*.esquire.com
- The Hearst Corporation -
Issued by Cybertrust Public SureServer SV CA
About this certificate
This digital certificate with serial number 02:00:00:00:00:01:45:65:f6:a9:76:06:f5:84 was issued on by Cybertrust Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates MUST contain the Subject Alternate Name extension (BRs: 7.1.4.2.1)
- Subscriber Certificate: authorityInformationAccess MUST contain the HTTP URL of the Issuing CA's OSCP responder. (BRs: 7.1.2.3)
- Subscriber Certificate: authorityInformationAccess MUST be present. (BRs: 7.1.2.3)
- Subscriber certificates must contain at least one policy identifier that indicates adherence to CAB standards (BRs: 7.1.2.3)
- Subscriber Certificate: certificatePolicies MUST be present and SHOULD NOT be marked critical. (BRs: 7.1.2.3)
- The common name field in subscriber certificates must include only names from the SAN extension (BRs: 7.1.4.2.2)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Subscriber certificates authorityInformationAccess extension should contain the HTTP URL of the issuing CA’s certificate (BRs: 7.1.2.3)
The Hearst Corporation
Organization:
The Hearst Corporation
Organization unit: Digital
Organization unit: Digital
State / Province:
NEW YORK
Locality: New York
Country: US
Locality: New York
Country: US
Cybertrust Inc
Organization:
Cybertrust Inc
This certificate has expire since
Certificate Details
Serial Number (hex): 02:00:00:00:00:01:45:65:f6:a9:76:06:f5:84Serial Number (int): 40564819207326788266137167000964
Serial Number lenght: 106 bits, 14 octets
SubjectKeyId: 40:5b:fc:c6:4f:32:25:56:65:f3:45:b9:7a:f8:2e:03:46:65:ce:75
AuthorityKeyId: 04:98:60:df:80:1b:96:49:5d:65:56:2d:a5:2c:09:24:0a:ec:dc:b9
Fingerprint (sha1): 71:40:2d:01:47:6b:c8:89:19:a9:22:5a:25:4d:ea:77:c7:5a:40:51
Fingerprint (sha256): 11:c7:80:d9:eb:a1:e9:42:ea:df:67:10:1a:cf:93:99:47:06:bd:da:f7:33:ce:fa:a6:0d:a0:cf:74:51:a8:f7
Revocation information
CRL Distribution Point: http://crl.omniroot.com/PublicSureServerSV.crlCheck the revocation status for certificate *.esquire.com
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.esquire.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
7 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name esquire.com
(limited to 100 certificates)
*.25ans.jp
dns-vetting1-mims-pawel.map.fastly.net
hearst-prod.actioniq.mr-in.com
dns-vetting1-mims-pawel.map.fastly.net
hearst-prod.actioniq.mr-in.com
dns-vetting1-mims-pawel.map.fastly.net
hearst-prod.actioniq.mr-in.com
mentoring.esquire.com
shop.elle.com
sli.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
cosmopolitan.com
mcstaging-shop.elle.com
mentoring.esquire.com
hearst-prod.actioniq.mr-in.com
mcstaging-shop.elle.com
iscriviti.it.esquire.com
shop.elle.com
*.hearstapps.com
dns-vetting1-mims-pawel.map.fastly.net
link.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
secure.hdmtools.com
mentoring.esquire.com
*.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
shop.elle.com
cosmopolitan.com
shop.elle.com
actieabonnement.live.hearst.aubergine-it.nl
actieabonnement.live.hearst.aubergine-it.nl
dns-vetting1-mims-pawel.map.fastly.net
store.caranddriver.com
dns-vetting1-mims-pawel.map.fastly.net
subscribe.hearstmags.com
sli.esquire.com
sli.esquire.com
mcstaging-shop.elle.com
shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
hearst-hdm.map.fastly.net
*.esquire.com
hearst-hdm.map.fastly.net
hearst-hdm.map.fastly.net
shop.cosmopolitan.com
shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
stage-archive.esquire.com
hearst-hdm.map.fastly.net
actieabonnement.live.hearst.aubergine-it.nl
sli.esquire.com
cosmopolitan.com
subscribe.hearstmags.com
dns-vetting1-mims-pawel.map.fastly.net
magentocloud55.map.fastly.net
subscribe.hearstmags.com
