taric.descartes.com
- The Descartes Systems Group Inc. -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 0f:d1:b7:bf:fb:5a:bc:ef:52:22:d0:db:17:68:88:23 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
The Descartes Systems Group Inc.
Organization:
The Descartes Systems Group Inc.
Organization unit: taric
Organization unit: taric
State / Province:
Ontario
Locality: Waterloo
Country: CA
Locality: Waterloo
Country: CA
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:d1:b7:bf:fb:5a:bc:ef:52:22:d0:db:17:68:88:23Serial Number (int): 21027336871534458556608106836146030627
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c7:d9:c8:d2:13:f8:22:08:c3:2c:bc:4d:48:aa:de:45:47:a9:1d:72
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 2e:00:78:f8:c5:6a:c8:c2:ca:41:55:4e:00:dc:5a:85:82:be:c3:d3
Fingerprint (sha256): 09:bb:97:13:34:9e:94:fe:83:58:cd:25:ff:a6:c8:bc:47:87:a2:3c:98:25:ef:7d:eb:3e:92:8c:38:17:0b:75
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate taric.descartes.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for taric.descartes.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
taric.descartes.com
Other certificates including the domain name descartes.com
(limited to 100 certificates)
status.pipeimob.com.br
adfs.descartes.com
smartcompliance.descartes.com
fseuc-1a.freshservice.com
ecomm.descartes.com
status.markiiieb.com
status.sandsiv.com
status.ngxnetworks.com
foxtrot.status.descartes.com
*.testportal.descartes.com
shw.rmt.status.descartes.com
go-secure.descartes.com
shw.rmt.status.descartes.com
servicedesk.descartes.com
iq.syncd.tech
fmtracks.fmsend.net
*.gct.descartes.com
*.uk-updates.descartes.com
uca.descartes.com
newweb.na.descartes.com
status.us.premium.salusconnect.io
disponibilidade.activecorp.com.br
shw.rmt.status.descartes.com
custom.mindflash.com
status.quarklink.io
*.e-customs.descartes.com
*.uk-updates.descartes.com
status.5starcoms.net
globalcompliance.asia.descartes.com
webdgn.descartes.com
shw.rmt.status.descartes.com
taric.descartes.com
status.anywhere.asolvi.app
crm.descartes.com
globalcompliancetest.descartes.com
desktop.descartes.com
ondemand.descartes.com
shipmentwarehouse.descartes.com
status.sandsiv.com
fmtracks.fmsend.net
status.skynetexpress.com
*.podirect.descartes.com
fseuc-1a.freshservice.com
uca.descartes.com
TILES.APAC.DESCARTES.COM
firstspiritstatus.crownpeak.com
globalcompliancetest.descartes.com
servicedesk.helpforheroes.org.uk
globalcompliance.descartes.com
*.ap.descartes.com
status.mapworks.io
shw.rmt.status.descartes.com
itmtest.descartes.com
status.pipeimob.com.br
status.doccle.be
www.123.descartes.com
status.lenderdock.com
shw.rmt.status.descartes.com
www.descartes.com
status.sandsiv.com
shw.rmt.status.descartes.com
osm-tile.descartes.com
iq.syncd.tech
web.emea.descartes.com
webgc-stg.descartes.com
EDITRADEPREPROD.DESCARTES.COM
globalcompliance.descartes.com
ess.descartes.com
www.descartes.com
fmtracks.fmsend.net
SHIPMENTWAREHOUSE.DESCARTES.COM
status.nwtc.edu
telogis.descartes.com
ssp.descartes.com
status.5starcoms.net
www.descartes.com
webmail.descartes.com
smartcompliance.descartes.com
essqa.descartes.com
lp.descartes.com
iq.syncd.tech
