webdev.saskatoon.ca
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 06:7e:61:73:c3:b1:42:a3:2f:5d:69:e9:1b:8a:02:dc was issued on by DigiCert, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=webdev.saskatoon.ca
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:7e:61:73:c3:b1:42:a3:2f:5d:69:e9:1b:8a:02:dcSerial Number (int): 8631573944418998342701862759116178140
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 51:49:3c:e3:d5:47:e3:87:12:02:e9:f9:aa:5f:8f:47:b1:86:d2:cf
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): ce:58:c1:bb:7e:87:1c:e3:ef:d1:a3:9f:da:7d:d8:dd:73:94:91:2f
Fingerprint (sha256): 1a:9b:49:3b:2d:04:14:9f:56:0b:95:43:f4:e2:a8:bd:57:c9:f5:8e:5b:ef:24:a1:d1:a9:b7:c0:70:49:cf:e7
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate webdev.saskatoon.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for webdev.saskatoon.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
webdev.saskatoon.ca
Other certificates including the domain name saskatoon.ca
(limited to 100 certificates)
*.saskatoon.ca
webmail.saskatoon.ca
sip.saskatoon.ca
websrvdirector.saskatoon.ca
leisure.saskatoon.ca
leisure.saskatoon.ca
saskatoon.ca
secure7.saskatoon.ca
webconnect.saskatoon.ca
leisureonline.saskatoon.ca
saskatoon.ca
d10transitdev.saskatoon.ca
saskatoon.ca
webdev.saskatoon.ca
webmail.saskatoon.ca
saskatoon.ca
webmail.saskatoon.ca
saskatoon.ca
login.saskatoon.ca
*.saskatoon.ca
*.saskatoon.ca
d10webdev.saskatoon.ca
saskatoon.ca
saskatoon.ca
amp.saskatoon.ca
websrvdirector.saskatoon.ca
sip.lynctest.saskatoon.ca
saskatoon.ca
saskatoon.ca
websrvdirector.saskatoon.ca
stgext4.saskatoon.ca
webmail.saskatoon.ca
federation3.saskatoon.ca
leisureonline.saskatoon.ca
postoffice.saskatoon.ca
new2.saskatoon.ca
*.saskatoon.ca
leisureonline.saskatoon.ca
websrvdirector.saskatoon.ca
fs.saskatoon.ca
webmail.saskatoon.ca
learning.saskatoon.ca
leisureonline.saskatoon.ca
login.saskatoon.ca
webmail.saskatoon.ca
*.saskatoon.ca
webconnect.saskatoon.ca
*.hec.fusion.saskatoon.ca
*.saskatoon.ca
saskatoon.ca
learning.saskatoon.ca
ww9.saskatoon.ca
saskatoon.ca
sip.saskatoon.ca
saskatoon.ca
transitdev.saskatoon.ca
federation2.saskatoon.ca
federation.saskatoon.ca
websrvdirector.saskatoon.ca
webconnect.saskatoon.ca
amp.saskatoon.ca
webmail.saskatoon.ca
websrvdirector.saskatoon.ca
saskatoon.ca
*.saskatoon.ca
saskatoon.ca
saskatoon.ca
amp.saskatoon.ca
ww9.saskatoon.ca
rpbackgis2.saskatoon.ca
saskatoon.ca
federation.saskatoon.ca
careers.saskatoon.ca
saskatoon.ca
leisure.saskatoon.ca
webmail.saskatoon.ca
webmail.saskatoon.ca
careers.saskatoon.ca
saskatoon.ca
leisure.saskatoon.ca
amp.saskatoon.ca
leisureonline.saskatoon.ca
*.saskatoon.ca
*.saskatoon.ca
ww9.saskatoon.ca
apps2.saskatoon.ca
websrvdirector.saskatoon.ca
port365.saskatoon.ca
federation.saskatoon.ca
webconnect.saskatoon.ca
*.saskatoon.ca
saskatoon.ca
federation3.saskatoon.ca
d10transitprd.saskatoon.ca
webmail.saskatoon.ca
sip.saskatoon.ca
websrvdirector.saskatoon.ca
leisure.saskatoon.ca
