vpn.springernature.com
- Springer Nature B.V. -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 08:2b:0a:c1:c9:a4:40:66:12:b9:14:66:b2:59:58:1c was issued on by TERENA.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Springer Nature B.V.
Organization:
Springer Nature B.V.
Organization unit: IT
Organization unit: IT
Locality:
Dordrecht
Country: NL
Country: NL
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 08:2b:0a:c1:c9:a4:40:66:12:b9:14:66:b2:59:58:1cSerial Number (int): 10857310908732781263857752019580835868
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c2:95:cc:2a:a6:c1:ae:2a:b2:14:cd:02:96:dd:61:d9:77:a0:ce:15
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): 25:06:81:55:7a:3c:ff:8f:f8:bb:9c:e8:4b:5a:09:68:1e:07:96:5a
Fingerprint (sha256): 1a:d7:27:03:74:ba:71:62:4c:a4:00:7d:0a:ba:76:cd:50:64:f7:fb:00:be:a7:e9:08:37:b0:52:b0:ac:b3:31
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate vpn.springernature.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vpn.springernature.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vpn.springernature.com
vpn1.springernature.com
vpn2.springernature.com
vpn3.springernature.com
vpn4.springernature.com
vpn1.springernature.com
vpn2.springernature.com
vpn3.springernature.com
vpn4.springernature.com
Other certificates including the domain name springernature.com
(limited to 100 certificates)
dns-vetting1i.map.fastly.net
springer2.map.fastly.net
www.highq.com
auth.springernature.com
springer2.map.fastly.net
*.springernature.com
springer3.map.fastly.net
springer2.map.fastly.net
more-media.springernature.com
sn-prod-simac-alarm-01.springernature.com
support.khipu-networks.com
idtest.springernature.com
vanity4.jiveon.com
springer2.map.fastly.net
*.springer.com
authorservices.springernature.com
vpn-africa.springernature.com
adportal.springernature.com
sustainabilitycommunity.springernature.com
dns-vetting1i.map.fastly.net
uim.springernature.com
protocolsmethods.springernature.com
liferay-dev.springernature.com
scim-1password.springernature.com
uxresearch.springernature.com
vanity4.jiveon.com
bflux-stage-es-02.springernature.com
mee-uat.springernature.com
springer2.map.fastly.net
*.springernature.com
communities.springernature.com
shopify-qa.springernature.com
springer2.map.fastly.net
images.passendo.com
*.chef.tools.cm.springernature.com
springer2.map.fastly.net
dev.springernature.com
springer2.map.fastly.net
staging-scigraph.springernature.com
dns-vetting1i.map.fastly.net
vpn-aus.springernature.com
grandchallenges.springernature.com
springer2.map.fastly.net
vanity4.jiveon.com
vpn-gcp.springernature.com
authorservices.springernature.com
support.khipu-networks.com
support.springernature.com
secureimap.springernature.com
*.springer.com
springer2.map.fastly.net
springer2.map.fastly.net
authorservices.springernature.com
vpn-ro.springernature.com
springer2.map.fastly.net
*.jiveon.com
staging.moody.springernature.com
authorservices.springernature.com
integration-sn-insights.springernature.com
images.passendo.com
springernature.com
www.highq.com
dns-vetting1i.map.fastly.net
dns-vetting1i.map.fastly.net
www.highq.com
vpn-ro.springernature.com
dns-vetting1i.map.fastly.net
trust.springernature.com
images.passendo.com
dns-vetting1i.map.fastly.net
springer3.map.fastly.net
springer2.map.fastly.net
api.more-media.springernature.com
www.highq.com
securesmtp.springernature.com
nature-ww.springernature.com
*.springer.com
protocolsmethods.springernature.com
vpn.springernature.com
vpn.springernature.com
springer2.map.fastly.net
