
*.msat.production.klarna.com
statuspage.io
*.playground.eu1.pgw.klarna.net
*.playground.us1.custom-solutions.klarna.net
adltrust.kinnser.com
*.playground.eu1.file-transfer.klarna.net
cards-oc.klarna.com
api-oc.klarna.com
*.playground.eu1.kred.klarna.net
credit-eu.klarna.com
twentythree4.map.fastly.net
merchantdesignlab.klarna.com
adltrust.kinnser.com
klarna-payments-eu.klarna.com
download.virtual-shopping.klarna.com
csg.status.forcepoint.com
outages.discovery.wisc.edu
dc-api-eu.playground.klarna.com
outages.discovery.wisc.edu
outages.discovery.wisc.edu
csg.status.forcepoint.com
ablink.staging-e.klarna.com
partnerportal.klarna.com
signicat.klarna.com
login.klarna.com
download.virtual-shopping.klarna.com
login.playground.klarna.com
www.klarna.com
cards-eu.klarna.com
*.production.c2c.klarna.net
*.production.c2c.klarna.net
www.klarna.com
system.production.us1.direct-debit.klarna.net
eu.portal.klarna.com
cards-eu.klarna.com
www.klarna.com
cards.playground.klarna.com
*.production.ap1.cobrowse.klarna.net
*.playground.c2c.klarna.net
topup.klarna.com
cms.nonprod.us1.klarna-web.klarna.net
api.staging.us.portal.klarna.com
tripsfe.production.us1.trips-platform-fe.klarna.net
www.gsuite.klarna.com
*.production.eu1.pgw.klarna.net
payment.sofort.klarna.com
*.production.eu1.meta.klarna.net
go.klarna.com
api-na-2.playground.klarna.com
l.klarna.com
salesloft-us.klarna.com
adltrust.kinnser.com
app-api.playground.klarna.com
salesloft-us.klarna.com
credit-na.klarna.com
facetoface.playground.klarna.com
*.nonprod.us1.klapp.klarna.net
klarna.com
*.production.us1.js.klarna.net
*.production.ap1.cobrowse.klarna.net
api.ident.playground.klarna.com
articles.klarna.com
*.playground.eu1.buybutton.klarna.net
settlements.playground.portal.klarna.com
insights.klarna.com
hytalestatus.io
Certificate
The complete raw certificate details for payment.sofort.klarna.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGuzCCBaOgAwIBAgIQCQ9DelZ6pEzQm11GvpCXjzANBgkqhkiG9w0BAQ0FADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE4MTEzMDAwMDAwMFoXDTE5MTIwNTEy MDAwMFowgbsxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAlNFMRMwEQYDVQQFEwo1NTY3MzcwNDMxMQswCQYDVQQGEwJTRTES MBAGA1UECBMJU3RvY2tob2xtMRIwEAYDVQQHEwlTdG9ja2hvbG0xFzAVBgNVBAoT DktsYXJuYSBCYW5rIEFCMSIwIAYDVQQDExlwYXltZW50LnNvZm9ydC5rbGFybmEu Y29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Ws9kkLyDM9G8V7m ibrqe/I6iDZPzE6LNYEKuquFmgzdIOIMlrwYwHrh47qzaqXAk3fIHJB4/2KiqfPi zJIWnfzAlkelZDBiqPVvxSZ9SKUifZ9iyu3Ad5Pm2HKvZSkJP/wr3NY/5S3Z1WGl 3Asn4be/j1zseeOS7Z2gblpDhJsupARgvpteRl8XdqEhlQRtFnttQ8gl5+wh9XH3 /wCmBSem+08CsvN8T39QlroNu04ME1NEkY8hB6K/Nt/DO8CbV+wqx/c6AZbPBhZx JbkaqF6xC5EkLGQlM016wME+418GtAoOUPia9K9akLeySO6e0fus8Egc9QxngaqB 6MXjpQIDAQABo4IC/jCCAvowHwYDVR0jBBgwFoAUPdNQpdagre7zSmAKZdMh1Pj4 1g8wHQYDVR0OBBYEFFJ6OODa9rUESL0Gzik5H69N7oEQMCQGA1UdEQQdMBuCGXBh eW1lbnQuc29mb3J0LmtsYXJuYS5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjB1BgNVHR8EbjBsMDSgMqAwhi5odHRwOi8v Y3JsMy5kaWdpY2VydC5jb20vc2hhMi1ldi1zZXJ2ZXItZzIuY3JsMDSgMqAwhi5o dHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc2hhMi1ldi1zZXJ2ZXItZzIuY3JsMEsG A1UdIAREMEIwNwYJYIZIAYb9bAIBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3 LmRpZ2ljZXJ0LmNvbS9DUFMwBwYFZ4EMAQEwgYgGCCsGAQUFBwEBBHwwejAkBggr BgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMFIGCCsGAQUFBzAChkZo dHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRTSEEyRXh0ZW5kZWRW YWxpZGF0aW9uU2VydmVyQ0EuY3J0MAwGA1UdEwEB/wQCMAAwggEEBgorBgEEAdZ5 