nexus.richemont.cn
- Richemont International SA -
Issued by DigiCert Global CA G2
About this certificate
This digital certificate with serial number 09:05:02:38:70:78:55:3c:7b:48:15:f5:35:49:61:a9 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Richemont International SA
Organization:
Richemont International SA
Organization unit: RIC
Organization unit: RIC
Locality:
Bellevue
Country: CH
Country: CH
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:05:02:38:70:78:55:3c:7b:48:15:f5:35:49:61:a9Serial Number (int): 11989058482761019811604135105582948777
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 73:d9:b2:b6:a8:6f:d4:ca:2a:8d:16:05:f8:54:45:30:00:9d:d6:20
AuthorityKeyId: 24:6e:2b:2d:d0:6a:92:51:51:25:69:01:aa:9a:47:a6:89:e7:40:20
Fingerprint (sha1): fa:39:60:78:07:1f:49:00:ed:b2:c4:25:3c:27:08:20:9b:ec:bd:d6
Fingerprint (sha256): 14:16:64:14:5d:a4:b1:7a:7d:54:cb:39:c3:28:67:22:81:fc:0f:44:16:20:36:57:a7:23:2b:e4:72:f3:f3:05
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalCAG2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalCAG2.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalCAG2.crl
Check the revocation status for certificate nexus.richemont.cn
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nexus.richemont.cn
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nexus.richemont.cn
Other certificates including the domain name richemont.cn
(limited to 100 certificates)
careers.richemont.com
wechat-oauth.richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
ws.richemont.cn
wechat-oauth.preprod.richemont.cn
api.rcdc.richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
dev.api.warm.richemont.cn
intranet.richemont.com
xianskp.rdu.quality.richemont.cn
www.quality.alange-soehne.com
linemedia.preprod.richemont.com
nexus.richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
www.quality.alange-soehne.com
careers.richemont.com
linemedia.preprod.richemont.com
chloefayeday.richemont.cn
www.rogerdubuis.com
www.quality.alange-soehne.com
xianskp.rdu.richemont.cn
*.richemont.cn
www.quality.alange-soehne.com
careers.richemont.com
dev.api.warm.richemont.cn
wechat-oauth.quality.richemont.cn
api.warm.richemont.cn
careers.richemont.com
xianskp.rdu.richemont.cn
xianskp.rdu.quality.richemont.cn
xianskp.rdu.richemont.cn
xianskp.rdu.richemont.cn
cn-ra.richemont.cn
linemedia.preprod.richemont.com
ws.preprod.richemont.cn
www.quality.alange-soehne.com
rogerdubuis.richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
ws.richemont.cn
xianskp.rdu.richemont.cn
remoteaccess.richemont.com
linemedia.preprod.richemont.com
www.quality.alange-soehne.com
ws.quality.richemont.cn
intranet.richemont.com
ws.richemont.cn
linemedia.preprod.richemont.com
www.quality.alange-soehne.com
preprod.api.warm.richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
intranet.richemont.com
intranet.richemont.com
ws.dev.richemont.cn
careers.richemont.com
ws.quality.richemont.cn
search.preprod.digital.richemont.cn
quality.api.warm.richemont.cn
linemedia.preprod.richemont.com
www.rogerdubuis.com
linemedia.preprod.richemont.com
intranet.richemont.com
ws.richemont.cn
nexus.richemont.cn
kronos.richemont.cn
linemedia.preprod.richemont.com
intranet.richemont.com
www.preprod.cms-one.richemont.cn
xianskp.rdu.richemont.cn
linemedia.preprod.richemont.com
xianskp.rdu.richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
www.quality.alange-soehne.com
ws.preprod.richemont.cn
ws.quality.richemont.cn