authorservices.springernature.com
springer2.map.fastly.net
images.passendo.com
*.springer.com
springer2.map.fastly.net
www.highq.com
dns-vetting1i.map.fastly.net
springer2.map.fastly.net
hub.springernature.com
springer2.map.fastly.net
researchdata.springernature.com
dns-vetting1i.map.fastly.net
delivery.staging-cms.springernature.com
dev.springernature.com
dns-vetting1i.map.fastly.net
springer3.map.fastly.net
dns-vetting1i.map.fastly.net
springer2.map.fastly.net
springer2.map.fastly.net
springer2.map.fastly.net
www.highq.com
auth.springernature.com
springer2.map.fastly.net
*.springernature.com
springer3.map.fastly.net
springer2.map.fastly.net
more-media.springernature.com
sn-prod-simac-alarm-01.springernature.com
support.khipu-networks.com
idtest.springernature.com
vanity4.jiveon.com
springer2.map.fastly.net
*.springer.com
authorservices.springernature.com
vpn-africa.springernature.com
adportal.springernature.com
sustainabilitycommunity.springernature.com
dns-vetting1i.map.fastly.net
uim.springernature.com
protocolsmethods.springernature.com
liferay-dev.springernature.com
scim-1password.springernature.com
uxresearch.springernature.com
vanity4.jiveon.com
bflux-stage-es-02.springernature.com
mee-uat.springernature.com
springer2.map.fastly.net
*.springernature.com
communities.springernature.com
shopify-qa.springernature.com
springer2.map.fastly.net
images.passendo.com
*.chef.tools.cm.springernature.com
springer2.map.fastly.net
dev.springernature.com
springer2.map.fastly.net
staging-scigraph.springernature.com
dns-vetting1i.map.fastly.net
vpn-aus.springernature.com
grandchallenges.springernature.com
springer2.map.fastly.net
vanity4.jiveon.com
vpn-gcp.springernature.com
authorservices.springernature.com
support.khipu-networks.com
support.springernature.com
secureimap.springernature.com
*.springer.com
springer2.map.fastly.net
springer2.map.fastly.net
authorservices.springernature.com
vpn-ro.springernature.com
springer2.map.fastly.net
*.jiveon.com
staging.moody.springernature.com
authorservices.springernature.com
integration-sn-insights.springernature.com
images.passendo.com
springernature.com
www.highq.com
dns-vetting1i.map.fastly.net
dns-vetting1i.map.fastly.net
www.highq.com
vpn-ro.springernature.com
dns-vetting1i.map.fastly.net
trust.springernature.com
images.passendo.com
dns-vetting1i.map.fastly.net
springer3.map.fastly.net
springer2.map.fastly.net
api.more-media.springernature.com
www.highq.com
securesmtp.springernature.com
nature-ww.springernature.com
*.springer.com
protocolsmethods.springernature.com
vpn.springernature.com
vpn.springernature.com
springer2.map.fastly.net
authorservices.springernature.com
springer2.map.fastly.net
images.passendo.com
*.springer.com
springer2.map.fastly.net
www.highq.com
dns-vetting1i.map.fastly.net
springer2.map.fastly.net
hub.springernature.com
springer2.map.fastly.net
researchdata.springernature.com
dns-vetting1i.map.fastly.net
delivery.staging-cms.springernature.com
dev.springernature.com
dns-vetting1i.map.fastly.net
springer3.map.fastly.net
dns-vetting1i.map.fastly.net
springer2.map.fastly.net
springer2.map.fastly.net
Certificate
