mdmtunnelgatewayprod.lanxess.com
- LANXESS Deutschland GmbH -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number d3:3c:d8:2e:3e:71:08:4a:80:88:30:4e:5f:f6:8c:68 was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
LANXESS Deutschland GmbH
Organization:
LANXESS Deutschland GmbH
State / Province:
Nordrhein-Westfalen
Country: DE
Country: DE
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): d3:3c:d8:2e:3e:71:08:4a:80:88:30:4e:5f:f6:8c:68Serial Number (int): 280783029586423921637178698924415159400
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 7a:98:90:3a:28:3d:d2:de:04:24:98:91:52:5e:b4:89:9c:83:8a:c3
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): 6a:08:ad:eb:ee:13:35:64:0a:50:7e:06:b9:13:da:70:ba:c9:55:27
Fingerprint (sha256): 07:b5:19:cd:f9:8b:91:a5:3f:ae:8b:7e:25:ca:7e:d9:82:44:f9:f8:d4:d8:8b:df:85:78:e1:fb:f7:07:09:38
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate mdmtunnelgatewayprod.lanxess.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mdmtunnelgatewayprod.lanxess.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mdmtunnelgatewayprod.lanxess.com
www.mdmtunnelgatewayprod.lanxess.com
www.mdmtunnelgatewayprod.lanxess.com
Other certificates including the domain name lanxess.com
(limited to 100 certificates)
procurement.lanxess.com
lxcsg01.lanxess.com
digital.lanxess.com
webcam.lanxess.com
lxcsg03.lanxess.com
lanxess.com
dam-test.lanxess.com
flameretardants.lanxess.cn
mdmtunnelgatewayprod.lanxess.com
cnt.lanxess.com
new-mobility.lanxess.com
flameretardants.lanxess.cn
microbialcontrol.lanxess.com
flameretardants.lanxess.cn
techcenter.lanxess.com
myapps.lanxess.com
numb3rs.lanxess.com
procurement.lanxess.com
webmagazine.lanxess.com
ext.lanxess.com
lanxessone.lanxess.com
sgpa1a.gp.lanxess.com
prod-intra.lanxess.com
securexhub.lanxess.com
extapps-dev.lanxess.com
infobase.lanxess.com
k2019.lanxess.de
MyGateTo.lanxess.com
contactsearch.lanxess.com
crtool.lanxess.com
*.lanxess.com
new-mobility.lanxess.com
inpa1a.gp.lanxess.com
lxcsg01.lanxess.com
defw3x.gp.lanxess.com
us.lanxess.com
forwarderportal.lanxess.com
csg.lanxess.com
extapps.lanxess.com
securexhub.lanxess.com
cnt.lanxess.com
surveys.lanxess.com
flameretardants.lanxess.cn
crtool.lanxess.com
media.lanxess.com
tecci.lanxess.com
smtp11.lanxess.com
xticket-test.lanxess.com
xticket-dev.lanxess.com
cnt.lanxess.com
cnt.lanxess.com
lanxessone.lanxess.com
int-www.lanxess.com
karriereportal.lanxess.com
xticket-dev.lanxess.com
prod-www.lanxess.com
lxcsg01.lanxess.com
securehub.lanxess.com
capa1a.gp.lanxess.com
quality.lanxess.com
mdm.lanxess.com
mymail.lanxess.com
pa66-shortage.lanxess.com
techcenter.lanxess.com
procurement.lanxess.com
cnt.lanxess.com
xticket-test.lanxess.com
myapps.lanxess.com
ext.lanxess.com
excom.lanxess.com
*.lanxess.com
gitlab.lanxess.com
new-mobility.lanxess.com
mygateto.lanxess.com
digital.lanxess.com
ssl.lanxess.com
infobase.lanxess.com
cnt.lanxess.com
*.lanxess.com
surveys.lanxess.com
webcam.lanxess.com
flameretardants.lanxess.cn
forwarderportal.lanxess.com
coronavirus.lanxess.com
lxcsg01.lanxess.com
typo3.t3.lanxess.com
securexhub.lanxess.com
surveys.lanxess.com
ekc-integration.lanxess.com
lanxessone.lanxess.com
techcenter.lanxess.com
cnpa1a.gp.lanxess.com
digitalisierung.lanxess.de
qm-www.lanxess.com
