usgcms.erm.com
- ERM Holdings Limited -
Issued by thawte SSL CA - G2
About this certificate
This digital certificate with serial number 36:f5:4a:1d:be:8a:a9:a6:79:0e:7d:cc:25:dd:c3:aa was issued on by thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
ERM Holdings Limited
Organization:
ERM Holdings Limited
Organization unit: ERM Global IT Services
Organization unit: ERM Global IT Services
State / Province:
LONDON
Locality: LONDON
Country: GB
Locality: LONDON
Country: GB
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 36:f5:4a:1d:be:8a:a9:a6:79:0e:7d:cc:25:dd:c3:aaSerial Number (int): 73051927757623657823053266098837111722
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60
Fingerprint (sha1): 7c:30:15:3f:47:a7:f6:ec:18:ec:60:80:8b:53:76:28:a0:97:9c:7a
Fingerprint (sha256): 12:17:03:cc:18:6e:d6:e5:b9:58:a9:4f:85:c8:6d:ca:3c:96:d9:ac:4d:c9:6c:20:63:af:f4:37:b2:41:52:70
Issuing Certificate URL: http://tj.symcb.com/tj.crt
Revocation information
OCSP Server: http://tj.symcd.comCRL Distribution Point: http://tj.symcb.com/tj.crl
Check the revocation status for certificate usgcms.erm.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for usgcms.erm.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
usgcms.erm.com
Other certificates including the domain name erm.com
(limited to 100 certificates)
emisapps58.erm.com
hemera.erm.com
onyx.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
cadmus.erm.com
ssl391724.cloudflaressl.com
san-1-s4.tlsprovisioning.exacttarget.com
maps.erm.com
password.erm.com
emisapps42.erm.com
usexton.erm.com
ermcustomersupport.erm.com
ceros4.map.fastly.net
doccom.erm.com
terra.erm.com
mvtransportswcs.erm.com
emisapps57.erm.com
chat.erm.com
ares.erm.com
ecast.erm.com
ensite.erm.com
apollo.erm.com
sunrise.erm.com
emisapps38.erm.com
hermes.erm.com
prismms.erm.com
minerva.erm.com
minerva.erm.com
unileverpsmtrack.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
minerva.erm.com
Mariner.erm.com
usgcms.erm.com
ceros4.map.fastly.net
ermwdftp.erm.com
ithelp.visionrt.com
*.exp.gumgum.com
adonis.erm.com
lafarge.erm.com
ares.erm.com
support.erm.com
ssl391724.cloudflaressl.com
foundation.erm.com
hybrid.erm.com
emisapps52.erm.com
emisftp.erm.com
swnotes2.erm.com
minerva.erm.com
boringlog.erm.com
CETEHS.ERM.COM
ENERSYSCTMS.ERM.COM
image.20210419.195922.s4.et.yellsatcloud.com
support.erm.com
maia.erm.com
mvtransportswcs.erm.com
erm.com
image.20210419.195922.s4.et.yellsatcloud.com
minervahub.erm.com
my.erm.com
ermcustomersupport.erm.com
ithelp.visionrt.com
hermes.erm.com
enersysctms.erm.com
ensite.erm.com
tdma-ilcd.erm.com
apollo.erm.com
emisapps53.erm.com
maps.erm.com
boringlog.erm.com
athena.erm.com
mapapps.erm.com
san-1-s4.tlsprovisioning.exacttarget.com
maia.erm.com
*.scm.azapps.erm.com
emisapps65.erm.com
spenv.erm.com
emisapps61.erm.com
flexforce.erm.com
CSLBEHRINGKANKAKEE.ERM.COM
spenv.erm.com
terra.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
