citrix.ditsch.de
Issued by Thawte TLS RSA CA G1
About this certificate
This digital certificate with serial number 0d:8b:41:7c:b9:bd:72:d4:be:96:14:b3:79:a3:02:d8 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=citrix.ditsch.de
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:8b:41:7c:b9:bd:72:d4:be:96:14:b3:79:a3:02:d8Serial Number (int): 18003021446940392586548629213058106072
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 4d:bf:5e:3c:cf:d9:e5:cd:5f:06:2d:06:c0:1a:43:c4:60:e2:66:5b
AuthorityKeyId: a5:8c:fe:32:cc:eb:0f:2c:d4:19:c6:08:b8:00:24:88:5d:c3:c5:b7
Fingerprint (sha1): 3c:b2:0f:d2:cf:25:68:d2:6c:ef:3b:a7:57:a7:ea:a2:e1:de:4a:f3
Fingerprint (sha256): 09:2b:13:51:05:da:3e:18:81:db:a0:d3:94:8e:b3:0c:a8:63:5a:ba:e2:9d:9e:79:c1:ff:ce:b0:4e:90:c4:59
Issuing Certificate URL: http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteTLSRSACAG1.crl
Check the revocation status for certificate citrix.ditsch.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for citrix.ditsch.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
citrix.ditsch.de
Other certificates including the domain name ditsch.de
(limited to 100 certificates)
owa.ditsch.de
*.ditsch.de
mzvc02.corp.ditsch.de
filialemonitoring.intranet.ditsch.de
ditsch.de
ditsch.de
citrix.ditsch.de
filialemonitoring.intranet.ditsch.de
*.ditsch.de
ditsch.de
intranet.ditsch.de
monitoring.intranet.ditsch.de
ditsch.de
ticketsystem.intranet.ditsch.de
ditsch.de
ditsch.de
ditsch.de
ditsch.de
ditsch.de
ticketsystem.intranet.ditsch.de
owa.ditsch.de
ditsch.de
ctxlogon.corp.ditsch.de
ditsch.de
ditsch.de
owa.ditsch.de
citrix.ditsch.de
*.ditsch.de
ditsch.de
intranet.ditsch.de
intranet.ditsch.de
ditsch.de
ticketsystem.intranet.ditsch.de
monitoring.intranet.ditsch.de
citrix.ditsch.de
ctxlogon.corp.ditsch.de
ditsch.de
intranet.ditsch.de
ditsch.de
citrix.ditsch.de
mzctxnz01.corp.ditsch.de
ditsch.de
intranet.ditsch.de
ditsch.de
ditsch.de
ditsch.de
intranet.ditsch.de
ditsch.de
mzvc02.corp.ditsch.de
ditsch.de
adfs.ditsch.de
intranet.ditsch.de
ditsch.de
www.ditsch.de
www.ditsch.de
ditsch.de
monitoring.intranet.ditsch.de
ditsch.de
ditsch.de
ditsch.de
mzvc02.corp.ditsch.de
ditsch.de
filialemonitoring.intranet.ditsch.de
*.ditsch.de
ditsch.de
ditsch.de
ditsch.de
ditsch.de
*.ditsch.de
mzvc02.corp.ditsch.de
intranet.ditsch.de
intranet.ditsch.de
ditsch.de
intranet.ditsch.de
ditsch.de
mzvc02.corp.ditsch.de
filialemonitoring.intranet.ditsch.de
ditsch.de
ditsch.de
ditsch.de
*.ditsch.de
intranet.ditsch.de
ditsch.de
intranet.ditsch.de
ditsch.de
ctxlogon.corp.ditsch.de
citrix.ditsch.de
ditsch.de
intranet.ditsch.de
ditsch.de
ditsch.de
intranet.ditsch.de
www.ditsch.de
intranet.ditsch.de
owa.ditsch.de
intranet.ditsch.de
*.ditsch.de
intranet.ditsch.de
intranet.ditsch.de
intranet.ditsch.de
*.ditsch.de
mzvc02.corp.ditsch.de
filialemonitoring.intranet.ditsch.de
ditsch.de
ditsch.de
citrix.ditsch.de
filialemonitoring.intranet.ditsch.de
*.ditsch.de
ditsch.de
intranet.ditsch.de
monitoring.intranet.ditsch.de
