secure.derwesten.de
- FUNKE Corporate IT GmbH -
Issued by thawte SSL CA - G2
About this certificate
This digital certificate with serial number 5c:22:1f:5e:55:e0:b0:8c:aa:62:5e:dd:b8:da:ca:93 was issued on by thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
FUNKE Corporate IT GmbH
Organization:
FUNKE Corporate IT GmbH
Organization unit: ITO Netz- und Internetservice
Organization unit: ITO Netz- und Internetservice
State / Province:
Nordrhein-Westfalen
Locality: Essen
Country: DE
Locality: Essen
Country: DE
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 5c:22:1f:5e:55:e0:b0:8c:aa:62:5e:dd:b8:da:ca:93Serial Number (int): 122466149934125292938881805573089315475
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60
Fingerprint (sha1): df:85:d7:fc:38:25:85:a9:08:fa:9e:47:0e:83:9d:81:07:15:f2:84
Fingerprint (sha256): 0e:7f:92:76:c2:a5:19:29:7a:93:29:5a:08:32:03:aa:e5:0a:fa:2f:88:14:a9:3b:6d:3e:44:fd:6d:b8:68:66
Issuing Certificate URL: http://tj.symcb.com/tj.crt
Revocation information
OCSP Server: http://tj.symcd.comCRL Distribution Point: http://tj.symcb.com/tj.crl
Check the revocation status for certificate secure.derwesten.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for secure.derwesten.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
secure.derwesten.de
Other certificates including the domain name derwesten.de
(limited to 100 certificates)
www.derwesten.de
runforrest.derwesten.de
www.weltsport.net
sso.funkemedien.de
derwesten.de
*.funkemedien.de
dev3.aws.funkedigital.de
funkedigital.de
data-fdf4690b14.derwesten.de
*.waz.de
secure.derwesten.de
eventum.derwesten.de
dev2.aws.funkedigital.de
derwesten.de
www.weltsport.net
www.derwesten.de
secure.derwesten.de
*.waz.de
tv.morgenpost.de
www.weltfussball.de
www.deutschland-spielt.de
www.weltsport.net
www.derwesten.de
agnes.derwesten.de
www.derwesten.de
sso.funkemedien.de
www.weltsport.net
www.weltsport.net
www.weltsport.net
www.derwesten.de
files1.derwesten.de
www.derwesten.de
www.weltsport.net
www.derwesten.de
www.weltsport.net
www.weltsport.net
www.weltsport.net
www.weltsport.net
www.derwesten.de
www.adventskalender.derwesten.de
sso.funkemedien.de
www.weltsport.net
www.derwesten.de
angebote.derwesten.de
www.weltsport.net
dev1.aws.funkedigital.de
derwesten.de
www.derwesten.de
www.derwesten.de
www.weltsport.net
www.derwesten.de
www.weltfussball.de
www.derwesten.de
derosten.com
www.weltsport.net
www.weltfussball.de
www.derwesten.de
www.weltsport.net
www.derwesten.de
www.weltsport.net
*.waz.de
www.deutschland-spielt.de
cp.derwesten.de
shop.derwesten.de
www.weltsport.net
sso.funkemedien.de
www.derwesten.de
*.funkemedien.de
*.waz.de
*.waz.de
dev2.aws.funkedigital.de
uat.aws.bildderfrau.de
www.weltsport.net
*.funkemedien.de
aditory.derwesten.de
funkedigital.de
uat.aws.bildderfrau.de
dev5.aws.funkedigital.de
www.weltfussball.de
dev2.aws.funkedigital.de
www.weltsport.net
*.waz.de
www.weltfussball.de
sso.derwesten.de
www.derwesten.de
uat.aws.bildderfrau.de
www.weltfussball.de
funkedigital.de
derwesten.de
interaktiv.derwesten.de
*.waz.de
*.geschenke38.de
tippspiel.derwesten.de
www.weltsport.net
*.waz.de
dev1.aws.funkedigital.de
secure.derwesten.de