emisapps40.erm.com
emis-support.erm.com
soteria.erm.com
ensite.erm.com
cerberus.erm.com
*.exp.gumgum.com
feedback.erm.com
www.erm.com
hera.erm.com
*.exp.gumgum.com
emisapps70.erm.com
tempo.api.erm.com
pcs.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
pcs.erm.com
ceros4.map.fastly.net
cerberus.erm.com
terra.erm.com
hemera.erm.com
onyx.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
cadmus.erm.com
ssl391724.cloudflaressl.com
san-1-s4.tlsprovisioning.exacttarget.com
maps.erm.com
password.erm.com
emisapps42.erm.com
usexton.erm.com
ermcustomersupport.erm.com
ceros4.map.fastly.net
doccom.erm.com
terra.erm.com
mvtransportswcs.erm.com
emisapps57.erm.com
chat.erm.com
ares.erm.com
ecast.erm.com
ensite.erm.com
apollo.erm.com
sunrise.erm.com
emisapps38.erm.com
hermes.erm.com
prismms.erm.com
minerva.erm.com
minerva.erm.com
unileverpsmtrack.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
minerva.erm.com
Mariner.erm.com
usgcms.erm.com
ceros4.map.fastly.net
ermwdftp.erm.com
ithelp.visionrt.com
*.exp.gumgum.com
adonis.erm.com
lafarge.erm.com
ares.erm.com
support.erm.com
ssl391724.cloudflaressl.com
foundation.erm.com
hybrid.erm.com
emisapps52.erm.com
emisftp.erm.com
swnotes2.erm.com
minerva.erm.com
boringlog.erm.com
CETEHS.ERM.COM
ENERSYSCTMS.ERM.COM
image.20210419.195922.s4.et.yellsatcloud.com
support.erm.com
maia.erm.com
mvtransportswcs.erm.com
erm.com
image.20210419.195922.s4.et.yellsatcloud.com
minervahub.erm.com
my.erm.com
ermcustomersupport.erm.com
ithelp.visionrt.com
hermes.erm.com
enersysctms.erm.com
ensite.erm.com
tdma-ilcd.erm.com
apollo.erm.com
emisapps53.erm.com
maps.erm.com
boringlog.erm.com
athena.erm.com
mapapps.erm.com
san-1-s4.tlsprovisioning.exacttarget.com
maia.erm.com
*.scm.azapps.erm.com
emisapps65.erm.com
spenv.erm.com
emisapps61.erm.com
flexforce.erm.com
CSLBEHRINGKANKAKEE.ERM.COM
spenv.erm.com
terra.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
emisapps40.erm.com
emis-support.erm.com
soteria.erm.com
ensite.erm.com
cerberus.erm.com
*.exp.gumgum.com
feedback.erm.com
www.erm.com
hera.erm.com
*.exp.gumgum.com
emisapps70.erm.com
tempo.api.erm.com
pcs.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
pcs.erm.com
ceros4.map.fastly.net
cerberus.erm.com
terra.erm.com
Certificate
The complete raw certificate details for usgcms.erm.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIExjCCA66gAwIBAgIQNvVKHb6KqaZ5Dn3MJd3DqjANBgkqhkiG9w0BAQsFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMRswGQYDVQQDExJ0 aGF3dGUgU1NMIENBIC0gRzIwHhcNMTUwODE5MDAwMDAwWhcNMTgwODE4MjM1OTU5 WjCBiDELMAkGA1UEBhMCR0IxDzANBgNVBAgMBkxPTkRPTjEPMA0GA1UEBwwGTE9O RE9OMR0wGwYDVQQKDBRFUk0gSG9sZGluZ3MgTGltaXRlZDEfMB0GA1UECwwWRVJN IEdsb2JhbCBJVCBTZXJ2aWNlczEXMBUGA1UEAwwOdXNnY21zLmVybS5jb20wggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ethnfJ/knkm8914Ckuz3afCL CcPXl2VYLJDWiqIg0ccz7cfa17Rc+O9lan3sv9avWqZc1vuHCNXTsbQxO8Zok8dL