sfbext.ch.glencore.net
- Glencore International AG -
Issued by thawte SSL CA - G2
About this certificate
This digital certificate with serial number 03:f2:8a:fe:8e:35:82:af:55:79:35:d1:e4:28:85:2c was issued on by thawte, Inc..
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Glencore International AG
Organization:
Glencore International AG
Organization unit: IT
Organization unit: IT
State / Province:
Zug
Locality: Baar
Country: CH
Locality: Baar
Country: CH
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f2:8a:fe:8e:35:82:af:55:79:35:d1:e4:28:85:2cSerial Number (int): 5247038967610320063528628972578964780
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60
Fingerprint (sha1): a5:1b:2b:65:dd:10:47:04:8b:cf:95:05:35:c7:7e:db:ea:bb:6a:b2
Fingerprint (sha256): 14:b0:fb:e6:99:66:7c:8d:8c:3b:a9:49:ed:43:11:40:ca:0c:0e:8d:7f:31:40:5a:aa:a9:c4:b1:d4:b0:08:9e
Issuing Certificate URL: http://tj.symcb.com/tj.crt
Revocation information
OCSP Server: http://tj.symcd.comCRL Distribution Point: http://tj.symcb.com/tj.crl
Check the revocation status for certificate sfbext.ch.glencore.net
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sfbext.ch.glencore.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
meet.ch.glencore.net
owebapp.met.ch.glencore.net
sfbext.ch.glencore.net
owebapp.met.ch.glencore.net
sfbext.ch.glencore.net
Other certificates including the domain name glencore.net
(limited to 100 certificates)
ap.syd.au.glencore.net
testmyid.ch.glencore.net
*.de.glencore.net
b2b.stg.cl.glencore.net
ucb-sam.glencore.com
mail.nam.glencore.net
UCB-AUS.glencore.com
*.pe.glencore.net
www.glencore.com
afenav.ldn.gb.glencore.net
ap.bar.ch.glencore.net
sfbext.mtl.ca.glencore.net
connect.eur.glencore.net
helpme.glencore.net
ap.mtl.ca.glencore.net
emm-admin.glencore.net
fileshare.ca.glencore.net
www.glencore.com
edw.ldn.gb.glencore.net
acb-eur.glencore.com
sts.glencore.net
connect.ktg.cd.glencore.net
helpme.glencore.net
*.au.glencore.net
static-test.glencore.net
www.glencore.com
www.glencore.com
groupmobility.glencore.net
sfbext.ch.glencore.net
fileshare.ca.glencore.net
usti.cz.glencore.net
sfbext.bar.ch.glencore.net
connect.eur.glencore.net
*.ca.glencore.net
UCA-NAM.glencore.com
ap.zrh.ch.glencore.net
*.za.glencore.net
emm-device-test.glencore.net
glccmg.glencore.net
b2b.krs.no.glencore.net
*.glencore.net
mail.eur.glencore.net
www.glencore.com
helpme.glencore.net
adfs.glencore.net
*.za.glencore.net
UCB-ZAF.glencore.com
induction.coal.au.glencore.net
UCB-EUR.glencore.com
b2b.stg.cl.glencore.net
bienvenueccr.mtl.ca.glencore.net
*.za.glencore.net
sfbext.zrh.ch.glencore.net
connect.sas.ar.glencore.net
UCB-NAM.glencore.com
*.br.glencore.net
b2b.stg.cl.glencore.net
*.sg.glencore.net
ewac1.ldn.gb.glencore.net
sfbext.bar.ch.glencore.net
b2b.aus.glencore.net
uca-eur.glencore.com
myid.ch.glencore.net
*.au.glencore.net
bienvenueccr.mtl.ca.glencore.net
ap.bar.ch.glencore.net
ewac2.ldn.gb.glencore.net
formations.rag.ca.glencore.net
www.glencore.com
GLCPT1CMG.GLENCORE.NET
connect.spd.br.glencore.net
usti.cz.glencore.net
sc-test.glencore.net
www.glencore.com
helpme.glencore.net
b2b.stg.cl.glencore.net
www.glencore.com
sfbext.zrh.ch.glencore.net
*.br.glencore.net
*.sam.glencore.net
