*.ap.descartes.com
- The Descartes Systems Group Inc. -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 08:f0:fe:92:a9:18:13:4a:f9:ef:7e:b6:57:76:1b:dd was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
The Descartes Systems Group Inc.
Organization:
The Descartes Systems Group Inc.
Organization unit: AP
Organization unit: AP
State / Province:
Ontario
Locality: Waterloo
Country: CA
Locality: Waterloo
Country: CA
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:f0:fe:92:a9:18:13:4a:f9:ef:7e:b6:57:76:1b:ddSerial Number (int): 11885138564010812208468803309440211933
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 08:34:39:ca:0b:c3:90:07:de:e9:1f:3d:36:07:79:9e:e3:35:20:11
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 21:18:a7:68:c7:57:bd:2d:4f:1a:17:b3:cd:d7:2b:e5:e9:82:31:c9
Fingerprint (sha256): 0e:97:85:0d:7a:72:f6:51:b6:9f:70:26:19:22:d9:0f:4d:3f:76:7a:57:41:3b:90:a6:ba:1b:1f:92:81:e5:76
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate *.ap.descartes.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.ap.descartes.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.ap.descartes.com
Other certificates including the domain name descartes.com
(limited to 100 certificates)
status.pipeimob.com.br
adfs.descartes.com
smartcompliance.descartes.com
fseuc-1a.freshservice.com
ecomm.descartes.com
status.markiiieb.com
status.sandsiv.com
status.ngxnetworks.com
foxtrot.status.descartes.com
*.testportal.descartes.com
shw.rmt.status.descartes.com
go-secure.descartes.com
shw.rmt.status.descartes.com
servicedesk.descartes.com
iq.syncd.tech
fmtracks.fmsend.net
*.gct.descartes.com
*.uk-updates.descartes.com
uca.descartes.com
newweb.na.descartes.com
status.us.premium.salusconnect.io
disponibilidade.activecorp.com.br
shw.rmt.status.descartes.com
custom.mindflash.com
status.quarklink.io
*.e-customs.descartes.com
*.uk-updates.descartes.com
status.5starcoms.net
globalcompliance.asia.descartes.com
webdgn.descartes.com
shw.rmt.status.descartes.com
taric.descartes.com
status.anywhere.asolvi.app
crm.descartes.com
globalcompliancetest.descartes.com
desktop.descartes.com
ondemand.descartes.com
shipmentwarehouse.descartes.com
status.sandsiv.com
fmtracks.fmsend.net
status.skynetexpress.com
*.podirect.descartes.com
fseuc-1a.freshservice.com
uca.descartes.com
TILES.APAC.DESCARTES.COM
firstspiritstatus.crownpeak.com
globalcompliancetest.descartes.com
servicedesk.helpforheroes.org.uk
globalcompliance.descartes.com
*.ap.descartes.com
status.mapworks.io
shw.rmt.status.descartes.com
itmtest.descartes.com
status.pipeimob.com.br
status.doccle.be
www.123.descartes.com
status.lenderdock.com
shw.rmt.status.descartes.com
www.descartes.com
status.sandsiv.com
shw.rmt.status.descartes.com
osm-tile.descartes.com
iq.syncd.tech
web.emea.descartes.com
webgc-stg.descartes.com
EDITRADEPREPROD.DESCARTES.COM
globalcompliance.descartes.com
ess.descartes.com
www.descartes.com
fmtracks.fmsend.net
SHIPMENTWAREHOUSE.DESCARTES.COM
status.nwtc.edu
telogis.descartes.com
ssp.descartes.com
status.5starcoms.net
www.descartes.com
webmail.descartes.com
smartcompliance.descartes.com
essqa.descartes.com
*.content.descartes.com
lp.descartes.com
iq.syncd.tech