ditsch.de
ticketsystem.intranet.ditsch.de
ditsch.de
ditsch.de
ditsch.de
ditsch.de
ditsch.de
ticketsystem.intranet.ditsch.de
owa.ditsch.de
ditsch.de
ctxlogon.corp.ditsch.de
ditsch.de
ditsch.de
owa.ditsch.de
citrix.ditsch.de
*.ditsch.de
ditsch.de
intranet.ditsch.de
intranet.ditsch.de
ditsch.de
ticketsystem.intranet.ditsch.de
monitoring.intranet.ditsch.de
citrix.ditsch.de
ctxlogon.corp.ditsch.de
ditsch.de
intranet.ditsch.de
ditsch.de
citrix.ditsch.de
mzctxnz01.corp.ditsch.de
ditsch.de
intranet.ditsch.de
ditsch.de
ditsch.de
ditsch.de
intranet.ditsch.de
ditsch.de
mzvc02.corp.ditsch.de
ditsch.de
adfs.ditsch.de
intranet.ditsch.de
ditsch.de
www.ditsch.de
www.ditsch.de
ditsch.de
monitoring.intranet.ditsch.de
ditsch.de
ditsch.de
ditsch.de
mzvc02.corp.ditsch.de
ditsch.de
filialemonitoring.intranet.ditsch.de
*.ditsch.de
ditsch.de
ditsch.de
ditsch.de
ditsch.de
*.ditsch.de
mzvc02.corp.ditsch.de
intranet.ditsch.de
intranet.ditsch.de
ditsch.de
intranet.ditsch.de
ditsch.de
mzvc02.corp.ditsch.de
filialemonitoring.intranet.ditsch.de
ditsch.de
ditsch.de
ditsch.de
*.ditsch.de
intranet.ditsch.de
ditsch.de
intranet.ditsch.de
ditsch.de
ctxlogon.corp.ditsch.de
citrix.ditsch.de
ditsch.de
intranet.ditsch.de
ditsch.de
ditsch.de
intranet.ditsch.de
www.ditsch.de
intranet.ditsch.de
owa.ditsch.de
intranet.ditsch.de
*.ditsch.de
intranet.ditsch.de
intranet.ditsch.de
intranet.ditsch.de
Certificate
The complete raw certificate details for citrix.ditsch.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgIQDYtBfLm9ctS+lhSzeaMC2DANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRUaGF3dGUgVExTIFJTQSBDQSBHMTAe Fw0xODA4MjIwMDAwMDBaFw0xOTEwMTAxMjAwMDBaMBsxGTAXBgNVBAMTEGNpdHJp eC5kaXRzY2guZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGDoqW +QT0eA1YZQ+F07yvEoStlu4MPW6ZnrWUF/q/KC0Oj749b1suUYZWi3C2c06OFswJ Tt0bTR38Vtp6sYc6/Zuur2iRZQt7UsdzYkG9qlSRlfLKKuh6DK9JTuBc4sUuYdge Q0OeQ8McoGD2mr0EXFMw3XhYCQIHlUIacPNDbcyTpmBMK51ySQRG4+B3zhSWX9cr XojSDerxRGJuEw9Zq3lcBqSNZ6NVu9xkuRJgIy4MUNpSbKAExrmcM7S5X89QTfyL kaFSbsh0mZvtH9I3LjK8z+mE4s4CNQzjXCZMU1CGkppsw8UZZsXsrH5j2kGt+2Cr MFHLQKWxMAE6Q9wFAgMBAAGjggKgMIICnDAfBgNVHSMEGDAWgBSljP4yzOsPLNQZ xgi4ACSIXcPFtzAdBgNVHQ4EFgQUTb9ePM/Z5c1fBi0GwBpDxGDiZlswGwYDVR0R BBQwEoIQY2l0cml4LmRpdHNjaC5kZTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9j ZHAudGhhd3RlLmNvbS9UaGF3dGVUTFNSU0FDQUcxLmNybDBMBgNVHSAERTBDMDcG CWCGSAGG/WwBAjAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5j b20vQ1BTMAgGBmeBDAECATBwBggrBgEFBQcBAQRkMGIwJAYIKwYBBQUHMAGGGGh0 dHA6Ly9zdGF0dXMudGhhd3RlLmNvbTA6BggrBgEFBQcwAoYuaHR0cDovL2NhY2Vy dHMudGhhd3RlLmNvbS9UaGF3dGVUTFNSU0FDQUcxLmNydDAJBgNVHRMEAjAAMIIB BAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUuga kJZkNo4e0YUAAAFlYJXQWQAABAMARzBFAiBg/uGTLCC0LBjFw6eoXswTEsYwRfEF mmoXQVTtegP/QgIhAIVVg5+9gnGM4Mciu3e9E7oNa2PR/T2JWX4g6SMiQMPVAHYA h3W/51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq/16ggw8AAAFlYJXQFgAABAMARzBF AiBaE+lTn8TmUb/Ii1HvsA0wUsEqGiiKX8Gbba2qQn9ajgIhAOlVTpPphUnc1UqM