core-api-emea.damco.com
- Damco International B.V -
Issued by GeoTrust SSL CA - G3
About this certificate
This digital certificate with serial number 0a:4e:a5:d5:4e:17:bc:44:9f:81:b5:48:b1:5b:cd:43 was issued on by GeoTrust Inc..
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Damco International B.V
Organization:
Damco International B.V
State / Province:
Zuid-Holland
Locality: 's-Gravenhage
Country: NL
Locality: 's-Gravenhage
Country: NL
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:4e:a5:d5:4e:17:bc:44:9f:81:b5:48:b1:5b:cd:43Serial Number (int): 13700642610166618478674403422751149379
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: d2:6f:f7:96:f4:85:3f:72:3c:30:7d:23:da:85:78:9b:a3:7c:5a:7c
Fingerprint (sha1): 6c:ed:3b:0b:77:d9:d1:3b:6d:bb:da:36:7b:fa:8c:01:ff:da:0f:06
Fingerprint (sha256): 15:94:78:f4:0f:03:aa:0f:01:fc:d4:ba:a4:56:6f:6b:d8:73:cd:99:cd:d8:b9:78:4d:eb:1d:16:17:fc:fe:f0
Issuing Certificate URL: http://gn.symcb.com/gn.crt
Revocation information
OCSP Server: http://gn.symcd.comCRL Distribution Point: http://gn.symcb.com/gn.crl
Check the revocation status for certificate core-api-emea.damco.com
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for core-api-emea.damco.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
core-api-emea-uat.scm.damco.com
core-api-emea-uat.management.damco.com
core-api-emea.scm.damco.com
core-api-emea-uat.portal.damco.com
core-api-emea-int.management.damco.com
core-api-emea-int.portal.damco.com
core-api-emea-int.scm.damco.com
core-api-emea.portal.damco.com
core-api-emea-uat.damco.com
core-api-emea.management.damco.com
core-api-emea-int.damco.com
core-api-emea.damco.com
core-api-emea-uat.management.damco.com
core-api-emea.scm.damco.com
core-api-emea-uat.portal.damco.com
core-api-emea-int.management.damco.com
core-api-emea-int.portal.damco.com
core-api-emea-int.scm.damco.com
core-api-emea.portal.damco.com
core-api-emea-uat.damco.com
core-api-emea.management.damco.com
core-api-emea-int.damco.com
core-api-emea.damco.com
Other certificates including the domain name damco.com
(limited to 100 certificates)
dev-digitalportal.damco.com
lnsscanservice.damco.com
ap2.007d.dedicated.lync.com
primark.damco.com
dev-mercury.damco.com
brain.damco.com
response.damco.com
brain.damco.com
rfdashboard.damco.com
flowoptimizer.damco.com
ilsetms.damco.com
edi.damco.com
amerapps-backend.damco.com
test-mercury.damco.com
blog.damco.com
adama-ct.damco.com
snicc50gl.wpc.edgecastcdn.net
preprod-rfdashboard.damco.com
blog.damco.com
lnsscanservice.damco.com
www.damco.com
preprod-digitalportal.damco.com
api-stage.damco.com
brain-api-emea.damco.com
b2b.damco.com
blog.damco.com
blog.damco.com
ct.damco.com
www.preprod-docmanui.damco.com
www.preprod-brainui.damco.com
core-api-emea.damco.com
core-api.damco.com
demo-booking.damco.com
www.preprod-docmanui.damco.com
ilsewnd.damco.com
response.damco.com
adama-ct.damco.com
preprod-sourcingoptimization.damco.com
finops.damco.com
*.damco.com
www.damco.com
www.dev.damco.com
preproduction-documentation.damco.com
globalhandover.damco.com
namapps.damco.com
response.damco.com
finops.damco.com
adama-ct.damco.com
dev-flowoptimizer.damco.com
ilse.damco.com
ilse-azure.damco.com
dfc.damco.com
preprod.primark.damco.com
ct.damco.com
more.damco.com
preprod-flowoptimizer.damco.com
www.damco.com
productcatalogue.damco.com
blog.damco.com
preprod.sci.damco.com
www.damco.com
finops.damco.com
namapps.damco.com
sts1.maersk.net
globalhandover.damco.com
ilsetms.damco.com
test-documentation.damco.com
www.damco.com
dev-productcatalogue.damco.com
naswms.damco.com
digitalportal.damco.com
www.damco.com
response.damco.com
ilsetms.damco.com
*.damco.com
pocollaboration.damco.com
api-preprod.damco.com
booking.damco.com
*.damco.com
dev-digitalportal.damco.com
preproduction-exceptions.damco.com
ilsenas.damco.com
ediprep.damco.com
cdn.damco.com