leisure.saskatoon.ca
saskatoon.ca
secure7.saskatoon.ca
webconnect.saskatoon.ca
leisureonline.saskatoon.ca
saskatoon.ca
d10transitdev.saskatoon.ca
saskatoon.ca
webdev.saskatoon.ca
webmail.saskatoon.ca
saskatoon.ca
webmail.saskatoon.ca
saskatoon.ca
login.saskatoon.ca
*.saskatoon.ca
*.saskatoon.ca
d10webdev.saskatoon.ca
saskatoon.ca
saskatoon.ca
amp.saskatoon.ca
websrvdirector.saskatoon.ca
sip.lynctest.saskatoon.ca
saskatoon.ca
saskatoon.ca
websrvdirector.saskatoon.ca
stgext4.saskatoon.ca
webmail.saskatoon.ca
federation3.saskatoon.ca
leisureonline.saskatoon.ca
postoffice.saskatoon.ca
new2.saskatoon.ca
*.saskatoon.ca
leisureonline.saskatoon.ca
websrvdirector.saskatoon.ca
fs.saskatoon.ca
webmail.saskatoon.ca
learning.saskatoon.ca
leisureonline.saskatoon.ca
login.saskatoon.ca
webmail.saskatoon.ca
*.saskatoon.ca
webconnect.saskatoon.ca
*.hec.fusion.saskatoon.ca
*.saskatoon.ca
saskatoon.ca
learning.saskatoon.ca
ww9.saskatoon.ca
saskatoon.ca
sip.saskatoon.ca
saskatoon.ca
transitdev.saskatoon.ca
federation2.saskatoon.ca
federation.saskatoon.ca
websrvdirector.saskatoon.ca
webconnect.saskatoon.ca
amp.saskatoon.ca
webmail.saskatoon.ca
websrvdirector.saskatoon.ca
saskatoon.ca
*.saskatoon.ca
saskatoon.ca
saskatoon.ca
amp.saskatoon.ca
ww9.saskatoon.ca
rpbackgis2.saskatoon.ca
saskatoon.ca
federation.saskatoon.ca
careers.saskatoon.ca
saskatoon.ca
leisure.saskatoon.ca
webmail.saskatoon.ca
webmail.saskatoon.ca
careers.saskatoon.ca
saskatoon.ca
leisure.saskatoon.ca
amp.saskatoon.ca
leisureonline.saskatoon.ca
*.saskatoon.ca
*.saskatoon.ca
ww9.saskatoon.ca
apps2.saskatoon.ca
websrvdirector.saskatoon.ca
port365.saskatoon.ca
federation.saskatoon.ca
webconnect.saskatoon.ca
*.saskatoon.ca
saskatoon.ca
federation3.saskatoon.ca
d10transitprd.saskatoon.ca
Certificate
The complete raw certificate details for webdev.saskatoon.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHlTCCBX2gAwIBAgIQBn5hc8OxQqMvXWnpG4oC3DANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjQwMzEwMDAwMDAwWhcNMjQwOTEwMjM1OTU5WjAeMRwwGgYDVQQDExN3ZWJkZXYu c2Fza2F0b29uLmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZWX K1Xf6Oze1wshNA386uYK6whp3kBzA82/dCcfwHM6vk0sBhDzGDeGcu5yWpDbesam EjqhugHn9SpzVZ0kOyYykaQmHWGZc4nA4MDn2kE2+PsMsHKMnYkpj42D3UyUTy7W OaWtLiIy1b6Xb1QzL+qExE/s+EMb0sdaICZ2SzmbZF4qGQ4JgSDZNF78w0N34FRc 4L9aH6aysfjuMDsRN4gzQXfKUTVxi+OqrDf7h1SiSLVHpd2CieR4E3CkO4ICh2I1 3ir4cSA/tHaSq8eWff8EyagGIs1mfrknFBz/+aut5W9WWbN9DIu3FHAv/yV9XHss 9+f3MtFPWYS7nlKBeQIDAQABo4IDjzCCA4swHwYDVR0jBBgwFoAUpbTW6zbE52um 38RkCwEqIAS4ZiMwHQYDVR0OBBYEFFFJPOPVR+OHEgLp+apfj0exhtLPMB4GA1Ud EQQXMBWCE3dlYmRldi5zYXNrYXRvb24uY2EwPgYDVR0gBDcwNTAzBgZngQwBAgEw KTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwgZ8GA1Ud HwSBlzCBlDBIoEagRIZCaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0dlb1RydXN0 R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEuY3JsMEigRqBEhkJodHRwOi8v Y3JsNC5kaWdpY2VydC5jb20vR2VvVHJ1c3RHbG9iYWxUTFNSU0E0MDk2U0hBMjU2 MjAyMkNBMS5jcmwwgYcGCCsGAQUFBwEBBHsweTAkBggrBgEFBQcwAYYYaHR0cDov