ras2.iata.org
- International Air Transport Association -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 0d:42:ad:0e:81:c7:5f:9b:65:e4:53:d5:70:5d:67:eb was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
International Air Transport Association
Organization:
International Air Transport Association
Organization unit: Network Services
Organization unit: Network Services
State / Province:
Quebec
Locality: Montreal
Country: CA
Locality: Montreal
Country: CA
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:42:ad:0e:81:c7:5f:9b:65:e4:53:d5:70:5d:67:ebSerial Number (int): 17626165544087505906376688306698938347
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 3f:53:35:b9:cf:ae:47:38:4d:d7:2a:07:d3:89:ca:e8:8c:74:67:59
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 06:79:80:80:07:78:19:d2:25:e4:a9:a6:65:7b:ba:00:b2:85:4d:c1
Fingerprint (sha256): 09:99:53:ed:71:01:00:60:c5:61:ae:42:e1:57:25:4a:96:9b:81:af:af:33:60:db:53:5a:36:73:86:d0:ab:bc
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate ras2.iata.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ras2.iata.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ras2.iata.org
Other certificates including the domain name iata.org
(limited to 100 certificates)
sni.cloudflaressl.com
guides.developer.iata.org
sni.cloudflaressl.com
merchantstatus.paysafecard.com
pass-test.iata.org
sni.cloudflaressl.com
sni.cloudflaressl.com
www.highq.com
sni.cloudflaressl.com
www.highq.com
*.developer.iata.org
iccsdevqa-int.iata.org
*.cargois.iata.org
dgautocheck.iata.org
5709436928655360-fe2.pantheonsite.io
sni.cloudflaressl.com
ezdiharstatus.mambu.com
standards.iata.org
bo.digitalcredentials.iata.org
sni26824.cloudflaressl.com
sni.cloudflaressl.com
*.cargois.iata.org
ezdiharstatus.mambu.com
merchantstatus.paysafecard.com
ras2.iata.org
sni.cloudflaressl.com
sni.cloudflaressl.com
iris.iata.org
ifg.iata.org
ttbs.iata.org
sfb-access-la.iata.org
nextt.iata.org
ras4.iata.org
merchantstatus.paysafecard.com
ras3.iata.org
theplanner.co.uk
5709436928655360-fe2.pantheonsite.io
airlines.iata.org
casslink-test.iata.org
5709436928655360-fe2.pantheonsite.io
www.highq.com
pubdownload.iata.org
sni.cloudflaressl.com
ras2.iata.org
www.planestories.iata.org
standards.iata.org
5709436928655360-fe2.pantheonsite.io
theplanner.co.uk
prod.2.slot.cdn.salesforce-communities.com
sni26824.cloudflaressl.com
ssl826589.cloudflaressl.com
www.highq.com
isftp.iata.org
casslink-imp-test.iata.org
sso.iata.org
iccspprod-api.iata.org
5709436928655360-fe2.pantheonsite.io
iata-pay.iata.org
dev-dgautocheck-admin.iata.org
backoffice.digitalcredentials.iata.org
irisqabiz.iata.org
www.highq.com
sni.cloudflaressl.com
sni.cloudflaressl.com
www.highq.com
o365.iata.org
sni.cloudflaressl.com
iccsqa-dsig.iata.org
merchantstatus.paysafecard.com
extranet.iata.org
sni.cloudflaressl.com
sfb-access-ny.iata.org
5709436928655360-fe2.pantheonsite.io
zrh-ss.iata.org
www.highq.com
marketis.iata.org
iccsqa-api.iata.org
devsso.iata.org
elearning.iata.org
webstarmobile.iata.org
www.highq.com
www.highq.com
qa-dgautocheck.iata.org
iccsqa-xenc.iata.org
