*.karkkainen.com
Issued by RapidSSL SHA256 CA
About this certificate
This digital certificate with serial number 07:ec:b1:15:05:02:eb:8e:e5:ba:2a:74:ab:14:0c:b7 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=*.karkkainen.com
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:ec:b1:15:05:02:eb:8e:e5:ba:2a:74:ab:14:0c:b7Serial Number (int): 10533569680950844868736652179842272439
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 97:c2:27:50:9e:c2:c9:ec:0c:88:32:c8:7c:ad:e2:a6:01:4f:da:6f
Fingerprint (sha1): 65:4d:09:36:ab:0c:95:bd:bf:33:c3:90:5e:94:60:c3:cb:d7:8a:42
Fingerprint (sha256): 16:ae:00:4c:16:b2:b0:01:bc:66:30:27:27:4e:3f:b5:c3:3e:8a:03:e8:e8:59:a2:bb:47:b3:3b:b4:bf:7d:d9
Issuing Certificate URL: http://gp.symcb.com/gp.crt
Revocation information
OCSP Server: http://gp.symcd.comCRL Distribution Point: http://gp.symcb.com/gp.crl
Check the revocation status for certificate *.karkkainen.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.karkkainen.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.karkkainen.com
karkkainen.com
karkkainen.com
Other certificates including the domain name karkkainen.com
(limited to 100 certificates)
fw.karkkainen.com
kuvat.karkkainen.com
kuvat.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
lehti.karkkainen.com
lehti.karkkainen.com
s3-san.cloudinary.com
fw.karkkainen.com
autohuolto.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
lehti.karkkainen.com
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
arvonta.karkkainen.com
s3-san.cloudinary.com
webmail.karkkainen.com
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
*.karkkainen.com
lahjakortti.karkkainen.com
kuvat.karkkainen.com
s3-san.cloudinary.com
yritysmyynti.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
a.hwstatic.com
tuki.karkkainen.com
tuki.karkkainen.com
s3-san.cloudinary.com
lehti.karkkainen.com
kuvat.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-san.cloudinary.com
fw.karkkainen.com
kuvat.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
kuvat.karkkainen.com
*.karkkainen.com
s3-cloudinary-pin.map.fastly.net
link.uutiskirje.karkkainen.com
s3-cloudinary-pin.map.fastly.net
webmail.karkkainen.com
webmail.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
lehti.karkkainen.com
link.uutiskirje.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
lehti.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
a.hwstatic.com
yritysmyynti.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
arvonta.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
tuki.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
kuvat.karkkainen.com
kuvat.karkkainen.com
kuvat.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
lehti.karkkainen.com
lehti.karkkainen.com
s3-san.cloudinary.com
fw.karkkainen.com
autohuolto.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
lehti.karkkainen.com
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
arvonta.karkkainen.com
s3-san.cloudinary.com
webmail.karkkainen.com
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
*.karkkainen.com
lahjakortti.karkkainen.com
kuvat.karkkainen.com
s3-san.cloudinary.com
yritysmyynti.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
a.hwstatic.com
tuki.karkkainen.com
tuki.karkkainen.com
s3-san.cloudinary.com
lehti.karkkainen.com
kuvat.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-san.cloudinary.com
fw.karkkainen.com
kuvat.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
kuvat.karkkainen.com
*.karkkainen.com
s3-cloudinary-pin.map.fastly.net
link.uutiskirje.karkkainen.com
s3-cloudinary-pin.map.fastly.net
webmail.karkkainen.com
webmail.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
lehti.karkkainen.com
link.uutiskirje.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