www.weltsport.net
derwesten.de
tv.morgenpost.de
runforrest.derwesten.de
www.weltsport.net
sso.funkemedien.de
derwesten.de
*.funkemedien.de
dev3.aws.funkedigital.de
funkedigital.de
data-fdf4690b14.derwesten.de
*.waz.de
secure.derwesten.de
eventum.derwesten.de
dev2.aws.funkedigital.de
derwesten.de
www.weltsport.net
www.derwesten.de
secure.derwesten.de
*.waz.de
tv.morgenpost.de
www.weltfussball.de
www.deutschland-spielt.de
www.weltsport.net
www.derwesten.de
agnes.derwesten.de
www.derwesten.de
sso.funkemedien.de
www.weltsport.net
www.weltsport.net
www.weltsport.net
www.derwesten.de
files1.derwesten.de
www.derwesten.de
www.weltsport.net
www.derwesten.de
www.weltsport.net
www.weltsport.net
www.weltsport.net
www.weltsport.net
www.derwesten.de
www.adventskalender.derwesten.de
sso.funkemedien.de
www.weltsport.net
www.derwesten.de
angebote.derwesten.de
www.weltsport.net
dev1.aws.funkedigital.de
derwesten.de
www.derwesten.de
www.derwesten.de
www.weltsport.net
www.derwesten.de
www.weltfussball.de
www.derwesten.de
derosten.com
www.weltsport.net
www.weltfussball.de
www.derwesten.de
www.weltsport.net
www.derwesten.de
www.weltsport.net
*.waz.de
www.deutschland-spielt.de
cp.derwesten.de
shop.derwesten.de
www.weltsport.net
sso.funkemedien.de
www.derwesten.de
*.funkemedien.de
*.waz.de
*.waz.de
dev2.aws.funkedigital.de
uat.aws.bildderfrau.de
www.weltsport.net
*.funkemedien.de
aditory.derwesten.de
funkedigital.de
uat.aws.bildderfrau.de
dev5.aws.funkedigital.de
www.weltfussball.de
dev2.aws.funkedigital.de
www.weltsport.net
*.waz.de
www.weltfussball.de
sso.derwesten.de
www.derwesten.de
uat.aws.bildderfrau.de
www.weltfussball.de
funkedigital.de
derwesten.de
interaktiv.derwesten.de
*.waz.de
*.geschenke38.de
tippspiel.derwesten.de
www.weltsport.net
*.waz.de
dev1.aws.funkedigital.de
secure.derwesten.de
www.weltsport.net
derwesten.de
tv.morgenpost.de
Certificate
The complete raw certificate details for secure.derwesten.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF7DCCBNSgAwIBAgIQXCIfXlXgsIyqYl7duNrKkzANBgkqhkiG9w0BAQsFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMRswGQYDVQQDExJ0 aGF3dGUgU1NMIENBIC0gRzIwHhcNMTYwMzEzMDAwMDAwWhcNMTcwMzEzMjM1OTU5 WjCBozELMAkGA1UEBhMCREUxHDAaBgNVBAgME05vcmRyaGVpbi1XZXN0ZmFsZW4x DjAMBgNVBAcMBUVzc2VuMSAwHgYDVQQKDBdGVU5LRSBDb3Jwb3JhdGUgSVQgR21i SDEmMCQGA1UECwwdSVRPIE5ldHotIHVuZCBJbnRlcm5ldHNlcnZpY2UxHDAaBgNV BAMME3NlY3VyZS5kZXJ3ZXN0ZW4uZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDv9PCrxZVhCkLA746GPUrjSrgstk8bZdz3+sT1OwPesRwwfGUrlbxm xHTdbHFuZQz4H+MvjfPTZgVxenDDcDJIkFKQ8Dig2xc+KSkJzHNIT9NkzhR+p8qn cm/GQJe3f/CvrzdOonK3jA45k51s0NNA3+v3Ca9RI12CWK9alVQVGOPEO3/hxyBf ZzNnkVC+CJE0DHVLawGFAlwuSxCccdF/0C0xQkEzbf7kbc47PL/9Xrx7zP7S2wJa lBTa7pM5VGnntpSJ19KZ3Zy0vNb53hUdEOtF8Lnerd1CSTH1E4R/zOryd8GM9ZDH 0xEcRXS37ijDZbBPc3lSuELg73S2K5fvAgMBAAGjggJ7MIICdzAeBgNVHREEFzAV ghNzZWN1cmUuZGVyd2VzdGVuLmRlMAkGA1UdEwQCMAAwbgYDVR0gBGcwZTBjBgZn gQwBAgIwWTAmBggrBgEFBQcCARYaaHR0cHM6Ly93d3cudGhhd3RlLmNvbS9jcHMw LwYIKwYBBQUHAgIwIwwhaHR0cHM6Ly93d3cudGhhd3RlLmNvbS9yZXBvc2l0b3J5 MA4GA1UdDwEB/wQEAwIFoDAfBgNVHSMEGDAWgBTCT0hX/NFPmsBdOH0OBdvZLrVS YDArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vdGouc3ltY2IuY29tL3RqLmNybDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwVwYIKwYBBQUHAQEESzBJMB8G