i-doit.bilfinger.net
- Bilfinger Global IT GmbH -
Issued by thawte SSL CA - G2
About this certificate
This digital certificate with serial number 2a:f0:75:4f:97:78:a2:6d:57:43:89:7b:80:4b:f4:c9 was issued on by thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Bilfinger Global IT GmbH
Organization:
Bilfinger Global IT GmbH
Organization unit: Infrastructure and Platforms
Organization unit: Infrastructure and Platforms
State / Province:
Baden-Wuerttemberg
Locality: Mannheim
Country: DE
Locality: Mannheim
Country: DE
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 2a:f0:75:4f:97:78:a2:6d:57:43:89:7b:80:4b:f4:c9Serial Number (int): 57076106416841365786859697832698049737
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60
Fingerprint (sha1): 4b:2b:ba:8c:22:b7:e0:42:ef:34:2c:8d:53:6d:a3:2e:a4:3e:8b:bf
Fingerprint (sha256): 1d:30:5f:30:91:f6:5e:f8:0d:11:3c:95:0c:a2:61:fd:e5:97:d0:9c:7e:a2:44:15:62:78:87:b0:ce:a3:6b:33
Issuing Certificate URL: http://tj.symcb.com/tj.crt
Revocation information
OCSP Server: http://tj.symcd.comCRL Distribution Point: http://tj.symcb.com/tj.crl
Check the revocation status for certificate i-doit.bilfinger.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for i-doit.bilfinger.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
i-doit.bilfinger.net
Other certificates including the domain name bilfinger.net
(limited to 100 certificates)
mdm.bilfinger.net
proarc.bilfinger.net
auth.bilfinger.net
standards.bilfinger.net
wms.bilfinger.net
sd-is-usa.bilfinger.net
mdmemailqa.bilfinger.net
*.spa.bilfinger.net
iscloud.bilfinger.net
filebox2.bilfinger.net
auth.bilfinger.net
vpn.evry.com
q14-cc.sap.bilfinger.net
csi-sts.bbps.bilfinger.net
whl.bilfinger.net
medialibrary.bilfinger.net
envicloud.bilfinger.net
filebox.bilfinger.net
knowledgetest.bilfinger.net
asp.bilfinger.net
sharepoint.bilfinger.net
wdsc14.sap.bilfinger.net
mdmqa.bilfinger.net
fscloud.bilfinger.net
ssrs-proxy.auth.bilfinger.net
mycitrix.bilfinger.net
login.bilfinger.net
fscloud.bilfinger.net
oos.bilfinger.net
i-doit.bilfinger.net
lync.bilfinger.net
bea.bilfinger.net
vpn.evry.com
bld.bilfinger.net
templogin.bilfinger.net
betriebsvereinbarung-informationssysteme.bilfinger.net
login.bilfinger.net
wdsp14.sap.bilfinger.net
mdmemail.bilfinger.net
storefrontqa.bilfinger.net
academy-elearning-test.bilfinger.net
di1-cc.sap.bilfinger.net
*.bilfinger.com
teams.bilfinger.net
bi.bilfinger.net
ssc-service-reporting.bilfinger.net
wdsq14.sap.bilfinger.net
jabis.bilfinger.net
fscloud.bilfinger.net
mycitrixqa.bilfinger.net
autodiscover.bilfinger.net
mclug.bilfinger.net
*.shield.bilfinger.net
mdm.bilfinger.net
di3-cc.sap.bilfinger.net
academy.bilfinger.net
edge.bilfinger.net
pmo.bilfinger.net
bsfm-ftp.bilfinger.net
csi-sts.bbps.bilfinger.net
*.bilfinger.com
medialibrary.bilfinger.net
*.cloudapps.bilfinger.net
applications.bilfinger.net
webapps.bilfinger.net
my.bilfinger.net
mdm.bilfinger.net
mdmqa.bilfinger.net
