thm.coop.ch
- Coop Genossenschaft -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0d:71:af:6a:78:56:a2:7b:ff:7a:47:d3:e7:c1:f3:82 was issued on by DigiCert Inc.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Coop Genossenschaft
Organization:
Coop Genossenschaft
State / Province:
Basel-Stadt
Locality: Basel
Country: CH
Locality: Basel
Country: CH
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0d:71:af:6a:78:56:a2:7b:ff:7a:47:d3:e7:c1:f3:82Serial Number (int): 17870251347327143533894531260560307074
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: a7:dc:ce:a8:ba:44:11:1e:d3:74:1a:40:35:fa:5b:da:65:ec:09:32
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): d2:11:08:a3:4b:d9:07:5c:8a:1f:71:19:e8:aa:db:9d:b7:a3:c5:86
Fingerprint (sha256): 08:ee:ca:88:33:83:a8:d9:e0:96:69:2a:17:65:92:60:5c:f4:0d:62:06:21:da:b3:db:4c:48:8d:60:db:be:2e
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate thm.coop.ch
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for thm.coop.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
thm.coop.ch
www.thm.coop.ch
thm-test.coop.ch
www.thm-test.coop.ch
www.thm.coop.ch
thm-test.coop.ch
www.thm-test.coop.ch
Other certificates including the domain name coop.ch
(limited to 100 certificates)
www.bauundhobby.ch
contentimages-test.coop.ch
tracking.coop.ch
www.photo.coop.ch
coopcontent-test.coop.ch
www.marche-restaurants.ch
mymail.coop.ch
kampagnenarchiv.coop.ch
svrchr02.hs.coop.ch
photo.coop.ch
tracking.coop.ch
mdm-t.coop.ch
bpm.coop.ch
view.politik.coop.ch
webedi.coop.ch
werbemittel.coop.ch
click.news.coop.ch
collab01.coop.ch
callback.coop.ch
mtonline.coop.ch
collabcluster01.coop.ch
hz.coop.ch
labelscms.coop.ch
sfe.coop.ch
neu-test.coop.ch
www.bauundhobby.ch
author-coopilot.coop.ch
www.photo.coop.ch
portal-test.coop.ch
cemeasy.coop.ch
recruiting-test.coop.ch
pypi.hs.coop.ch
san-14-s50.tlsprovisioning.exacttarget.com
mdmdevice.coop.ch
neu.coop.ch
coopcontent.coop.ch
san-11-s50.tlsprovisioning.exacttarget.com
streaming.coop.ch
ziegenpatenschaft.ch
partnerweb.coop.ch
asa.coop.ch
fooby.ch
geschenkkarte.coop.ch
cmscontent.coop.ch
www.photo.coop.ch
san-11-s50.tlsprovisioning.exacttarget.com
mdm.coop.ch
san-11-s50.tlsprovisioning.exacttarget.com
www.coop.ch
thm.coop.ch
coopcontent-test.coop.ch
gefahrengutdb.coop.ch
svrcuc02.hs.coop.ch
pcs.coop.ch
contentimages.coop.ch
servicetrace.coop.ch
www.photo.coop.ch
pcs3.coop.ch
myiscan.coop.ch
fooby.ch
*.hz.coop.ch
mdmext-t.sz.coop.ch
san-11-s50.tlsprovisioning.exacttarget.com
san-11-s50.tlsprovisioning.exacttarget.com
ral.coop.ch
mymail.coop.ch
xmasapi.coop.ch
srm.coop.ch
multiterm.coop.ch
www.coop.ch
webadmin-prod.coop.ch
epaper-test.coop.ch
datascout.coop.ch
mlogfust.coop.ch
coopcontent.coop.ch
secureeastest.coop.ch
sachmittelshop.coop.ch
www.coopathome.ch
ccb.coop.ch
test-coopcontent.coop.ch
svrcxc02.hz.coop.ch
app.railcare.coop.ch
akamai-san166.exacttarget.com
gefahrengutdb.coop.ch
jobs.coop.ch
trophy.coop.ch
lumimart.ch
password.coop.ch
pages.nl.coop.ch
mymail.coop.ch
