*.mnh.fr
- MUTUELLE NAT HOSPIT PROF SANTE SOCIAL -
Issued by Thawte TLS RSA CA G1
About this certificate
This digital certificate with serial number 09:3d:03:f8:e7:da:0d:4c:c5:c2:91:d3:d8:14:6d:0b was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
MUTUELLE NAT HOSPIT PROF SANTE SOCIAL
Organization:
MUTUELLE NAT HOSPIT PROF SANTE SOCIAL
Organization unit: MNH
Organization unit: MNH
Locality:
AMILLY
Country: FR
Country: FR
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:3d:03:f8:e7:da:0d:4c:c5:c2:91:d3:d8:14:6d:0bSerial Number (int): 12279862638002627738415258312086154507
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: b0:7e:71:ad:ad:20:3f:ac:0e:87:a4:ab:0c:d5:da:df:e5:ed:35:22
AuthorityKeyId: a5:8c:fe:32:cc:eb:0f:2c:d4:19:c6:08:b8:00:24:88:5d:c3:c5:b7
Fingerprint (sha1): a3:47:fb:5d:e5:3d:08:de:12:96:65:b1:43:03:0b:d2:6b:34:02:66
Fingerprint (sha256): 16:b3:96:3a:54:4f:65:76:2b:af:20:d2:f3:dd:e7:85:33:a1:3b:8c:04:95:e3:d9:49:b6:a5:46:b8:ab:85:43
Issuing Certificate URL: http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteTLSRSACAG1.crl
Check the revocation status for certificate *.mnh.fr
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.mnh.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.mnh.fr
mnh.fr
mnh.fr
Other certificates including the domain name mnh.fr
(limited to 100 certificates)
imperva.com
adhesion.mnh.fr
akamai-san109.exacttarget.com
incapsula.com
incapsula.com
imperva.com
imperva.com
akamai-san109.exacttarget.com
www.mnh.fr
incapsula.com
*.mnh.fr
akamai-san109.exacttarget.com
incapsula.com
www.mnh.fr
incapsula.com
incapsula.com
incapsula.com
incapsula.com
www.mnh.fr
*.mnh.fr
incapsula.com
adherent.mnh.fr
*.mnh.fr
www.mnh.fr
incapsula.com
incapsula.com
imperva.com
*.mnh.fr
akamai-san109.exacttarget.com
incapsula.com
adherent.mnh.fr
*.mnh.fr
akamai-san109.exacttarget.com
*.mnh.fr
incapsula.com
incapsula.com
*.mnh.fr
*.mnh.fr
incapsula.com
incapsula.com
*.mnh.fr
secgate.mnh.fr
www.mnh.fr
www.mnh.fr
incapsula.com
ppradherent.mnh.fr
*.mnh.fr
incapsula.com
adherent.mnh.fr
ppradherent.mnh.fr
secgate.mnh.fr
incapsula.com
incapsula.com
incapsula.com
secgate.mnh.fr
incapsula.com
incapsula.com
adherent.mnh.fr
adherent.mnh.fr
akamai-san109.exacttarget.com
*.mnh.fr
ppradherent.mnh.fr
incapsula.com
secgate.mnh.fr
sts.mnh.fr
*.mnh.fr
sts.mnh.fr
adherent.mnh.fr
sts.mnh.fr
imperva.com
incapsula.com
incapsula.com
incapsula.com
concours-mnh-bfm.mnh.fr
adherent.mnh.fr
incapsula.com
incapsula.com
incapsula.com
*.mnh.fr
incapsula.com
sts.mnh.fr
incapsula.com
imperva.com
sts.mnh.fr
ppradherent.mnh.fr
*.mnh.fr
sts.mnh.fr
akamai-san109.exacttarget.com
imperva.com
*.mnh.fr
certificat-mutualiste.mnh.fr
incapsula.com
akamai-san109.exacttarget.com
sts.mnh.fr
incapsula.com
secgate.mnh.fr
incapsula.com
www.mnh.fr
incapsula.com
