plms-nkm.iaea.org
- International Atomic Energy Agency -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 0d:96:ce:28:6a:d4:c1:62:66:ca:fc:75:10:ff:6a:58 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
International Atomic Energy Agency
Organization:
International Atomic Energy Agency
Organization unit: MTIT
Organization unit: MTIT
Locality:
Vienna
Country: AT
Country: AT
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:96:ce:28:6a:d4:c1:62:66:ca:fc:75:10:ff:6a:58Serial Number (int): 18062989852551599853449904960367979096
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c7:aa:23:51:11:46:e1:cf:3c:59:07:92:2d:d2:bb:5a:a4:c7:c9:7c
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 4a:4f:23:c6:d2:81:0a:e7:87:21:22:00:2b:23:af:59:f1:62:68:53
Fingerprint (sha256): 0d:fb:ce:3d:e7:a2:7b:a2:8c:1e:23:c2:9b:cf:5b:c8:89:c8:fe:91:73:41:a5:4a:0b:35:15:1a:71:57:a1:01
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate plms-nkm.iaea.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for plms-nkm.iaea.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
plms-nkm.iaea.org
Other certificates including the domain name iaea.org
(limited to 100 certificates)
*.iaea.org
iaeachallenge.org
ssl6418.cloudflare.com
imgm.iaea.org
ssl440680.cloudflaressl.com
iaeachallenge.org
vc.iaea.org
www.iaea.org
ssl440681.cloudflaressl.com
cnmdm.nomad.iaea.org
countryfiles.iaea.org
*.iaea.org
imgm.iaea.org
plms-nkm.iaea.org
ivetnet.iaea.org
ssl320268.cloudflaressl.com
iaeachallenge.org
libenc.iaea.org
ssl6418.cloudflare.com
taleo.iaea.org
conferences.iaea.org
lync.iaea.org
www-nds.iaea.org
*.iaea.org
ssl6418.cloudflare.com
*.iaea.org
test.iaea.org
mdm.nomad.iaea.org
sni.cloudflaressl.com
*.iaea.org
auth.iaea.org
*.iaea.org
hybrid.iaea.org
challenge.iaea.org
cnmdm.nomad.iaea.org
ssl748010.cloudflaressl.com
vc.iaea.org
elearning.iaea.org
*.*.iaea.org
test.iaea.org
sbb.iaea.org
libcat.iaea.org
*.iaea.org
segmdm1.nomad.iaea.org
email.iaea.org
taleo.iaea.org
conferences.iaea.org
msg.iaea.org
cnmdm.nomad.iaea.org
ssl440680.cloudflaressl.com
atoms.iaea.org
ssl440681.cloudflaressl.com
auth.iaea.org
cnmdm.nomad.iaea.org
ssl440682.cloudflaressl.com
conferences.iaea.org
ssl440681.cloudflaressl.com
share.iaea.org
lync-web.iaea.org
www-amdis.iaea.org
www.iaea.org
libenc.iaea.org
mdm.nomad.iaea.org
msg.iaea.org
personnel.iaea.org
e501.iaea.org
*.iaea.org
iec-vcse.iaea.org
ssl440681.cloudflaressl.com
sgmdm.iaea.org
iaeachallenge.org
conferences.iaea.org
cnmdm.nomad.iaea.org
guest2.iaea.org
conferences.iaea.org
www-nds.iaea.org
libenc-ext.iaea.org
ssl6418.cloudflare.com
countryprofiles.iaea.org
hybrid.iaea.org
www-amdis.iaea.org
email.iaea.org
lync-web.iaea.org
usie-connect.iaea.org
test.iaea.org
imgm.iaea.org
data.iaea.org
iaeachallenge.org
www-nds.iaea.org
*.iaea.org
sni.cloudflaressl.com
www-nds.iaea.org
data.iaea.org
lync-web.iaea.org
*.iaea.org
sni.cloudflaressl.com
libenc.iaea.org
segmdm1.nomad.iaea.org
ssl320270.cloudflaressl.com
libcat.iaea.org
iaeachallenge.org
ssl6418.cloudflare.com
imgm.iaea.org
ssl440680.cloudflaressl.com
iaeachallenge.org
vc.iaea.org
www.iaea.org
ssl440681.cloudflaressl.com
cnmdm.nomad.iaea.org
countryfiles.iaea.org
*.iaea.org
imgm.iaea.org
plms-nkm.iaea.org
ivetnet.iaea.org
ssl320268.cloudflaressl.com
iaeachallenge.org
libenc.iaea.org
ssl6418.cloudflare.com
taleo.iaea.org
conferences.iaea.org