I5Ww8G2iPjHqi+fCPJZpyxFx+vSqMA0GCSqGSIb3DQEBCwUAA4IBAQAWxWnPjR4A oudTwi4wVp9KbQIcqV/E2VtavdCYXOLnNSPr1a3nP4nvOnZ9aa87MLPJNIkHb3iO dug97VGY/F96agsxgSDvZtjSrFCMFXvEXSJ1lnb0MVMlYXopyHHtkdeCPclJMFus 82pcjvoPrIYsaIjuHZ9EOMltRnDgGUkWKHRxK/ovxrmY9EUWEItUeLzX46JyLB5e i76aPWzynFkwlVBSuysFheG8st5EXz1dAI3rCdyU3YHWmCn2hU3nMWZtZoykFqH3 amzI7nOoe7TaDAeVmdh3yDBn+W2hChQiB/qguxrmaRQwvPd83BPqDu+q0vsQ/Rpv 0k741rWlcXpQ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxg6KlvkE9HgNWGUPhdO8 rxKErZbuDD1umZ61lBf6vygtDo++PW9bLlGGVotwtnNOjhbMCU7dG00d/FbaerGH Ov2brq9okWULe1LHc2JBvapUkZXyyiroegyvSU7gXOLFLmHYHkNDnkPDHKBg9pq9 BFxTMN14WAkCB5VCGnDzQ23Mk6ZgTCudckkERuPgd84Ull/XK16I0g3q8URibhMP Wat5XAakjWejVbvcZLkSYCMuDFDaUmygBMa5nDO0uV/PUE38i5GhUm7IdJmb7R/S Ny4yvM/phOLOAjUM41wmTFNQhpKabMPFGWbF7Kx+Y9pBrftgqzBRy0ClsTABOkPc BQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18003021446940392586548629213058106072 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-10 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'citrix.ditsch.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25002354998186108099810691337302803531761721470515362488149444317423366138800425663637320884872945541371712560467096457499280805248767671538358098807728332543738789122905582664375384175454552637994888310898943462035497148020336419551403518523845922483106762455399604460762805098894941096801945226482936150974794388049178924325912545846490417559849262916447897717143176066735200832819169660178892836540270421016189503961091353564584949005039219113937512841869255980173305667964854661604987197892324130859892675608654841884579211300508014732176578388351656117697730266782276888064646552682033275120717858174291650272261 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a58cfe32cceb0f2cd419c608b80024885dc3c5b7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4dbf5e3ccfd9e5cd5f062d06c01a43c460e2665b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'citrix.ditsch.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed185000001656095d0590000040300473045022060fee1932c20b42c18c5c3a7a85ecc1312c63045f1059a6a174154ed7a03ff420221008555839fbd82718ce0c722bb77bd13ba0d6b63d1fd3d89597e20e9232240c3d50076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f000001656095d016000004030047304502205a13e9539fc4e651bfc88b51efb00d3052c12a1a288a5fc19b6dadaa427f5a8e022100e9554e93e98549dcd54a8c2395b0f06da23e31ea8be7c23c9669cb1171faf4aa . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0016c569cf8d1e00a2e753c22e30569f4a6d021ca95fc4d95b5abdd0985ce2e73523ebd5ade73f89ef3a767d69af3b30b3c93489076f788e76e83ded5198fc5f7a6a0b318120ef66d8d2ac508c157bc45d22759676f4315325617a29c871ed91d7823dc949305bacf36a5c8efa0fac862c6888ee1d9f4438c96d4670e01949162874712bfa2fc6b998f44516108b5478bcd7e3a2722c1e5e8bbe9a3d6cf29c5930955052bb2b0585e1bcb2de445f3d5d008deb09dc94dd81d69829f6854de731666d668ca416a1f76a6cc8ee73a87bb4da0c079599d877c83067f96da10a142207faa0bb1ae6691430bcf77cdc13ea0eefaad2fb10fd1a6fd24ef8d6b5a5717a50