preproduction-booking.damco.com
pp-pocollaboration.damco.com
www.damco.com
exceptions.damco.com
*.apawms.damco.com
lnsscanservice.damco.com
www.wmslite.damco.com
www.damco.com
exceptions.damco.com
preproduction-exceptions.damco.com
lns.damco.com
equipmenttracking-new.damco.com
preproduction-reporting.damco.com
preproduction-reporting.damco.com
destinationmgmt-preprod.damco.com
digitalportal.damco.com
lnsscanservice.damco.com
ap2.007d.dedicated.lync.com
primark.damco.com
dev-mercury.damco.com
brain.damco.com
response.damco.com
brain.damco.com
rfdashboard.damco.com
flowoptimizer.damco.com
ilsetms.damco.com
edi.damco.com
amerapps-backend.damco.com
test-mercury.damco.com
blog.damco.com
adama-ct.damco.com
snicc50gl.wpc.edgecastcdn.net
preprod-rfdashboard.damco.com
blog.damco.com
lnsscanservice.damco.com
www.damco.com
preprod-digitalportal.damco.com
api-stage.damco.com
brain-api-emea.damco.com
b2b.damco.com
blog.damco.com
blog.damco.com
ct.damco.com
www.preprod-docmanui.damco.com
www.preprod-brainui.damco.com
core-api-emea.damco.com
core-api.damco.com
demo-booking.damco.com
www.preprod-docmanui.damco.com
ilsewnd.damco.com
response.damco.com
adama-ct.damco.com
preprod-sourcingoptimization.damco.com
finops.damco.com
*.damco.com
www.damco.com
www.dev.damco.com
preproduction-documentation.damco.com
globalhandover.damco.com
namapps.damco.com
response.damco.com
finops.damco.com
adama-ct.damco.com
dev-flowoptimizer.damco.com
ilse.damco.com
ilse-azure.damco.com
dfc.damco.com
preprod.primark.damco.com
ct.damco.com
more.damco.com
preprod-flowoptimizer.damco.com
www.damco.com
productcatalogue.damco.com
blog.damco.com
preprod.sci.damco.com
www.damco.com
finops.damco.com
namapps.damco.com
sts1.maersk.net
globalhandover.damco.com
ilsetms.damco.com
test-documentation.damco.com
www.damco.com
dev-productcatalogue.damco.com
naswms.damco.com
digitalportal.damco.com
www.damco.com
response.damco.com
ilsetms.damco.com
*.damco.com
pocollaboration.damco.com
api-preprod.damco.com
booking.damco.com
*.damco.com
dev-digitalportal.damco.com
preproduction-exceptions.damco.com
ilsenas.damco.com
ediprep.damco.com
cdn.damco.com
preproduction-booking.damco.com
pp-pocollaboration.damco.com
www.damco.com
exceptions.damco.com
*.apawms.damco.com
lnsscanservice.damco.com
www.wmslite.damco.com
www.damco.com
exceptions.damco.com
preproduction-exceptions.damco.com
lns.damco.com
equipmenttracking-new.damco.com
preproduction-reporting.damco.com
preproduction-reporting.damco.com
destinationmgmt-preprod.damco.com
digitalportal.damco.com
Certificate
The complete raw certificate details for core-api-emea.damco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGijCCBXKgAwIBAgIQCk6l1U4XvESfgbVIsVvNQzANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UEAxMU R2VvVHJ1c3QgU1NMIENBIC0gRzMwHhcNMTcwNDI3MDAwMDAwWhcNMjAwNDI2MjM1 OTU5WjCBgDELMAkGA1UEBhMCTkwxFTATBgNVBAgMDFp1aWQtSG9sbGFuZDEWMBQG A1UEBwwNJ3MtR3JhdmVuaGFnZTEgMB4GA1UECgwXRGFtY28gSW50ZXJuYXRpb25h bCBCLlYxIDAeBgNVBAMMF2NvcmUtYXBpLWVtZWEuZGFtY28uY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA77cAX2HsOiDoIdU0J3cZ6MM8VeY9fbt+ z41fHGEJYnZcO+YlkjW03CARG42TxGxLmIHRjcTydvXCOWlstZKs1LdVqrhpmhSA 2knaTVHGUNzhlxkzKWfkECcyIR77leUr0CUsx5Jn58HyzeOqA6fE8e+oIgInsLRR K5j3B6//l7bnlrqVQJtlJKGiGljZDQ3I4FPgoWJk09igRK8sqjhiFandJ0CGma4u R5oNP3fLeHaZNFbEnIt3gY5mmNRS1Otx20iat294Z3XE/PQkUcROMGr/P9YlyH0p Z89Ppee8j1O6CzNyJDAEK7NKxhS8Rftf5ZY84rmLZJ8tdKnET8gUwwIDAQABo4ID OTCCAzUwggGbBgNVHREEggGSMIIBjoIfY29yZS1hcGktZW1lYS11YXQuc2NtLmRh bWNvLmNvbYImY29yZS1hcGktZW1lYS11YXQubWFuYWdlbWVudC5kYW1jby5jb22C G2NvcmUtYXBpLWVtZWEuc2NtLmRhbWNvLmNvbYIiY29yZS1hcGktZW1lYS11YXQu cG9ydGFsLmRhbWNvLmNvbYImY29yZS1hcGktZW1lYS1pbnQubWFuYWdlbWVudC5k YW1jby5jb22CImNvcmUtYXBpLWVtZWEtaW50LnBvcnRhbC5kYW1jby5jb22CH2Nv cmUtYXBpLWVtZWEtaW50LnNjbS5kYW1jby5jb22CHmNvcmUtYXBpLWVtZWEucG9y dGFsLmRhbWNvLmNvbYIbY29yZS1hcGktZW1lYS11YXQuZGFtY28uY29tgiJjb3Jl