cloud2.o2.cz
- O2 Czech Republic a.s. -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 05:1c:17:3a:1e:0e:6a:83:5c:61:e8:6a:8c:95:e2:5b was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
O2 Czech Republic a.s.
Organization:
O2 Czech Republic a.s.
Organization unit: Operations
Organization unit: Operations
Locality:
Praha
Country: CZ
Country: CZ
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:1c:17:3a:1e:0e:6a:83:5c:61:e8:6a:8c:95:e2:5bSerial Number (int): 6791995390919842604011692388034929243
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 2c:8d:83:b0:c2:d5:bf:b0:59:76:50:a1:2d:6a:56:a9:02:64:97:2e
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 42:18:fd:a1:87:ba:b2:80:e7:14:63:04:78:85:8f:c6:5f:43:b0:f5
Fingerprint (sha256): 12:3d:9f:6b:0b:60:dc:25:b5:23:1f:c2:b9:92:a7:0b:ce:74:77:65:d7:6d:15:9e:df:e4:2d:7c:a7:95:cc:6a
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate cloud2.o2.cz
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cloud2.o2.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cloud2.o2.cz
Other certificates including the domain name o2.cz
(limited to 100 certificates)
kissdesk.o2.cz
pf2019.o2.cz
chcido.o2.cz
eshop.o2.cz
kaufland-01.cpten02.captiveportal.o2.cz
mdml.o2.cz
e-ucet.o2.cz
eshop.o2.cz
ssl-dc.o2.cz
kiss.o2.cz
cloud2-ace.o2.cz
meeting.o2.cz
adm.proxima.o2.cz
kiss.o2.cz
cloud2.o2.cz
od.o2.cz
kissdesk.o2.cz
adm.proxima.o2.cz
e-ucet.o2.cz
obchodnici.o2.cz
kiss.o2.cz
images.o2.cz
*.o2.cz
sstats.www.o2.cz
eshop.o2.cz
kiss.o2.cz
archiv.o2.cz
smdm-ds.o2.cz
pf2018.o2.cz
cloud2-con.o2.cz
otrs-gsd.o2.cz
virtualni-prodejna.o2.cz
s.o2.cz
sstats.www.o2.cz
pf2013.o2.cz
sstats.www.o2.cz
dexch.o2.cz
kaufland-01.cpten02.captiveportal.o2.cz
sso.o2.cz
o2m2mportal.o2.cz
spojit.o2.cz
smsender.o2.cz
meeting.o2.cz
kissdesk.o2.cz
kissdesk.o2.cz
kiss.o2.cz
eventsbd.o2.cz
www.o2.cz
vdesktop.o2.cz
cloud2.o2.cz
jjokji.64bit.kr
smdm.o2.cz
www.o2.cz
mail.o2.cz
adm.stage.proxima.o2.cz
e-ucet.o2.cz
kaufland-01.cpten02.captiveportal.o2.cz
virtualni-prodejna.o2.cz
korporace.o2.cz
mobilesignage.o2.cz
kiss.o2.cz
*.openstack.o2.cz
od.o2.cz
kissdesk.o2.cz
blog.o2.cz
*.o2.cz
poruchy.o2.cz
sec.o2.cz
www.o2.cz
kiss.o2.cz
kiss.o2.cz
mdml.o2.cz
carcontrol.o2.cz
procurement.o2.cz
cloud.o2.cz
mail.o2.cz
kissdesk.o2.cz
korporace.o2.cz
kiss.o2.cz
dexchc3.o2.cz
kaufland-01.cpten02.captiveportal.o2.cz
smdm-ds.o2.cz
mail.o2.cz
ekancelar.o2.cz
adm.proxima.o2.cz
m.moje.o2.cz
dexch.o2.cz
eventsbd.o2.cz
www.dtrmediaworks.com
api.stage.proxima.o2.cz
iwifio2-guest02.o2.cz
kiss.o2.cz
*.cpten01.captiveportal.o2.cz
vo.m.o2.cz
virtualni-prodejna.o2.cz
obchodnici.o2.cz
api-exponea.o2.cz
adm.stage.proxima.o2.cz
obchodnici.o2.cz
login.o2.cz
pf2019.o2.cz
chcido.o2.cz
eshop.o2.cz
kaufland-01.cpten02.captiveportal.o2.cz
mdml.o2.cz
e-ucet.o2.cz
eshop.o2.cz
ssl-dc.o2.cz
kiss.o2.cz
cloud2-ace.o2.cz
meeting.o2.cz
adm.proxima.o2.cz
kiss.o2.cz
cloud2.o2.cz
od.o2.cz
