foundation.erm.com
- ERM Holdings Limited -
Issued by Thawte TLS RSA CA G1
About this certificate
This digital certificate with serial number 09:62:a9:6d:93:e5:31:b3:95:75:0f:68:45:ca:64:aa was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
ERM Holdings Limited
Organization:
ERM Holdings Limited
Organization unit: ERM Global IT Services
Organization unit: ERM Global IT Services
Locality:
LONDON
Country: GB
Country: GB
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:62:a9:6d:93:e5:31:b3:95:75:0f:68:45:ca:64:aaSerial Number (int): 12475333463064762315968552979168650410
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 30:ef:00:55:5c:62:97:7b:83:11:a4:99:fc:05:5c:e8:df:1c:ff:0b
AuthorityKeyId: a5:8c:fe:32:cc:eb:0f:2c:d4:19:c6:08:b8:00:24:88:5d:c3:c5:b7
Fingerprint (sha1): b1:d9:88:ea:8a:d7:93:fd:ce:e8:77:ad:34:ce:22:e7:20:07:b9:82
Fingerprint (sha256): 19:02:64:16:d5:12:3b:9d:74:49:60:6b:4d:68:76:e2:45:e5:08:66:0b:73:6b:c8:e7:23:c3:12:39:13:6b:8e
Issuing Certificate URL: http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteTLSRSACAG1.crl
Check the revocation status for certificate foundation.erm.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for foundation.erm.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
foundation.erm.com
Other certificates including the domain name erm.com
(limited to 100 certificates)
emisapps58.erm.com
hemera.erm.com
onyx.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
cadmus.erm.com
ssl391724.cloudflaressl.com
san-1-s4.tlsprovisioning.exacttarget.com
maps.erm.com
password.erm.com
emisapps42.erm.com
usexton.erm.com
ermcustomersupport.erm.com
ceros4.map.fastly.net
doccom.erm.com
terra.erm.com
mvtransportswcs.erm.com
emisapps57.erm.com
chat.erm.com
ares.erm.com
ecast.erm.com
ensite.erm.com
apollo.erm.com
sunrise.erm.com
emisapps38.erm.com
hermes.erm.com
prismms.erm.com
minerva.erm.com
minerva.erm.com
unileverpsmtrack.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
minerva.erm.com
Mariner.erm.com
usgcms.erm.com
ceros4.map.fastly.net
ermwdftp.erm.com
ithelp.visionrt.com
*.exp.gumgum.com
adonis.erm.com
lafarge.erm.com
ares.erm.com
support.erm.com
ssl391724.cloudflaressl.com
foundation.erm.com
hybrid.erm.com
emisapps52.erm.com
emisftp.erm.com
swnotes2.erm.com
minerva.erm.com
boringlog.erm.com
CETEHS.ERM.COM
ENERSYSCTMS.ERM.COM
image.20210419.195922.s4.et.yellsatcloud.com
support.erm.com
maia.erm.com
mvtransportswcs.erm.com
erm.com
image.20210419.195922.s4.et.yellsatcloud.com
minervahub.erm.com
my.erm.com
ermcustomersupport.erm.com
ithelp.visionrt.com
hermes.erm.com
enersysctms.erm.com
ensite.erm.com
tdma-ilcd.erm.com
apollo.erm.com
emisapps53.erm.com
maps.erm.com
boringlog.erm.com
athena.erm.com
mapapps.erm.com
san-1-s4.tlsprovisioning.exacttarget.com
maia.erm.com
*.scm.azapps.erm.com
emisapps65.erm.com
spenv.erm.com
emisapps61.erm.com
flexforce.erm.com
CSLBEHRINGKANKAKEE.ERM.COM
spenv.erm.com
terra.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
emisapps40.erm.com
emis-support.erm.com
soteria.erm.com
ensite.erm.com
cerberus.erm.com
*.exp.gumgum.com
feedback.erm.com