merchantstatus.paysafecard.com
sni.cloudflaressl.com
t4.staging.timatic.iata.org
*.spapps.iata.org
sni.cloudflaressl.com
airlines.iata.org
easypay1-qa.iata.org
ssl919904.cloudflaressl.com
sni.cloudflaressl.com
sni26824.cloudflaressl.com
5709436928655360-fe2.pantheonsite.io
isweb.iata.org
sni.cloudflaressl.com
merchantstatus.paysafecard.com
demoacmg.iata.org
sni26824.cloudflaressl.com
guides.developer.iata.org
sni.cloudflaressl.com
merchantstatus.paysafecard.com
pass-test.iata.org
sni.cloudflaressl.com
sni.cloudflaressl.com
www.highq.com
sni.cloudflaressl.com
www.highq.com
*.developer.iata.org
iccsdevqa-int.iata.org
*.cargois.iata.org
dgautocheck.iata.org
5709436928655360-fe2.pantheonsite.io
sni.cloudflaressl.com
ezdiharstatus.mambu.com
standards.iata.org
bo.digitalcredentials.iata.org
sni26824.cloudflaressl.com
sni.cloudflaressl.com
*.cargois.iata.org
ezdiharstatus.mambu.com
merchantstatus.paysafecard.com
ras2.iata.org
sni.cloudflaressl.com
sni.cloudflaressl.com
iris.iata.org
ifg.iata.org
ttbs.iata.org
sfb-access-la.iata.org
nextt.iata.org
ras4.iata.org
merchantstatus.paysafecard.com
ras3.iata.org
theplanner.co.uk
5709436928655360-fe2.pantheonsite.io
airlines.iata.org
casslink-test.iata.org
5709436928655360-fe2.pantheonsite.io
www.highq.com
pubdownload.iata.org
sni.cloudflaressl.com
ras2.iata.org
www.planestories.iata.org
standards.iata.org
5709436928655360-fe2.pantheonsite.io
theplanner.co.uk
prod.2.slot.cdn.salesforce-communities.com
sni26824.cloudflaressl.com
ssl826589.cloudflaressl.com
www.highq.com
isftp.iata.org
casslink-imp-test.iata.org
sso.iata.org
iccspprod-api.iata.org
5709436928655360-fe2.pantheonsite.io
iata-pay.iata.org
dev-dgautocheck-admin.iata.org
backoffice.digitalcredentials.iata.org
irisqabiz.iata.org
www.highq.com
sni.cloudflaressl.com
sni.cloudflaressl.com
www.highq.com
o365.iata.org
sni.cloudflaressl.com
iccsqa-dsig.iata.org
merchantstatus.paysafecard.com
extranet.iata.org
sni.cloudflaressl.com
sfb-access-ny.iata.org
5709436928655360-fe2.pantheonsite.io
zrh-ss.iata.org
www.highq.com
marketis.iata.org
iccsqa-api.iata.org
devsso.iata.org
elearning.iata.org
webstarmobile.iata.org
www.highq.com
www.highq.com
qa-dgautocheck.iata.org
iccsqa-xenc.iata.org
merchantstatus.paysafecard.com
sni.cloudflaressl.com
t4.staging.timatic.iata.org
*.spapps.iata.org
sni.cloudflaressl.com
airlines.iata.org
easypay1-qa.iata.org
ssl919904.cloudflaressl.com
sni.cloudflaressl.com
sni26824.cloudflaressl.com
5709436928655360-fe2.pantheonsite.io
isweb.iata.org
sni.cloudflaressl.com
merchantstatus.paysafecard.com
demoacmg.iata.org
sni26824.cloudflaressl.com
Certificate
The complete raw certificate details for ras2.iata.