fseuc-1a.freshservice.com
*.testportal.descartes.com
status.skynetexpress.com
shw.rmt.status.descartes.com
services.content.descartes.com
businesscompliance.descartes.com
*.myvan.descartes.com
statuspage.e2open.com
fmtracks.fmsend.net
fseuc-1a.freshservice.com
status.prokurio.com
*.routeplanner.descartes.com
staging.routing-and-scheduling.descartes.com
fseuc-1a.freshservice.com
status.sandsiv.com
status.zoho.uk
go-webedi.descartes.com
lp.descartes.com
adfs.descartes.com
smartcompliance.descartes.com
fseuc-1a.freshservice.com
ecomm.descartes.com
status.markiiieb.com
status.sandsiv.com
status.ngxnetworks.com
foxtrot.status.descartes.com
*.testportal.descartes.com
shw.rmt.status.descartes.com
go-secure.descartes.com
shw.rmt.status.descartes.com
servicedesk.descartes.com
iq.syncd.tech
fmtracks.fmsend.net
*.gct.descartes.com
*.uk-updates.descartes.com
uca.descartes.com
newweb.na.descartes.com
status.us.premium.salusconnect.io
disponibilidade.activecorp.com.br
shw.rmt.status.descartes.com
custom.mindflash.com
status.quarklink.io
*.e-customs.descartes.com
*.uk-updates.descartes.com
status.5starcoms.net
globalcompliance.asia.descartes.com
webdgn.descartes.com
shw.rmt.status.descartes.com
taric.descartes.com
status.anywhere.asolvi.app
crm.descartes.com
globalcompliancetest.descartes.com
desktop.descartes.com
ondemand.descartes.com
shipmentwarehouse.descartes.com
status.sandsiv.com
fmtracks.fmsend.net
status.skynetexpress.com
*.podirect.descartes.com
fseuc-1a.freshservice.com
uca.descartes.com
TILES.APAC.DESCARTES.COM
firstspiritstatus.crownpeak.com
globalcompliancetest.descartes.com
servicedesk.helpforheroes.org.uk
globalcompliance.descartes.com
*.ap.descartes.com
status.mapworks.io
shw.rmt.status.descartes.com
itmtest.descartes.com
status.pipeimob.com.br
status.doccle.be
www.123.descartes.com
status.lenderdock.com
shw.rmt.status.descartes.com
www.descartes.com
status.sandsiv.com
shw.rmt.status.descartes.com
osm-tile.descartes.com
iq.syncd.tech
web.emea.descartes.com
webgc-stg.descartes.com
EDITRADEPREPROD.DESCARTES.COM
globalcompliance.descartes.com
ess.descartes.com
www.descartes.com
fmtracks.fmsend.net
SHIPMENTWAREHOUSE.DESCARTES.COM
status.nwtc.edu
telogis.descartes.com
ssp.descartes.com
status.5starcoms.net
www.descartes.com
webmail.descartes.com
smartcompliance.descartes.com
essqa.descartes.com
*.content.descartes.com
lp.descartes.com
iq.syncd.tech
fseuc-1a.freshservice.com
*.testportal.descartes.com
status.skynetexpress.com
shw.rmt.status.descartes.com
services.content.descartes.com
businesscompliance.descartes.com
*.myvan.descartes.com
statuspage.e2open.com
fmtracks.fmsend.net
fseuc-1a.freshservice.com
status.prokurio.com
*.routeplanner.descartes.com
staging.routing-and-scheduling.descartes.com
fseuc-1a.freshservice.com
status.sandsiv.com
status.zoho.uk
go-webedi.descartes.com
lp.descartes.com
Certificate
