revoked-root14.geotrust.com
- GeoTrust, Inc. -
Issued by GeoTrust EV SSL CA - G6
About this certificate
This digital certificate with serial number 3c:af:5b:34:a0:2e:87:c8:0e:00:07:c0:36:b0:d6:3f was issued on by GeoTrust Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
GeoTrust, Inc.
Company registration number:
3479750
Organization: GeoTrust, Inc.
Organization unit: Root 14 - REVOKED
Organization: GeoTrust, Inc.
Organization unit: Root 14 - REVOKED
State / Province:
California
Locality: Mountain View
Country: US
Locality: Mountain View
Country: US
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 3c:af:5b:34:a0:2e:87:c8:0e:00:07:c0:36:b0:d6:3fSerial Number (int): 80664181566050783621925695459265926719
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: be:99:96:85:84:ef:e6:9f:f9:1f:e1:fc:66:67:5b:56:a5:fa:8b:53
Fingerprint (sha1): 03:58:99:d4:3c:b8:4b:67:60:16:7b:f5:09:28:4e:bf:23:84:b4:71
Fingerprint (sha256): 11:9c:7a:59:44:e9:7e:f2:e1:5a:88:74:9f:03:83:b2:5f:30:d5:c8:08:a5:6e:c7:4d:1a:52:41:97:79:4c:67
Issuing Certificate URL: http://fi.symcb.com/fi.crt
Revocation information
OCSP Server: http://fi.symcd.comCRL Distribution Point: http://fi.symcb.com/fi.crl
Check the revocation status for certificate revoked-root14.geotrust.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for revoked-root14.geotrust.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
revoked-root14.geotrust.com
Other certificates including the domain name geotrust.com
(limited to 100 certificates)
dev-ops.geotrust.com
smarticon.geotrust.com
cryptoreport.geotrust.com
pilot-security-center.geotrust.com
verify.geotrust.com
pilot-docs.geotrust.com
test-tcadmin.geotrust.com
services.geotrust.com
valid-root13.geotrust.com
docs.geotrust.com
test-api.geotrust.com
test-api.geotrust.com
security-center.geotrust.com
knowledge.geotrust.com
pilot-security-center.geotrust.com
seal.geotrust.com
cc-admin.websecurity.symantec.com
pilot-docs.geotrust.com
expired-root11.geotrust.com
valid-root15.geotrust.com
knowledge.geotrust.com
services.geotrust.com
adobe-timestamp.geotrust.com
pilot-api-appsec-cws.ws.symantec.com
revoked-root14.geotrust.com
dcv.rapidssl.com
enterprise-security-center.geotrust.com
security-center.geotrust.com
test-api.geotrust.com
test-cc-admin.websecurity.symantec.com
enterprise-api.geotrust.com
cc-admin.geotrust.com
valid-root15.geotrust.com
test-cc-admin.geotrust.com
knowledge.geotrust.com
origin-seal.symauth.com
enterprise-api.geotrust.com
security-center.geotrust.com
timestamp.geotrust.com
query.geotrust.com
enterprise-api.geotrust.com
test-services.geotrust.com
valid-root13.geotrust.com
geotrust.com
smarticon.geotrust.com
revoked-root15.geotrust.com
www.geotrust.com
extended-validation-ssl.geotrust.com
test-tbidev.geotrust.com
blog.geotrust.com
website-security.geotrust.com
smarticon.geotrust.com
dev-smarticon.geotrust.com
seal.geotrust.com
getcert.geotrust.com
dev-products.geotrust.com
pilot-enterprise-api.geotrust.com
www.geotrust.com
pilot-enterprise-security-center.geotrust.com
pilot-enterprise-api.geotrust.com
dev-crl.geotrust.com
test-api.geotrust.com
extended-validation-ssl.geotrust.com
test-smarticon.geotrust.com
digicert.com
ecc-test-valid.geotrust.com
smarticon.geotrust.com
pilot-enterprise-security-center.geotrust.com
dev-ops.geotrust.com
cryptoreport.geotrust.com
test-api.geotrust.com
valid-root14.geotrust.com
pilot-enterprise-security-center.geotrust.com
test-api.geotrust.com
pilot-enterprise-security-center.geotrust.com
adobe-timestamp.geotrust.com
seal.geotrust.com
valid-root12.geotrust.com
test-tcadmin.geotrust.com
sealinfo.geotrust.com
adobe-timestamp.geotrust.com
DigiCert, Inc.