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIQDUKtDoHHX5tl5FPVcF1n6zANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTgwNDEyMDAwMDAwWhcNMTgxMjEwMTIwMDAwWjCBljELMAkGA1UEBhMCQ0ExDzAN BgNVBAgTBlF1ZWJlYzERMA8GA1UEBxMITW9udHJlYWwxMDAuBgNVBAoTJ0ludGVy bmF0aW9uYWwgQWlyIFRyYW5zcG9ydCBBc3NvY2lhdGlvbjEZMBcGA1UECxMQTmV0 d29yayBTZXJ2aWNlczEWMBQGA1UEAxMNcmFzMi5pYXRhLm9yZzCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAL9H6+igtR15uE3/qe805sx3mNceHTMUxCEM ea3qabnJ7KXk3/zhuDfp4pZQnt8vrTreDIMOW6+K1uo5y7feL3SV9D3WtrNMYJzx V/t9CyaKBRLEoSlllKheElvaACT0hdedBvLu61/75QCrYrOGmnhm2Nfq0jVOCRLM fgoSjy5Ur5UBoMZDGh49CAkj2tpQiphDuz5X/ghCErSWGI/RkzDIqnJ1rAr5mZ81 wTAUh8pzbqh5Ewhku+PHkm21RvTeYCZega3yqUI/tmbC/kJgrGuBZwUzNfkjJG1Q eAUGTI5BhbLCoiT+rKKq+5qim205+xjF8E880C/n7uudkE3jWzkCAwEAAaOCAagw ggGkMB8GA1UdIwQYMBaAFKPIXmVU5TB4wQXqBwpqWcy5/t5aMB0GA1UdDgQWBBQ/ UzW5z65HOE3XKgfTicrojHRnWTAYBgNVHREEETAPgg1yYXMyLmlhdGEub3JnMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOgYD VR0fBDMwMTAvoC2gK4YpaHR0cDovL2NkcC50aGF3dGUuY29tL1RoYXd0ZVJTQUNB MjAxOC5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYc aHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwbwYIKwYBBQUH AQEEYzBhMCQGCCsGAQUFBzABhhhodHRwOi8vc3RhdHVzLnRoYXd0ZS5jb20wOQYI KwYBBQUHMAKGLWh0dHA6Ly9jYWNlcnRzLnRoYXd0ZS5jb20vVGhhd3RlUlNBQ0Ey MDE4LmNydDAJBgNVHRMEAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3 DQEBCwUAA4IBAQCJFN2dKEbwJKdKhaLxembYt+MpyxuaTbrvvdWJOkPUiQvlXCzT s9KzjZiD1X4MsZ2YOq0xvclxUHVmzh8rVzrGWwfq4cQ4GXkLOW1JjwI8jEGLQqy6 PP//ApRZwx/uqVDtK3fcApV/U1rTGZFgokyo0m+PwNzKCE2JOOIm0kqfw2ypuaey 7iv96nq3mNdfXy396h8vl7TOZhOJlgE1U/xrcfcnV3wvAcLD61/qrj5EYIrcSYxz sRslGdMTPcbkE4m0LISJwaVVjPK6ZWXpQCmZSPyRA++ByP6AJATfpjbo4Yv3rrsf OGis3Uk2vITnr53694ALGsFRWaM+Slo9bJVQ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0fr6KC1HXm4Tf+p7zTm zHeY1x4dMxTEIQx5reppucnspeTf/OG4N+nillCe3y+tOt4Mgw5br4rW6jnLt94v dJX0Pda2s0xgnPFX+30LJooFEsShKWWUqF4SW9oAJPSF150G8u7rX/vlAKtis4aa eGbY1+rSNU4JEsx+ChKPLlSvlQGgxkMaHj0ICSPa2lCKmEO7Plf+CEIStJYYj9GT MMiqcnWsCvmZnzXBMBSHynNuqHkTCGS748eSbbVG9N5gJl6BrfKpQj+2ZsL+QmCs a4FnBTM1+SMkbVB4BQZMjkGFssKiJP6soqr7mqKbbTn7GMXwTzzQL+fu652QTeNb OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17626165544087505906376688306698938347 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-10 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Quebec' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montreal' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'International Air Transport Association' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Network Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ras2.iata.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24146982071053753071739471310546556912425120285424674421731630106280762296949197906078384458660809269044578394166684594043423176163934579494071689954857136560658406422108593862112746798872963440127799942639557288085373612836105683824907756584461406386479539514372441940377975201360072667120074148563186635626307991142923425843020422528134587493545828632514421640901859953100947269681677476018235123125783081738555783248849761055809562114833271475818540301632240545002084528130086807014049099980842564692038653045179493941529642020722148093982773251303063134012532960544792797238540798324561377064995043512096968104761 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3f5335b9cfae47384dd72a07d389cae88c746759 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ras2.iata.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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