portal.invapay.com
- Invapay Payment Solutions -
Issued by Thawte SSL CA
About this certificate
This digital certificate with serial number 6f:15:97:83:98:d6:ce:37:f6:f9:77:68:bf:df:2b:3a was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Invapay Payment Solutions
Organization:
Invapay Payment Solutions
Organization unit: Invapay Payment Solutions
Organization unit: Invapay Payment Solutions
State / Province:
Hertfordshire
Locality: Hertford
Country: GB
Locality: Hertford
Country: GB
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 6f:15:97:83:98:d6:ce:37:f6:f9:77:68:bf:df:2b:3aSerial Number (int): 147656418836195739501488727888037358394
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: a7:a2:83:bb:34:45:40:3d:fc:d5:30:4f:12:b9:3e:a1:01:9f:f6:db
Fingerprint (sha1): 4c:02:e7:2f:a6:d3:ad:20:07:d9:0f:4a:c2:12:5d:7c:6d:38:34:bd
Fingerprint (sha256): 17:5b:a3:db:2e:46:1f:4a:30:fd:c8:f7:3c:18:3e:fe:d8:76:b6:88:b8:c2:25:88:09:67:e8:d8:5c:39:93:0c
Issuing Certificate URL: http://svr-ov-aia.thawte.com/ThawteOV.cer
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl
Check the revocation status for certificate portal.invapay.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for portal.invapay.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
portal.invapay.com
Other certificates including the domain name invapay.com
(limited to 100 certificates)
demo.invapay.com
bamboo.dev.invapay.com
authorisations.invapay.com
authorisations.invapay.com
invapay.com
beta.portal.invapay.com
portal.invapay.com
artifactory.dev.invapay.com
portal.invapay.com
artifactory.dev.invapay.com
invapay.com
invapay.com
portal.invapay.com
bamboo.dev.invapay.com
www.invapay.com
bamboo.dev.invapay.com
api.invapay.com
invapay.com
www.invapay.com
demo-payables.invapay.com
dev.invapay.com
payables.invapay.com
www.invapay.com
invapay.com
invite.invapay.com
demo-manapp.invapay.com
www.invapay.com
payables.invapay.com
www.invapay.com
payables.invapay.com
www.invapay.com
www.invapay.com
ccsvendorregistration.invapay.com
authorisations.invapay.com
portal.invapay.com
demo.invapay.com
payables.invapay.com
cardreconcile.invapay.com
invapay.com
demo-payables.invapay.com
cardregistration.invapay.com
*.invapay.com
demo.invapay.com
manapp.invapay.com
portal.invapay.com
www.invapay.com
demo.invapay.com
api.invapay.com
beta.portal.invapay.com
demo-payables.invapay.com
artifactory.dev.invapay.com
bamboo.dev.invapay.com
manapp.invapay.com
api.invapay.com
portal.invapay.com
artifactory.dev.invapay.com
awsacmtest.invapay.com
www.invapay.com
authorisations.invapay.com
demo.invapay.com
www.invapay.com
demo-manapp.invapay.com
payables.invapay.com
cardreconcile.invapay.com
cardregistration.invapay.com
demo.invapay.com
api.invapay.com
invapay.com
bamboo.dev.invapay.com
authorisations.invapay.com
authorisations.invapay.com
invapay.com
beta.portal.invapay.com
portal.invapay.com
artifactory.dev.invapay.com
portal.invapay.com
artifactory.dev.invapay.com
invapay.com
invapay.com
portal.invapay.com
bamboo.dev.invapay.com
www.invapay.com
bamboo.dev.invapay.com
api.invapay.com
invapay.com
www.invapay.com
demo-payables.invapay.com
dev.invapay.com
payables.invapay.com
www.invapay.com
invapay.com
invite.invapay.com
demo-manapp.invapay.com
www.invapay.com
payables.invapay.com
www.invapay.com
payables.invapay.com
www.invapay.com
www.invapay.com
ccsvendorregistration.invapay.com
authorisations.invapay.com
portal.invapay.com
demo.invapay.com
payables.invapay.com
cardreconcile.invapay.com
invapay.com
demo-payables.invapay.com
cardregistration.invapay.com
*.invapay.com
demo.invapay.com
manapp.invapay.com
portal.invapay.com
www.invapay.com
demo.invapay.com
api.invapay.com
beta.portal.invapay.com
demo-payables.invapay.com
artifactory.dev.invapay.com
bamboo.dev.invapay.com
manapp.invapay.com
api.invapay.com
portal.invapay.com
artifactory.dev.invapay.com
awsacmtest.invapay.com
www.invapay.com
authorisations.invapay.com
demo.invapay.com
