www.diners.co.il
- ISRAEL CREDIT CARDS LTD. -
Issued by GeoTrust RSA CA 2018
About this certificate
This digital certificate with serial number 0b:76:9b:27:46:95:36:a4:cc:fa:34:ae:f1:35:f2:9a was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
ISRAEL CREDIT CARDS LTD.
Organization:
ISRAEL CREDIT CARDS LTD.
Organization unit: IT
Organization unit: IT
Locality:
GIVATAIM
Country: IL
Country: IL
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:76:9b:27:46:95:36:a4:cc:fa:34:ae:f1:35:f2:9aSerial Number (int): 15237345868172427009776367662959817370
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 70:31:b0:dc:e1:e9:2c:c0:c0:18:64:f5:93:3b:93:ea:d5:65:52:81
AuthorityKeyId: 90:58:ff:b0:9c:75:a8:51:54:77:b1:ed:f2:a3:43:16:38:9e:6c:c5
Fingerprint (sha1): 11:63:48:a0:81:9e:fe:db:51:f8:42:d8:8a:10:2d:21:8d:3b:ef:e2
Fingerprint (sha256): 1b:0d:40:ab:6d:63:3c:0e:2e:fb:df:b2:fc:2c:3b:da:68:56:90:43:0f:49:1e:b9:d1:76:9f:9e:d1:4f:80:ce
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustRSACA2018.crl
Check the revocation status for certificate www.diners.co.il
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.diners.co.il
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.diners.co.il
diners.co.il
diners.co.il
Other certificates including the domain name diners.co.il
(limited to 100 certificates)
extra.diners.co.il
flycard.diners.co.il
www.diners.co.il
www.cal-online.co.il
www.services.diners.co.il
www.diners.co.il
www.diners.co.il
www.cal-online.co.il
www.cal-online.co.il
flycard.diners.co.il
www.diners.co.il
flycard.diners.co.il
flycard.diners.co.il
www.cal-online.co.il
www.cal-online.co.il
www.cal-online.co.il
extra.diners.co.il
extra.diners.co.il
extra.diners.co.il
www.diners.co.il
flycard.diners.co.il
www.cal-online.co.il
extra.diners.co.il
www.diners.co.il
extra.diners.co.il
www.diners.co.il
flycard.diners.co.il
www.diners.co.il
www.cal-online.co.il
www.services.diners.co.il
www.diners.co.il
www.diners.co.il
www.cal-online.co.il
www.cal-online.co.il
flycard.diners.co.il
www.diners.co.il
flycard.diners.co.il
flycard.diners.co.il
www.cal-online.co.il
www.cal-online.co.il
www.cal-online.co.il
extra.diners.co.il
extra.diners.co.il
extra.diners.co.il
www.diners.co.il
flycard.diners.co.il
www.cal-online.co.il
extra.diners.co.il
www.diners.co.il
extra.diners.co.il
www.diners.co.il
Certificate
The complete raw certificate details for www.diners.co.il in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGgzCCBWugAwIBAgIQC3abJ0aVNqTM+jSu8TXymjANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRHZW9UcnVzdCBSU0EgQ0EgMjAxODAe Fw0xODAyMjYwMDAwMDBaFw0yMDAxMjQxMjAwMDBaMGsxCzAJBgNVBAYTAklMMREw DwYDVQQHEwhHSVZBVEFJTTEhMB8GA1UEChMYSVNSQUVMIENSRURJVCBDQVJEUyBM VEQuMQswCQYDVQQLEwJJVDEZMBcGA1UEAxMQd3d3LmRpbmVycy5jby5pbDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANO4GogCNmR6oFv8moQJzjiXyfKn b14FaZ9IgUQpRMKaAr0sYJUm8SOfzAtYKhMRiQPUaDCpfEZE46c9BSNFhCmlmQi/ JkwsBupAuGowBYvaR9CC9/Mg3BY1kbsA/yVZzFINDwB+y1eZ9T+v/ZNUNUuNqZEF eXH+CstvxtqPHt75T9E7BCGS2E8ejoavh8TM84uhvHZjZL44PupL03CTUdnhkKpd gc3wWXAp8ggFR6MkBCzTB4CbyR0fc9u/VW06tzHCM9Lewdvqr2OpNV3BP0TgvNp2 UX+XQSUzJZOZGj+fspDxWzOYgD9MD/TDb+JXrKkaV2OUOlkFQP0ws2HVw1ECAwEA AaOCAy4wggMqMB8GA1UdIwQYMBaAFJBY/7CcdahRVHex7fKjQxY4nmzFMB0GA1Ud