archive.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
subscribe.hearstmags.com
cosmopolitan.com
link.esquire.com
shop.elle.com
shop.elle.com
hearst-prod.actioniq.mr-in.com
shop.elledecor.com
mcstaging-shop.elle.com
actieabonnement.live.hearst.aubergine-it.nl
iscriviti.it.esquire.com
iscriviti.it.esquire.com
mcstaging-shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
subscribe.hearstmags.com
link.esquire.com
sli.esquire.com
actieabonnement.live.hearst.aubergine-it.nl
shop.elle.com
hearst-hdm.map.fastly.net
subscribe.hearstmags.com
abonnement.bicycling.nl
actieabonnement.live.hearst.aubergine-it.nl
dns-vetting1-mims-pawel.map.fastly.net
actieabonnement.live.hearst.aubergine-it.nl
cosmopolitan.com
store.caranddriver.com
dns-vetting1-mims-pawel.map.fastly.net
mcstaging-shop.elle.com
iscriviti.it.esquire.com
shop.elle.com
mentoring.esquire.com
shop.elle.com
sli.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
hearst-hdm.map.fastly.net
subscribe.hearstmags.com
cosmopolitan.com
dns-vetting1-mims-pawel.map.fastly.net
mcstaging-shop.elle.com
mcstaging-shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
*.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
hearst-prod.actioniq.mr-in.com
dns-vetting1-mims-pawel.map.fastly.net
hearst-prod.actioniq.mr-in.com
dns-vetting1-mims-pawel.map.fastly.net
hearst-prod.actioniq.mr-in.com
mentoring.esquire.com
shop.elle.com
sli.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
cosmopolitan.com
mcstaging-shop.elle.com
mentoring.esquire.com
hearst-prod.actioniq.mr-in.com
mcstaging-shop.elle.com
iscriviti.it.esquire.com
shop.elle.com
*.hearstapps.com
dns-vetting1-mims-pawel.map.fastly.net
link.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
secure.hdmtools.com
mentoring.esquire.com
*.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
shop.elle.com
cosmopolitan.com
shop.elle.com
actieabonnement.live.hearst.aubergine-it.nl
actieabonnement.live.hearst.aubergine-it.nl
dns-vetting1-mims-pawel.map.fastly.net
store.caranddriver.com
dns-vetting1-mims-pawel.map.fastly.net
subscribe.hearstmags.com
sli.esquire.com
sli.esquire.com
mcstaging-shop.elle.com
shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
hearst-hdm.map.fastly.net
*.esquire.com
hearst-hdm.map.fastly.net
hearst-hdm.map.fastly.net
shop.cosmopolitan.com
shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
stage-archive.esquire.com
hearst-hdm.map.fastly.net
actieabonnement.live.hearst.aubergine-it.nl
sli.esquire.com
cosmopolitan.com
subscribe.hearstmags.com
dns-vetting1-mims-pawel.map.fastly.net
magentocloud55.map.fastly.net
subscribe.hearstmags.com
archive.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
subscribe.hearstmags.com
cosmopolitan.com
link.esquire.com
shop.elle.com
shop.elle.com
hearst-prod.actioniq.mr-in.com
shop.elledecor.com
mcstaging-shop.elle.com
actieabonnement.live.hearst.aubergine-it.nl
iscriviti.it.esquire.com
iscriviti.it.esquire.com
mcstaging-shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
subscribe.hearstmags.com
link.esquire.com
sli.esquire.com
actieabonnement.live.hearst.aubergine-it.nl
shop.elle.com
hearst-hdm.map.fastly.net
subscribe.hearstmags.com
abonnement.bicycling.nl
actieabonnement.live.hearst.aubergine-it.nl
dns-vetting1-mims-pawel.map.fastly.net
actieabonnement.live.hearst.aubergine-it.nl
cosmopolitan.com
store.caranddriver.com
dns-vetting1-mims-pawel.map.fastly.net
mcstaging-shop.elle.com
iscriviti.it.esquire.com
shop.elle.com
mentoring.esquire.com
shop.elle.com
sli.esquire.com
dns-vetting1-mims-pawel.map.fastly.net
hearst-hdm.map.fastly.net
subscribe.hearstmags.com
cosmopolitan.com
dns-vetting1-mims-pawel.map.fastly.net
mcstaging-shop.elle.com
mcstaging-shop.elle.com
dns-vetting1-mims-pawel.map.fastly.net
*.esquire.com
Certificate