kissdesk.o2.cz
adm.proxima.o2.cz
e-ucet.o2.cz
obchodnici.o2.cz
kiss.o2.cz
images.o2.cz
*.o2.cz
sstats.www.o2.cz
eshop.o2.cz
kiss.o2.cz
archiv.o2.cz
smdm-ds.o2.cz
pf2018.o2.cz
cloud2-con.o2.cz
otrs-gsd.o2.cz
virtualni-prodejna.o2.cz
s.o2.cz
sstats.www.o2.cz
pf2013.o2.cz
sstats.www.o2.cz
dexch.o2.cz
kaufland-01.cpten02.captiveportal.o2.cz
sso.o2.cz
o2m2mportal.o2.cz
spojit.o2.cz
smsender.o2.cz
meeting.o2.cz
kissdesk.o2.cz
kissdesk.o2.cz
kiss.o2.cz
eventsbd.o2.cz
www.o2.cz
vdesktop.o2.cz
cloud2.o2.cz
jjokji.64bit.kr
smdm.o2.cz
www.o2.cz
mail.o2.cz
adm.stage.proxima.o2.cz
e-ucet.o2.cz
kaufland-01.cpten02.captiveportal.o2.cz
virtualni-prodejna.o2.cz
korporace.o2.cz
mobilesignage.o2.cz
kiss.o2.cz
*.openstack.o2.cz
od.o2.cz
kissdesk.o2.cz
blog.o2.cz
*.o2.cz
poruchy.o2.cz
sec.o2.cz
www.o2.cz
kiss.o2.cz
kiss.o2.cz
mdml.o2.cz
carcontrol.o2.cz
procurement.o2.cz
cloud.o2.cz
mail.o2.cz
kissdesk.o2.cz
korporace.o2.cz
kiss.o2.cz
dexchc3.o2.cz
kaufland-01.cpten02.captiveportal.o2.cz
smdm-ds.o2.cz
mail.o2.cz
ekancelar.o2.cz
adm.proxima.o2.cz
m.moje.o2.cz
dexch.o2.cz
eventsbd.o2.cz
www.dtrmediaworks.com
api.stage.proxima.o2.cz
iwifio2-guest02.o2.cz
kiss.o2.cz
*.cpten01.captiveportal.o2.cz
vo.m.o2.cz
virtualni-prodejna.o2.cz
obchodnici.o2.cz
api-exponea.o2.cz
adm.stage.proxima.o2.cz
obchodnici.o2.cz
login.o2.cz
Certificate
The complete raw certificate details for cloud2.o2.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGaTCCBVGgAwIBAgIQBRwXOh4OaoNcYehqjJXiWzANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTgwMzEyMDAwMDAwWhcNMjAwMzExMTIwMDAwWjBqMQswCQYDVQQGEwJDWjEOMAwG A1UEBxMFUHJhaGExHzAdBgNVBAoTFk8yIEN6ZWNoIFJlcHVibGljIGEucy4xEzAR BgNVBAsTCk9wZXJhdGlvbnMxFTATBgNVBAMTDGNsb3VkMi5vMi5jejCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALdQPg8gXSHqw+opVV6HNlF7vP0PyS0E lPIcEwvtcBOBkfT/1k6UVL8Wi95Kqq2B8PZWb/viINtbQwlDVLn9Z+KImq1scQVy 2GTVmsR6nRTOOixw+tvAKUIz79ZBhgxibRWM03dnJ/mBUESdCscWtSUfvMrLcHxP ewPldBI7oxsTDuAK6ijxXQ/9tdulvFH8Sl7s1irg7B1s/EpOjwBZFV92a6cvlVu3 0GSpaXzcxmrmeKiYeeYBFxDMUEsLjDihpS+NwYaKJBXDg7X1YMvUVtUxX6Dk87B1 RtCnOUNHsVNXbU16jvHf6WwrXQnWmYy+ZFSF+FEUfrHOfpJIXvULhjkCAwEAAaOC AxcwggMTMB8GA1UdIwQYMBaAFKPIXmVU5TB4wQXqBwpqWcy5/t5aMB0GA1UdDgQW BBQsjYOwwtW/sFl2UKEtalapAmSXLjAXBgNVHREEEDAOggxjbG91ZDIubzIuY3ow DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA6 BgNVHR8EMzAxMC+gLaArhilodHRwOi8vY2RwLnRoYXd0ZS5jb20vVGhhd3RlUlNB Q0EyMDE4LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIB FhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjBvBggrBgEF BQcBAQRjMGEwJAYIKwYBBQUHMAGGGGh0dHA6Ly9zdGF0dXMudGhhd3RlLmNvbTA5 BggrBgEFBQcwAoYtaHR0cDovL2NhY2VydHMudGhhd3RlLmNvbS9UaGF3dGVSU0FD QTIwMTguY3J0MAkGA1UdEwQCMAAwggGBBgorBgEEAdZ5AgQCBIIBcQSCAW0BawB3 AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABYhmCRK8AAAQDAEgw RgIhALdlEsGT5XQr7VZIdRlL2lneVNweai0RHaP7hTPAKLdRAiEAieoyPEJLpudv GGP2gfw3hEHuQuSpWzLlJZJoTSpSYw0AdwBvU3asMfAxGdiZAKRRFf93FRwR2QLB