www.invapay.com
demo-manapp.invapay.com
payables.invapay.com
cardreconcile.invapay.com
cardregistration.invapay.com
demo.invapay.com
api.invapay.com
invapay.com
Certificate
The complete raw certificate details for portal.invapay.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIQbxWXg5jWzjf2+Xdov98rOjANBgkqhkiG9w0BAQUFADA8 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRYwFAYDVQQDEw1U aGF3dGUgU1NMIENBMB4XDTEyMTAyMjAwMDAwMFoXDTE0MTEyMTIzNTk1OVowgZ0x CzAJBgNVBAYTAkdCMRYwFAYDVQQIEw1IZXJ0Zm9yZHNoaXJlMREwDwYDVQQHFAhI ZXJ0Zm9yZDEiMCAGA1UEChQZSW52YXBheSBQYXltZW50IFNvbHV0aW9uczEiMCAG A1UECxQZSW52YXBheSBQYXltZW50IFNvbHV0aW9uczEbMBkGA1UEAxQScG9ydGFs LmludmFwYXkuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAimsV bK0vFCaR9VXBAX0/SkKlGxsFFwT91XTKRIbbaF9rfSxCXCVxZrJB34DQZHPjG7UN M5SryplMJO4b7uqi4JNvBv0cwVt3U3NPKOCiIgj3LWEQLcZrOjfHp3RERcGzoNZe m0PJN5gb0MrCol/0QeY1Tr2XRJYD+iOzoji7QCJUXnOP67frXL3TxIUvd9FFjSF2 wesUY/Qiq8uA+kxj/44uK8g/q/O856uJ4oJqGgyJoyt+QCPdp/FMITog48+psPqf 6KTqm2iiJwXBzQbjsg4TK5xNNzp01C5dJDkA+2bUcuXxsUkB7OFIP35MOyhbpSdX v/JMlYgpO7d0qFpYGQIDAQABo4IBaTCCAWUwHQYDVR0RBBYwFIIScG9ydGFsLmlu dmFwYXkuY29tMAkGA1UdEwQCMAAwQgYDVR0gBDswOTA3BgpghkgBhvhFAQc2MCkw JwYIKwYBBQUHAgEWG2h0dHBzOi8vd3d3LnRoYXd0ZS5jb20vY3BzLzAOBgNVHQ8B Af8EBAMCBaAwHwYDVR0jBBgwFoAUp6KDuzRFQD381TBPErk+oQGf9tswOgYDVR0f BDMwMTAvoC2gK4YpaHR0cDovL3N2ci1vdi1jcmwudGhhd3RlLmNvbS9UaGF3dGVP Vi5jcmwwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGkGCCsGAQUFBwEB BF0wWzAiBggrBgEFBQcwAYYWaHR0cDovL29jc3AudGhhd3RlLmNvbTA1BggrBgEF BQcwAoYpaHR0cDovL3N2ci1vdi1haWEudGhhd3RlLmNvbS9UaGF3dGVPVi5jZXIw DQYJKoZIhvcNAQEFBQADggEBADqmCQ65mCc6Y9fb2Cxp02c7xGWtm93BpN8UNANY xxXv30718XWjXNksJpdDxmnnHRRVqUfyX5tKExS0T7tCwGS/Irz2gF0aTlhLo024 Ur+dG7SioyC4rDWnSCPc10eQNexvCyUfXyUJ4VyY5770qQRg0f4Ynqyae+xfCPI1 h2mhiAG/YSvyFEAutoOKRA3DdkH0y4Nn69B4ciYUL5/wbMe75A2rlHfLMaPcMU0z tVgHgQVacVjClxsM7V6RDRYP0JjV2dZqKA7EFkMnWc4bsPH+RxzTof/UUrMdxfgD 0XNpdZZCIBBqOieFDJWa3Q7C+r/2whvjdNaU1PVvTBk0OYI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAimsVbK0vFCaR9VXBAX0/ SkKlGxsFFwT91XTKRIbbaF9rfSxCXCVxZrJB34DQZHPjG7UNM5SryplMJO4b7uqi 4JNvBv0cwVt3U3NPKOCiIgj3LWEQLcZrOjfHp3RERcGzoNZem0PJN5gb0MrCol/0 QeY1Tr2XRJYD+iOzoji7QCJUXnOP67frXL3TxIUvd9FFjSF2wesUY/Qiq8uA+kxj /44uK8g/q/O856uJ4oJqGgyJoyt+QCPdp/FMITog48+psPqf6KTqm2iiJwXBzQbj sg4TK5xNNzp01C5dJDkA+2bUcuXxsUkB7OFIP35MOyhbpSdXv/JMlYgpO7d0qFpY GQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 147656418836195739501488727888037358394 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-10-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-11-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hertfordshire' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Hertford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Invapay Payment Solutions' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Invapay Payment Solutions' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'portal.invapay.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17473691020686174491318503697063902311687292259141891865578801702826399139424168207410229218567386757833481643316232574375981271811270947774794933541152287989778655335938161770650482880573335655900242980619294913383522707804041139211223145979863363431505520337526441603280828837312783400384691345236686349240683450780092658434005089140216740690923218051489755475803464339621912024149053098452146622218778436061504787445074794298002702309442721445431176566907475370663366840011291422095301586814492431410907941516682501343930354688336254120141135195667749461598570420611185282461179789981258737001751869421223893686297 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.invapay.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a7a283bb3445403dfcd5304f12b93ea1019ff6db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-aia.thawte.com/ThawteOV.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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