The complete raw certificate details for *.esquire.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEHjCCAwagAwIBAgIOAgAAAAABRWX2qXYG9YQwDQYJKoZIhvcNAQEFBQAwRjEX MBUGA1UEChMOQ3liZXJ0cnVzdCBJbmMxKzApBgNVBAMTIkN5YmVydHJ1c3QgUHVi bGljIFN1cmVTZXJ2ZXIgU1YgQ0EwHhcNMTQwNDE1MTUxNzE3WhcNMTUwNDE1MTUx NzE3WjB+MQswCQYDVQQGEwJVUzERMA8GA1UECBMITkVXIFlPUksxETAPBgNVBAcT CE5ldyBZb3JrMR8wHQYDVQQKExZUaGUgSGVhcnN0IENvcnBvcmF0aW9uMRAwDgYD VQQLEwdEaWdpdGFsMRYwFAYDVQQDFA0qLmVzcXVpcmUuY29tMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3YSuQedD/MuTqaVXLONJ1TWRqNbWmTU8aRU2 4jvCq7Su8vVQ09SKRnm5PvT+Vt2H3tOQCYZ4hQQWtAzWHMzPiYUaEX+AkYsuDXKi BRM4NKvD786B61gSzgFqeXKCVrRjdd74ysCf1lIHHAmwyqFxC0+eId81TfLCR8Ev 2QC1HC/kTXi0c91qHpg0rqDBx3qz60/NB8nytZrz9sjB2qOo18KXdMJW/TlBthKH kbejRr5E8fGsy5aGN32sDZGXvtE2lwQwYzoEBoJQIbaEv4O+OAstKrjPuiOPLR3s 8r9ztZ7mjR+jpyEVXvSwaUVMjW+dZr6OeobKvTgAhRL8/h0GQQIDAQABo4HRMIHO MB8GA1UdIwQYMBaAFASYYN+AG5ZJXWVWLaUsCSQK7Ny5MD8GA1UdHwQ4MDYwNKAy oDCGLmh0dHA6Ly9jcmwub21uaXJvb3QuY29tL1B1YmxpY1N1cmVTZXJ2ZXJTVi5j cmwwHQYDVR0OBBYEFEBb/MZPMiVWZfNFuXr4LgNGZc51MAkGA1UdEwQCMAAwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjARBglg hkgBhvhCAQEEBAMCBsAwDQYJKoZIhvcNAQEFBQADggEBAJWjpAOwerTJhGea/O98 dlguY2BVxavXQAQdM0zAqQhgmyQgDRWujaOujQ4ek6ctwUCc70ez/swX9xmk8Yvp ktWCMUhwxoiTr+FiznHecDzgb9aEHQnkb2APkamkEKXi/662ovo/w5LiA4MM7Ftt FEACHumM+BmOz4P1CWZxtCPrzYhwzaxYXACjrvv6dCGriY5WkmUcWvs0oE5HSh/V 82qGFiRzdixU2YCjq2JOXCsoBFQ1bqydhcR0hGttlhclYxAgxVztiBXr54M4VvJf UBsSkITNX3GqlqsTttll+Clvx6+UGW2ExZ/XaewePbh4FXCNooJl+EWCTeZQe1St Qb8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3YSuQedD/MuTqaVXLONJ 1TWRqNbWmTU8aRU24jvCq7Su8vVQ09SKRnm5PvT+Vt2H3tOQCYZ4hQQWtAzWHMzP iYUaEX+AkYsuDXKiBRM4NKvD786B61gSzgFqeXKCVrRjdd74ysCf1lIHHAmwyqFx C0+eId81TfLCR8Ev2QC1HC/kTXi0c91qHpg0rqDBx3qz60/NB8nytZrz9sjB2qOo 18KXdMJW/TlBthKHkbejRr5E8fGsy5aGN32sDZGXvtE2lwQwYzoEBoJQIbaEv4O+ OAstKrjPuiOPLR3s8r9ztZ7mjR+jpyEVXvSwaUVMjW+dZr6OeobKvTgAhRL8/h0G QQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 40564819207326788266137167000964 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cybertrust Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cybertrust Public SureServer SV CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-04-15 15:17:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-04-15 15:17:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NEW YORK' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Hearst Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Digital' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String '*.esquire.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27964092685777849851575483892295159876327665661662539067282472071383863467299046025206566536700719586103058896352772473051016900764741313025198674457975670018606971990288894992185677491542416614819719612922013183679852857247217397681171792385455830817732413274535816711149638930304224952458304525867375935637747310961210291193624225688692368011220572112999170293337047632430960348724902081635204228142201131616998254922587417572744528798983242429175085021442593207595810893579906485836992422417507523638102130945654174606868216680837380563750945816835440648291799012580013018802610513145621574581049432290733280003649 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 049860df801b96495d65562da52c09240aecdcb9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.omniroot.com/PublicSureServerSV.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 405bfcc64f32255665f345b97af82e034665ce75 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113730.1.1 (netscape-cert-type) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2 bits) 06c0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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