L29jc3AuZGlnaWNlcnQuY29tMFEGCCsGAQUFBzAChkVodHRwOi8vY2FjZXJ0cy5k aWdpY2VydC5jb20vR2VvVHJ1c3RHbG9iYWxUTFNSU0E0MDk2U0hBMjU2MjAyMkNB MS5jcnQwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYA 7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGOJfXcngAABAMARzBF AiEAyHeanM7kEJR92mAIvRhqUBPh0fHNB5ZaK5NMo6ccQiUCIBBO/w0exWOPTpvk RhLUU6yri0bhgLVWoo0QURAPY8T7AHUASLDja9qmRzQP5WoC+p0w6xxSActW3SyB 2bu/qznYhHMAAAGOJfXcCgAABAMARjBEAiAwB9ad8lGgas5qJFy5qMeETQ6bkJkw XV43RurRIBjmtgIgPpMA2DXCEoQbs3tV1yTDc7zNNOVHqhEbWfDzWE3jw8UAdwDa tr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAY4l9dwHAAAEAwBIMEYC IQDLg37otDt5yFcT4Z3L3b1IezrAOmfgzjiSWzT4oar7AgIhAIbzkemGQDnOrMOq SOgZn5132OjhDiqUq+Do1sPIMEovMA0GCSqGSIb3DQEBCwUAA4ICAQDHpnju1bbP CngRx/LNaU+YdSzH6ACspP6BgI++eHtUcfDoC6WIjRXsRgsFQLXm/IwcWz9tUJAC tc6eJBI2kQYUFqjQsWCiW4nktYU7F8tlqJXozpOGajn/0KxJoBeYEP6vUZwO7xLt jpQY5SspMmWrp4SMQG55qcANA13BRaDnClFTeo/8R37kZTnJQ/P5wVKFVuoBmT4j bZ4zyzZ899Vpf6BWLsNCDWnsb79vzDltKaNf5Unr5X2DdRGKOywit/qTg4rSVsIm icPpgNzVH6K9l0p2KiOdyzABpPb4lB81dR01f4Syg4vvJbTdNQHMPE8ik6/VpsxB AclgfD2CIe/pt6GUdIIIb5LJiIhK6XZW1W13NWCUbNBdimANmkD0zC73z+rdmBqc mTmYpKtE81y2agJ+BRTof0kfdQkj3zsGg49juodGS7v1QsmHQ+dfzwnmYAXx1b9y 9aP1lf4e3TClYSKmvCJ95YUaynjyRPZOBkYzT6dCUV/MC87tYU9qavdyZvr3fYHN Y2TLsZoBlPu35ZUMIvtCGMbxFiK4/c3L4CVbWkB4LOTDO+NkbA7V9s9bDBzHg5WA P/3G/wfMOD2mzrthH9B8ZYZcaOenJH5kLLW8BThLrIR3kDTXK17M4brLjHwgZXRm fmC8i8Xymi0m5eNtKTIpmQ7a10XFRV6Bog== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZWXK1Xf6Oze1wshNA38 6uYK6whp3kBzA82/dCcfwHM6vk0sBhDzGDeGcu5yWpDbesamEjqhugHn9SpzVZ0k OyYykaQmHWGZc4nA4MDn2kE2+PsMsHKMnYkpj42D3UyUTy7WOaWtLiIy1b6Xb1Qz L+qExE/s+EMb0sdaICZ2SzmbZF4qGQ4JgSDZNF78w0N34FRc4L9aH6aysfjuMDsR N4gzQXfKUTVxi+OqrDf7h1SiSLVHpd2CieR4E3CkO4ICh2I13ir4cSA/tHaSq8eW ff8EyagGIs1mfrknFBz/+aut5W9WWbN9DIu3FHAv/yV9XHss9+f3MtFPWYS7nlKB eQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8631573944418998342701862759116178140 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-10 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'webdev.saskatoon.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24942711905617335801579290060145259580244221932009153270418147603290605728217532296107442542052723876683745559836309988955675215084846883681920544373860361308961202345057681855902875899549231831332541087696199719193403276205958128430360157942561963177384771843632518360996363592279942991931169815788061324488947402741947490782851355504771460643764901632689432365175356820101457023713768867281201037709628538092844705835329577458028595326087903786073668611911766643394149299936267915024379480841614518884978204329087505426283733287090128374978732314502632606418161195865760953432147685816504080855269251815999011979641 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 51493ce3d547e3871202e9f9aa5f8f47b186d2cf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdev.saskatoon.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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