ACkGjbIImjfZEwAAAWIZgkYTAAAEAwBIMEYCIQDBtOPrQDrfjF0ImIJjF6zC4fAD ylUXaluHt4YBD4JwLwIhAP+wTdxUpVBCkHd7DixzsL8Iz8bCB77DbImghMVLKGZl AHcAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFiGYJFWwAABAMA SDBGAiEAtXPiHSZ9hYblOA8fNgKAWhn2V9spyTtxh/YessTihgkCIQDrcaCTPfwL NRPjCL9yFxToylW9+fuhDqSft+IpIrt0XzANBgkqhkiG9w0BAQsFAAOCAQEAVQlG TtWzm7R0abWScAUxsA6P47VfxfZ6wvClap8S9sZ6oYOFttDzqsH/AJhp5+xTh4yX I6Vu36zN9PoLfrkGI6ST1+EbXdj2/+Wk5lOmp8Qe9R8M1GDabXRFMg+oMXLHOvZM ljM10fYF85ZVK79MwRgepFHxpdHO8rBP4+2vLjhnNbvQAAQjyd8v663IYPYRDIcV Zz9Sz0ZpBztiJRLHgEHwdjrMPj945BcgXib2tIWQVnsif1YgXplxmvCDsHHE7VZI V8M4T4TQJOfEgSsBTUOHhj/UxTaFgZksjz1JWkdG7bAoOHf+rSoG4+kUav2ZZ86C wATdBTxdclRr5dQUuA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1A+DyBdIerD6ilVXoc2 UXu8/Q/JLQSU8hwTC+1wE4GR9P/WTpRUvxaL3kqqrYHw9lZv++Ig21tDCUNUuf1n 4oiarWxxBXLYZNWaxHqdFM46LHD628ApQjPv1kGGDGJtFYzTd2cn+YFQRJ0Kxxa1 JR+8ystwfE97A+V0EjujGxMO4ArqKPFdD/2126W8UfxKXuzWKuDsHWz8Sk6PAFkV X3Zrpy+VW7fQZKlpfNzGauZ4qJh55gEXEMxQSwuMOKGlL43BhookFcODtfVgy9RW 1TFfoOTzsHVG0Kc5Q0exU1dtTXqO8d/pbCtdCdaZjL5kVIX4URR+sc5+kkhe9QuG OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6791995390919842604011692388034929243 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-11 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Praha' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'O2 Czech Republic a.s.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Operations' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cloud2.o2.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23141178820015061802617680505819944429690394701438314638208980331942293816194615166623442034196102039202693309670405793230913311980963249603176154300450734589684259420194021331236739245500883953394561358554582913443732260352271936550289428856301032063342762239329080388916189544745947409183363207705160857485559004196671835002936719800740004016296638457768452271303165472154787491980609289400855340235992016216249896789353275022267405276016473501629344177236731567721663138878105687548603253450079510800167506221415772562995953349823080150943301113133718069979680397916915370344304563231365254539619819951326906517049 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2c8d83b0c2d5bfb0597650a12d6a56a90264972e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cloud2.o2.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (369 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 005509464ed5b39bb47469b592700531b00e8fe3b55fc5f67ac2f0a56a9f12f6c67aa18385b6d0f3aac1ff009869e7ec53878c9723a56edfaccdf4fa0b7eb90623a493d7e11b5dd8f6ffe5a4e653a6a7c41ef51f0cd460da6d7445320fa83172c73af64c963335d1f605f396552bbf4cc1181ea451f1a5d1cef2b04fe3edaf2e386735bbd0000423c9df2febadc860f6110c8715673f52cf4669073b622512c78041f0763acc3e3f78e417205e26f6b48590567b227f56205e99719af083b071c4ed564857c3384f84d024e7c4812b014d4387863fd4c5368581992c8f3d495a4746edb0283877fead2a06e3e9146afd9967ce82c004dd053c5d72546be5d414b8