lync.iaea.org
www-nds.iaea.org
*.iaea.org
ssl6418.cloudflare.com
*.iaea.org
test.iaea.org
mdm.nomad.iaea.org
sni.cloudflaressl.com
*.iaea.org
auth.iaea.org
*.iaea.org
hybrid.iaea.org
challenge.iaea.org
cnmdm.nomad.iaea.org
ssl748010.cloudflaressl.com
vc.iaea.org
elearning.iaea.org
*.*.iaea.org
test.iaea.org
sbb.iaea.org
libcat.iaea.org
*.iaea.org
segmdm1.nomad.iaea.org
email.iaea.org
taleo.iaea.org
conferences.iaea.org
msg.iaea.org
cnmdm.nomad.iaea.org
ssl440680.cloudflaressl.com
atoms.iaea.org
ssl440681.cloudflaressl.com
auth.iaea.org
cnmdm.nomad.iaea.org
ssl440682.cloudflaressl.com
conferences.iaea.org
ssl440681.cloudflaressl.com
share.iaea.org
lync-web.iaea.org
www-amdis.iaea.org
www.iaea.org
libenc.iaea.org
mdm.nomad.iaea.org
msg.iaea.org
personnel.iaea.org
e501.iaea.org
*.iaea.org
iec-vcse.iaea.org
ssl440681.cloudflaressl.com
sgmdm.iaea.org
iaeachallenge.org
conferences.iaea.org
cnmdm.nomad.iaea.org
guest2.iaea.org
conferences.iaea.org
www-nds.iaea.org
libenc-ext.iaea.org
ssl6418.cloudflare.com
countryprofiles.iaea.org
hybrid.iaea.org
www-amdis.iaea.org
email.iaea.org
lync-web.iaea.org
usie-connect.iaea.org
test.iaea.org
imgm.iaea.org
data.iaea.org
iaeachallenge.org
www-nds.iaea.org
*.iaea.org
sni.cloudflaressl.com
www-nds.iaea.org
data.iaea.org
lync-web.iaea.org
*.iaea.org
sni.cloudflaressl.com
libenc.iaea.org
segmdm1.nomad.iaea.org
ssl320270.cloudflaressl.com
libcat.iaea.org
Certificate
The complete raw certificate details for plms-nkm.iaea.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGCjCCBPKgAwIBAgIQDZbOKGrUwWJmyvx1EP9qWDANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MjAwMjA3MDAwMDAwWhcNMjIwMzA3MTIwMDAwWjB2MQswCQYDVQQGEwJBVDEPMA0G A1UEBxMGVmllbm5hMSswKQYDVQQKEyJJbnRlcm5hdGlvbmFsIEF0b21pYyBFbmVy Z3kgQWdlbmN5MQ0wCwYDVQQLEwRNVElUMRowGAYDVQQDExFwbG1zLW5rbS5pYWVh Lm9yZzCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKkAfMwmDFMaCM3O jHtwvO+CYQNxGksA7VpvRZZmuXZ9ukSPf67cU1phRHcEAwWmUjP5cSmKKkqWDxWF +nWSdfTGvlTs/GkI0a6kVepubURrEZ9cbDoJIa6UjzbTcHm6gKib/3avejT0k5Ha oSad1DrFPJGmLUgRb3bK34/23CSd+i5k7vvH3tkI3dB9kUdKncixubjnvjwfG263 wKgpO2vzlelTvsnfCdgtUT4+d5182GpDHk5TNdvHGrOG/NKG7OjNw+9fgPgZM7TR 68yCok9PxXbaXXEikQ+yOTXPG2gAuYsk0nFl/csGdESKUmzvqwqUwhupT+dQF7jY P2SVDHYQoznEFoSz4HtNuVYnRD8HkVY9xPCQV9bUGywO3JRyn/MU/T/mRPLI/8fO hlskurJVSaJgetFspdrC08qte/zGhDuIdYaS71axatg43UUWOU+r3jsuQdSU8HmP uO7h6QU5jO/wJqG+FcWvFz+iFphemVJsHk5iB5wl7p676crlnzBdd3fWQoXkzuSR H9AjHtv7hxulTYu8lYFfqjrbCA2B9eOJ1gxjX7ohN9sptNA7sEHNiRaceb6t4yMr c08u1ls7IlzLNKEfDDNUNTHYbiS1HP4jXBOewTu9mhR6LOwiBncZZJfud3cj5cYb rLH0wudvT565TY8B8CjpkwB3k7WxAgMBAAGjggGsMIIBqDAfBgNVHSMEGDAWgBSj yF5lVOUweMEF6gcKalnMuf7eWjAdBgNVHQ4EFgQUx6ojURFG4c88WQeSLdK7WqTH yXwwHAYDVR0RBBUwE4IRcGxtcy1ua20uaWFlYS5vcmcwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA6BgNVHR8EMzAxMC+gLaAr hilodHRwOi8vY2RwLnRoYXd0ZS5jb20vVGhhd3RlUlNBQ0EyMDE4LmNybDBMBgNV HSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5k aWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjBvBggrBgEFBQcBAQRjMGEwJAYIKwYB BQUHMAGGGGh0dHA6Ly9zdGF0dXMudGhhd3RlLmNvbTA5BggrBgEFBQcwAoYtaHR0 cDovL2NhY2VydHMudGhhd3RlLmNvbS9UaGF3dGVSU0FDQTIwMTguY3J0MAkGA1Ud EwQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAJYV +Q4oLT+JkDK7GjkmwdOyU4lHMJ1M9RkR4eYArESVni06FoyJS9MaCJ4+5iQ2OtHV GUIdUZO5G5feMLt6B5OULnCGcaU3K8wI95G1f9Ctqmptzhh5t/u2olmaqrIWVByd xdG77E+t0YqNSEXULfFIdRslHQiGCB6b0TOZAQGhfov3vcJcILXu/fLqHzZKWQ/C