*.cn.glencore.net
acs.bne.au.glencore.net
UCA-ZAF.glencore.com
helpme.glencore.net
ap.bar.ch.glencore.net
helpme.glencore.net
ap.bar.ch.glencore.net
sfbext.sng.sg.glencore.net
www.glencore.com
connect.mak.ph.glencore.net
*.ca.glencore.net
ap.mtl.ca.glencore.net
UCB-SAM.glencore.com
perthview.per.au.glencore.net
edw-test.ldn.gb.glencore.net
ecms-demo.glencore.net
*.za.glencore.net
www.glencore.com
ucb-eur.glencore.com
*.sg.glencore.net
testmyid.ch.glencore.net
*.de.glencore.net
b2b.stg.cl.glencore.net
ucb-sam.glencore.com
mail.nam.glencore.net
UCB-AUS.glencore.com
*.pe.glencore.net
www.glencore.com
afenav.ldn.gb.glencore.net
ap.bar.ch.glencore.net
sfbext.mtl.ca.glencore.net
connect.eur.glencore.net
helpme.glencore.net
ap.mtl.ca.glencore.net
emm-admin.glencore.net
fileshare.ca.glencore.net
www.glencore.com
edw.ldn.gb.glencore.net
acb-eur.glencore.com
sts.glencore.net
connect.ktg.cd.glencore.net
helpme.glencore.net
*.au.glencore.net
static-test.glencore.net
www.glencore.com
www.glencore.com
groupmobility.glencore.net
sfbext.ch.glencore.net
fileshare.ca.glencore.net
usti.cz.glencore.net
sfbext.bar.ch.glencore.net
connect.eur.glencore.net
*.ca.glencore.net
UCA-NAM.glencore.com
ap.zrh.ch.glencore.net
*.za.glencore.net
emm-device-test.glencore.net
glccmg.glencore.net
b2b.krs.no.glencore.net
*.glencore.net
mail.eur.glencore.net
www.glencore.com
helpme.glencore.net
adfs.glencore.net
*.za.glencore.net
UCB-ZAF.glencore.com
induction.coal.au.glencore.net
UCB-EUR.glencore.com
b2b.stg.cl.glencore.net
bienvenueccr.mtl.ca.glencore.net
*.za.glencore.net
sfbext.zrh.ch.glencore.net
connect.sas.ar.glencore.net
UCB-NAM.glencore.com
*.br.glencore.net
b2b.stg.cl.glencore.net
*.sg.glencore.net
ewac1.ldn.gb.glencore.net
sfbext.bar.ch.glencore.net
b2b.aus.glencore.net
uca-eur.glencore.com
myid.ch.glencore.net
*.au.glencore.net
bienvenueccr.mtl.ca.glencore.net
ap.bar.ch.glencore.net
ewac2.ldn.gb.glencore.net
formations.rag.ca.glencore.net
www.glencore.com
GLCPT1CMG.GLENCORE.NET
connect.spd.br.glencore.net
usti.cz.glencore.net
sc-test.glencore.net
www.glencore.com
helpme.glencore.net
b2b.stg.cl.glencore.net
www.glencore.com
sfbext.zrh.ch.glencore.net
*.br.glencore.net
*.sam.glencore.net
*.cn.glencore.net
acs.bne.au.glencore.net
UCA-ZAF.glencore.com
helpme.glencore.net
ap.bar.ch.glencore.net
helpme.glencore.net
ap.bar.ch.glencore.net
sfbext.sng.sg.glencore.net
www.glencore.com
connect.mak.ph.glencore.net
*.ca.glencore.net
ap.mtl.ca.glencore.net
UCB-SAM.glencore.com
perthview.per.au.glencore.net
edw-test.ldn.gb.glencore.net
ecms-demo.glencore.net
*.za.glencore.net
www.glencore.com
ucb-eur.glencore.com
*.sg.glencore.net
Certificate
The complete raw certificate details for sfbext.ch.glencore.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIQA/KK/o41gq9VeTXR5CiFLDANBgkqhkiG9w0BAQsFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMRswGQYDVQQDExJ0 aGF3dGUgU1NMIENBIC0gRzIwHhcNMTYwMzExMDAwMDAwWhcNMTgwMzExMjM1OTU5 WjB8MQswCQYDVQQGEwJDSDEMMAoGA1UECAwDWnVnMQ0wCwYDVQQHDARCYWFyMSIw IAYDVQQKDBlHbGVuY29yZSBJbnRlcm5hdGlvbmFsIEFHMQswCQYDVQQLDAJJVDEf MB0GA1UEAwwWc2ZiZXh0LmNoLmdsZW5jb3JlLm5ldDCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBALmZgODAbbra6UTjLl5GjxamNxtnefUA4ne92FJucYh6 