AgQCBIH1BIHyAPAAdgC72d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQlmQ2jh7RhQAA AWdj8tUbAAAEAwBHMEUCIQDRasCGffuzfcAKqJ899w3MrisSYEEGnZ3Em1KcMDl1 pQIgHyQNonaLUlwlNg54+BVn2jrXLKK8ZeKN2zUuUMHVScMAdgBWFAaaL9fC7NP1 4b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAWdj8tVjAAAEAwBHMEUCIEYl0ufv4uGa 58/UcmrwyPV9DwOc6JVShud4vZN3Ru8NAiEAs2EhNmINF06/owhTV6O4FoCa7nw0 1uRYD8hulcSTaWgwDQYJKoZIhvcNAQENBQADggEBAL1psBQ/5r2L+YOZbscEbeB9 bJf1HN/knmBWkcobQ5vU1s75Khpsh4Q0FUt4gJlk9vgs/08/Ce7tNqJt3QUPsAU1 6yrIRSn8RujufDE7BRj1hChiL4dtqq9IBZjZvF5QHq5+UWVFI6XO0f6jrvg0CsT0 fX8M5K+D0F6F5livvuzXKBSe7Ul0bb1cbHWZ3cvXSwur9xFqkh8AQhFGxO5jw3NW PALAF1KeJP3shcYuAevN0fIelnSyDL769hwHfYV+1++PbRD1WgO58ItfF1ZF5zjj Xz6l7h3sfM2H3u8oRZO9I2Byh/M2DOVTxUPYIXvl9yedk9EmM4cR0JbU40HYAWM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Ws9kkLyDM9G8V7mibrq e/I6iDZPzE6LNYEKuquFmgzdIOIMlrwYwHrh47qzaqXAk3fIHJB4/2KiqfPizJIW nfzAlkelZDBiqPVvxSZ9SKUifZ9iyu3Ad5Pm2HKvZSkJP/wr3NY/5S3Z1WGl3Asn 4be/j1zseeOS7Z2gblpDhJsupARgvpteRl8XdqEhlQRtFnttQ8gl5+wh9XH3/wCm BSem+08CsvN8T39QlroNu04ME1NEkY8hB6K/Nt/DO8CbV+wqx/c6AZbPBhZxJbka qF6xC5EkLGQlM016wME+418GtAoOUPia9K9akLeySO6e0fus8Egc9QxngaqB6MXj pQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12042305028985512352445923498751203215 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-05 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '5567370431' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Stockholm' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Stockholm' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Klarna Bank AB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'payment.sofort.klarna.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26941641225691474535428200513742467088071202139965942893684154632660582896324672382793039601405166693950528045210301391258844438567038085211458494062160668169520345866707909750349534038139534586212899104744676361380219877704807435552612981736642455906452106595517398502948296568185846391514083472016999461570743321679942975545536649234285057348149991876976099326918769645278134746490832525539087649823328105214526304742066008441141440418560777488578601530585976622412474531413932562542322121409726696644052944326933536409509393827005497935866520906180953496632376691496591032234764510088603608306335653954189720413093 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 527a38e0daf6b50448bd06ce29391faf4dee8110 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'payment.sofort.klarna.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016763f2d51b0000040300473045022100d16ac0867dfbb37dc00aa89f3df70dccae2b126041069d9dc49b529c303975a502201f240da2768b525c25360e78f81567da3ad72ca2bc65e28ddb352e50c1d549c30076005614069a2fd7c2ecd3f5e1bd44b23ec74676b9bc99115cc0ef949855d689d0dd0000016763f2d563000004030047304502204625d2e7efe2e19ae7cfd4726af0c8f57d0f039ce8955286e778bd937746ef0d022100b3612136620d174ebfa3085357a3b816809aee7c34d6e4580fc86e95c4936968 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00bd69b0143fe6bd8bf983996ec7046de07d6c97f51cdfe49e605691ca1b439bd4d6cef92a1a6c878434154b78809964f6f82cff4f3f09eeed36a26ddd050fb00535eb2ac84529fc46e8ee7c313b0518f58428622f876daaaf480598d9bc5e501eae7e51654523a5ced1fea3aef8340ac4f47d7f0ce4af83d05e85e658afbeecd728149eed49746dbd5c6c7599ddcbd74b0babf7116a921f00421146c4ee63c373563c02c017529e24fdec85c62e01ebcdd1f21e9674b20cbefaf61c077d857ed7ef8f6d10f55a03b9f08b5f175645e738e35f3ea5ee1dec7ccd87deef284593bd23607287f3360ce553c543d8217be5f7279d93d126338711d096d4e341d80163