grill.coop.ch
adventskalender2016.cooparchive.cust.adfinis-sygroup.ch
mobile2003.coop.ch
gz.coop.ch
privacy.onetrust-test.coop.ch
pcs6.coop.ch
spielwaren.coop.ch
neu.coop.ch
www.halalgo.jp
sponsoring.coop.ch
contentimages-test.coop.ch
tracking.coop.ch
www.photo.coop.ch
coopcontent-test.coop.ch
www.marche-restaurants.ch
mymail.coop.ch
kampagnenarchiv.coop.ch
svrchr02.hs.coop.ch
photo.coop.ch
tracking.coop.ch
mdm-t.coop.ch
bpm.coop.ch
view.politik.coop.ch
webedi.coop.ch
werbemittel.coop.ch
click.news.coop.ch
collab01.coop.ch
callback.coop.ch
mtonline.coop.ch
collabcluster01.coop.ch
hz.coop.ch
labelscms.coop.ch
sfe.coop.ch
neu-test.coop.ch
www.bauundhobby.ch
author-coopilot.coop.ch
www.photo.coop.ch
portal-test.coop.ch
cemeasy.coop.ch
recruiting-test.coop.ch
pypi.hs.coop.ch
san-14-s50.tlsprovisioning.exacttarget.com
mdmdevice.coop.ch
neu.coop.ch
coopcontent.coop.ch
san-11-s50.tlsprovisioning.exacttarget.com
streaming.coop.ch
ziegenpatenschaft.ch
partnerweb.coop.ch
asa.coop.ch
fooby.ch
geschenkkarte.coop.ch
cmscontent.coop.ch
www.photo.coop.ch
san-11-s50.tlsprovisioning.exacttarget.com
mdm.coop.ch
san-11-s50.tlsprovisioning.exacttarget.com
www.coop.ch
thm.coop.ch
coopcontent-test.coop.ch
gefahrengutdb.coop.ch
svrcuc02.hs.coop.ch
pcs.coop.ch
contentimages.coop.ch
servicetrace.coop.ch
www.photo.coop.ch
pcs3.coop.ch
myiscan.coop.ch
fooby.ch
*.hz.coop.ch
mdmext-t.sz.coop.ch
san-11-s50.tlsprovisioning.exacttarget.com
san-11-s50.tlsprovisioning.exacttarget.com
ral.coop.ch
mymail.coop.ch
xmasapi.coop.ch
srm.coop.ch
multiterm.coop.ch
www.coop.ch
webadmin-prod.coop.ch
epaper-test.coop.ch
datascout.coop.ch
mlogfust.coop.ch
coopcontent.coop.ch
secureeastest.coop.ch
sachmittelshop.coop.ch
www.coopathome.ch
ccb.coop.ch
test-coopcontent.coop.ch
svrcxc02.hz.coop.ch
app.railcare.coop.ch
akamai-san166.exacttarget.com
gefahrengutdb.coop.ch
jobs.coop.ch
trophy.coop.ch
lumimart.ch
password.coop.ch
pages.nl.coop.ch
mymail.coop.ch
grill.coop.ch
adventskalender2016.cooparchive.cust.adfinis-sygroup.ch
mobile2003.coop.ch
gz.coop.ch
privacy.onetrust-test.coop.ch
pcs6.coop.ch
spielwaren.coop.ch
neu.coop.ch
www.halalgo.jp
sponsoring.coop.ch
Certificate
The complete raw certificate details for thm.coop.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIQDXGvanhWonv/ekfT58HzgjANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjMx MDIzMDAwMDAwWhcNMjQxMDIyMjM1OTU5WjBnMQswCQYDVQQGEwJDSDEUMBIGA1UE CBMLQmFzZWwtU3RhZHQxDjAMBgNVBAcTBUJhc2VsMRwwGgYDVQQKExNDb29wIEdl bm9zc2Vuc2NoYWZ0MRQwEgYDVQQDEwt0aG0uY29vcC5jaDCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAMYCJd4NtpZCfkYveVTbvWRrZVcgd/rjwoOV56vu cYk6cUA3j8Gk3vBbgs9j8jb/rHTPAorahymxyjm/QA23IBTeXoEJmO60XUILPhMU j17q5ulZ3eu57NBcSGyBE7HwfQ3AiiYNDH14ksV0qmtLeqqWYVrnGSVbNdCuMOen VpHfYUuxlwNa2TcHWDFZIscerEebylHg2iKId0Yxr0g6uAVAL37mMFdwLDHgOyHf mbd1BNGt6NsxAHxFKnDG8V15DNdMwdEQFaF34Soqnn9rm8jB78bTgtsDJrr/roG4 u2Lhms0WAytO/R8aaS2TdRlRXsN5TDPhXd58ykq9Mh4dtfcCAwEAAaOCAlMwggJP MB8GA1UdIwQYMBaAFHSFgMBmx9833s+9KTeqAx2+7c0XMB0GA1UdDgQWBBSn3M6o