pilot-getcert.geotrust.com
security-center.geotrust.com
revoked-root12.geotrust.com
test-ops.geotrust.com
extended-validation-ssl.geotrust.com
website-security.geotrust.com
enterprise-api.geotrust.com
seal.geotrust.com
timestamp.geotrust.com
adobe-timestamp.geotrust.com
pilot-security-center.geotrust.com
docs.geotrust.com
?.?.symantec.com
seal.geotrust.com
ops.geotrust.com
pilot-enterprise-security-center.geotrust.com
pilot-verify.geotrust.com
docs.geotrust.com
smarticon.geotrust.com
cryptoreport.geotrust.com
pilot-security-center.geotrust.com
verify.geotrust.com
pilot-docs.geotrust.com
test-tcadmin.geotrust.com
services.geotrust.com
valid-root13.geotrust.com
docs.geotrust.com
test-api.geotrust.com
test-api.geotrust.com
security-center.geotrust.com
knowledge.geotrust.com
pilot-security-center.geotrust.com
seal.geotrust.com
cc-admin.websecurity.symantec.com
pilot-docs.geotrust.com
expired-root11.geotrust.com
valid-root15.geotrust.com
knowledge.geotrust.com
services.geotrust.com
adobe-timestamp.geotrust.com
pilot-api-appsec-cws.ws.symantec.com
revoked-root14.geotrust.com
dcv.rapidssl.com
enterprise-security-center.geotrust.com
security-center.geotrust.com
test-api.geotrust.com
test-cc-admin.websecurity.symantec.com
enterprise-api.geotrust.com
cc-admin.geotrust.com
valid-root15.geotrust.com
test-cc-admin.geotrust.com
knowledge.geotrust.com
origin-seal.symauth.com
enterprise-api.geotrust.com
security-center.geotrust.com
timestamp.geotrust.com
query.geotrust.com
enterprise-api.geotrust.com
test-services.geotrust.com
valid-root13.geotrust.com
geotrust.com
smarticon.geotrust.com
revoked-root15.geotrust.com
www.geotrust.com
extended-validation-ssl.geotrust.com
test-tbidev.geotrust.com
blog.geotrust.com
website-security.geotrust.com
smarticon.geotrust.com
dev-smarticon.geotrust.com
seal.geotrust.com
getcert.geotrust.com
dev-products.geotrust.com
pilot-enterprise-api.geotrust.com
www.geotrust.com
pilot-enterprise-security-center.geotrust.com
pilot-enterprise-api.geotrust.com
dev-crl.geotrust.com
test-api.geotrust.com
extended-validation-ssl.geotrust.com
test-smarticon.geotrust.com
digicert.com
ecc-test-valid.geotrust.com
smarticon.geotrust.com
pilot-enterprise-security-center.geotrust.com
dev-ops.geotrust.com
cryptoreport.geotrust.com
test-api.geotrust.com
valid-root14.geotrust.com
pilot-enterprise-security-center.geotrust.com
test-api.geotrust.com
pilot-enterprise-security-center.geotrust.com
adobe-timestamp.geotrust.com
seal.geotrust.com
valid-root12.geotrust.com
test-tcadmin.geotrust.com
sealinfo.geotrust.com
adobe-timestamp.geotrust.com
DigiCert, Inc.
pilot-getcert.geotrust.com
security-center.geotrust.com
revoked-root12.geotrust.com
test-ops.geotrust.com
extended-validation-ssl.geotrust.com
website-security.geotrust.com
enterprise-api.geotrust.com
seal.geotrust.com
timestamp.geotrust.com
adobe-timestamp.geotrust.com
pilot-security-center.geotrust.com
docs.geotrust.com
?.?.symantec.com
seal.geotrust.com
ops.geotrust.com
pilot-enterprise-security-center.geotrust.com
pilot-verify.geotrust.com
docs.geotrust.com
Certificate
The complete raw certificate details for revoked-root14.geotrust.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHAzCCBeugAwIBAgIQPK9bNKAuh8gOAAfANrDWPzANBgkqhkiG9w0BAQsFADBH MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEgMB4GA1UEAxMX R2VvVHJ1c3QgRVYgU1NMIENBIC0gRzYwHhcNMTcwNTA5MDAwMDAwWhcNMTkwNTAz MjM1OTU5WjCB9jETMBEGCysGAQQBgjc8AgEDEwJVUzEZMBcGCysGAQQBgjc8AgEC DAhEZWxhd2FyZTELMAkGA1UEBhMCVVMxEzARBgNVBAgMCkNhbGlmb3JuaWExFjAU BgNVBAcMDU1vdW50YWluIFZpZXcxHTAbBgNVBA8TFFByaXZhdGUgT3JnYW5pemF0 aW9uMRAwDgYDVQQFEwczNDc5NzUwMRcwFQYDVQQKDA5HZW9UcnVzdCwgSW5jLjEa MBgGA1UECwwRUm9vdCAxNCAtIFJFVk9LRUQxJDAiBgNVBAMMG3Jldm9rZWQtcm9v dDE0Lmdlb3RydXN0LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ANyYyPT6qEtrX5UdDJ85gXjDA9/oUIYubLm/mG3cnaTfMa0M6rM6n0XKmKDVamQI vtCveyA05lHEIKBN+a/9ZLUdH7yXgt7d0tFGFfLIVnbEiyj/XC7agHQ68rKimCQB 