www.erm.com
hera.erm.com
*.exp.gumgum.com
emisapps70.erm.com
tempo.api.erm.com
pcs.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
pcs.erm.com
ceros4.map.fastly.net
cerberus.erm.com
terra.erm.com
hemera.erm.com
onyx.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
cadmus.erm.com
ssl391724.cloudflaressl.com
san-1-s4.tlsprovisioning.exacttarget.com
maps.erm.com
password.erm.com
emisapps42.erm.com
usexton.erm.com
ermcustomersupport.erm.com
ceros4.map.fastly.net
doccom.erm.com
terra.erm.com
mvtransportswcs.erm.com
emisapps57.erm.com
chat.erm.com
ares.erm.com
ecast.erm.com
ensite.erm.com
apollo.erm.com
sunrise.erm.com
emisapps38.erm.com
hermes.erm.com
prismms.erm.com
minerva.erm.com
minerva.erm.com
unileverpsmtrack.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
minerva.erm.com
Mariner.erm.com
usgcms.erm.com
ceros4.map.fastly.net
ermwdftp.erm.com
ithelp.visionrt.com
*.exp.gumgum.com
adonis.erm.com
lafarge.erm.com
ares.erm.com
support.erm.com
ssl391724.cloudflaressl.com
foundation.erm.com
hybrid.erm.com
emisapps52.erm.com
emisftp.erm.com
swnotes2.erm.com
minerva.erm.com
boringlog.erm.com
CETEHS.ERM.COM
ENERSYSCTMS.ERM.COM
image.20210419.195922.s4.et.yellsatcloud.com
support.erm.com
maia.erm.com
mvtransportswcs.erm.com
erm.com
image.20210419.195922.s4.et.yellsatcloud.com
minervahub.erm.com
my.erm.com
ermcustomersupport.erm.com
ithelp.visionrt.com
hermes.erm.com
enersysctms.erm.com
ensite.erm.com
tdma-ilcd.erm.com
apollo.erm.com
emisapps53.erm.com
maps.erm.com
boringlog.erm.com
athena.erm.com
mapapps.erm.com
san-1-s4.tlsprovisioning.exacttarget.com
maia.erm.com
*.scm.azapps.erm.com
emisapps65.erm.com
spenv.erm.com
emisapps61.erm.com
flexforce.erm.com
CSLBEHRINGKANKAKEE.ERM.COM
spenv.erm.com
terra.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
emisapps40.erm.com
emis-support.erm.com
soteria.erm.com
ensite.erm.com
cerberus.erm.com
*.exp.gumgum.com
feedback.erm.com
www.erm.com
hera.erm.com
*.exp.gumgum.com
emisapps70.erm.com
tempo.api.erm.com
pcs.erm.com
image.20210419.195922.s4.et.yellsatcloud.com
pcs.erm.com
ceros4.map.fastly.net
cerberus.erm.com
terra.erm.com
Certificate
The complete raw certificate details for foundation.erm.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgIQCWKpbZPlMbOVdQ9oRcpkqjANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRUaGF3dGUgVExTIFJTQSBDQSBHMTAe Fw0xODEyMDMwMDAwMDBaFw0yMDEyMDIxMjAwMDBaMHsxCzAJBgNVBAYTAkdCMQ8w DQYDVQQHEwZMT05ET04xHTAbBgNVBAoTFEVSTSBIb2xkaW5ncyBMaW1pdGVkMR8w HQYDVQQLExZFUk0gR2xvYmFsIElUIFNlcnZpY2VzMRswGQYDVQQDExJmb3VuZGF0 aW9uLmVybS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC09jEn +fTAGpi72ytOXc0eqMnPwbBENL3HInCx+5c7rTH7xNVRuSxtOZuV5ba3ok2gDfYs 8ZRoMJ/AiFZnzD3dQOSf7Ambn7fTk3l4S+BgN3DcXPITgNF2nkKhcxPyROrTTPre gYeIkKvw7YHqIb2eYPM9jN36VrmsYNMnpxC/HddFQFY1lNnwr4LpnztR6caUIU8Y U0Bdl6MgW1T4NJw5c/Eu7n+R2jzaTfQEVeohznT/kEz6BG6OC10ZPXfvQ/juZvVo QNxkuzmF7zHLWaZCKj8bg0xYdqLND43/u2ueOCxHOQ/QFaqZ+MKVJmI9JN9KH+as PS5PExgaNCn/q6mfAgMBAAGjggGvMIIBqzAfBgNVHSMEGDAWgBSljP4yzOsPLNQZ xgi4ACSIXcPFtzAdBgNVHQ4EFgQUMO8AVVxil3uDEaSZ/AVc6N8c/wswHQYDVR0R