client.vpn.kennisnet.nl
Issued by RapidSSL RSA CA 2018
About this certificate
This digital certificate with serial number 07:e5:86:b0:14:a8:24:60:bc:08:32:a4:29:f4:0c:04 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=client.vpn.kennisnet.nl
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:e5:86:b0:14:a8:24:60:bc:08:32:a4:29:f4:0c:04Serial Number (int): 10496363744535349995372467095556328452
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: b3:c3:59:77:21:4f:b5:4a:a3:cd:c8:e0:08:03:01:77:79:09:48:e7
AuthorityKeyId: 53:ca:17:59:fc:6b:c0:03:21:2f:1a:ae:e4:aa:a8:1c:82:56:da:75
Fingerprint (sha1): 3f:62:26:f4:e7:20:ef:32:29:74:5d:72:7f:13:6e:32:0c:7e:bf:5c
Fingerprint (sha256): 1a:f2:1d:35:91:05:55:cf:90:21:ba:43:65:f0:52:c7:0e:cc:a1:3d:b6:72:b1:59:e5:6e:d1:17:b4:88:5f:23
Issuing Certificate URL: http://cacerts.rapidssl.com/RapidSSLRSACA2018.crt
Revocation information
OCSP Server: http://status.rapidssl.comCRL Distribution Point: http://cdp.rapidssl.com/RapidSSLRSACA2018.crl
Check the revocation status for certificate client.vpn.kennisnet.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for client.vpn.kennisnet.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
client.vpn.kennisnet.nl
Other certificates including the domain name kennisnet.nl
(limited to 100 certificates)
images.kennisnet.nl
images.kennisnet.nl
developers.wiki.kennisnet.nl
monitor.bks.kennisnet.nl
red.portal-p.kennisnet.nl
metaplus.kennisnet.nl
ict-puzzel.kennisnet.nl
proeftuinrekenen.kennisnet.nl
hksbrowser.kennisnet.nl
jenkins.bks.kennisnet.nl
kennisnet.nl
onderzoek.kennisnet.nl
forms.kennisnet.nl
webmail.kennisnet.org
bks.kennisnet.nl
wiki.kennisnet.nl
xsd.kennisnet.nl
test.kernprogrammabrowser.kennisnet.nl
images.kennisnet.nl
ict-puzzel.kennisnet.nl
referentie.entree.kennisnet.nl
metaplus.kennisnet.nl
monitor.bks.kennisnet.nl
onderzoek.kennisnet.nl
*.kennisnet.nl
kennisnet.nl
bks.kennisnet.nl
kennisnet.nl
inspiratiekaart.kennisnet.nl
hksbrowser.kennisnet.nl
kennisnet.nl
kennisnet.nl
tools.kennisnet.nl
pld-po.kennisnet.nl
bks.kennisnet.nl
test.kernprogrammabrowser.kennisnet.nl
kernprogrammabrowser.kennisnet.nl
wszoeken.edurep.kennisnet.nl
testvoorziening.kennisnet.nl
bks.kennisnet.nl
jenkins-federatie.bks.kennisnet.nl
hksbrowser.kennisnet.nl
monitor.bks.kennisnet.nl
bks.kennisnet.nl
forms.kennisnet.nl
kennisnet.nl
kennisnet.nl
inspiratiekaart.kennisnet.nl
kennisnet.nl
prd.onderzoek.kennisnet.nl
testvoorziening.kennisnet.nl
test-validatieservice.kennisnet.nl
bks.kennisnet.nl
edurepdemo.kennisnet.nl
osr-api.kennisnet.nl
grotestoring.kennisnet.nl
images.kennisnet.nl
bks.kennisnet.nl
ssonot.aselect-s.entree.kennisnet.nl
monitor.bks.kennisnet.nl
inspiratiekaart.kennisnet.nl
red.portal-p.kennisnet.nl
ssoquery.aselect.entree.kennisnet.nl
entree-account.kennisnet.nl
test.kernprogrammabrowser.kennisnet.nl
kennisnet.nl
entree.confederatie.kennisnet.nl
jenkins-oso.bks.kennisnet.nl
referentie.entree.kennisnet.nl
referentie.entree.kennisnet.nl
wsdl.kennisnet.nl
developers.wiki.kennisnet.nl
vocabulaires.kennisnet.nl
client.vpn.kennisnet.nl
images.kennisnet.nl
pld-po.kennisnet.nl
ict-puzzel.kennisnet.nl
artifactory.bks.kennisnet.nl
jenkins-federatie.bks.kennisnet.nl
sql.mta.kennisnet.nl
edurepdemo.kennisnet.nl
*.kennisnet.nl
*.bks.kennisnet.nl
xsd.kennisnet.nl
onderzoek.kennisnet.nl
test.kernprogrammabrowser.kennisnet.nl
red.portal-a.kennisnet.nl
