client.oat.hsbc.fr
- HSBC Holdings plc -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 09:e7:17:6d:e1:34:51:7f:d2:92:c9:bc:a3:78:d5:d3 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
HSBC Holdings plc
Company registration number:
00617987
Organization: HSBC Holdings plc
Organization unit: ITNS S11012018
Organization: HSBC Holdings plc
Organization unit: ITNS S11012018
Locality:
London
Country: GB
Country: GB
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:e7:17:6d:e1:34:51:7f:d2:92:c9:bc:a3:78:d5:d3Serial Number (int): 13162947737373762303574979566777193939
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: f1:db:a9:c2:99:e0:e9:11:46:e9:df:26:8d:42:b2:3c:7d:40:20:73
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 66:1f:7a:83:a7:7d:84:05:fe:4c:a8:bc:38:3e:65:5f:97:e1:e4:b4
Fingerprint (sha256): 16:1c:3e:07:c1:84:5f:27:ab:7a:a1:27:ad:fa:aa:b1:7c:c8:5d:45:14:1d:78:de:b4:e4:35:19:eb:a6:2a:c4
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate client.oat.hsbc.fr
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for client.oat.hsbc.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
client.oat.hsbc.fr
client.oat2.hsbc.fr
client.oat2.hsbc.fr
Other certificates including the domain name hsbc.fr
(limited to 100 certificates)
www.ere.hsbc.fr
payment-web.elysnet.hsbc.fr
www.maint-wdc.m.security.online-banking.hsbc.fr
www3.hsbc.fr
sygdc-www.hsbc.fr
www.hsbc.fr
www.assetmanagement.hsbc.com
sjr.hsbc.fr
secure-messaging.hsbc.fr
investissements.clients.hsbc.fr
wdclp.client.hsbc.fr
agences.hsbc.fr
telechargement.elysnet.hsbc.fr
www.newoat.invest.hsbc.fr
mobi.ere.hsbc.fr
www.assetmanagement.hsbc.com
business.hsbc.com
services.hsbc.fr
sbweb.hsbc.fr
epargnant.ere.hsbc.fr
perspective-gsslp-wdc.hsbc.fr
ebics.hsbc.fr
idealcity-preprod.hsbc.fr
esignature.hsbc.fr
www.saas.online-banking.hsbc.fr
client.oat.hsbc.fr
www.hsbc.fr
bft.hsbc.fr
client.hsbc.fr
lp.sy-evrgrn-friif.hsbc.fr
office.elysnet.hsbc.fr
telechargement.elysnet.hsbc.fr
personal.hsbc.fr
secure-messaging-oat.hsbc.fr
trade-oat.buisness.hsbc.fr
personal.hsbc.fr
business-uat.hsbc.com.my
investissements.clients.hsbc.fr
businessclients.hsbc.fr
www.business.hsbc.fr
business-sit.hsbc.com.my
clients.hsbc.fr
client.hsbc.fr
perspective-gsslp-wdc.hsbc.fr
perspective.hsbc.fr
wdclp.m.security.online-banking.hsbc.fr
saver.ere.hsbc.fr
business-sit.hsbc.com.my
assurances-test.hsbc.fr
sbweb.newoat2.hsbc.fr
business.hsbc.com
www.hsbc.fr
www.securepaiement.elysnet.hsbc.fr
www.solution-sepa.hsbc.fr
ebics.hsbc.fr
wdc.lp.investissements.clients.hsbc.fr
personal.hsbc.fr
nwndc-www.hsbc.fr
zone-apex-alb-lookup.prod.dynp.cloud1.vv1865.com
perso.hsbc.fr
sbweb.newoat2.hsbc.fr
businessclients.hsbc.fr
client.hsbc.fr
zone-apex-alb-lookup.preprod.dynp.cloud1.vv1865.com
www.assetmanagement.hsbc.com
assurances-test.hsbc.fr
zone-apex-alb-lookup.prod.dynp.cloud1.vv1865.com
maint-wdc.servicing.hsbc.fr
starttoday.hsbc.fr
investissements.clients.hsbc.fr
assurance.hsbc.fr
assurances-test.hsbc.fr
sbjs.hsbc.fr
www.ere.hsbc.fr
www.hsbc.fr
www.securepaiement.elysnet.hsbc.fr
client.hsbc.fr
www.maint-wdc.services.online-banking.hsbc.fr
www.business.hsbc.fr
sbjs.newoat2.hsbc.fr
www.file.online-banking.hsbc.fr
business-uat.hsbc.com.my
www.about.hsbc.com.hk
idealcity-preprod.hsbc.fr