sts.mnh.fr
adhesion.mnh.fr
akamai-san109.exacttarget.com
incapsula.com
incapsula.com
imperva.com
imperva.com
akamai-san109.exacttarget.com
www.mnh.fr
incapsula.com
*.mnh.fr
akamai-san109.exacttarget.com
incapsula.com
www.mnh.fr
incapsula.com
incapsula.com
incapsula.com
incapsula.com
www.mnh.fr
*.mnh.fr
incapsula.com
adherent.mnh.fr
*.mnh.fr
www.mnh.fr
incapsula.com
incapsula.com
imperva.com
*.mnh.fr
akamai-san109.exacttarget.com
incapsula.com
adherent.mnh.fr
*.mnh.fr
akamai-san109.exacttarget.com
*.mnh.fr
incapsula.com
incapsula.com
*.mnh.fr
*.mnh.fr
incapsula.com
incapsula.com
*.mnh.fr
secgate.mnh.fr
www.mnh.fr
www.mnh.fr
incapsula.com
ppradherent.mnh.fr
*.mnh.fr
incapsula.com
adherent.mnh.fr
ppradherent.mnh.fr
secgate.mnh.fr
incapsula.com
incapsula.com
incapsula.com
secgate.mnh.fr
incapsula.com
incapsula.com
adherent.mnh.fr
adherent.mnh.fr
akamai-san109.exacttarget.com
*.mnh.fr
ppradherent.mnh.fr
incapsula.com
secgate.mnh.fr
sts.mnh.fr
*.mnh.fr
sts.mnh.fr
adherent.mnh.fr
sts.mnh.fr
imperva.com
incapsula.com
incapsula.com
incapsula.com
concours-mnh-bfm.mnh.fr
adherent.mnh.fr
incapsula.com
incapsula.com
incapsula.com
*.mnh.fr
incapsula.com
sts.mnh.fr
incapsula.com
imperva.com
sts.mnh.fr
ppradherent.mnh.fr
*.mnh.fr
sts.mnh.fr
akamai-san109.exacttarget.com
imperva.com
*.mnh.fr
certificat-mutualiste.mnh.fr
incapsula.com
akamai-san109.exacttarget.com
sts.mnh.fr
incapsula.com
secgate.mnh.fr
incapsula.com
www.mnh.fr
incapsula.com
sts.mnh.fr
Certificate
The complete raw certificate details for *.mnh.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGcTCCBVmgAwIBAgIQCT0D+OfaDUzFwpHT2BRtCzANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRUaGF3dGUgVExTIFJTQSBDQSBHMTAe Fw0xODA4MTUwMDAwMDBaFw0yMDAyMTMxMjAwMDBaMG8xCzAJBgNVBAYTAkZSMQ8w DQYDVQQHEwZBTUlMTFkxLjAsBgNVBAoTJU1VVFVFTExFIE5BVCBIT1NQSVQgUFJP RiBTQU5URSBTT0NJQUwxDDAKBgNVBAsTA01OSDERMA8GA1UEAwwIKi5tbmguZnIw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK0b5HDQeN7c3mAsXMC95G pTWpEB+Jgl+2IXggxkZUzxunX8hFFp1oeJvajCpTTi72meny9uwni1LHPUexf0oO uY1j3quppxm0NgWBGXYyQMzbxUSN6d5SgQkhEf/pCfRZvnyGzAKz/XXp0GLxFLka Kem1flixUvSUseDq3T8aSFvVFHaZDUDPHB5Fek/qx63FCowwqAo1KXGUotqw5svd WbTJZQn20HwUCmbSkEXaaA1lyZ0JDMCJE6G8nksWjpHXmqUN78djt3DIwTEpDwXE y5ZIGVgzURAVmxPaRGzlgWhTbrlHVhsHAupr//PUcGAMDFYtN3bp7KLQBJEXwXiL AgMBAAGjggMYMIIDFDAfBgNVHSMEGDAWgBSljP4yzOsPLNQZxgi4ACSIXcPFtzAd BgNVHQ4EFgQUsH5xra0gP6wOh6SrDNXa3+XtNSIwGwYDVR0RBBQwEoIIKi5tbmgu ZnKCBm1uaC5mcjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jZHAudGhhd3RlLmNv bS9UaGF3dGVUTFNSU0FDQUcxLmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAq MCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeB DAECAjBwBggrBgEFBQcBAQRkMGIwJAYIKwYBBQUHMAGGGGh0dHA6Ly9zdGF0dXMu dGhhd3RlLmNvbTA6BggrBgEFBQcwAoYuaHR0cDovL2NhY2VydHMudGhhd3RlLmNv