CCsGAQUFBzABhhNodHRwOi8vdGouc3ltY2QuY29tMCYGCCsGAQUFBzAChhpodHRw Oi8vdGouc3ltY2IuY29tL3RqLmNydDCCAQIGCisGAQQB1nkCBAIEgfMEgfAA7gB1 AN3rHSt6DU+mIIuBrYFocH4ujp0B1VyIjT0RxM227L7MAAABU3CriloAAAQDAEYw RAIgMsOQnJdiJHBIAsbOLyEvO/RAvL2omWskQ6lCUMXl6NMCIEfLJSg5lkj8+DFf NVNzGDUzTTtheb9rDprG4KEfc6IBAHUApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+4 43fNDsgN3BAAAAFTcKuKiQAABAMARjBEAiB9EGIUFtGbRwNd4cUlqJHPZKOsrhbK 9ViFwipM8g7pDwIgVu/P4rj6obGTKKdS6EOVu6R1DDIUjRqWdHGGrI4RyMYwDQYJ KoZIhvcNAQELBQADggEBACARdtlkEw+sX18Kb0pP9krvtSpFPB8Pj+7rzcmMMk/8 420CpCkHc25T7sorXmArNQvbTE9qwawWNUx2emo9Do2k+pOQeezJ8ZhuFaaHVhjr 0GcccYwgphx2LDh4DxK7zYnC+sFxjYKQFfCXq4DcDkHzo75FhwbCnOdXxv6+ier9 BmaemsVv7yo6v3g+3RAkdrjvU00467i9q38gZtgGfTChCs0D6O6q0Ds23yXaFImq 7JJjt1re9W4ay738e8VuJF7j10xcaCDkGswqy9EoMK+5HnF7C9RJ7cIvSSMa9+H1 ZeGEm9tI6Og5pBqPO9LzCRABSIXxibX3KLAIYqyTqI4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7/Twq8WVYQpCwO+Ohj1K 40q4LLZPG2Xc9/rE9TsD3rEcMHxlK5W8ZsR03WxxbmUM+B/jL43z02YFcXpww3Ay SJBSkPA4oNsXPikpCcxzSE/TZM4UfqfKp3JvxkCXt3/wr683TqJyt4wOOZOdbNDT QN/r9wmvUSNdglivWpVUFRjjxDt/4ccgX2czZ5FQvgiRNAx1S2sBhQJcLksQnHHR f9AtMUJBM23+5G3OOzy//V68e8z+0tsCWpQU2u6TOVRp57aUidfSmd2ctLzW+d4V HRDrRfC53q3dQkkx9ROEf8zq8nfBjPWQx9MRHEV0t+4ow2WwT3N5UrhC4O90tiuX 7wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 122466149934125292938881805573089315475 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-03-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-03-13 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Nordrhein-Westfalen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Essen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'FUNKE Corporate IT GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ITO Netz- und Internetservice' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'secure.derwesten.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30291739362266863547910622509880701507158419555471011423661461400522534639200953375735783169905606447138131001373292388838218032578041742034098790025343182382587526175684920293648397641058286073291229038816918118787772399228929149868093713767984856790666045246722714226718172996789399835575114639223945778816598393816375715376995145931847961432628730124858846606766334713412616122945488503910420946420813731263960996811445646398640296867421999059128622613135210737230597538123908980599764338632809378720578875786035049480404438884057421049428029214700781343973596172165815045884418044939706655079105973680965275064303 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure.derwesten.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015370ab8a5a0000040300463044022032c3909c976224704802c6ce2f212f3bf440bcbda8996b2443a94250c5e5e8d3022047cb2528399648fcf8315f3553731835334d3b6179bf6b0e9ac6e0a11f73a201007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015370ab8a89000004030046304402207d10621416d19b47035de1c525a891cf64a3acae16caf55885c22a4cf20ee90f022056efcfe2b8faa1b19328a752e84395bba4750c32148d1a96747186ac8e11c8c6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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