wdc.lp.investissements.clients.hsbc.fr
client.oat.hsbc.fr
trade-oat.business.hsbc.fr
business.hsbc.uk
www.hsbc.fr
hsbalt.altaix.hsbc.fr
www.business.hsbc.fr
saver.ere.hsbc.fr
ebics.hsbc.fr
hsbtst.altaix.hsbc.fr
assurances.hsbc.fr
sbweb.hsbc.fr
assurance-dev.hsbc.fr
saver.ere.hsbc.fr
oat.businessclients.hsbc.fr
www.privatebanking.hsbc.fr
payment-web.elysnet.hsbc.fr
www.maint-wdc.m.security.online-banking.hsbc.fr
www3.hsbc.fr
sygdc-www.hsbc.fr
www.hsbc.fr
www.assetmanagement.hsbc.com
sjr.hsbc.fr
secure-messaging.hsbc.fr
investissements.clients.hsbc.fr
wdclp.client.hsbc.fr
agences.hsbc.fr
telechargement.elysnet.hsbc.fr
www.newoat.invest.hsbc.fr
mobi.ere.hsbc.fr
www.assetmanagement.hsbc.com
business.hsbc.com
services.hsbc.fr
sbweb.hsbc.fr
epargnant.ere.hsbc.fr
perspective-gsslp-wdc.hsbc.fr
ebics.hsbc.fr
idealcity-preprod.hsbc.fr
esignature.hsbc.fr
www.saas.online-banking.hsbc.fr
client.oat.hsbc.fr
www.hsbc.fr
bft.hsbc.fr
client.hsbc.fr
lp.sy-evrgrn-friif.hsbc.fr
office.elysnet.hsbc.fr
telechargement.elysnet.hsbc.fr
personal.hsbc.fr
secure-messaging-oat.hsbc.fr
trade-oat.buisness.hsbc.fr
personal.hsbc.fr
business-uat.hsbc.com.my
investissements.clients.hsbc.fr
businessclients.hsbc.fr
www.business.hsbc.fr
business-sit.hsbc.com.my
clients.hsbc.fr
client.hsbc.fr
perspective-gsslp-wdc.hsbc.fr
perspective.hsbc.fr
wdclp.m.security.online-banking.hsbc.fr
saver.ere.hsbc.fr
business-sit.hsbc.com.my
assurances-test.hsbc.fr
sbweb.newoat2.hsbc.fr
business.hsbc.com
www.hsbc.fr
www.securepaiement.elysnet.hsbc.fr
www.solution-sepa.hsbc.fr
ebics.hsbc.fr
wdc.lp.investissements.clients.hsbc.fr
personal.hsbc.fr
nwndc-www.hsbc.fr
zone-apex-alb-lookup.prod.dynp.cloud1.vv1865.com
perso.hsbc.fr
sbweb.newoat2.hsbc.fr
businessclients.hsbc.fr
client.hsbc.fr
zone-apex-alb-lookup.preprod.dynp.cloud1.vv1865.com
www.assetmanagement.hsbc.com
assurances-test.hsbc.fr
zone-apex-alb-lookup.prod.dynp.cloud1.vv1865.com
maint-wdc.servicing.hsbc.fr
starttoday.hsbc.fr
investissements.clients.hsbc.fr
assurance.hsbc.fr
assurances-test.hsbc.fr
sbjs.hsbc.fr
www.ere.hsbc.fr
www.hsbc.fr
www.securepaiement.elysnet.hsbc.fr
client.hsbc.fr
www.maint-wdc.services.online-banking.hsbc.fr
www.business.hsbc.fr
sbjs.newoat2.hsbc.fr
www.file.online-banking.hsbc.fr
business-uat.hsbc.com.my
www.about.hsbc.com.hk
idealcity-preprod.hsbc.fr
wdc.lp.investissements.clients.hsbc.fr
client.oat.hsbc.fr
trade-oat.business.hsbc.fr
business.hsbc.uk
www.hsbc.fr
hsbalt.altaix.hsbc.fr
www.business.hsbc.fr
saver.ere.hsbc.fr
ebics.hsbc.fr
hsbtst.altaix.hsbc.fr
assurances.hsbc.fr
sbweb.hsbc.fr
assurance-dev.hsbc.fr
saver.ere.hsbc.fr
oat.businessclients.hsbc.fr
www.privatebanking.hsbc.fr
Certificate
The complete raw certificate details for client.oat.hsbc.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIQCecXbeE0UX/Sksm8o3jV0zANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE4MDgxMzAwMDAwMFoXDTE5MDIwOTEy MDAwMFowgbcxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAkdCMREwDwYDVQQFEwgwMDYxNzk4NzELMAkGA1UEBhMCR0IxDzAN BgNVBAcTBkxvbmRvbjEaMBgGA1UEChMRSFNCQyBIb2xkaW5ncyBwbGMxFzAVBgNV BAsTDklUTlMgUzExMDEyMDE4MRswGQYDVQQDExJjbGllbnQub2F0LmhzYmMuZnIw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3ZANrck2tODdt4k7K/YTn jpaGVPUXRRiJu4QcXw9gS17SZCsPg3bPgsYg+c5+PkEAjGVjtdwx69Fgw2Nqicqf