XMWlJnobmlAC9AKnRIfyNgkPik9lE0zZedRxV43PrKAquRs8/eu19ATzvgOQ3NoQ 73oOMtMJaCzl8ddkdo/7vNh16vVQsi8sOCgMSZNMGkjrlWxy6r6OTGwkyAcY+gQt YrjbEVMDsdz2M5NBHjc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqQB8zCYMUxoIzc6Me3C8 74JhA3EaSwDtWm9Flma5dn26RI9/rtxTWmFEdwQDBaZSM/lxKYoqSpYPFYX6dZJ1 9Ma+VOz8aQjRrqRV6m5tRGsRn1xsOgkhrpSPNtNwebqAqJv/dq96NPSTkdqhJp3U OsU8kaYtSBFvdsrfj/bcJJ36LmTu+8fe2Qjd0H2RR0qdyLG5uOe+PB8bbrfAqCk7 a/OV6VO+yd8J2C1RPj53nXzYakMeTlM128cas4b80obs6M3D71+A+BkztNHrzIKi T0/FdtpdcSKRD7I5Nc8baAC5iyTScWX9ywZ0RIpSbO+rCpTCG6lP51AXuNg/ZJUM dhCjOcQWhLPge025VidEPweRVj3E8JBX1tQbLA7clHKf8xT9P+ZE8sj/x86GWyS6 slVJomB60Wyl2sLTyq17/MaEO4h1hpLvVrFq2DjdRRY5T6veOy5B1JTweY+47uHp BTmM7/Amob4Vxa8XP6IWmF6ZUmweTmIHnCXunrvpyuWfMF13d9ZCheTO5JEf0CMe 2/uHG6VNi7yVgV+qOtsIDYH144nWDGNfuiE32ym00DuwQc2JFpx5vq3jIytzTy7W WzsiXMs0oR8MM1Q1MdhuJLUc/iNcE57BO72aFHos7CIGdxlkl+53dyPlxhussfTC 529PnrlNjwHwKOmTAHeTtbECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18062989852551599853449904960367979096 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-07 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Vienna' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'International Atomic Energy Agency' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MTIT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'plms-nkm.iaea.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 689467616190459357420395603028517902846442956655559022083242971177779127676755953244356337746279331051931980437762517853902017822797559756841341557666483839079453188768181006737278624702486682521784437377723708865292319201564993930803338173783286875466342250554929122000174717077199915955266120328519942372864470035493716006483711342115084488456474809207866516843547960395107381585185354581327754557375242799669610114763931388784681310173946627895245488584304709856965483999023492626797828755777232016052264420056268175047235575872113552237769622228957644296889171735756943754681614789403707583393628150793001061715607137795178156687354108714265029086573270072801383939037158951700673403506978481090475580203665834462794306930505499802119306481248480773644433327414465807804548277384429247100531517572666264789488969987368745920638916086821528660946413391828670508099543404688946281706140464618947826673503370181716710529685305535372374574376533460354085227595323230854922008341008821521143826046877119027596162042092682372399979504484661925166558729730637030684552281515033319096125740415727573186425971358019139350056470769569523757202592219012674416974234006520159126343305590500157931222927270643373306080096985916262282740086193 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c7aa23511146e1cf3c5907922dd2bb5aa4c7c97c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'plms-nkm.iaea.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 009615f90e282d3f899032bb1a3926c1d3b2538947309d4cf51911e1e600ac44959e2d3a168c894bd31a089e3ee624363ad1d519421d5193b91b97de30bb7a0793942e708671a5372bcc08f791b57fd0adaa6a6dce1879b7fbb6a2599aaab216541c9dc5d1bbec4fadd18a8d4845d42df148751b251d0886081e9bd133990101a17e8bf7bdc25c20b5eefdf2ea1f364a590fc25cc5a5267a1b9a5002f402a74487f236090f8a4f65134cd979d471578dcfaca02ab91b3cfdebb5f404f3be0390dcda10ef7a0e32d309682ce5f1d764768ffbbcd875eaf550b22f2c38280c49934c1a48eb956c72eabe8e4c6c24c80718fa042d62b8db115303b1dcf63393411e37