LWFwaS1lbWVhLm1hbmFnZW1lbnQuZGFtY28uY29tghtjb3JlLWFwaS1lbWVhLWlu dC5kYW1jby5jb22CF2NvcmUtYXBpLWVtZWEuZGFtY28uY29tMAkGA1UdEwQCMAAw DgYDVR0PAQH/BAQDAgWgMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly9nbi5zeW1j Yi5jb20vZ24uY3JsMIGdBgNVHSAEgZUwgZIwgY8GBmeBDAECAjCBhDA/BggrBgEF BQcCARYzaHR0cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0 b3J5L2xlZ2FsMEEGCCsGAQUFBwICMDUMM2h0dHBzOi8vd3d3Lmdlb3RydXN0LmNv bS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9sZWdhbDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwHwYDVR0jBBgwFoAU0m/3lvSFP3I8MH0j2oV4m6N8WnwwVwYI KwYBBQUHAQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8vZ24uc3ltY2QuY29tMCYG CCsGAQUFBzAChhpodHRwOi8vZ24uc3ltY2IuY29tL2duLmNydDATBgorBgEEAdZ5 AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs2UnqY1PFGUCXT7+8g7ulM0V nFIhPDVbdnqPDP9EbenQlDDyRhLh0jUWc/2RxZA1Rsw9yMM0aSVUnREMQtwhWylh 3FjragbOKwSbgQ3VX/5daE7bw+LpeSO++cNRxDdYAdrAthY4TF088Tv0rkdeRnX+ W6nDd1+Rq5c5QGoXn/KQn92s0WGsgMV0hNcB0YBjJmWMbdbk5MWz2x9+rIjbVZFV 2s/ZhwgyanfytP31E83uvV0B/K1bt5rJ3X7KS1eVqy/OVGF+FCzHp51AAVjbltBQ 7vetu9zmz1ykGlQquyj+W4/KD/+cBw2hEscLCHQDzfiqtIR7eFLa5DnTMmsu4w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA77cAX2HsOiDoIdU0J3cZ 6MM8VeY9fbt+z41fHGEJYnZcO+YlkjW03CARG42TxGxLmIHRjcTydvXCOWlstZKs 1LdVqrhpmhSA2knaTVHGUNzhlxkzKWfkECcyIR77leUr0CUsx5Jn58HyzeOqA6fE 8e+oIgInsLRRK5j3B6//l7bnlrqVQJtlJKGiGljZDQ3I4FPgoWJk09igRK8sqjhi FandJ0CGma4uR5oNP3fLeHaZNFbEnIt3gY5mmNRS1Otx20iat294Z3XE/PQkUcRO MGr/P9YlyH0pZ89Ppee8j1O6CzNyJDAEK7NKxhS8Rftf5ZY84rmLZJ8tdKnET8gU wwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13700642610166618478674403422751149379 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-26 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zuid-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String ''s-Gravenhage' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Damco International B.V' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'core-api-emea.damco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30261196267898737619501847791920075425908116359063657260496056644732364972999784619033356722567495940962597840272328480252462976149448304041741004101381239431518398295517817942266899273570616976950863393230936617253441507552766567594922405263077977142880185955697879666489865250508264628189173922986773141542681934078390758536409650993160053722464666630728359189009712703116713257137964237425595463678099306762882676154821109483056901552261568155013211321257862381208021230548118254449517501598889973291482493823579532299057021590278278924833832183672572105497161982150609764614196114870017998180410747334424741287107 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (402 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'core-api-emea-uat.scm.damco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'core-api-emea-uat.management.damco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'core-api-emea.scm.damco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'core-api-emea-uat.portal.damco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'core-api-emea-int.management.damco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'core-api-emea-int.portal.damco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'core-api-emea-int.scm.damco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'core-api-emea.portal.damco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'core-api-emea-uat.damco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'core-api-emea.management.damco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'core-api-emea-int.damco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'core-api-emea.damco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d26ff796f4853f723c307d23da85789ba37c5a7c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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