9KObm80W6PlK+xx7L+SDwdgmldJXHRm/CeQ+pdzZgQi9qc/vDTHqkX0KcmcoA7S3 qEPx24oSje3ytbbi2DrKzRt6RwH4DHVyG1IR7aiGv/xtF0hC3R+zN+WuO2AdWgYi 3KqXWkMxNsmWW64cDQ+xFVsSNLEqYD28b4S+kq4GbCsqgij+tl0sLuCncHMmfcqQ krjSnD0Z74LJ4yX37sEiy+cCAwEAAaOCAzkwggM1MCYGA1UdEQQfMB2CG3Jldm9r ZWQtcm9vdDE0Lmdlb3RydXN0LmNvbTAJBgNVHRMEAjAAMA4GA1UdDwEB/wQEAwIF oDCBqQYDVR0gBIGhMIGeMIGSBgkrBgEEAfAiAQYwgYQwPwYIKwYBBQUHAgEWM2h0 dHBzOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9sZWdh bDBBBggrBgEFBQcCAjA1DDNodHRwczovL3d3dy5nZW90cnVzdC5jb20vcmVzb3Vy Y2VzL3JlcG9zaXRvcnkvbGVnYWwwBwYFZ4EMAQEwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcwAYYTaHR0cDov L2ZpLnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0cDovL2ZpLnN5bWNiLmNvbS9m aS5jcnQwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL2ZpLnN5bWNiLmNvbS9maS5j cmwwHwYDVR0jBBgwFoAUvpmWhYTv5p/5H+H8ZmdbVqX6i1MwggF8BgorBgEEAdZ5 AgQCBIIBbASCAWgBZgB2AN3rHSt6DU+mIIuBrYFocH4ujp0B1VyIjT0RxM227L7M AAABW/fnGPYAAAQDAEcwRQIgO4ijJDGV65R99I4yY306prgIn6qy/+dB954BON8V IYkCIQDBg8LnIENiVf7OukHxC9R0ghUIL9iKL2DNGnaFOI4OxAB1AKS5CZC0GFgU h7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABW+5MTNkAAAQDAEYwRAIgSQLbmSWC dgTyvzDf7QNAihIfnXsU6fhdq9UIF5r/03ICIDZwAY3p3hctp5SR/xDFwtgn3VxA f45ir7uIGHln13riAHUA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo/csA AAFb7kxNEgAABAMARjBEAiACnvQsGecWcZQ0EOGYnTOVdjl+j16V1GKJPtTJxevH 3gIgGyt/bch1Y9oKFCLwcECPYHnEPmFju9/NVEUYJcz1wBMwDQYJKoZIhvcNAQEL BQADggEBAGUB0mp8Br56v2j+E1Xu/13vmKFHExY1iSHV4Vifk9+dfiMmYMCJVQ/N 3G6o3op/Hc5OAfnupxGv2vhKyiYQZl71uPj/kCUhFtZ7Cr4BcLjB0X68SigUaUTl ep48NqtDgrsvij1VDPwuVJsZZojiAavteRnoqQ8B58tA5ivnFjkm3Hf9/sZy/w80 BOEAfzvmt+yEneQcpI1RoYtYh/6FwnY5t62LRP4t9lv4czarfy0dIbrjB+LUGBNG xJ5soqLjSS5AtnJmYbQXZ/EB+bySIyS059pfCmsxM/ajoGUUp4E1ULOoqvxD00Ho l4qL422sijCmdv0TVtW01UlizxuDMGI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3JjI9PqoS2tflR0MnzmB eMMD3+hQhi5sub+YbdydpN8xrQzqszqfRcqYoNVqZAi+0K97IDTmUcQgoE35r/1k tR0fvJeC3t3S0UYV8shWdsSLKP9cLtqAdDrysqKYJAH0o5ubzRbo+Ur7HHsv5IPB 2CaV0lcdGb8J5D6l3NmBCL2pz+8NMeqRfQpyZygDtLeoQ/HbihKN7fK1tuLYOsrN G3pHAfgMdXIbUhHtqIa//G0XSELdH7M35a47YB1aBiLcqpdaQzE2yZZbrhwND7EV WxI0sSpgPbxvhL6SrgZsKyqCKP62XSwu4KdwcyZ9ypCSuNKcPRnvgsnjJffuwSLL 5wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 80664181566050783621925695459265926719 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust EV SSL CA - G6' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Delaware' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Mountain View' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '3479750' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Root 14 - REVOKED' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'revoked-root14.geotrust.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27847768178158265193199654197170226582368622941310707680390069438049823141515486077458982124168497764515943068173414478078823763046388213597169989956469991330209436710838169665726218675948462430795197897722724008853971851125012724205495324142997261926281559645367409153834397925622601573121591409946110246663017260202405062319008493093367444832096949660740387531161043944844824764398345562020886900871902131812714833022630177526723860743086692480270517964322697535974935519658034881201708257061234671192231413547663401001316273442254827741383615408296365201378150130603352918012587677918847322490536829646946506558439 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'revoked-root14.geotrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (161 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.14370.1.6 (GeoTrust EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://fi.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://fi.symcb.com/fi.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://fi.symcb.com/fi.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName be99968584efe69ff91fe1fc66675b56a5fa8b53 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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