s167_224CG.suni.se
- Södertörns högskola -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 0c:92:d2:b9:ed:58:14:ae:82:a8:36:f3:ba:bf:65:96 was issued on by TERENA.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- The DNS name 's167_224CG.suni.se' contains an underscore (_) character Before explicitly stating as such in CABF 1.6.2, the stance of RFC5280 is adopted that DNSNames MUST NOT contain an underscore character. (BR 7.1.4.2.1)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- DNSName MUST NOT contain underscore characters (BRs: 7.1.4.2.1)
- DNSName MUST NOT contain underscore characters (RFC5280: 4.1.2.6)
Södertörns högskola
Organization:
Södertörns högskola
Organization unit: IT
Organization unit: IT
Locality:
Huddinge
Country: SE
Country: SE
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:92:d2:b9:ed:58:14:ae:82:a8:36:f3:ba:bf:65:96Serial Number (int): 16713085327446337764565451230800733590
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 2d:33:e7:19:8e:ea:3c:e7:72:8f:5f:40:57:58:f5:5c:06:b5:57:72
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): 43:ab:12:c2:8e:07:08:f9:88:ee:78:db:45:66:e8:21:e1:f9:4d:38
Fingerprint (sha256): 14:94:fb:77:54:5d:ba:df:70:a1:b2:fc:da:e0:f9:11:17:20:0f:ec:aa:2f:28:b0:55:b8:31:93:6b:00:7f:5b
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate s167_224CG.suni.se
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for s167_224CG.suni.se
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
s167_224CG.suni.se
Other certificates including the domain name suni.se
(limited to 100 certificates)
elnath.lab.suni.se
dubhe.suni.se
adldap.suni.se
s167_224CG.suni.se
dubhe.suni.se
adfs.o365.suni.se
izar.suni.se
altarf.suni.se
azha.suni.se
shguestkonto.suni.se
terebellum.suni.se
Zhang.suni.se
dubhe.suni.se
connect2.suni.se
portal.suni.se
apputv.sh.se
adfs.o365.suni.se
phad.suni.se
salm.suni.se
adfs.o365.suni.se
dubhe.suni.se
idp-v2.suni.se
altarf.suni.se
muliphen.suni.se
turais.suni.se
azha.suni.se
idp.suni.se
dsiban.suni.se
arrakis.suni.se
nekkar.suni.se
idp-test.suni.se
zosma.suni.se
idp-v2.suni.se
idp-v2.suni.se
azha.suni.se
arrakis.suni.se
arrakis.suni.se
idp-v2.suni.se
dschubba.suni.se
dubhe.suni.se
arrakis.suni.se
adfs.o365.suni.se
idp-test.suni.se
dubhe.suni.se
Kang.suni.se
connect2.suni.se
Fang.suni.se
apptest.sh.se
idp-test.suni.se
view.suni.se
shguestkonto.suni.se
hadar.suni.se
dubhe.suni.se
adldap.suni.se
s167_224CG.suni.se
dubhe.suni.se
adfs.o365.suni.se
izar.suni.se
altarf.suni.se
azha.suni.se
shguestkonto.suni.se
terebellum.suni.se
Zhang.suni.se
dubhe.suni.se
connect2.suni.se
portal.suni.se
apputv.sh.se
adfs.o365.suni.se
phad.suni.se
salm.suni.se
adfs.o365.suni.se
dubhe.suni.se
idp-v2.suni.se
altarf.suni.se
muliphen.suni.se
turais.suni.se
azha.suni.se
idp.suni.se
dsiban.suni.se
arrakis.suni.se
nekkar.suni.se
idp-test.suni.se
zosma.suni.se
idp-v2.suni.se
idp-v2.suni.se
azha.suni.se
arrakis.suni.se
arrakis.suni.se
idp-v2.suni.se
dschubba.suni.se
dubhe.suni.se
arrakis.suni.se
adfs.o365.suni.se
idp-test.suni.se
dubhe.suni.se
Kang.suni.se
connect2.suni.se
Fang.suni.se
apptest.sh.se
idp-test.suni.se
view.suni.se
shguestkonto.suni.se
hadar.suni.se
Certificate
The complete raw certificate details for s167_224CG.suni.se in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGOzCCBSOgAwIBAgIQDJLSue1YFK6CqDbzur9lljANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xODA3MDUwMDAwMDBaFw0yMDEwMDcwMDAwMDBaMGsxCzAJBgNVBAYT AlNFMREwDwYDVQQHEwhIdWRkaW5nZTEfMB0GA1UECgwWU8O2ZGVydMO2cm5zIGjD tmdza29sYTELMAkGA1UECxMCSVQxGzAZBgNVBAMMEnMxNjdfMjI0Q0cuc3VuaS5z ZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANKADhSn67UAOi8trrDs r4QxI13HDIiSu65ICMEaC97IVGdZreuckG/s3HJZ/RjWbaIEmfACnrgFYrTBuQFe 42lEtpD/Jy40qc+ffJ3iTiTzdgeYipC6gXQqdVREWm4Mxrhc9eds2yxtsEIos3iP UNLfE/hdHIOMjT8rCTThUQiCmw28n5whaUV25/PCoSOnjp3lY4i5Z68h3Kcc6e/c 1+bDZ4gJjcrJccqDhBpXR5Z0hRfDgglJsCm6KjUIPOtSTexJarp5oPBN+7hOuBHF P3Xj90lA/Jf5soTdlds9Qh7Sugm+PB3MM6pjFTgNT7/77iEcSGVmcDlzggiGE6be mNX1vWkJ9OeiYapQORaOARxVQGALDAacz2EXn63mS3MuLUX6Q/YMMxA4UxiH8nim