The complete raw certificate details for *.ap.descartes.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgIQCPD+kqkYE0r57362V3Yb3TANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTgwMjIyMDAwMDAwWhcNMjAwMjIyMTIwMDAwWjCBhzELMAkGA1UEBhMCQ0ExEDAO BgNVBAgTB09udGFyaW8xETAPBgNVBAcTCFdhdGVybG9vMSkwJwYDVQQKEyBUaGUg RGVzY2FydGVzIFN5c3RlbXMgR3JvdXAgSW5jLjELMAkGA1UECxMCQVAxGzAZBgNV BAMMEiouYXAuZGVzY2FydGVzLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBANDAnsW8E9ulA2rhjb5Qi9n/WMtnkA3+T5msZqHL94289wtPhNYd8j0W sUFSt99cmTkTKt26Bw5kmvLpH2tEH698TmQ7dTreUJ/u4LBK4AmDcmQdyVCzGhv/ AymwmCAd6o11q0Pv7G+Tf+4i5/qAWqV6Ms5wV5VNHTFS/FALO+lzWccWrFThkmwb N2O6YzQboYc14bXilGU/U58x870j+eo7xRqcO0n+PBTZY7q3FL5DUWe36sbgUO0d cxj9P18CPdt7ndRIfAWgYeuW78J3wffrwdJKeLouar+ukAX0aglHKEvedXUxT0IZ 9DcmPSbb+jt2YiGS0xoho48vbrxD9x0CAwEAAaOCAa0wggGpMB8GA1UdIwQYMBaA FKPIXmVU5TB4wQXqBwpqWcy5/t5aMB0GA1UdDgQWBBQINDnKC8OQB97pHz02B3me 4zUgETAdBgNVHREEFjAUghIqLmFwLmRlc2NhcnRlcy5jb20wDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA6BgNVHR8EMzAxMC+g LaArhilodHRwOi8vY2RwLnRoYXd0ZS5jb20vVGhhd3RlUlNBQ0EyMDE4LmNybDBM BgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3 dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjBvBggrBgEFBQcBAQRjMGEwJAYI KwYBBQUHMAGGGGh0dHA6Ly9zdGF0dXMudGhhd3RlLmNvbTA5BggrBgEFBQcwAoYt aHR0cDovL2NhY2VydHMudGhhd3RlLmNvbS9UaGF3dGVSU0FDQTIwMTguY3J0MAkG A1UdEwQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEB ALIqEBxz+jBJVB6CfGg+yao3kL1FHmQJdn9MZ5uc3mbTQn18WdqIrl8d+pNvtXJN 6+lof2lgThAyRXaKuT5Yc31ucYJow/N/moB3jNTsoaWwoSvrZYPPEYXfOHUau4Lg vU+iPAJQDqpPkrcocNKVWrTRO0rTEBag7tGCwSmSfJtgE6ygb3EPefmp+2W/GRAo PRA9l3YU7yvaetj7dbISc8bn2H1cmEXuIG6iIXLQZgqQDrpNBRUmZaTC0Xj+4O6h W5uy5yv20cHjb6mYsJqro4ED2gMRLPJdtnQmd1QRsvD6I7qriBVcSlHeFNNXKBDG l5GGjy+Sa+h6gSkHr/xoOZc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0MCexbwT26UDauGNvlCL 2f9Yy2eQDf5Pmaxmocv3jbz3C0+E1h3yPRaxQVK331yZORMq3boHDmSa8ukfa0Qf r3xOZDt1Ot5Qn+7gsErgCYNyZB3JULMaG/8DKbCYIB3qjXWrQ+/sb5N/7iLn+oBa pXoyznBXlU0dMVL8UAs76XNZxxasVOGSbBs3Y7pjNBuhhzXhteKUZT9TnzHzvSP5 6jvFGpw7Sf48FNljurcUvkNRZ7fqxuBQ7R1zGP0/XwI923ud1Eh8BaBh65bvwnfB 9+vB0kp4ui5qv66QBfRqCUcoS951dTFPQhn0NyY9Jtv6O3ZiIZLTGiGjjy9uvEP3 HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11885138564010812208468803309440211933 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-22 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Waterloo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Descartes Systems Group Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AP' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.ap.descartes.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26352551995996837073662071617300420084969916017362314708980645529136351694031491606717260267112841776038787780178266980439469243963887273160366957914166449425727364303932398701374562809706031870113361790675565121914257919985533876226954163774259421965072481184927576487308890207006340932627863906187947896441206724930441042916167447612886918906770464542221245705286243220724491384815699561657926528664551962178758345338014269980783221370294816841367174304599244078232815699897861210269472300167921821191290851349402251598057742028058470055169390499375663200999930473060830639368246318136112481536258927894041444218653 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 083439ca0bc39007dee91f3d3607799ee3352011 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ap.descartes.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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