www.quality.alange-soehne.com
api.warm.richemont.cn
www.quality.alange-soehne.com
richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
careers.richemont.com
careers.richemont.com
xianskp.rdu.richemont.cn
linemedia.preprod.richemont.com
xianskp.rdu.richemont.cn
wechat-oauth.richemont.cn
careers.richemont.com
careers.richemont.com
rogerdubuis.richemont.cn
www.quality.alange-soehne.com
rogerdubuis.richemont.cn
wechat-oauth.richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
ws.richemont.cn
wechat-oauth.preprod.richemont.cn
api.rcdc.richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
dev.api.warm.richemont.cn
intranet.richemont.com
xianskp.rdu.quality.richemont.cn
www.quality.alange-soehne.com
linemedia.preprod.richemont.com
nexus.richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
www.quality.alange-soehne.com
careers.richemont.com
linemedia.preprod.richemont.com
chloefayeday.richemont.cn
www.rogerdubuis.com
www.quality.alange-soehne.com
xianskp.rdu.richemont.cn
*.richemont.cn
www.quality.alange-soehne.com
careers.richemont.com
dev.api.warm.richemont.cn
wechat-oauth.quality.richemont.cn
api.warm.richemont.cn
careers.richemont.com
xianskp.rdu.richemont.cn
xianskp.rdu.quality.richemont.cn
xianskp.rdu.richemont.cn
xianskp.rdu.richemont.cn
cn-ra.richemont.cn
linemedia.preprod.richemont.com
ws.preprod.richemont.cn
www.quality.alange-soehne.com
rogerdubuis.richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
ws.richemont.cn
xianskp.rdu.richemont.cn
remoteaccess.richemont.com
linemedia.preprod.richemont.com
www.quality.alange-soehne.com
ws.quality.richemont.cn
intranet.richemont.com
ws.richemont.cn
linemedia.preprod.richemont.com
www.quality.alange-soehne.com
preprod.api.warm.richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
intranet.richemont.com
intranet.richemont.com
ws.dev.richemont.cn
careers.richemont.com
ws.quality.richemont.cn
search.preprod.digital.richemont.cn
quality.api.warm.richemont.cn
linemedia.preprod.richemont.com
www.rogerdubuis.com
linemedia.preprod.richemont.com
intranet.richemont.com
ws.richemont.cn
nexus.richemont.cn
kronos.richemont.cn
linemedia.preprod.richemont.com
intranet.richemont.com
www.preprod.cms-one.richemont.cn
xianskp.rdu.richemont.cn
linemedia.preprod.richemont.com
xianskp.rdu.richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
www.quality.alange-soehne.com
ws.preprod.richemont.cn
ws.quality.richemont.cn
www.quality.alange-soehne.com
api.warm.richemont.cn
www.quality.alange-soehne.com
richemont.cn
linemedia.preprod.richemont.com
linemedia.preprod.richemont.com
careers.richemont.com
careers.richemont.com
xianskp.rdu.richemont.cn
linemedia.preprod.richemont.com
xianskp.rdu.richemont.cn
wechat-oauth.richemont.cn
careers.richemont.com
careers.richemont.com
rogerdubuis.richemont.cn
www.quality.alange-soehne.com
rogerdubuis.richemont.cn
Certificate
The complete raw certificate details for nexus.richemont.cn in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIQCQUCOHB4VTx7SBX1NUlhqTANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMR4wHAYDVQQDExVE aWdpQ2VydCBHbG9iYWwgQ0EgRzIwHhcNMTgwMzEzMDAwMDAwWhcNMTkwMzE3MTIw MDAwWjBwMQswCQYDVQQGEwJDSDERMA8GA1UEBxMIQmVsbGV2dWUxIzAhBgNVBAoT GlJpY2hlbW9udCBJbnRlcm5hdGlvbmFsIFNBMQwwCgYDVQQLEwNSSUMxGzAZBgNV BAMTEm5leHVzLnJpY2hlbW9udC5jbjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAOJpIoW4iI2DXUk+C3BVGJngnPMsy4X9g5EmoSANIRax7lQ+Zy1Jf1PQ hJhg9XJVLM8bHYGv4xxa+KZEQpPli8iiJe1EaWz2dlBIKpmuqhJzsdGEilBAjORG