alfabank.ru
- OAO Alfa-Bank -
Issued by Thawte SGC CA - G2
About this certificate
This digital certificate with serial number 3e:ca:b3:9b:13:b8:99:16:00:0b:8a:ec:d4:f1:e1:7a was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
- Subscriber Certificate: extKeyUsage values other than id-kp-serverAuth, id-kp-clientAuth, and id-kp-emailProtection SHOULD NOT be present. (BRs: 7.1.2.3)
OAO Alfa-Bank
Organization:
OAO Alfa-Bank
State / Province:
RUSSIA
Locality: Moscow
Country: RU
Locality: Moscow
Country: RU
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 3e:ca:b3:9b:13:b8:99:16:00:0b:8a:ec:d4:f1:e1:7aSerial Number (int): 83464622541876443126295557278954283386
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 24:c0:c0:a4:49:3c:52:0b:12:d8:92:0c:51:d1:87:a7:4d:54:75:2c
Fingerprint (sha1): ee:4a:24:9d:fd:ff:6c:8c:51:83:4c:f7:f1:ed:b3:bb:94:c4:b7:3f
Fingerprint (sha256): 10:96:9c:44:72:d9:16:5b:c8:cf:57:a2:68:4f:ab:c5:b4:02:81:e1:ab:d5:bd:fd:7c:86:14:b4:26:a0:e5:08
Issuing Certificate URL: http://svr-sgc-aia.thawte.com/ThawteSGCG2.cer
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-sgc-crl.thawte.com/ThawteSGCG2.crl
Check the revocation status for certificate alfabank.ru
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for alfabank.ru
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Netscape Server-Gated Cryptography
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
alfabank.ru
Other certificates including the domain name alfabank.ru
(limited to 100 certificates)
traveler2.alfabank.ru
agent.alfabank.ru
agent.alfabank.ru
digital.alfabank.ru
ib.alfabank.ru
zp.alfabank.ru
anketa.alfabank.ru
ib.alfabank.ru
club.alfabank.ru
pilots.alfabank.ru
alfapartners.alfabank.ru
click.alfabank.ru
welcome.alfabank.ru
ctxvdi.alfabank.ru
my.alfabank.ru
settings.alfabank.ru
reg.alfabank.ru
trading.alfabank.ru
groupib-ac.alfabank.ru
anketa.alfabank.ru
rko.alfabank.ru
sense.alfabank.ru
payment.alfabank.ru
traveler2.alfabank.ru
zp.alfabank.ru
potok.alfabank.ru
telework.alfabank.ru
trade.alfabank.ru
click.alfabank.ru
link.alfabank.ru
travelervip.alfabank.ru
acs.alfabank.ru
mind.alfabank.ru
testlink.alfabank.ru
blackstar.alfabank.ru
ecom.alfabank.ru
travelernext.alfabank.ru
sandbox.alfabank.ru
travelervip.alfabank.ru
alfago.alfabank.ru
click.alfabank.ru
travel.alfabank.ru
alfabank.ru
investments.alfabank.ru
CC.ALFABANK.RU
design.alfabank.ru
chatkb.alfabank.ru
design.alfabank.ru
link.alfabank.ru
nalog.alfabank.ru
zp.alfabank.ru
private.auth.alfabank.ru
store.alfabank.ru
private.auth.alfabank.ru
welcome.alfabank.ru
scf.alfabank.ru
club.alfabank.ru
usability.alfabank.ru
private.auth.alfabank.ru
link.alfabank.ru
digp.alfabank.ru
rko.alfabank.ru
alfapartners.alfabank.ru
megaplan.alfabank.ru
guarantees.alfabank.ru
click.alfabank.ru
traveler2.alfabank.ru
ipoteka.alfabank.ru
testamcalls.alfabank.ru
learn.alfabank.ru
alfabank.ru
atv.alfabank.ru
online.alfabank.ru
kassa.alfabank.ru
online.alfabank.ru
baas.alfabank.ru
metrics.alfabank.ru
pilots.alfabank.ru
alfapartners.alfabank.ru
my.alfabank.ru
push.alfabank.ru
api.alfabank.ru
pay2.alfabank.ru
partner.alfabank.ru
job.alfabank.ru
linkmsg.alfabank.ru
club.alfabank.ru
acs.alfabank.ru
hr.alfabank.ru
money.alfabank.ru
alfa-mobile.alfabank.ru