bS9UaGF3dGVUTFNSU0FDQUcxLmNydDAJBgNVHRMEAjAAMIIBfAYKKwYBBAHWeQIE AgSCAWwEggFoAWYAdQCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAA AWU9IuwHAAAEAwBGMEQCIBG8amQxPbZYd07zQPuHIJ3cKKyI+K8XvnAzTRSY4f9q AiAFlLp9E2QNiao2J4y4gtWwwVGNF+jBdUm9qh0JakugpwB2AId1v+dZfPiMQ5lf vfNu/1aNR1Y2/0q1YMG06v9eoIMPAAABZT0i7NIAAAQDAEcwRQIgd6Ip2aS69YS0 7ucpJI4LlDW3ZTF93+cYxKzNLaPymwECIQCi2XO7GxmnBjz+n/S9IxUztaOFE41A BQ6pfRWRL0hDGwB1ALvZ37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCWZDaOHtGFAAAB ZT0i7RoAAAQDAEYwRAIgA9V3g8dhr0/p9V84eCA6aFmoMShnMJbGMpS/PdXcwXkC IALKwXNAbfiLz0HUv6n8ult25MQKlqvunC6BEeicZIS4MA0GCSqGSIb3DQEBCwUA A4IBAQBMpj2B96vvYoWCS6roJ1R/zyZxJQ0Jmiwrc5FrWf4fktx9jwYCjt83WroS FUjvVlnseYll6Wf7UrRzBPkEBC0TN88R61GJNOIFWda4zSRe3xsuiKoU0f97z4P3 Z+n46ipaEN42eESiBPf9kynLHGxlVA0j4XGr4ARIu6sv1DATdEOJjnsOqiv8iB6y Iurjdqb3tTNR5bTxoEE98F6q6aO98gHQTa/8TNCpRDSnupeQjfzRhlp/M5s+eSF1 ID7ioJ6A9G7O9oqEJEYhLJiQ5bZzpCzhx+Wt76v1B27ZtWPCpAQ6RgXCVTkNgmlF 7pYWcUReU/wwJnjJGwmlHrAmx7nd -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytG+Rw0Hje3N5gLFzAve RqU1qRAfiYJftiF4IMZGVM8bp1/IRRadaHib2owqU04u9pnp8vbsJ4tSxz1HsX9K DrmNY96rqacZtDYFgRl2MkDM28VEjeneUoEJIRH/6Qn0Wb58hswCs/116dBi8RS5 GinptX5YsVL0lLHg6t0/Gkhb1RR2mQ1AzxweRXpP6setxQqMMKgKNSlxlKLasObL 3Vm0yWUJ9tB8FApm0pBF2mgNZcmdCQzAiROhvJ5LFo6R15qlDe/HY7dwyMExKQ8F xMuWSBlYM1EQFZsT2kRs5YFoU265R1YbBwLqa//z1HBgDAxWLTd26eyi0ASRF8F4 iwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12279862638002627738415258312086154507 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AMILLY' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MUTUELLE NAT HOSPIT PROF SANTE SOCIAL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MNH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.mnh.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25603565865218891359282523802370285147392875697270032103401220116025854233376447010098468086893540774170079479882541789881135315950188079520864718388348865556037948728472284247070298903866611901128880472002980615896980786958581101458908306892329244627005544331390473780186891949821116990836637878333339838524194245985619347457429532996102182688828230327142766219192421587606909811458218945822484615896860702758561491100042150949869225144798336555840301132642918970287631531543468573771844509620376887616670446536181409292218670969949145846038477737791305570155050899637944661631196112391742917736592658727982080293003 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a58cfe32cceb0f2cd419c608b80024885dc3c5b7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b07e71adad203fac0e87a4ab0cd5dadfe5ed3522 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mnh.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mnh.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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