fseuc-1a.freshservice.com
*.testportal.descartes.com
status.skynetexpress.com
shw.rmt.status.descartes.com
services.content.descartes.com
businesscompliance.descartes.com
*.myvan.descartes.com
statuspage.e2open.com
fmtracks.fmsend.net
fseuc-1a.freshservice.com
status.prokurio.com
*.routeplanner.descartes.com
staging.routing-and-scheduling.descartes.com
fseuc-1a.freshservice.com
status.sandsiv.com
status.zoho.uk
go-webedi.descartes.com
lp.descartes.com
webmail.descartes.com
adfs.descartes.com
smartcompliance.descartes.com
fseuc-1a.freshservice.com
ecomm.descartes.com
status.markiiieb.com
status.sandsiv.com
status.ngxnetworks.com
foxtrot.status.descartes.com
*.testportal.descartes.com
shw.rmt.status.descartes.com
go-secure.descartes.com
shw.rmt.status.descartes.com
servicedesk.descartes.com
iq.syncd.tech
fmtracks.fmsend.net
*.gct.descartes.com
*.uk-updates.descartes.com
uca.descartes.com
newweb.na.descartes.com
status.us.premium.salusconnect.io
disponibilidade.activecorp.com.br
shw.rmt.status.descartes.com
custom.mindflash.com
status.quarklink.io
*.e-customs.descartes.com
*.uk-updates.descartes.com
status.5starcoms.net
globalcompliance.asia.descartes.com
webdgn.descartes.com
shw.rmt.status.descartes.com
taric.descartes.com
status.anywhere.asolvi.app
crm.descartes.com
globalcompliancetest.descartes.com
desktop.descartes.com
ondemand.descartes.com
shipmentwarehouse.descartes.com
status.sandsiv.com
fmtracks.fmsend.net
status.skynetexpress.com
*.podirect.descartes.com
fseuc-1a.freshservice.com
uca.descartes.com
TILES.APAC.DESCARTES.COM
firstspiritstatus.crownpeak.com
globalcompliancetest.descartes.com
servicedesk.helpforheroes.org.uk
globalcompliance.descartes.com
*.ap.descartes.com
status.mapworks.io
shw.rmt.status.descartes.com
itmtest.descartes.com
status.pipeimob.com.br
status.doccle.be
www.123.descartes.com
status.lenderdock.com
shw.rmt.status.descartes.com
www.descartes.com
status.sandsiv.com
shw.rmt.status.descartes.com
osm-tile.descartes.com
iq.syncd.tech
web.emea.descartes.com
webgc-stg.descartes.com
EDITRADEPREPROD.DESCARTES.COM
globalcompliance.descartes.com
ess.descartes.com
www.descartes.com
fmtracks.fmsend.net
SHIPMENTWAREHOUSE.DESCARTES.COM
status.nwtc.edu
telogis.descartes.com
ssp.descartes.com
status.5starcoms.net
www.descartes.com
webmail.descartes.com
smartcompliance.descartes.com
essqa.descartes.com
lp.descartes.com
iq.syncd.tech
fseuc-1a.freshservice.com
*.testportal.descartes.com
status.skynetexpress.com
shw.rmt.status.descartes.com
services.content.descartes.com
businesscompliance.descartes.com
*.myvan.descartes.com
statuspage.e2open.com
fmtracks.fmsend.net
fseuc-1a.freshservice.com
status.prokurio.com
*.routeplanner.descartes.com
staging.routing-and-scheduling.descartes.com
fseuc-1a.freshservice.com
status.sandsiv.com
status.zoho.uk
go-webedi.descartes.com
lp.descartes.com
webmail.descartes.com
Certificate