karriereportal.lanxess.com
tecci.lanxess.com
digital.lanxess.com
us.lanxess.com
dexa03.lan.lanxess.com
inpa1a.gp.lanxess.com
lxcsg01.lanxess.com
digital.lanxess.com
webcam.lanxess.com
lxcsg03.lanxess.com
lanxess.com
dam-test.lanxess.com
flameretardants.lanxess.cn
mdmtunnelgatewayprod.lanxess.com
cnt.lanxess.com
new-mobility.lanxess.com
flameretardants.lanxess.cn
microbialcontrol.lanxess.com
flameretardants.lanxess.cn
techcenter.lanxess.com
myapps.lanxess.com
numb3rs.lanxess.com
procurement.lanxess.com
webmagazine.lanxess.com
ext.lanxess.com
lanxessone.lanxess.com
sgpa1a.gp.lanxess.com
prod-intra.lanxess.com
securexhub.lanxess.com
extapps-dev.lanxess.com
infobase.lanxess.com
k2019.lanxess.de
MyGateTo.lanxess.com
contactsearch.lanxess.com
crtool.lanxess.com
*.lanxess.com
new-mobility.lanxess.com
inpa1a.gp.lanxess.com
lxcsg01.lanxess.com
defw3x.gp.lanxess.com
us.lanxess.com
forwarderportal.lanxess.com
csg.lanxess.com
extapps.lanxess.com
securexhub.lanxess.com
cnt.lanxess.com
surveys.lanxess.com
flameretardants.lanxess.cn
crtool.lanxess.com
media.lanxess.com
tecci.lanxess.com
smtp11.lanxess.com
xticket-test.lanxess.com
xticket-dev.lanxess.com
cnt.lanxess.com
cnt.lanxess.com
lanxessone.lanxess.com
int-www.lanxess.com
karriereportal.lanxess.com
xticket-dev.lanxess.com
prod-www.lanxess.com
lxcsg01.lanxess.com
securehub.lanxess.com
capa1a.gp.lanxess.com
quality.lanxess.com
mdm.lanxess.com
mymail.lanxess.com
pa66-shortage.lanxess.com
techcenter.lanxess.com
procurement.lanxess.com
cnt.lanxess.com
xticket-test.lanxess.com
myapps.lanxess.com
ext.lanxess.com
excom.lanxess.com
*.lanxess.com
gitlab.lanxess.com
new-mobility.lanxess.com
mygateto.lanxess.com
digital.lanxess.com
ssl.lanxess.com
infobase.lanxess.com
cnt.lanxess.com
*.lanxess.com
surveys.lanxess.com
webcam.lanxess.com
flameretardants.lanxess.cn
forwarderportal.lanxess.com
coronavirus.lanxess.com
lxcsg01.lanxess.com
typo3.t3.lanxess.com
securexhub.lanxess.com
surveys.lanxess.com
ekc-integration.lanxess.com
lanxessone.lanxess.com
techcenter.lanxess.com
cnpa1a.gp.lanxess.com
digitalisierung.lanxess.de
qm-www.lanxess.com
karriereportal.lanxess.com
tecci.lanxess.com
digital.lanxess.com
us.lanxess.com
dexa03.lan.lanxess.com
inpa1a.gp.lanxess.com
Certificate
The complete raw certificate details for mdmtunnelgatewayprod.lanxess.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHJTCCBg2gAwIBAgIRANM82C4+cQhKgIgwTl/2jGgwDQYJKoZIhvcNAQELBQAw gZUxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE9MDsGA1UE AxM0U2VjdGlnbyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl cnZlciBDQTAeFw0yNDA2MTIwMDAwMDBaFw0yNTA3MDIyMzU5NTlaMHkxCzAJBgNV BAYTAkRFMRwwGgYDVQQIExNOb3JkcmhlaW4tV2VzdGZhbGVuMSEwHwYDVQQKExhM QU5YRVNTIERldXRzY2hsYW5kIEdtYkgxKTAnBgNVBAMTIG1kbXR1bm5lbGdhdGV3 YXlwcm9kLmxhbnhlc3MuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWA9arPenn43DsB7Ay12AaEiUJ4BiuR6rT2iX9v+P+oe35e/0nhe45GyyqCP 4xUDYtdD7Zmof2ubZJVWrl6ZODJnB4s6/NJKGZ7u/IJ0A+DOFxHvVpVR2iiTCLh1 +mKSjEpYrfKjqEAz/k+SIekP3fp9KMENQJXI23KmYOZO6Xm+1LSDA7txWrSs/AFI GCHB9qZfmpBXDfuCkzmviF93dVJ4eD3BGtw9WYkAIGqEjt/H4W0YLB3yQRSeEgwE UFZXUGHNOhGFfWSqckjqlB2Z/eAy5+ouSA5R0/u9A287HYJdYmAlwgl2F6Bo3s08 mssyfgTdoMhuC9M+csRc5fYJqQIDAQABo4IDiTCCA4UwHwYDVR0jBBgwFoAUF9nW JSdn+THCSUPZMDZEjGypT+swHQYDVR0OBBYEFHqYkDooPdLeBCSYkVJetImcg4rD