DgQWBBRwMbDc4ekswMAYZPWTO5Pq1WVSgTApBgNVHREEIjAgghB3d3cuZGluZXJz LmNvLmlsggxkaW5lcnMuY28uaWwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vY2Rw Lmdlb3RydXN0LmNvbS9HZW9UcnVzdFJTQUNBMjAxOC5jcmwwTAYDVR0gBEUwQzA3 BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQu Y29tL0NQUzAIBgZngQwBAgIwdQYIKwYBBQUHAQEEaTBnMCYGCCsGAQUFBzABhhpo dHRwOi8vc3RhdHVzLmdlb3RydXN0LmNvbTA9BggrBgEFBQcwAoYxaHR0cDovL2Nh Y2VydHMuZ2VvdHJ1c3QuY29tL0dlb1RydXN0UlNBQ0EyMDE4LmNydDAJBgNVHRME AjAAMIIBfAYKKwYBBAHWeQIEAgSCAWwEggFoAWYAdgCkuQmQtBhYFIe7E6LMZ3AK PDWYBPkb37jjd80OyA3cEAAAAWHSjT3FAAAEAwBHMEUCIQD2CYIeST99eJyTfulA bNFusbaPyCLk43BbUqQ5fL6hHwIgV9bSH2D6D3c/T8c6TTWjiHWvm4f8vX5YONuV ByRUv+IAdQCHdb/nWXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/XqCDDwAAAWHSjT40 AAAEAwBGMEQCIDXXuxyziar5eYTqArWPJYsCi5HaXQcOVfx9/qH4OqIDAiAW4LVt Q1x/fWFLmaR/moy2Xn1am7DNZpPfRVGnyrFGSwB1ALvZ37wfinG1k5Qjl6qSe0c4 V5UKq1LoGpCWZDaOHtGFAAABYdKNPpIAAAQDAEYwRAIgbsqk48TW9ywajIHcl8CS 6gieIUIat8IX0+p9xdppSPECIGeCOuGP7LzO7kTDretu5ibJYR7RwV+yeIiemMcr rKYZMA0GCSqGSIb3DQEBCwUAA4IBAQBTB67K5xy7FozwJv5glTFCYfBJt5ZLA1JM JzCADo9i2b3FY9Jsvoa7RdtS/vmsmWzfMWlnMLmqJjPehEN2EQIE9Kj9tw5NRmHD CMpmp3UWN9Dsrxck/YddhXuVg6TG6k3cC2hlQQUV4W72KNh0rqHLwiDUw2KcBKBo uv9AGGud68IwWbVritwAZVwJJoZtKNI9HzC7ELtyLf6Imm26bnM9fTTtHPjjfbAH 1Fvmapbsq3zj9WkvWJh2zsKYem3yb733om1SVUnC5rCNGYHGo5ZPUQsuCHi8Yuj4 PwjH8o7cS8PzrByhQzerUdbW3O3jyS7e5hpni+lb6EPXU57CT500 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA07gaiAI2ZHqgW/yahAnO OJfJ8qdvXgVpn0iBRClEwpoCvSxglSbxI5/MC1gqExGJA9RoMKl8RkTjpz0FI0WE KaWZCL8mTCwG6kC4ajAFi9pH0IL38yDcFjWRuwD/JVnMUg0PAH7LV5n1P6/9k1Q1 S42pkQV5cf4Ky2/G2o8e3vlP0TsEIZLYTx6Ohq+HxMzzi6G8dmNkvjg+6kvTcJNR 2eGQql2BzfBZcCnyCAVHoyQELNMHgJvJHR9z279VbTq3McIz0t7B2+qvY6k1XcE/ ROC82nZRf5dBJTMlk5kaP5+ykPFbM5iAP0wP9MNv4lesqRpXY5Q6WQVA/TCzYdXD UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15237345868172427009776367662959817370 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-24 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GIVATAIM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ISRAEL CREDIT CARDS LTD.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.diners.co.il' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26727067235250045533644973988629524709347518484832864154729810303369838618213399209448861610178782827250899748042852011140677112609730361274492164684805019829570363210866273939231722155611902515050902263839145317528591050031931067494030397871675513534774759462729028182276202908014364146269961820156715869056440727533203934254814625436529732114771936564955769485390652957128527412714883519898255975908484260384143453985924891947274787150130642631244224564714520730732391485358628599265700417355491077715427877433317893031352150172119324975954099337061925830707805888316174395473781848367190812650267996128655107801937 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9058ffb09c75a8515477b1edf2a34316389e6cc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7031b0dce1e92cc0c01864f5933b93ead5655281 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.diners.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'diners.co.il' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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