The complete raw certificate details for taric.descartes.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIQD9G3v/tavO9SItDbF2iIIzANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTgwMjE0MDAwMDAwWhcNMjEwMjEzMTIwMDAwWjCBizELMAkGA1UEBhMCQ0ExEDAO BgNVBAgTB09udGFyaW8xETAPBgNVBAcTCFdhdGVybG9vMSkwJwYDVQQKEyBUaGUg RGVzY2FydGVzIFN5c3RlbXMgR3JvdXAgSW5jLjEOMAwGA1UECxMFdGFyaWMxHDAa BgNVBAMTE3RhcmljLmRlc2NhcnRlcy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC68luKNWS9sVHag5d8MtLNb0ds/orBxQJXa0LTDzw1yPZ7forv VCFD0UWtlP+11yc/l568vuvRhe7+FXJfipG4Lithp80rF+l4eErgk1vgppTRpSzF uclfxBKizuVql0UFmCh28uX4CQnpQM2Euxu0lDOvooMil/IxbFXnrdddaBSnu53/ 6bedB9Ie2Az4pbdZpMnWpfuw495R5z0rY5fF708Gm7bd5cJRJCGljp8avjtBnOYJ R849lurLruDjFemIJhei/ZUGOq6BkmqviSsu02VlV/guEqw5BcKmo1jtZqMnheJf kVemrAWb9sOUDBctIEKtmeneQzg6D/8MqhsPAgMBAAGjggGuMIIBqjAfBgNVHSME GDAWgBSjyF5lVOUweMEF6gcKalnMuf7eWjAdBgNVHQ4EFgQUx9nI0hP4IgjDLLxN SKreRUepHXIwHgYDVR0RBBcwFYITdGFyaWMuZGVzY2FydGVzLmNvbTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDoGA1UdHwQz MDEwL6AtoCuGKWh0dHA6Ly9jZHAudGhhd3RlLmNvbS9UaGF3dGVSU0FDQTIwMTgu Y3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBz Oi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMG8GCCsGAQUFBwEBBGMw YTAkBggrBgEFBQcwAYYYaHR0cDovL3N0YXR1cy50aGF3dGUuY29tMDkGCCsGAQUF BzAChi1odHRwOi8vY2FjZXJ0cy50aGF3dGUuY29tL1RoYXd0ZVJTQUNBMjAxOC5j cnQwCQYDVR0TBAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsF AAOCAQEAHAIbz9mWTLw86sZXwfsP9i7JgWVHTeCJZBHujA6/r0CFZFhf4zmhj/im F3pCRlYpQVtqnmUzUSdQXh66JNDGYw4WWKFdSTjRimr27NE0d+cuNvNX4BeWSDAp clHccIlkHxSXuR55Qe52/XjUN7arzH6zeM0M2BPlyRChwU51Kzk5e0DpYYgPXLH0 dBr34T/zY2jyFUDEmgl1Y+kHTrW26QttYN34txBU+et7EPWATlB68zBJ31x/dxHC l5DQMe1W50tTJyYUJl3ooV/OZ1G7Rlbm8no5zaQV/yQ1JLko34ntPnlLdRM+/rVY x8q+STfQGxdaJ7DAmiCFELTZVS+jQA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuvJbijVkvbFR2oOXfDLS zW9HbP6KwcUCV2tC0w88Ncj2e36K71QhQ9FFrZT/tdcnP5eevL7r0YXu/hVyX4qR uC4rYafNKxfpeHhK4JNb4KaU0aUsxbnJX8QSos7lapdFBZgodvLl+AkJ6UDNhLsb tJQzr6KDIpfyMWxV563XXWgUp7ud/+m3nQfSHtgM+KW3WaTJ1qX7sOPeUec9K2OX xe9PBpu23eXCUSQhpY6fGr47QZzmCUfOPZbqy67g4xXpiCYXov2VBjqugZJqr4kr LtNlZVf4LhKsOQXCpqNY7WajJ4XiX5FXpqwFm/bDlAwXLSBCrZnp3kM4Og//DKob DwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 21027336871534458556608106836146030627 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Waterloo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Descartes Systems Group Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'taric' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'taric.descartes.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23599835699458912632146230291808745806677597922113793502437600967616099666746010349283208241437715761689871972711555543882550200271649554782979947500142099871253382264931462780154124623277296216135867702541544662280199093116050348708214858723179276964401706590661177520765104095965705396429685512733161589563369230966294372310461894139480555612823270579121022808609529538419280847561745619248448563268580808851281029204042431183411113231443426536454656400916202518085945910367446275114657031796416967483506582645330836800325148929683824476398934912918783883214032078902673820663857545944424419749087497415830801095439 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c7d9c8d213f82208c32cbc4d48aade4547a91d72 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'taric.descartes.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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