ukQRHtN0GkA1+lvaZewJMjBPBgNVHREESDBGggt0aG0uY29vcC5jaIIPd3d3LnRo bS5jb29wLmNoghB0aG0tdGVzdC5jb29wLmNoghR3d3cudGhtLXRlc3QuY29vcC5j aDA+BgNVHSAENzA1MDMGBmeBDAECAjApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3 LmRpZ2ljZXJ0LmNvbS9DUFMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjCBnwYDVR0fBIGXMIGUMEigRqBEhkJodHRwOi8vY3Js My5kaWdpY2VydC5jb20vRGlnaUNlcnRHbG9iYWxHMlRMU1JTQVNIQTI1NjIwMjBD QTEtMS5jcmwwSKBGoESGQmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdpQ2Vy dEdsb2JhbEcyVExTUlNBU0hBMjU2MjAyMENBMS0xLmNybDCBhwYIKwYBBQUHAQEE ezB5MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wUQYIKwYB BQUHMAKGRWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2Jh bEcyVExTUlNBU0hBMjU2MjAyMENBMS0xLmNydDAMBgNVHRMBAf8EAjAAMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCqYlrNRjDWkVK4eOD7 3OleYNHTlqaLy+PqpDMSfG96vhtuB5uwRI9J9OFkIDaShPuzRxRp4XxxLg5xcEoK Rk5ClUc+vQyIQXGs6OWFuXWPAjjBjqpPakfzm/qS7RFSCS+OWriXRCv+bztMF6X7 aRYIdWB3TY9GpUsEYWwOfvNEB5a/rvOejoPmTffKuFyjezNxjxbNpSWJLeqpgjfd 8EA8qKX23X7PNeONDFlBPiwZtIn9kz6jweFs+WpMmLaDf5eJ07aDbxR7kdsg3Sgf TggWl56Daf3u5oF24/ZRp+oAtr33yEDGMRTHscA0GGLmekiTKMsPMHRFzKnChokD CUGe -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgIl3g22lkJ+Ri95VNu9 ZGtlVyB3+uPCg5Xnq+5xiTpxQDePwaTe8FuCz2PyNv+sdM8CitqHKbHKOb9ADbcg FN5egQmY7rRdQgs+ExSPXurm6Vnd67ns0FxIbIETsfB9DcCKJg0MfXiSxXSqa0t6 qpZhWucZJVs10K4w56dWkd9hS7GXA1rZNwdYMVkixx6sR5vKUeDaIoh3RjGvSDq4 BUAvfuYwV3AsMeA7Id+Zt3UE0a3o2zEAfEUqcMbxXXkM10zB0RAVoXfhKiqef2ub yMHvxtOC2wMmuv+ugbi7YuGazRYDK079HxppLZN1GVFew3lMM+Fd3nzKSr0yHh21 9wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17870251347327143533894531260560307074 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Basel-Stadt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Basel' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Coop Genossenschaft' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thm.coop.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24996243561870327987389461080712157642594708901494958188500675667962783744748643292022615765135963132731240720696889092455806823019226629407130700073011111500943226405579389925071779329288627743770570389835994282762407989701655116667630294620993159358192657097033268381993642473809533021534303864955526734165231671560912354092939638716923961470103618167803683651843557331680758161178939039317463454321610599601569005742148739793283008381940309233153642024018509051908696866673022510632731516209020830930630085230570024075031077202072791122896872731487044411106980005389906893337713581722218886067368265179617193473527 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a7dccea8ba44111ed3741a4035fa5bda65ec0932 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thm.coop.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thm.coop.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thm-test.coop.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thm-test.coop.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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