JForKTBX0DxTLhqI3JQdRS95+jLS2Fh1w1rN4vS3wO7tSCeSFV+Hh0dQpn7YaUkZ 2cKYzrMkb+XWxufHQG9lLxKuywH/qM0Y5oI9KivM/wumamBeBJtwkNAw5sTZH7wY KhspcpeEvsJuCIxBiQhwFQLT4opFysXyy8AIgYn4Zj2gQsyApEJsKFTT/6mAgRWm G0Csh55oHfNvwThi4TsrfI9A8aTulSSrq5c3qY7ArDxwn6Sn268cXI6rh0NrEnl/ ftNQFrddv+8bS2Xs1OAULGSZFMcBvRQrnVyOPoQYCQsCAwEAAaOCAcAwggG8MFQG A1UdEQRNMEuCFG1lZXQuY2guZ2xlbmNvcmUubmV0ghtvd2ViYXBwLm1ldC5jaC5n bGVuY29yZS5uZXSCFnNmYmV4dC5jaC5nbGVuY29yZS5uZXQwCQYDVR0TBAIwADBu BgNVHSAEZzBlMGMGBmeBDAECAjBZMCYGCCsGAQUFBwIBFhpodHRwczovL3d3dy50 aGF3dGUuY29tL2NwczAvBggrBgEFBQcCAjAjDCFodHRwczovL3d3dy50aGF3dGUu Y29tL3JlcG9zaXRvcnkwDgYDVR0PAQH/BAQDAgWgMB8GA1UdIwQYMBaAFMJPSFf8 0U+awF04fQ4F29kutVJgMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly90ai5zeW1j Yi5jb20vdGouY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBXBggr BgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly90ai5zeW1jZC5jb20wJgYI KwYBBQUHMAKGGmh0dHA6Ly90ai5zeW1jYi5jb20vdGouY3J0MBMGCisGAQQB1nkC BAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBt6q3M860ZX3NRjCIVWBPqxuzn zATMCxnSpXhMiPPIjC54BEuG7XdwbvaUOYAH61VfEzgDInh0pdQWt05Wg6h0CmBl s6abU/wutt9O+07+xSiTyczp4cgG4D6N2s9qTkV5ZjJUU2xg4Q2OHoEUq9YaSpvO 9oeqF0gQ7CwnW+0CSdXEhJwovvXr7TIgMLCn00flRDpHFOHOKqUu0CPWtdZMde6j j9NHwkZfTITcOzH1KuA0AQDgiGVHG1pB8HwhiTA/ci7UF+beBmcsl+xQNQq7XHSN zy2XVvzSbpyh0Gg5wXIcuv3xoRFLDn+1MAQPR9JUpOZbVV6AyFLEovWwUO1j -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZmA4MBtutrpROMuXkaP FqY3G2d59QDid73YUm5xiHokWispMFfQPFMuGojclB1FL3n6MtLYWHXDWs3i9LfA 7u1IJ5IVX4eHR1CmfthpSRnZwpjOsyRv5dbG58dAb2UvEq7LAf+ozRjmgj0qK8z/ C6ZqYF4Em3CQ0DDmxNkfvBgqGylyl4S+wm4IjEGJCHAVAtPiikXKxfLLwAiBifhm PaBCzICkQmwoVNP/qYCBFaYbQKyHnmgd82/BOGLhOyt8j0DxpO6VJKurlzepjsCs PHCfpKfbrxxcjquHQ2sSeX9+01AWt12/7xtLZezU4BQsZJkUxwG9FCudXI4+hBgJ CwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5247038967610320063528628972578964780 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-03-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zug' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Baar' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Glencore International AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'sfbext.ch.glencore.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23429781780981702045798077699539775094354793789508587561190641230492806739822804580898234335275261371998280100293801992723215960238215316973925758896808453602404006051097929075559219229189798289519724213090318705505269136430758404058340736825650824497115455369793954859778877467650278571760099269109219372515507208729820315308787369184944975319075295460626531058631082732666582562537831354760960487351081377223921200757845442059500860176515281742736844321064855497268393497361851735256734717723014204790979660718102803356938074530453483948062901883867026522259999886740850784399031425111280640140425743868526734084363 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (77 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'meet.ch.glencore.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'owebapp.met.ch.glencore.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfbext.ch.glencore.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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