*.bertelsmann.de
Issued by RapidSSL TLS RSA CA G1
About this certificate
This digital certificate with serial number 0b:06:1e:5e:cb:80:b7:7b:d4:30:1e:03:4a:5c:e8:c8 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.bertelsmann.de
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0b:06:1e:5e:cb:80:b7:7b:d4:30:1e:03:4a:5c:e8:c8Serial Number (int): 14653277717501735434622874282975094984
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c3:88:53:e0:ca:fb:dd:47:53:bd:26:8e:ab:20:51:f7:e0:3a:97:89
AuthorityKeyId: 0c:db:6c:82:49:0f:4a:67:0a:b8:14:ee:7a:c4:48:52:88:eb:56:38
Fingerprint (sha1): 26:b7:22:68:a3:52:b0:40:a9:38:01:a7:27:87:25:58:3b:8b:74:b0
Fingerprint (sha256): 18:b5:44:45:50:eb:84:00:66:45:5d:a0:0c:fd:1e:35:f8:a7:12:b3:ca:17:e1:13:5a:46:61:87:f2:a8:5c:e5
Issuing Certificate URL: http://cacerts.rapidssl.com/RapidSSLTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.rapidssl.comCRL Distribution Point: http://cdp.rapidssl.com/RapidSSLTLSRSACAG1.crl
Check the revocation status for certificate *.bertelsmann.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.bertelsmann.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.bertelsmann.de
bertelsmann.de
bertelsmann.de
Other certificates including the domain name bertelsmann.de
(limited to 100 certificates)
tts-eu.inrix.com
betravel.bertelsmann.de
www.haussortimente.bertelsmann.de
pp1.bertelsmann.de
cc.secureconnect.bertelsmann.de
api.qa.live.bertelsmann.de
owasemea.bertelsmann.de
greetings.bertelsmann.de
itsasqas.bertelsmann.de
www.haussortimente.bertelsmann.de
devccgtlp02.vc.bertelsmann.de
jp5.bertelsmann.de
csacie.bertelsmann.de
www.elettershop.de
benet.bertelsmann.de
betradecompliance.bertelsmann.de
ias.bertelsmann.de
pp5.bertelsmann.de
degtluv8626-repos.bertelsmann.de
*.bertelsmann.de
pp5-test.bertelsmann.de
www.bertelsmann.de
benet.bertelsmann.de
seratio3.bertelsmann.de
ess.bertelsmann.de
hotelrates.bertelsmann.de
esszeit.bertelsmann.de
*.bertelsmann.de
cp5-int.bertelsmann.de
fragobert.bertelsmann.de
www2.gitta.bertelsmann.de
directnet.bertelsmann.de
autodiscover.bertelsmann.de
seratio4.bertelsmann.de
grc-training.bertelsmann.de
www.haussortimente.bertelsmann.de
gp1.bertelsmann.de
*.benet.bertelsmann.com
betradecompliance.bertelsmann.de
itsasprd.bertelsmann.de
alumni.bertelsmann.com
*.bertelsmann.de
bop.bertelsmann.de
sp5.bertelsmann.de
*.bertelsmann.de
jobsearch.createyourowncareer.de
pp5-int.bertelsmann.de
gitta.test.bertelsmann.de
bstportal.bertelsmann.de
securelogin.bertelsmann.de
sl2.bertelsmann.de
wp1-test.bertelsmann.de
storefront2.bertelsmann.de
guest.bertelsmann.de
besuchen.bertelsmann.de
mietwagenservice.bertelsmann.de
www.haussortimente.bertelsmann.de
vas.bertelsmann.de
lc-service.bertelsmann.de
clm-int.bertelsmann.de
jppess.bertelsmann.de
ess.bertelsmann.de
sni2878bgl.wpc.edgecastcdn.net
greetings.bertelsmann.de
grc-int.bertelsmann.de
service.bertelsmann.de
*.bertelsmann.de
securelogin.bertelsmann.de
imp-test.bertelsmann.de
gitta.test.bertelsmann.de
www2.gitta.bertelsmann.de
fragobert.bertelsmann.de
vas.bertelsmann.de
imp-test.bertelsmann.de
peoplenet.bertelsmann.de
seratio4.bertelsmann.de
ess.bertelsmann.de
www.haussortimente.bertelsmann.de
deac.bertelsmann.de
b-share-qa.bertelsmann.de
b-share-dev.bertelsmann.de
keys.bertelsmann.de
bessermachen.bertelsmann.de
autodiscover.bertelsmann.de
jp5.bertelsmann.de
skypetmg.bertelsmann.de
grc-restore.bertelsmann.de
dubbmlske0001.bertelsmann.de