Vf7SbBZwLMx2bXTH/3XYMbgYQFWnu9WATWdNpq05f0nYGOaX2mORGSq0SAhCNUTo dm60+sY0Sl22K/jB1h7ZCpB5bHCbaEIAdZ+Jsh4j1JY3DoDTzaZKsWX6UMnvcBHM 5P0xbxcnlSftvk004j34BMaH3qM74pgB083yTYg2qjFPTifwmDkUX7vVh9WZ7LSg JpLKdW8PEYJ7K7qzEyjK+rhbI6UcyfgOUrk4zdVS4/AGXMRf03Ddw2yqp0NHAgMB AAGjggFwMIIBbDAZBgNVHREEEjAQgg51c2djbXMuZXJtLmNvbTAJBgNVHRMEAjAA MG4GA1UdIARnMGUwYwYGZ4EMAQICMFkwJgYIKwYBBQUHAgEWGmh0dHBzOi8vd3d3 LnRoYXd0ZS5jb20vY3BzMC8GCCsGAQUFBwICMCMMIWh0dHBzOi8vd3d3LnRoYXd0 ZS5jb20vcmVwb3NpdG9yeTAOBgNVHQ8BAf8EBAMCBaAwHwYDVR0jBBgwFoAUwk9I V/zRT5rAXTh9DgXb2S61UmAwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL3RqLnN5 bWNiLmNvbS90ai5jcmwwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcG CCsGAQUFBwEBBEswSTAfBggrBgEFBQcwAYYTaHR0cDovL3RqLnN5bWNkLmNvbTAm BggrBgEFBQcwAoYaaHR0cDovL3RqLnN5bWNiLmNvbS90ai5jcnQwDQYJKoZIhvcN AQELBQADggEBAEJtfP0cvaH5c1CnwZLDKE0dOqOnoEDAICklAmNntJKB2I9dWnis X5pliTjqXWl9KiZ4x4V0o7+f5SBe1EvTKWVIWKsHuUomYFLvygPnVFlQZOmal/rF 3y7VN9aSthUXwBw86wPhp3lFT3cX34dCwEdDW0da3lcs90xie1cRjsfsyGwFxLPd cZMSPJCK+FuUQzH/5/QGZ1ECpqzCvSU0azOIR+BHdXSPUGi3F1/bCfRq+fkL0voF /fGSonxkp4X1L2b5ve7mAGtBpFK3CQ2kBndMuhM4XUelBwqOv38ZblqDA6uB0Oqg dH9vPkWrjFooVamTEL6P+NrvFXYSM87UqE8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAunrYZ3yf5J5JvPdeApLs 92nwiwnD15dlWCyQ1oqiINHHM+3H2te0XPjvZWp97L/Wr1qmXNb7hwjV07G0MTvG aJPHS1X+0mwWcCzMdm10x/912DG4GEBVp7vVgE1nTaatOX9J2Bjml9pjkRkqtEgI QjVE6HZutPrGNEpdtiv4wdYe2QqQeWxwm2hCAHWfibIeI9SWNw6A082mSrFl+lDJ 73ARzOT9MW8XJ5Un7b5NNOI9+ATGh96jO+KYAdPN8k2INqoxT04n8Jg5FF+71YfV mey0oCaSynVvDxGCeyu6sxMoyvq4WyOlHMn4DlK5OM3VUuPwBlzEX9Nw3cNsqqdD RwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 73051927757623657823053266098837111722 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-08-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-18 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'LONDON' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'LONDON' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ERM Holdings Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ERM Global IT Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'usgcms.erm.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23540902013204465653617271391901864673803626955332584451293409683440979306042170137407187195780290584575090581204660834638365389487199436730551389658673452527066381088890051783841858261085820303339729316911337232907127687938926766349676897484608612805228798485148095124288633570439852786168057093470149087313166076911167880434223745216784606573459246800462015326034019435344933319682459476329552024476734876256682837010963944277493185486081357578016871087074486671707419834647168958024528821895541355292254719206124932362512255079751511967600186235003949151204685904447482747945677734758693308421855778874410232398663 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'usgcms.erm.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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