BBYwFIISZm91bmRhdGlvbi5lcm0uY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDov L2NkcC50aGF3dGUuY29tL1RoYXd0ZVRMU1JTQUNBRzEuY3JsMEwGA1UdIARFMEMw NwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0 LmNvbS9DUFMwCAYGZ4EMAQICMHAGCCsGAQUFBwEBBGQwYjAkBggrBgEFBQcwAYYY aHR0cDovL3N0YXR1cy50aGF3dGUuY29tMDoGCCsGAQUFBzAChi5odHRwOi8vY2Fj ZXJ0cy50aGF3dGUuY29tL1RoYXd0ZVRMU1JTQUNBRzEuY3J0MAkGA1UdEwQCMAAw EwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBABcKAB3Qpv04 S7/KUn2+Ttxf254XH+a2KYA3+q1sX0Oqc/bnm49r0JGK24/wGdGT3DOujJOor2Lw 1bSyq12/q2JlMeB90Aj3DOEB8ImFkJtW5qXs2bjnI1fqrnj6GPO1vEvukQZeNWYr 38ovjGETEc9d27m39c9klsUi4P5lhkvrwga6u/YuBkHJsVJE4s5eqhgn0vmLw91Q oFPrCK95lT/0/SGrIipIWWAXnmijUyQGckLDR4lTA+/y/1x1A7K61vKeQ2bwgX1X leVPkJ7j7DSSKDXO71mSFEbGxO3IeKU2lbVeUZ72XhdpIz/72U7kO0ZS3kzralE7 u2PioV/e74s= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPYxJ/n0wBqYu9srTl3N HqjJz8GwRDS9xyJwsfuXO60x+8TVUbksbTmbleW2t6JNoA32LPGUaDCfwIhWZ8w9 3UDkn+wJm5+305N5eEvgYDdw3FzyE4DRdp5CoXMT8kTq00z63oGHiJCr8O2B6iG9 nmDzPYzd+la5rGDTJ6cQvx3XRUBWNZTZ8K+C6Z87UenGlCFPGFNAXZejIFtU+DSc OXPxLu5/kdo82k30BFXqIc50/5BM+gRujgtdGT1370P47mb1aEDcZLs5he8xy1mm Qio/G4NMWHaizQ+N/7trnjgsRzkP0BWqmfjClSZiPSTfSh/mrD0uTxMYGjQp/6up nwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12475333463064762315968552979168650410 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-12-02 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'LONDON' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ERM Holdings Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ERM Global IT Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'foundation.erm.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22844296701806489619496131060512568824930960548717109687750313633989966376964360100205031118171345688952104557628758296912282885834192631548645240843407524546691250998935684146528121249139930410630682806525626036037401531483530988369170055269794550399642753081499576059314363086175694452627929371396517481556629533407877842909799308147497426520355250083572620444332509660661642384344487229343712839288963338037583747719083112267907805185654242791987905919746822655006123481191655040474621684673714975179000833558051908166995693481449391567947674834301106556177066422068358945281402178570971016716077501270312333584799 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a58cfe32cceb0f2cd419c608b80024885dc3c5b7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 30ef00555c62977b8311a499fc055ce8df1cff0b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'foundation.erm.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00170a001dd0a6fd384bbfca527dbe4edc5fdb9e171fe6b6298037faad6c5f43aa73f6e79b8f6bd0918adb8ff019d193dc33ae8c93a8af62f0d5b4b2ab5dbfab626531e07dd008f70ce101f08985909b56e6a5ecd9b8e72357eaae78fa18f3b5bc4bee91065e35662bdfca2f8c611311cf5ddbb9b7f5cf6496c522e0fe65864bebc206babbf62e0641c9b15244e2ce5eaa1827d2f98bc3dd50a053eb08af79953ff4fd21ab222a485960179e68a35324067242c347895303eff2ff5c7503b2bad6f29e4366f0817d5795e54f909ee3ec34922835ceef59921446c6c4edc878a53695b55e519ef65e1769233ffbd94ee43b4652de4ceb6a513bbb63e2a15fdeef8b