smpapi.alfabank.ru
online.alfabank.ru
digital.alfabank.ru
blackstar.alfabank.ru
store.alfabank.ru
partner.alfabank.ru
alfapartners.alfabank.ru
traveler.alfabank.ru
alfabox.alfabank.ru
agent.alfabank.ru
agent.alfabank.ru
digital.alfabank.ru
ib.alfabank.ru
zp.alfabank.ru
anketa.alfabank.ru
ib.alfabank.ru
club.alfabank.ru
pilots.alfabank.ru
alfapartners.alfabank.ru
click.alfabank.ru
welcome.alfabank.ru
ctxvdi.alfabank.ru
my.alfabank.ru
settings.alfabank.ru
reg.alfabank.ru
trading.alfabank.ru
groupib-ac.alfabank.ru
anketa.alfabank.ru
rko.alfabank.ru
sense.alfabank.ru
payment.alfabank.ru
traveler2.alfabank.ru
zp.alfabank.ru
potok.alfabank.ru
telework.alfabank.ru
trade.alfabank.ru
click.alfabank.ru
link.alfabank.ru
travelervip.alfabank.ru
acs.alfabank.ru
mind.alfabank.ru
testlink.alfabank.ru
blackstar.alfabank.ru
ecom.alfabank.ru
travelernext.alfabank.ru
sandbox.alfabank.ru
travelervip.alfabank.ru
alfago.alfabank.ru
click.alfabank.ru
travel.alfabank.ru
alfabank.ru
investments.alfabank.ru
CC.ALFABANK.RU
design.alfabank.ru
chatkb.alfabank.ru
design.alfabank.ru
link.alfabank.ru
nalog.alfabank.ru
zp.alfabank.ru
private.auth.alfabank.ru
store.alfabank.ru
private.auth.alfabank.ru
welcome.alfabank.ru
scf.alfabank.ru
club.alfabank.ru
usability.alfabank.ru
private.auth.alfabank.ru
link.alfabank.ru
digp.alfabank.ru
rko.alfabank.ru
alfapartners.alfabank.ru
megaplan.alfabank.ru
guarantees.alfabank.ru
click.alfabank.ru
traveler2.alfabank.ru
ipoteka.alfabank.ru
testamcalls.alfabank.ru
learn.alfabank.ru
alfabank.ru
atv.alfabank.ru
online.alfabank.ru
kassa.alfabank.ru
online.alfabank.ru
baas.alfabank.ru
metrics.alfabank.ru
pilots.alfabank.ru
alfapartners.alfabank.ru
my.alfabank.ru
push.alfabank.ru
api.alfabank.ru
pay2.alfabank.ru
partner.alfabank.ru
job.alfabank.ru
linkmsg.alfabank.ru
club.alfabank.ru
acs.alfabank.ru
hr.alfabank.ru
money.alfabank.ru
alfa-mobile.alfabank.ru
smpapi.alfabank.ru
online.alfabank.ru
digital.alfabank.ru
blackstar.alfabank.ru
store.alfabank.ru
partner.alfabank.ru
alfapartners.alfabank.ru
traveler.alfabank.ru
alfabox.alfabank.ru
Certificate
The complete raw certificate details for alfabank.ru in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEnjCCA4agAwIBAgIQPsqzmxO4mRYAC4rs1PHhejANBgkqhkiG9w0BAQUFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRswGQYDVQQDExJU aGF3dGUgU0dDIENBIC0gRzIwHhcNMTQwNDA5MDAwMDAwWhcNMTUwNTA0MjM1OTU5 WjBdMQswCQYDVQQGEwJSVTEPMA0GA1UECBMGUlVTU0lBMQ8wDQYDVQQHFAZNb3Nj b3cxFjAUBgNVBAoUDU9BTyBBbGZhLUJhbmsxFDASBgNVBAMUC2FsZmFiYW5rLnJ1 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyb40X9ZO6xD3Pk0FLNoC B8253CNQ5tmwtnMCn9jQCpYyvPf5xyUe2j31alrQ1Yf/Q+5sYHrTkICkTNDcEzm1 fwN58aQ6/beEb5fPPgOvppvABSQQ2lOpPiFHxmKqkNDOwJvA7wwVqnUrwCIdMw7B LqlRT/GNf1l4jXcZBD60rwjDZE3Kg4JCpUghidlcxnSC3wkZOxNM1aUcnGB7uJHm GQsWOy/KH/ZzJC7Wb8eNcCrN2Gddz8EKSw+Co12Mfu0JnD/N2AHBBvF8FwzNV6C9 iy0NyGXU+ZG60hSznFb+UFy93kkKN+XqabR99FlmFdQ0rkT1iIEwlKTUf3A3XKEx 6wIDAQABo4IBdDCCAXAwFgYDVR0RBA8wDYILYWxmYWJhbmsucnUwCQYDVR0TBAIw ADAOBgNVHQ8BAf8EBAMCBaAwQQYDVR0gBDowODA2BgpghkgBhvhFAQc2MCgwJgYI KwYBBQUHAgEWGmh0dHBzOi8vd3d3LnRoYXd0ZS5jb20vY3BzMB8GA1UdIwQYMBaA FCTAwKRJPFILEtiSDFHRh6dNVHUsMD4GA1UdHwQ3MDUwM6AxoC+GLWh0dHA6Ly9z dnItc2djLWNybC50aGF3dGUuY29tL1RoYXd0ZVNHQ0cyLmNybDAoBgNVHSUEITAf