cakmzz.schwab.de
- Criteo SA -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0d:ac:6b:d7:a0:e7:4a:bf:63:b5:25:40:1d:6a:89:9c was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Criteo SA
Organization:
Criteo SA
State / Province:
Île-de-France
Locality: Paris
Country: FR
Locality: Paris
Country: FR
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:ac:6b:d7:a0:e7:4a:bf:63:b5:25:40:1d:6a:89:9cSerial Number (int): 18175226306551644416803412625540680092
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 24:5f:4c:94:d1:b2:7b:f1:23:67:40:bb:e1:65:eb:10:6d:42:da:e1
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): 26:ff:83:df:d1:1e:43:fa:6c:a8:86:30:8c:82:66:8c:2d:1b:b2:1d
Fingerprint (sha256): 18:34:2a:6b:4a:94:e4:52:c2:2c:25:85:bb:1a:18:9d:76:3e:2f:bc:cd:56:7c:7c:65:e2:ed:6c:aa:04:d5:ef
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate cakmzz.schwab.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cakmzz.schwab.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cakmzz.schwab.de
Other certificates including the domain name schwab.de
(limited to 100 certificates)
news2.schwab.de
news2.schwab.de
test3.schwab.de
ews.app.schwab.de
news2.schwab.de
staging.schwab.de
img.schwab.de
m.schwab.de
testexport.schwab.de
img.schwab.de
*.oghub.io
web.schwab.de
m.schwab.de
js.oghub.io
news2.schwab.de
schwab.de
*.oghub.io
m.schwab.de
*.oghub.io
img.schwab.de
testexport.schwab.de
cakmzz.schwab.de
schwab.de
schwab.de
js.oghub.io
*.oghub.io
news2.schwab.de
img.schwab.de
sv.schwab.de
img.schwab.de
cakmzz.schwab.de
*.oghub.io
js.oghub.io
gitlab.schwab.de
jira.app.schwab.de
gitlab.schwab.de
www.schwab.de
gitlab.schwab.de
news2.schwab.de
schwab.de
schwab.de
*.oghub.io
www.schwab.de
project1.schwab.de
testexport.schwab.de
gitlab.schwab.de
export.schwab.de
news2.schwab.de
*.oghub.io
news2.schwab.de
remote.app.schwab.de
news2.schwab.de
staging.schwab.de
staging.schwab.de
export.schwab.de
js.oghub.io
schwab.de
asmreports.schwab.de
news2.schwab.de
news2.schwab.de
*.oghub.io
gitlab.schwab.de
*.oghub.io
news2.schwab.de
web.schwab.de
*.oghub.io
news2.schwab.de
cakmzz.schwab.de
gitlab.schwab.de
js.oghub.io
news2.schwab.de
js.oghub.io
testexport.schwab.de
testexport.schwab.de
export.schwab.de
gitlab.schwab.de
www.schwab.de
web.schwab.de
img.schwab.de
schwab.de
m.schwab.de
www.schwab.de
remote.app.schwab.de
img.schwab.de
schwab.de
export.schwab.de
gitlab.schwab.de
js.oghub.io
gitlab.schwab.de
export.schwab.de
www.schwab.de
www.schwab.de
js.oghub.io
schwab.de
export.schwab.de
export.schwab.de
schwab.de
web.schwab.de
schwab.de
sv.schwab.de
news2.schwab.de
test3.schwab.de
ews.app.schwab.de
news2.schwab.de
staging.schwab.de
img.schwab.de
m.schwab.de
testexport.schwab.de
img.schwab.de
*.oghub.io
web.schwab.de
m.schwab.de
js.oghub.io
news2.schwab.de
schwab.de
*.oghub.io
m.schwab.de
*.oghub.io
img.schwab.de
testexport.schwab.de
cakmzz.schwab.de
schwab.de
schwab.de
js.oghub.io
*.oghub.io
news2.schwab.de
img.schwab.de
sv.schwab.de
img.schwab.de
cakmzz.schwab.de
*.oghub.io
js.oghub.io
gitlab.schwab.de
jira.app.schwab.de
gitlab.schwab.de
www.schwab.de
gitlab.schwab.de
news2.schwab.de
schwab.de
schwab.de
*.oghub.io
www.schwab.de
project1.schwab.de
testexport.schwab.de
gitlab.schwab.de
export.schwab.de
news2.schwab.de
*.oghub.io
news2.schwab.de
remote.app.schwab.de
news2.schwab.de
staging.schwab.de
staging.schwab.de
export.schwab.de
js.oghub.io
schwab.de
asmreports.schwab.de
news2.schwab.de
news2.schwab.de
*.oghub.io
gitlab.schwab.de
*.oghub.io
news2.schwab.de
web.schwab.de
*.oghub.io
news2.schwab.de
cakmzz.schwab.de
gitlab.schwab.de
js.oghub.io
news2.schwab.de
js.oghub.io
testexport.schwab.de
testexport.schwab.de
export.schwab.de
gitlab.schwab.de
www.schwab.de
web.schwab.de
img.schwab.de
schwab.de
m.schwab.de
www.schwab.de
remote.app.schwab.de
img.schwab.de
schwab.de
export.schwab.de