lehti.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
*.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
a.hwstatic.com
yritysmyynti.karkkainen.com
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
s3-cloudinary-pin.map.fastly.net
arvonta.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
tuki.karkkainen.com
s3-san.cloudinary.com
s3-cloudinary-pin.map.fastly.net
kuvat.karkkainen.com
Certificate
The complete raw certificate details for *.karkkainen.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEgTCCA2mgAwIBAgIQB+yxFQUC647luip0qxQMtzANBgkqhkiG9w0BAQsFADBC MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEbMBkGA1UEAxMS UmFwaWRTU0wgU0hBMjU2IENBMB4XDTE2MDUwMjAwMDAwMFoXDTE3MDYwMTIzNTk1 OVowGzEZMBcGA1UEAwwQKi5rYXJra2FpbmVuLmNvbTCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAMwvE4oV9FJp7WKf3cow0lNv86MTbhmG5rsV1jHRVyRb r41vzDz9j2JVN6gkOgVODvweDK1GCe6B1kImonQA+xnwjYE+LTYMPmy7tIyA29AI yxOnq8wdaaAgbBw1B9LN6QAqhGXr6RzJHn/CHWYQWl1iF8QdAZq0kPxltOqXOgmT kg6l+UseiCiWbZEiz2NQe8smIOEV/cHnt3G4Bcm+BTDNT54b2C0WiGDAFw0wodid UQJwU7XupBXp437Siiq/XjSXIaM/WXEN9w9mC9Wirl2vgLmpMf3v0Vf46A7XHjvr lDca1rfxcSyktiDyyLTrPNx99P7ySU4Y8IrHpVgzfSsCAwEAAaOCAZgwggGUMCsG A1UdEQQkMCKCECoua2Fya2thaW5lbi5jb22CDmthcmtrYWluZW4uY29tMAkGA1Ud EwQCMAAwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL2dwLnN5bWNiLmNvbS9ncC5j cmwwbwYDVR0gBGgwZjBkBgZngQwBAgEwWjAqBggrBgEFBQcCARYeaHR0cHM6Ly93 d3cucmFwaWRzc2wuY29tL2xlZ2FsMCwGCCsGAQUFBwICMCAMHmh0dHBzOi8vd3d3 LnJhcGlkc3NsLmNvbS9sZWdhbDAfBgNVHSMEGDAWgBSXwidQnsLJ7AyIMsh8reKm AU/abzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcwAYYTaHR0cDovL2dwLnN5bWNk LmNvbTAmBggrBgEFBQcwAoYaaHR0cDovL2dwLnN5bWNiLmNvbS9ncC5jcnQwEwYK KwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBACwlw206sQpl9FeY mk35EcYsT1AJ8NDsYLA9Ccry/XLo2I/1I6KqOTB+SQMSDNdxePLrpuuQnnq7uNkr IUbHvqgYVxRCU2FfuSruLK8U4KZamyYs8FVWu5eWBt2+VnP5SWL+Yg39CJkYw1R/ tf1/hCRHd7M9NQYBe8UaduWAXhQlucSUHJUtdv4fcakqn0HaSgdKOuhG5fPN5v1A dybNmAsjxAJqLpaEHfaBC7RX4hvmLPaREb+gkNg2hSDbCLh7lTCtiqJezEqvkL2t e5qLjmP69OpeZGzuuxUDcy0GCWGgSNGXCLRoApmQ108amheObiuznXnh2u1FevlH /8di+Ns= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzC8TihX0UmntYp/dyjDS U2/zoxNuGYbmuxXWMdFXJFuvjW/MPP2PYlU3qCQ6BU4O/B4MrUYJ7oHWQiaidAD7 GfCNgT4tNgw+bLu0jIDb0AjLE6erzB1poCBsHDUH0s3pACqEZevpHMkef8IdZhBa XWIXxB0BmrSQ/GW06pc6CZOSDqX5Sx6IKJZtkSLPY1B7yyYg4RX9wee3cbgFyb4F MM1PnhvYLRaIYMAXDTCh2J1RAnBTte6kFenjftKKKr9eNJchoz9ZcQ33D2YL1aKu Xa+Auakx/e/RV/joDtceO+uUNxrWt/FxLKS2IPLItOs83H30/vJJThjwiselWDN9 KwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10533569680950844868736652179842272439 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-06-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.karkkainen.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25775828414519009076190586030184667053361784343030395341097360709058924751816471509264067722802442952482566671640978342569015539279646405273565877026031707060229684357370179655920589807934857522579347657466681127022404479448792490615212672105478513870976524305141994516414028670419847753659743350103000882443426928544786176942760591007506703910838887063277284332024374425579924959853186591990193556787837632044968009023649278392868559291158870170741247954414342127433025916682911219749822860109966315650965204528044190777156359034475920251634977231429576115385050431051559497575446463249815409635476059077789787323691 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.karkkainen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'karkkainen.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 97c227509ec2c9ec0c8832c87cade2a6014fda6f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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