MA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjBKBgNVHSAEQzBBMDUGDCsGAQQBsjEBAgEDBDAlMCMGCCsG AQUFBwIBFhdodHRwczovL3NlY3RpZ28uY29tL0NQUzAIBgZngQwBAgIwWgYDVR0f BFMwUTBPoE2gS4ZJaHR0cDovL2NybC5zZWN0aWdvLmNvbS9TZWN0aWdvUlNBT3Jn YW5pemF0aW9uVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNybDCBigYIKwYBBQUH AQEEfjB8MFUGCCsGAQUFBzAChklodHRwOi8vY3J0LnNlY3RpZ28uY29tL1NlY3Rp Z29SU0FPcmdhbml6YXRpb25WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3J0MCMG CCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTBRBgNVHREESjBIgiBt ZG10dW5uZWxnYXRld2F5cHJvZC5sYW54ZXNzLmNvbYIkd3d3Lm1kbXR1bm5lbGdh dGV3YXlwcm9kLmxhbnhlc3MuY29tMIIBfAYKKwYBBAHWeQIEAgSCAWwEggFoAWYA dgDd3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgosrLvIKgAAAZALay8YAAAEAwBH MEUCIQCHkw+2aJbT9G3On6cwwKlHuew4LbUbaRgxrXrGz8qHFgIgGyf0KrA84eV+ MfFT66m4aFkdzlD5l8QJ3TVWaBn9UsgAdgAN4fIwK9MNwUBiEgnqVS78R3R8sdfp MO8OQh60fk6qNAAAAZALay75AAAEAwBHMEUCIQCw/q8ZaS/LIe9n9PdDuX94Ctdb vifGp3fvwKHe8qiIHwIgVVrwAiiIOpjEmAYk5bCVxyXOgyTLceRcIDY9jR4A8NoA dAAS8U40vVNyTIQGGcOPP3oT+Oe1YoeInG0wBYTr5YYmOgAAAZALay73AAAEAwBF MEMCHwfKmLLApo5syNrSU7+xQ7N+wnxLmLQfumWf3LuOwaUCIDF3+IbPER2fbUZy peOqQTcStdIClBF81VTZ6YDo0q8DMA0GCSqGSIb3DQEBCwUAA4IBAQCF92J/0F3h M8RxOsQK2tcQd5H2ja1NiaksquHcMKvXfVp3jv9Pd4w8wbnV3uVi0ple0DSjvQT4 ZvmBH4k5KHg01xuECQ/8GT72klD5/BDSErgCqI/g1kNTS+Smtmego4Yhf7jK0cl1 rgHkvcZS+eMm8fAFT+i0HKyl0cGB5wfvbl6lRNayTXXa0ps7dhx+BHgG6YQUbe3K 8sRmynJrarNDjleatEKkeSBYnW0SXU/NfnwQQmxgRUGo0yXQG2uScu6XrRdRP5Zg C4vsIMOOBMuGEW1X929TIiitbjSQxTUe7IHimbyT6IKRC95u8GX4chl1cI80nmCv vXsFcgZKaUh4 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWA9arPenn43DsB7Ay12 AaEiUJ4BiuR6rT2iX9v+P+oe35e/0nhe45GyyqCP4xUDYtdD7Zmof2ubZJVWrl6Z ODJnB4s6/NJKGZ7u/IJ0A+DOFxHvVpVR2iiTCLh1+mKSjEpYrfKjqEAz/k+SIekP 3fp9KMENQJXI23KmYOZO6Xm+1LSDA7txWrSs/AFIGCHB9qZfmpBXDfuCkzmviF93 dVJ4eD3BGtw9WYkAIGqEjt/H4W0YLB3yQRSeEgwEUFZXUGHNOhGFfWSqckjqlB2Z /eAy5+ouSA5R0/u9A287HYJdYmAlwgl2F6Bo3s08mssyfgTdoMhuC9M+csRc5fYJ qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 280783029586423921637178698924415159400 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nordrhein-Westfalen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'LANXESS Deutschland GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mdmtunnelgatewayprod.lanxess.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20876777987497658904358626878114654336797528046783928333488483602397513656301385971063658853811333821031112532481077912333483937219340711150840313755301994102672933881630015649147303194013253352893207626452717649946456925061411888952026607586745888734924274654550850675174429991464373852386791997583672315167282199196482946667216264056146186482145469650481502306292535395205746530314071280783697880505679613781885536317007361680197723245406093143675247981498128396109443199810858447841630507769450207526975693445402064946112128565463349753849257749203152687013718513852126806289205735983932639060737655869013528807849 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7a98903a283dd2de04249891525eb4899c838ac3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mdmtunnelgatewayprod.lanxess.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mdmtunnelgatewayprod.lanxess.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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