BggrBgEFBQcDAQYIKwYBBQUHAwIGCWCGSAGG+EIEATBtBggrBgEFBQcBAQRhMF8w IgYIKwYBBQUHMAGGFmh0dHA6Ly9vY3NwLnRoYXd0ZS5jb20wOQYIKwYBBQUHMAKG LWh0dHA6Ly9zdnItc2djLWFpYS50aGF3dGUuY29tL1RoYXd0ZVNHQ0cyLmNlcjAN BgkqhkiG9w0BAQUFAAOCAQEAk3yWXxWDJbkaWTnsEiOGJajfpOfW/dyWzjGtPveY tpiVpe9dYIf6pwHeMIKJZ/yobEXiBuZhoJKOqhgx9TYY5YdPKiILGN31M5PaxZxa at6e+ZxDaBsGek0CXiUtRZISSzr+5XRfK6J1BXI1tG1/5uPnHTffA5MT22YxePMN zcpfS1leo9C9tvcD+4gE6l6eTmBlNAJGyLVdJsvjKGeCzKeQJBaqPZT4cFyswqx8 VsFgxv98oF/19kiLzEZPdSugBpULtRDBl9I+QBJH4f3xWCvYMICV5QH3qBlDh/KA Y4cePmZH6q0jb7ef3lzhfqPQUpigzJK7ReZu1Wc+kK+Pcw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyb40X9ZO6xD3Pk0FLNoC B8253CNQ5tmwtnMCn9jQCpYyvPf5xyUe2j31alrQ1Yf/Q+5sYHrTkICkTNDcEzm1 fwN58aQ6/beEb5fPPgOvppvABSQQ2lOpPiFHxmKqkNDOwJvA7wwVqnUrwCIdMw7B LqlRT/GNf1l4jXcZBD60rwjDZE3Kg4JCpUghidlcxnSC3wkZOxNM1aUcnGB7uJHm GQsWOy/KH/ZzJC7Wb8eNcCrN2Gddz8EKSw+Co12Mfu0JnD/N2AHBBvF8FwzNV6C9 iy0NyGXU+ZG60hSznFb+UFy93kkKN+XqabR99FlmFdQ0rkT1iIEwlKTUf3A3XKEx 6wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 83464622541876443126295557278954283386 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SGC CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-04-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-05-04 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RUSSIA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Moscow' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'OAO Alfa-Bank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'alfabank.ru' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25467692675931433987807918102055590143369603234682870157101143850688307454757535103536945994119145647383394591841190993031036091778649115033078250513577095133740014353076052841329814981168177972174462267715915895840576527129289509371393405094715116472978504922824304256099041122739121435200166351674849176647737535907867294231655204691287446225213825875757015361642058809666483264822705683591044763633537089449649744249723667343126974177835077771550392013305976252210250769370926497016208420427296328707745942096537538697290829256572947190095102013161114088108145881685822706668785503876881238531314053501824297677291 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alfabank.ru' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 24c0c0a4493c520b12d8920c51d187a74d54752c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-sgc-crl.thawte.com/ThawteSGCG2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (33 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113730.4.1 (serverGatedCrypto) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (97 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-sgc-aia.thawte.com/ThawteSGCG2.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00937c965f158325b91a5939ec12238625a8dfa4e7d6fddc96ce31ad3ef798b69895a5ef5d6087faa701de30828967fca86c45e206e661a0928eaa1831f53618e5874f2a220b18ddf53393dac59c5a6ade9ef99c43681b067a4d025e252d4592124b3afee5745f2ba275057235b46d7fe6e3e71d37df039313db663178f30dcdca5f4b595ea3d0bdb6f703fb8804ea5e9e4e6065340246c8b55d26cbe3286782cca7902416aa3d94f8705cacc2ac7c56c160c6ff7ca05ff5f6488bcc464f752ba006950bb510c197d23e401247e1fdf1582bd8308095e501f7a8194387f28063871e3e6647eaad236fb79fde5ce17ea3d05298a0cc92bb45e66ed5673e90af8f73