QghQ/JovGvyyRTlOqDC2EEZ0M1JxcWLTJcyMCH27KT8pOMXubos1yJlMmvqTCiln Y46wASyW4n8MIvMSxhYytm2fsYh91QzEr4j3ZwOs1BTLIOLjgF5VZvBhvRWxi/SU 1N+oGYspGfLvl8eNt1QnzK3AqhFAEqMxs3OV38wV43nbmRATQZt33s25sNBWAqQp FaD+E0/jBcirtO6ctodPq3LEdTPUB5JKbKhqHGtbVsRXGTLF5YsWuP25Y9151OPH AgMBAAGjggIWMIICEjAfBgNVHSMEGDAWgBQ901Cl1qCt7vNKYApl0yHU+PjWDzAd BgNVHQ4EFgQU8dupwpng6RFG6d8mjUKyPH1AIHMwMgYDVR0RBCswKYISY2xpZW50 Lm9hdC5oc2JjLmZyghNjbGllbnQub2F0Mi5oc2JjLmZyMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwdQYDVR0fBG4wbDA0oDKg MIYuaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL3NoYTItZXYtc2VydmVyLWcyLmNy bDA0oDKgMIYuaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL3NoYTItZXYtc2VydmVy LWcyLmNybDBLBgNVHSAERDBCMDcGCWCGSAGG/WwCATAqMCgGCCsGAQUFBwIBFhxo dHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAcGBWeBDAEBMIGIBggrBgEFBQcB AQR8MHowJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBSBggr BgEFBQcwAoZGaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hB MkV4dGVuZGVkVmFsaWRhdGlvblNlcnZlckNBLmNydDAJBgNVHRMEAjAAMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAfvExL8lwsN1h2yCLJ oihP96ZMlI6LD8oIZvG3PD2y+bCWFz26ViQZMc37xi9ACa9Pz/winZsH6EwBKuvR mXy86vmBf9WJm3E+AiQZyCqN/QtwUWwJulNBMr2+/ZoIW376rRzPTMK9VFoPcNVw WdMSVB88DQjvWxykFHgWiCjSbwZbU8JzGS2enVFVDqcx9Sd0FXUnl05156sgNeDR A3aKASOkwNlk8K+3m8qKJik69+N4Kzxjs8QpYpFTHramNcsaHeLoiUTgWbgiqFoA yi0bEgBZMG1KW4EwCwM/CbKHUbVSbElxNj+SofzR4YPjXCMU1P9q25zVJNYOmB3r EAzy -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2QDa3JNrTg3beJOyv2E 546WhlT1F0UYibuEHF8PYEte0mQrD4N2z4LGIPnOfj5BAIxlY7XcMevRYMNjaonK n0IIUPyaLxr8skU5TqgwthBGdDNScXFi0yXMjAh9uyk/KTjF7m6LNciZTJr6kwop Z2OOsAEsluJ/DCLzEsYWMrZtn7GIfdUMxK+I92cDrNQUyyDi44BeVWbwYb0VsYv0 lNTfqBmLKRny75fHjbdUJ8ytwKoRQBKjMbNzld/MFeN525kQE0Gbd97NubDQVgKk KRWg/hNP4wXIq7TunLaHT6tyxHUz1AeSSmyoahxrW1bEVxkyxeWLFrj9uWPdedTj xwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13162947737373762303574979566777193939 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-09 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00617987' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HSBC Holdings plc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ITNS S11012018' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'client.oat.hsbc.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23150928233866376419576977144419701234191448345139045121216582725518258441710473032411554958553161282728238516966178364797211612573532328305955100003179850050854544334037591656438455490415266231726352161310270924195943174578328785442298550620851035328254969871270198866596185691160888061995543541130172426180837180273816462198260051824480792505439858684285812893338531698958628018282061362424981069121242540609220697777713995295427728073770930100980392029380645308391715280989958127093689241240548393766339633679851728726514419487339539598077921303691952413432023152121559123368845086595177841759624935373153330586567 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f1dba9c299e0e91146e9df268d42b23c7d402073 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'client.oat.hsbc.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'client.oat2.hsbc.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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