D5Ef1p3ZjBcq2wX3sAcmErZ49k0DLhZtHf7+RTK/c3n3/egSLsx6mVIYx4p4psyW P9ruL0feLkZ86fFxCHjURjq28lZDkWDxwvIS0Ux1/IJ6sl7MAaY86OVM/4losP9Y gG+1T6sW9k1NHcvxZHrT6P2//poqElX118jxZ1JDaklcI683OS/9gsT6IWonKwbq LVKJeuS3QKLqpFDtL8+JW6enon0voUcCAwEAAaOCAe8wggHrMB8GA1UdIwQYMBaA FCRuKy3QapJRUSVpAaqaR6aJ50AgMB0GA1UdDgQWBBRz2bK2qG/UyiqNFgX4VEUw AJ3WIDAdBgNVHREEFjAUghJuZXh1cy5yaWNoZW1vbnQuY24wDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjB3BgNVHR8EcDBuMDWg M6Axhi9odHRwOi8vY3JsMy5kaWdpY2VydC5jb20vRGlnaUNlcnRHbG9iYWxDQUcy LmNybDA1oDOgMYYvaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0R2xv YmFsQ0FHMi5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcC ARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwdAYIKwYB BQUHAQEEaDBmMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20w PgYIKwYBBQUHMAKGMmh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2Vy dEdsb2JhbENBRzIuY3J0MAkGA1UdEwQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAw DQYJKoZIhvcNAQELBQADggEBAFIuLA/wbxWUj3y9glzyd1PtWxBZtqw5bBwuVNS9 ggYMLds3VRC/6hqnd510UZOpLFH/p1hGfcjqTRk4Jd3f0xte0CHtZ7oCsGZBZhv+ rU7Apt4uLKasGLuRItfxQOQnCd8zSIHFL8asxRYuutP7ZLYwUyGbO2IBrDfpnOyD y/wLwUlQSIBNPAV0TD1eQWZF6xld9tBh8m9YSy/wdg7KId9GHR7KipKoWMu6zHiq TC2UqZwoDbM9YH3zxX/tjy6jFrnn84ttwV1m0FcdtCmbaKqFhYsTFchEvvO8R5Uo hQJA4vrn5v757rZY2eLoffjGYq3GUcnSY5b8cEZuI5YpSrw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4mkihbiIjYNdST4LcFUY meCc8yzLhf2DkSahIA0hFrHuVD5nLUl/U9CEmGD1clUszxsdga/jHFr4pkRCk+WL yKIl7URpbPZ2UEgqma6qEnOx0YSKUECM5EYPkR/WndmMFyrbBfewByYStnj2TQMu Fm0d/v5FMr9zeff96BIuzHqZUhjHinimzJY/2u4vR94uRnzp8XEIeNRGOrbyVkOR YPHC8hLRTHX8gnqyXswBpjzo5Uz/iWiw/1iAb7VPqxb2TU0dy/FketPo/b/+mioS VfXXyPFnUkNqSVwjrzc5L/2CxPohaicrBuotUol65LdAouqkUO0vz4lbp6eifS+h RwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11989058482761019811604135105582948777 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global CA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-17 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bellevue' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Richemont International SA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RIC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nexus.richemont.cn' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28581700850552777528597331511230984581641303982007352150538041996108031579348761381548356363301932787474487262953680365477405231964185567121645738481308641164599724470118816260829535841934701105079628111540785477147398330102785977141904626624623996782394718202539731714802631679969495358424949951614599429451368519184264658689398484639234878741996079859911387901521293006916534096988894906209761843485887125537326703466275879957412765421314661474622887569199081730402691722480565580297133307048752479818245974541206597588894523037778027481301771021487450133875641450789451026831332396976168712964416765135762758803783 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 246e2b2dd06a925151256901aa9a47a689e74020 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 73d9b2b6a86fd4ca2a8d1605f8544530009dd620 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nexus.richemont.cn' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalCAG2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalCAG2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalCAG2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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