UfOpC6wEgKgbK0GB+zk27vooQvdF16xqJ0JXfM6i1W0lgXJyT/f4dbglyeWI4AOt SLROsIj7DA+MZpakGqya1Hmv9njS+FnKctlXcUmKT3adQPk1e0CmUBrAdORvOyLJ 2SS9/sXWoFNHXXSZxVKLOJ4bLWXFBW/w3Bvg0QC2RigngmwBLNHYQlcBsG1gRX9F IVKY3yCFOGkIWHQmlpNKyaa0YO8xB9cjpdRpffvRFDxzo4wnRWE7/7FFn9vJekKZ Jc1VSHtSrf2T9+36M8Gp0S5lAgMBAAGjggHgMIIB3DAfBgNVHSMEGDAWgBRn/Ygg FCeYxwnSJRm76VERY3VQYjAdBgNVHQ4EFgQULTPnGY7qPOdyj19AV1j1XAa1V3Iw HQYDVR0RBBYwFIISczE2N18yMjRDRy5zdW5pLnNlMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwawYDVR0fBGQwYjAvoC2gK4Yp aHR0cDovL2NybDMuZGlnaWNlcnQuY29tL1RFUkVOQVNTTENBMy5jcmwwL6AtoCuG KWh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9URVJFTkFTU0xDQTMuY3JsMEwGA1Ud IARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRp Z2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMG4GCCsGAQUFBwEBBGIwYDAkBggrBgEF BQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMDgGCCsGAQUFBzAChixodHRw Oi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vVEVSRU5BU1NMQ0EzLmNydDAMBgNVHRMB Af8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAj lgf5HVEZLefBksVWamD+g3vimsQj4QdQx53g3Cn80H6PiCV08+1YNHQymplh4RjS OoVzIAj9d+kexcsS+eGfcUWiEfmoJrYJ9STu5z6VtYIG1mhltsZ2EgGJ0MUUEMXp dJg4/uijgBxDdqifQP2JqzJ15mifT0LGPGO2DbOZoi95V6x1B5xha6D2gHuLOexq e3OBz/Nw5eb7bXxvU3oilET6yZD1iasmMn5w0ODW9cAxRYhjwV9Io9LnjNJ2jez3 726c2VJEs+G3+txLwC+6K3LHGSFrurmMaTAnSzEseWQQyiFJ+Bt2eqpk8dzCTNcq EjmNoLab0upNr6z0k5BS -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0oAOFKfrtQA6Ly2usOyv hDEjXccMiJK7rkgIwRoL3shUZ1mt65yQb+zccln9GNZtogSZ8AKeuAVitMG5AV7j aUS2kP8nLjSpz598neJOJPN2B5iKkLqBdCp1VERabgzGuFz152zbLG2wQiizeI9Q 0t8T+F0cg4yNPysJNOFRCIKbDbyfnCFpRXbn88KhI6eOneVjiLlnryHcpxzp79zX 5sNniAmNyslxyoOEGldHlnSFF8OCCUmwKboqNQg861JN7Elqunmg8E37uE64EcU/ deP3SUD8l/myhN2V2z1CHtK6Cb48HcwzqmMVOA1Pv/vuIRxIZWZwOXOCCIYTpt6Y 1fW9aQn056JhqlA5Fo4BHFVAYAsMBpzPYRefreZLcy4tRfpD9gwzEDhTGIfyeKZR 86kLrASAqBsrQYH7OTbu+ihC90XXrGonQld8zqLVbSWBcnJP9/h1uCXJ5YjgA61I tE6wiPsMD4xmlqQarJrUea/2eNL4Wcpy2VdxSYpPdp1A+TV7QKZQGsB05G87IsnZ JL3+xdagU0dddJnFUos4nhstZcUFb/DcG+DRALZGKCeCbAEs0dhCVwGwbWBFf0Uh UpjfIIU4aQhYdCaWk0rJprRg7zEH1yOl1Gl9+9EUPHOjjCdFYTv/sUWf28l6Qpkl zVVIe1Kt/ZP37fozwanRLmUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16713085327446337764565451230800733590 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-10-07 00:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Huddinge' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Södertörns högskola' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 's167_224CG.suni.se' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 858765952847049633397508364141043897969486979748909282014592776780877555811529140057062095473824887660986683908011764983925795635383594037420789558758822098681145848607512522863100008154969674476609098948240211974491305712289774033386906444082441989531962630211215072148684669579368963731300040564301134819138740657550955177062373216273979656808257183198031729454644279126111735387415025861164371660433778311348848168806085563793264173287707766016173122423929537375952185719312299107276532960093181765679260384885623003328449894091944651039028240372815074310550342531240649241139421263659315444113535020842725210949543760388743415234060537784467425949641757398073093398335999146545417258708773722909012654303801877615819668243810597442802881927573663760514183588558302525865641183956154677261356411284983715404252051221596801515068988032750300987395344749048415395773388168233496221665426297063638759502263224249301933323916261738772388840544435110059728964271529402729028939161904449632734297092211082430470869984029313553458115927058841164157768136246499281049338368414374849089431063696563649626482159516902585616618415555970866382614598819070494529009728801290244924230326383024174572515354418693937813177142934845420246343429733 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2d33e7198eea3ce7728f5f405758f55c06b55772 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's167_224CG.suni.se' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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