test.hksbrowser.kennisnet.nl
bks.kennisnet.nl
monitor.bks.kennisnet.nl
entree-account.kennisnet.nl
proeftuinrekenen.kennisnet.nl
red.portal-p.kennisnet.nl
harvester.edurep.kennisnet.nl
grotestoring.kennisnet.nl
servicecheck.kennisnet.nl
wiki.kennisnet.nl
kort.dev.kennisnet.nl
pld-po.kennisnet.nl
grotestoring.kennisnet.nl
images.kennisnet.nl
developers.wiki.kennisnet.nl
monitor.bks.kennisnet.nl
red.portal-p.kennisnet.nl
metaplus.kennisnet.nl
ict-puzzel.kennisnet.nl
proeftuinrekenen.kennisnet.nl
hksbrowser.kennisnet.nl
jenkins.bks.kennisnet.nl
kennisnet.nl
onderzoek.kennisnet.nl
forms.kennisnet.nl
webmail.kennisnet.org
bks.kennisnet.nl
wiki.kennisnet.nl
xsd.kennisnet.nl
test.kernprogrammabrowser.kennisnet.nl
images.kennisnet.nl
ict-puzzel.kennisnet.nl
referentie.entree.kennisnet.nl
metaplus.kennisnet.nl
monitor.bks.kennisnet.nl
onderzoek.kennisnet.nl
*.kennisnet.nl
kennisnet.nl
bks.kennisnet.nl
kennisnet.nl
inspiratiekaart.kennisnet.nl
hksbrowser.kennisnet.nl
kennisnet.nl
kennisnet.nl
tools.kennisnet.nl
pld-po.kennisnet.nl
bks.kennisnet.nl
test.kernprogrammabrowser.kennisnet.nl
kernprogrammabrowser.kennisnet.nl
wszoeken.edurep.kennisnet.nl
testvoorziening.kennisnet.nl
bks.kennisnet.nl
jenkins-federatie.bks.kennisnet.nl
hksbrowser.kennisnet.nl
monitor.bks.kennisnet.nl
bks.kennisnet.nl
forms.kennisnet.nl
kennisnet.nl
kennisnet.nl
inspiratiekaart.kennisnet.nl
kennisnet.nl
prd.onderzoek.kennisnet.nl
testvoorziening.kennisnet.nl
test-validatieservice.kennisnet.nl
bks.kennisnet.nl
edurepdemo.kennisnet.nl
osr-api.kennisnet.nl
grotestoring.kennisnet.nl
images.kennisnet.nl
bks.kennisnet.nl
ssonot.aselect-s.entree.kennisnet.nl
monitor.bks.kennisnet.nl
inspiratiekaart.kennisnet.nl
red.portal-p.kennisnet.nl
ssoquery.aselect.entree.kennisnet.nl
entree-account.kennisnet.nl
test.kernprogrammabrowser.kennisnet.nl
kennisnet.nl
entree.confederatie.kennisnet.nl
jenkins-oso.bks.kennisnet.nl
referentie.entree.kennisnet.nl
referentie.entree.kennisnet.nl
wsdl.kennisnet.nl
developers.wiki.kennisnet.nl
vocabulaires.kennisnet.nl
client.vpn.kennisnet.nl
images.kennisnet.nl
pld-po.kennisnet.nl
ict-puzzel.kennisnet.nl
artifactory.bks.kennisnet.nl
jenkins-federatie.bks.kennisnet.nl
sql.mta.kennisnet.nl
edurepdemo.kennisnet.nl
*.kennisnet.nl
*.bks.kennisnet.nl
xsd.kennisnet.nl
onderzoek.kennisnet.nl
test.kernprogrammabrowser.kennisnet.nl
red.portal-a.kennisnet.nl
test.hksbrowser.kennisnet.nl
bks.kennisnet.nl
monitor.bks.kennisnet.nl
entree-account.kennisnet.nl
proeftuinrekenen.kennisnet.nl
red.portal-p.kennisnet.nl
harvester.edurep.kennisnet.nl
grotestoring.kennisnet.nl
servicecheck.kennisnet.nl
wiki.kennisnet.nl
kort.dev.kennisnet.nl
pld-po.kennisnet.nl
grotestoring.kennisnet.nl
Certificate
The complete raw certificate details for client.vpn.kennisnet.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEyDCCA7CgAwIBAgIQB+WGsBSoJGC8CDKkKfQMBDANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRSYXBpZFNTTCBSU0EgQ0EgMjAxODAe Fw0xOTEwMzAwMDAwMDBaFw0yMDEwMjkxMjAwMDBaMCIxIDAeBgNVBAMTF2NsaWVu dC52cG4ua2VubmlzbmV0Lm5sMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydDxqf0KcF+X3b7JkPW+2npLjbZBER4Fwl8PW2XmKM/q6IUiOFZx+yx93Q4n C6HGkVScC2GLbaFAPFyvoRxcAMHWeli3LIuChfJ2xPOuXDlstWyHUVQQhbqX2xIe ie9cFKtdVIk1iMhF4oLVw/3DZ0qv/HpB+QfwX5emcNDSbVEvXXXegj5zAinI7gDB dhSNdMccGIgJdRF8IHpuqS8G5/Yo1YtHRiy9rTkstcWO1vWR8W4ZqDhae13DVpQJ t96uFzXQCpnaBSDyc9PpDJ/gRGUTY46HbYboUSf7H4mGff4GYLkODUdOTD9/hfJy