The complete raw certificate details for vpn.springernature.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgIQCCsKwcmkQGYSuRRmsllYHDANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0yMDAzMTYwMDAwMDBaFw0yMjAzMjExMjAwMDBaMG4xCzAJBgNVBAYT Ak5MMRIwEAYDVQQHEwlEb3JkcmVjaHQxHTAbBgNVBAoTFFNwcmluZ2VyIE5hdHVy ZSBCLlYuMQswCQYDVQQLEwJJVDEfMB0GA1UEAxMWdnBuLnNwcmluZ2VybmF0dXJl LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPdyfQ5jmAqgLDx2 5+diXRy4zlMfMV6BUi9l272N0fllzPPuGWWGRevJrs4jqgNSH4TtxPQSh9DC6c0Y 01sFoDXO+fbKfL5tVR5cRIEXBVsbaWT7vNl+6rj0DDF3lLK0LpecbLbsFl+NQc4m zVCOjafDWajqoUKSZxrucQ8bGcfnrmt/M0Pju9GwELOYXXa9b6LBOth0VU+TxJGh JLLKx/fFOlYxeAHHFsuXgtEpjsLZ/5a0EOOjJ5fEzlS56sCFwwjxXYNKiLmQO7NS Gv/m9T3y5LCZP5c9sKzw3sscsKVFXUMhGRbL/BqjbTXB6uZ1xrdoeBWJ8tDM4gHO Qwem8Y8CAwEAAaOCAkkwggJFMB8GA1UdIwQYMBaAFGf9iCAUJ5jHCdIlGbvpURFj dVBiMB0GA1UdDgQWBBTClcwqpsGuKrIUzQKW3WHZd6DOFTCBhQYDVR0RBH4wfIIW dnBuLnNwcmluZ2VybmF0dXJlLmNvbYIXdnBuMS5zcHJpbmdlcm5hdHVyZS5jb22C F3ZwbjIuc3ByaW5nZXJuYXR1cmUuY29tghd2cG4zLnNwcmluZ2VybmF0dXJlLmNv bYIXdnBuNC5zcHJpbmdlcm5hdHVyZS5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBrBgNVHR8EZDBiMC+gLaArhilodHRw Oi8vY3JsMy5kaWdpY2VydC5jb20vVEVSRU5BU1NMQ0EzLmNybDAvoC2gK4YpaHR0 cDovL2NybDQuZGlnaWNlcnQuY29tL1RFUkVOQVNTTENBMy5jcmwwTAYDVR0gBEUw QzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNl cnQuY29tL0NQUzAIBgZngQwBAgIwbgYIKwYBBQUHAQEEYjBgMCQGCCsGAQUFBzAB hhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wOAYIKwYBBQUHMAKGLGh0dHA6Ly9j YWNlcnRzLmRpZ2ljZXJ0LmNvbS9URVJFTkFTU0xDQTMuY3J0MAwGA1UdEwEB/wQC MAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAJndarWE AN7vn/mhh+Su+BfgIhLEAQW8/gvPNaqKrWe4Qq26OzcLkCuvz7G2mRitL1U0xadH x5/oWBt3bvAMcnFw/5jr76eJTOs0y+wRwyqq8xvIlH4Vdk+7E09gy0or9rbXpr8Q BfJutucy1E5JQ8VzPwQ9Uj25qx+UQ4EXXgtfwta/IErR7gcKnnyr0dm3joRYgRT3 kHrbyqZn+G6ZL82CuwJPkRT1W8LRzDkb+OIrP/bzyGLgsSnNVMZ9fgyARZhUDvzG yUpGn6x4+Qgr3s64r8aEBAvmVX9I851EY7ChCxEFallxapsvSlekL7Yp6a73LtvN 9P34CS9esApNVPM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA93J9DmOYCqAsPHbn52Jd HLjOUx8xXoFSL2XbvY3R+WXM8+4ZZYZF68muziOqA1IfhO3E9BKH0MLpzRjTWwWg Nc759sp8vm1VHlxEgRcFWxtpZPu82X7quPQMMXeUsrQul5xstuwWX41BzibNUI6N p8NZqOqhQpJnGu5xDxsZx+eua38zQ+O70bAQs5hddr1vosE62HRVT5PEkaEkssrH 98U6VjF4AccWy5eC0SmOwtn/lrQQ46Mnl8TOVLnqwIXDCPFdg0qIuZA7s1Ia/+b1 PfLksJk/lz2wrPDeyxywpUVdQyEZFsv8GqNtNcHq5nXGt2h4FYny0MziAc5DB6bx jwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10857310908732781263857752019580835868 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-21 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Dordrecht' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Springer Nature B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vpn.springernature.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31237317710523792589726225531224519343264527378100009202471778402941232234574501320552777900858156220408377137579306143574059530929054572957072748341150535494357009352631930300659027488168968391294768436042761476050953568500735735230049803923338483807802398565533175037589631087850134699960904485905222958582712799367751965875893747479497649384504348507948633959083864959560984292510110150161193103023287275128578459363560994001847509184731564635879965003924756713039596891622363874286744449557593737026321025878265536997798706016541023346968899877408986123632332265292022192021575148848063786370036554608243517092239 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c295cc2aa6c1ae2ab214cd0296dd61d977a0ce15 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn.springernature.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn1.springernature.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn2.springernature.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn3.springernature.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn4.springernature.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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