gitlab.schwab.de
js.oghub.io
gitlab.schwab.de
export.schwab.de
www.schwab.de
www.schwab.de
js.oghub.io
schwab.de
export.schwab.de
export.schwab.de
schwab.de
web.schwab.de
schwab.de
sv.schwab.de
Certificate
The complete raw certificate details for cakmzz.schwab.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgIQDaxr16DnSr9jtSVAHWqJnDANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMTA3MTUwMDAwMDBa Fw0yMTEwMTIyMzU5NTlaMGUxCzAJBgNVBAYTAkZSMRcwFQYDVQQIDA7DjmxlLWRl LUZyYW5jZTEOMAwGA1UEBxMFUGFyaXMxEjAQBgNVBAoTCUNyaXRlbyBTQTEZMBcG A1UEAxMQY2FrbXp6LnNjaHdhYi5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAMdyPYu97c/S8RePL7wZPPwadAavXC8y0O8ZkvU7gcRlGc8+6UxJJVSP eO83DsmWs1zEUcdn4mFMThaBvWRopjGOg2Df1YOQdhlEmFOK0ZSS3ESH4yARExL1 sLpWDG4H9GCQF4ukTVql/SocD/Aave8slQZH7eZrDCtmy0qQhvKGm/FZNd75Gq4/ C2bZS8aznlDnPumFdkwmac1aAv/XHuruIJjmntZIR5ScUNvlTnJKe8u4DlhIYbGf 6CTxKcolM+3WNfu/mposARowZrDycv2uRQls3vbD6CT7c1LHSWtIb9Nu+mJI3dzY ba+kMh4jCrQIRTYUl/p/1Tra7xZtKBkCAwEAAaOCAgYwggICMB8GA1UdIwQYMBaA FLdrouqoqoSMeeq02g+YssWVdrn0MB0GA1UdDgQWBBQkX0yU0bJ78SNnQLvhZesQ bULa4TAbBgNVHREEFDASghBjYWttenouc2Nod2FiLmRlMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwgY8GA1UdHwSBhzCBhDBA oD6gPIY6aHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hB MjU2MjAyMENBMS0xLmNybDBAoD6gPIY6aHR0cDovL2NybDQuZGlnaWNlcnQuY29t L0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS0xLmNybDA+BgNVHSAENzA1MDMG BmeBDAECAjApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9D UFMwfwYIKwYBBQUHAQEEczBxMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdp Y2VydC5jb20wSQYIKwYBBQUHMAKGPWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNv bS9EaWdpQ2VydFRMU1JTQVNIQTI1NjIwMjBDQTEtMS5jcnQwDAYDVR0TAQH/BAIw ADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo1Zz36ld 6oPBhTq0GL5JdFGvXpPQQRWL6m6XRChmnIMEhRA2mWiGSIsm4fkULzjkz+UrBlv6 pPpAcAk9a4jwPxEIq8ETW70vBKw+CZmv6r1z8yYACwk7+hkExfPfBP7exPh2RbVQ ZBHnLa4uRBtRAJICUpaW2zy/Dg5Uu4D4zk90CDn8n1RdQbLRAcHGz0FcvNDA0pp7 tEcuuzQzGN4p7QcFXwOmqcuLi2DvWJE+usy2+a85d3novv6c87rIb61Eyeh5lrK9 Me5FvH6e7mCVXuOehuVc99Qn0+F5PEOqy1ycx2X5G1BT704r3gqoUD9yVGW8ANbY oD6vnAX22BzxZw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3I9i73tz9LxF48vvBk8 /Bp0Bq9cLzLQ7xmS9TuBxGUZzz7pTEklVI947zcOyZazXMRRx2fiYUxOFoG9ZGim MY6DYN/Vg5B2GUSYU4rRlJLcRIfjIBETEvWwulYMbgf0YJAXi6RNWqX9KhwP8Bq9 7yyVBkft5msMK2bLSpCG8oab8Vk13vkarj8LZtlLxrOeUOc+6YV2TCZpzVoC/9ce 6u4gmOae1khHlJxQ2+VOckp7y7gOWEhhsZ/oJPEpyiUz7dY1+7+amiwBGjBmsPJy /a5FCWze9sPoJPtzUsdJa0hv0276Ykjd3Nhtr6QyHiMKtAhFNhSX+n/VOtrvFm0o GQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18175226306551644416803412625540680092 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-07-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Île-de-France' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Paris' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Criteo SA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cakmzz.schwab.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25177756735762091546897388962615241556279757814812023794376455645662325277561309679084944206678837477014546440663010918547416207077571583882778842104349917250536266703031835265367836178470181152808536043909932763877314161116657490657238877295341164895368836626689742813148516574905046501206063256186991024082064820708216845452185968069660336510137269536853064439347072761875918989768837701622777962562781369244728920629125855029325269218115746948613295344784555894667863438386067164206688144771980845733709512646111034597925264051800064320351935521566718431631810744490210143705315648452273872674068324813093737408537 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 245f4c94d1b27bf1236740bbe165eb106d42dae1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cakmzz.schwab.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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