autodiscover.bertelsmann.de
itsgi7000.bertelsmann.de
deac.bertelsmann.de
mpsportal.bertelsmann.de
*.sti.bertelsmann.de
jppess.bertelsmann.de
www2.gitta.bertelsmann.de
cwa.bertelsmann.de
divisionalreportingserver.bertelsmann.de
skypetmg.bertelsmann.de
insurance.bertelsmann.de
www.haussortimente.bertelsmann.de
betravel.bertelsmann.de
www.haussortimente.bertelsmann.de
pp1.bertelsmann.de
cc.secureconnect.bertelsmann.de
api.qa.live.bertelsmann.de
owasemea.bertelsmann.de
greetings.bertelsmann.de
itsasqas.bertelsmann.de
www.haussortimente.bertelsmann.de
devccgtlp02.vc.bertelsmann.de
jp5.bertelsmann.de
csacie.bertelsmann.de
www.elettershop.de
benet.bertelsmann.de
betradecompliance.bertelsmann.de
ias.bertelsmann.de
pp5.bertelsmann.de
degtluv8626-repos.bertelsmann.de
*.bertelsmann.de
pp5-test.bertelsmann.de
www.bertelsmann.de
benet.bertelsmann.de
seratio3.bertelsmann.de
ess.bertelsmann.de
hotelrates.bertelsmann.de
esszeit.bertelsmann.de
*.bertelsmann.de
cp5-int.bertelsmann.de
fragobert.bertelsmann.de
www2.gitta.bertelsmann.de
directnet.bertelsmann.de
autodiscover.bertelsmann.de
seratio4.bertelsmann.de
grc-training.bertelsmann.de
www.haussortimente.bertelsmann.de
gp1.bertelsmann.de
*.benet.bertelsmann.com
betradecompliance.bertelsmann.de
itsasprd.bertelsmann.de
alumni.bertelsmann.com
*.bertelsmann.de
bop.bertelsmann.de
sp5.bertelsmann.de
*.bertelsmann.de
jobsearch.createyourowncareer.de
pp5-int.bertelsmann.de
gitta.test.bertelsmann.de
bstportal.bertelsmann.de
securelogin.bertelsmann.de
sl2.bertelsmann.de
wp1-test.bertelsmann.de
storefront2.bertelsmann.de
guest.bertelsmann.de
besuchen.bertelsmann.de
mietwagenservice.bertelsmann.de
www.haussortimente.bertelsmann.de
vas.bertelsmann.de
lc-service.bertelsmann.de
clm-int.bertelsmann.de
jppess.bertelsmann.de
ess.bertelsmann.de
sni2878bgl.wpc.edgecastcdn.net
greetings.bertelsmann.de
grc-int.bertelsmann.de
service.bertelsmann.de
*.bertelsmann.de
securelogin.bertelsmann.de
imp-test.bertelsmann.de
gitta.test.bertelsmann.de
www2.gitta.bertelsmann.de
fragobert.bertelsmann.de
vas.bertelsmann.de
imp-test.bertelsmann.de
peoplenet.bertelsmann.de
seratio4.bertelsmann.de
ess.bertelsmann.de
www.haussortimente.bertelsmann.de
deac.bertelsmann.de
b-share-qa.bertelsmann.de
b-share-dev.bertelsmann.de
keys.bertelsmann.de
bessermachen.bertelsmann.de
autodiscover.bertelsmann.de
jp5.bertelsmann.de
skypetmg.bertelsmann.de
grc-restore.bertelsmann.de
dubbmlske0001.bertelsmann.de
autodiscover.bertelsmann.de
itsgi7000.bertelsmann.de
deac.bertelsmann.de
mpsportal.bertelsmann.de
*.sti.bertelsmann.de
jppess.bertelsmann.de
www2.gitta.bertelsmann.de
cwa.bertelsmann.de
divisionalreportingserver.bertelsmann.de
skypetmg.bertelsmann.de
insurance.bertelsmann.de
www.haussortimente.bertelsmann.de
Certificate
The complete raw certificate details for *.bertelsmann.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGMDCCBRigAwIBAgIQCwYeXsuAt3vUMB4DSlzoyDANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZSYXBpZFNTTCBUTFMgUlNBIENBIEcx MB4XDTI0MDEyOTAwMDAwMFoXDTI1MDIxNDIzNTk1OVowGzEZMBcGA1UEAwwQKi5i ZXJ0ZWxzbWFubi5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAODS whNH3yZft0EweHqWFWcJ2vs4brEt4s64dx8wLFKu22O3LNpKtwYJMZrFMxVqYlml lKcUUnsoUVRGvlSbsTEovOLDHKcNQg7wGkrimQMsdlj0eaxjYzA+zUV6cGsZcFZE GcT6kZluUrLEcxigTVLbzfFY0CMTyX6N2Fk5xNb8pZ183CM6etodPlKRuxGLpqyq HA5HNwchNg9piCLXHfpCfVdI9egzn0t3EYt3eB59k9Z0L8hNrsishm7fqL3F+wPx deXL6TS8ObiMgrocYJ5nkXmuXTkNo11B4eQNQKrtBPaQBopSuWhy3un9IaNYszcQ sGMTle8a0VLU3NtlHOECAwEAAaOCAykwggMlMB8GA1UdIwQYMBaAFAzbbIJJD0pn CrgU7nrESFKI61Y4MB0GA1UdDgQWBBTDiFPgyvvdR1O9Jo6rIFH34DqXiTArBgNV HREEJDAighAqLmJlcnRlbHNtYW5uLmRlgg5iZXJ0ZWxzbWFubi5kZTA+BgNVHSAE NzA1MDMGBmeBDAECATApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0 LmNvbS9DUFMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vY2RwLnJhcGlkc3NsLmNv bS9SYXBpZFNTTFRMU1JTQUNBRzEuY3JsMHYGCCsGAQUFBwEBBGowaDAmBggrBgEF BQcwAYYaaHR0cDovL3N0YXR1cy5yYXBpZHNzbC5jb20wPgYIKwYBBQUHMAKGMmh0 dHA6Ly9jYWNlcnRzLnJhcGlkc3NsLmNvbS9SYXBpZFNTTFRMU1JTQUNBRzEuY3J0 MAwGA1UdEwEB/wQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB3AE51oydc mhDDOFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABjVSUvgAAAAQDAEgwRgIhAOS0 CxMJ8Jgh5oDmE3u2eTvGghWlzv3cPXC72QPB6YQ3AiEAqwqUl0JfGUmrfI6xWScb YYtvFBYSQUWPHN6hEk+gUYoAdQB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kO jC55uAAAAY1UlL4OAAAEAwBGMEQCIBqPqsHfa8MdWfM9h/9jhIEEzjZvepeaWS91 OEgitbUiAiAyvLOy3/uUDAUidxREs1+dv6mTv52reyptZeHhM+VFSgB2AObSMWNA d4zBEEEG13G5zsHSQPaWhIb7uocyHf0eN45QAAABjVSUvjkAAAQDAEcwRQIgLtOc HbokzYDKjyBrtYu0GuKG2bsq1brNAFKPtX+uiCMCIQD1ofA96sY+g9Qk/4y18yL2 /I1KFEb4Y7fhotROKaWSjzANBgkqhkiG9w0BAQsFAAOCAQEAosNr1ckwFvGlIFL5 AvyDiAiVSnpk6Di5pE1tUX+Z5aXD8jIen7JR36txTKR5Yt5FgthIHTDEl9P/P/1/ x4APbmdIoBcCtBWX8QX/bl86XX+jy/jguQae3raiA4i70JIWBeixqnczaPXMCadK 11SswcQ/Uc0uYzveH/rpkIAd8mVgwZK3jUM5ZGiFrMKg1IwtCGP8DIHy0+nLeAWV Dk1gqqeBnqkNm/ovII8Wp493mCIkxjzbQgh9Q0AqGm7ljaFfB64kzGzi065q1O61 c/6aMMwKeOoHfNfAM8Ad5S5XVVmBJKthwH+e96NzcA6Qk2wx6LRxLFLZ2g7L63Jo T6/NzA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4NLCE0ffJl+3QTB4epYV Zwna+zhusS3izrh3HzAsUq7bY7cs2kq3BgkxmsUzFWpiWaWUpxRSeyhRVEa+VJux MSi84sMcpw1CDvAaSuKZAyx2WPR5rGNjMD7NRXpwaxlwVkQZxPqRmW5SssRzGKBN UtvN8VjQIxPJfo3YWTnE1vylnXzcIzp62h0+UpG7EYumrKocDkc3ByE2D2mIItcd +kJ9V0j16DOfS3cRi3d4Hn2T1nQvyE2uyKyGbt+ovcX7A/F15cvpNLw5uIyCuhxg nmeRea5dOQ2jXUHh5A1Aqu0E9pAGilK5aHLe6f0ho1izNxCwYxOV7xrRUtTc22Uc 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14653277717501735434622874282975094984 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-29 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.bertelsmann.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28381309008286875813767709484289395617263723383317078448596077691957177610194901337776623720176620714086704861430732930085410275692182796107788332275666328555191119982429085279916910439457320476260065460502044282030586927228475792831211805726273846023947913795738947336482168027147342800893735581786947413874200002990895922636288128541110360064047561884047370799262653724716326734512336427304420949129255719145241581903747349111927275247549863531986572228941200887040442583730689878003309720953426686418774880290402490963788885567553627192817172000322758627679564026682884878671302755849627041654214289612706813385953 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0cdb6c82490f4a670ab814ee7ac4485288eb5638 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c38853e0cafbdd4753bd268eab2051f7e03a9789 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bertelsmann.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bertelsmann.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.rapidssl.com/RapidSSLTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.rapidssl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.rapidssl.com/RapidSSLTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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