CRKRBfYJwURDORV3WcgDJyi6WQIDAQABo4IBvDCCAbgwHwYDVR0jBBgwFoAUU8oX WfxrwAMhLxqu5KqoHIJW2nUwHQYDVR0OBBYEFLPDWXchT7VKo83I4AgDAXd5CUjn MCIGA1UdEQQbMBmCF2NsaWVudC52cG4ua2VubmlzbmV0Lm5sMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPgYDVR0fBDcwNTAz oDGgL4YtaHR0cDovL2NkcC5yYXBpZHNzbC5jb20vUmFwaWRTU0xSU0FDQTIwMTgu Y3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAECMCowKAYIKwYBBQUHAgEWHGh0dHBz Oi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkw ZzAmBggrBgEFBQcwAYYaaHR0cDovL3N0YXR1cy5yYXBpZHNzbC5jb20wPQYIKwYB BQUHMAKGMWh0dHA6Ly9jYWNlcnRzLnJhcGlkc3NsLmNvbS9SYXBpZFNTTFJTQUNB MjAxOC5jcnQwCQYDVR0TBAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAvDeJg0VD1VoKDKSdoL39XDc1VhSnFa35W135qtiGSOI0cFVw UfTe/DPzsJ8m08NTKb0xXeiog90wWDoP1dwsqfbiZL0abmTWyW5YVSvI0IkQq5XO zBr5keJFHZ89z1Xc6rX5JgIBUYHkBNNyJ6/EvwXX1z//tTHdPU0wME8bDn3lgzhr 57D+efuYwwtOckwNUnouMcVPlnFWZ6J7Z8N1FV7pQG78lW5hVlaLUYe88Qqc0Pvx ak6DqImZmwGP57la0duV3bkvX/SCETc0HELCWQyvPyrI2lVfXDqKvk2PXwvkLpw+ uU8L66e/HowtNhgVuRnvO1uiw0TmprHLVwUALg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAydDxqf0KcF+X3b7JkPW+ 2npLjbZBER4Fwl8PW2XmKM/q6IUiOFZx+yx93Q4nC6HGkVScC2GLbaFAPFyvoRxc AMHWeli3LIuChfJ2xPOuXDlstWyHUVQQhbqX2xIeie9cFKtdVIk1iMhF4oLVw/3D Z0qv/HpB+QfwX5emcNDSbVEvXXXegj5zAinI7gDBdhSNdMccGIgJdRF8IHpuqS8G 5/Yo1YtHRiy9rTkstcWO1vWR8W4ZqDhae13DVpQJt96uFzXQCpnaBSDyc9PpDJ/g RGUTY46HbYboUSf7H4mGff4GYLkODUdOTD9/hfJyCRKRBfYJwURDORV3WcgDJyi6 WQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10496363744535349995372467095556328452 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-10-29 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'client.vpn.kennisnet.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25476933424745680368394117151246064271652935352933917134417454445080056806849679326494183354694113226388239816135753775011352233874498194783833498012441207826045115869869678415830077429157557328997633957406903689701095161817939588534386673653774514750892843814809841954246072497562458188321591074222301895340007506531099902560844099391299342650880623275763493712221268741331999168165539631439187570661035575029768943825827808244566497224113440893627405144266343837028605721180889540646015292680308761360320513130293912760310564860606515356246004317930988114814399579534540073423509725077651289629846775042344848243289 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 53ca1759fc6bc003212f1aaee4aaa81c8256da75 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b3c35977214fb54aa3cdc8e008030177790948e7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'client.vpn.kennisnet.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.rapidssl.com/RapidSSLRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.rapidssl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.rapidssl.com/RapidSSLRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00bc3789834543d55a0a0ca49da0bdfd5c37355614a715adf95b5df9aad88648e23470557051f4defc33f3b09f26d3c35329bd315de8a883dd30583a0fd5dc2ca9f6e264bd1a6e64d6c96e58552bc8d08910ab95cecc1af991e2451d9f3dcf55dceab5f92602015181e404d37227afc4bf05d7d73fffb531dd3d4d30304f1b0e7de583386be7b0fe79fb98c30b4e724c0d527a2e31c54f96715667a27b67c375155ee9406efc956e6156568b5187bcf10a9cd0fbf16a4e83a889999b018fe7b95ad1db95ddb92f5ff4821137341c42c2590caf3f2ac8da555f5c3a8abe4d8f5f0be42e9c3eb94f0beba7bf1e8c2d361815b919ef3b5ba2c344e6a6b1cb5705002e