webapps.bilfinger.net
p14-cc.sap.bilfinger.net
academy-elearning.bilfinger.net
csi-sts.bb.bilfinger.net
academy.bilfinger.net
filebox2.bilfinger.net
*.nav.bilfinger.net
mycitrix.bilfinger.net
teams.bilfinger.net
find.bilfinger.net
csi-sts.bb.bilfinger.net
siem.bilfinger.net
mclut.bilfinger.net
*.cloudappsqa.bilfinger.net
academy-test.bilfinger.net
www.identify-fs.bilfinger.com
login.bilfinger.net
iscloud.bilfinger.net
csi-sts.bhr.bilfinger.net
envicloud.bilfinger.net
gtc.bilfinger.net
filebox2.bilfinger.net
gcp-apps.bilfinger.net
q17-cc.sap.bilfinger.net
puma.bilfinger.net
academy.bilfinger.net
nsg.bilfinger.net
i-doit-test.bilfinger.net
vpn.evry.com
filebox.bilfinger.net
*.gcp-apps.bilfinger.net
bmcloud.bilfinger.net
proarc.bilfinger.net
auth.bilfinger.net
standards.bilfinger.net
wms.bilfinger.net
sd-is-usa.bilfinger.net
mdmemailqa.bilfinger.net
*.spa.bilfinger.net
iscloud.bilfinger.net
filebox2.bilfinger.net
auth.bilfinger.net
vpn.evry.com
q14-cc.sap.bilfinger.net
csi-sts.bbps.bilfinger.net
whl.bilfinger.net
medialibrary.bilfinger.net
envicloud.bilfinger.net
filebox.bilfinger.net
knowledgetest.bilfinger.net
asp.bilfinger.net
sharepoint.bilfinger.net
wdsc14.sap.bilfinger.net
mdmqa.bilfinger.net
fscloud.bilfinger.net
ssrs-proxy.auth.bilfinger.net
mycitrix.bilfinger.net
login.bilfinger.net
fscloud.bilfinger.net
oos.bilfinger.net
i-doit.bilfinger.net
lync.bilfinger.net
bea.bilfinger.net
vpn.evry.com
bld.bilfinger.net
templogin.bilfinger.net
betriebsvereinbarung-informationssysteme.bilfinger.net
login.bilfinger.net
wdsp14.sap.bilfinger.net
mdmemail.bilfinger.net
storefrontqa.bilfinger.net
academy-elearning-test.bilfinger.net
di1-cc.sap.bilfinger.net
*.bilfinger.com
teams.bilfinger.net
bi.bilfinger.net
ssc-service-reporting.bilfinger.net
wdsq14.sap.bilfinger.net
jabis.bilfinger.net
fscloud.bilfinger.net
mycitrixqa.bilfinger.net
autodiscover.bilfinger.net
mclug.bilfinger.net
*.shield.bilfinger.net
mdm.bilfinger.net
di3-cc.sap.bilfinger.net
academy.bilfinger.net
edge.bilfinger.net
pmo.bilfinger.net
bsfm-ftp.bilfinger.net
csi-sts.bbps.bilfinger.net
*.bilfinger.com
medialibrary.bilfinger.net
*.cloudapps.bilfinger.net
applications.bilfinger.net
webapps.bilfinger.net
my.bilfinger.net
mdm.bilfinger.net
mdmqa.bilfinger.net
webapps.bilfinger.net
p14-cc.sap.bilfinger.net
academy-elearning.bilfinger.net
csi-sts.bb.bilfinger.net
academy.bilfinger.net
filebox2.bilfinger.net
*.nav.bilfinger.net
mycitrix.bilfinger.net
teams.bilfinger.net
find.bilfinger.net
csi-sts.bb.bilfinger.net
siem.bilfinger.net
mclut.bilfinger.net
*.cloudappsqa.bilfinger.net
academy-test.bilfinger.net
www.identify-fs.bilfinger.com
login.bilfinger.net
iscloud.bilfinger.net
csi-sts.bhr.bilfinger.net
envicloud.bilfinger.net
gtc.bilfinger.net
filebox2.bilfinger.net
gcp-apps.bilfinger.net
q17-cc.sap.bilfinger.net
puma.bilfinger.net
academy.bilfinger.net
nsg.bilfinger.net
i-doit-test.bilfinger.net
vpn.evry.com
filebox.bilfinger.net
*.gcp-apps.bilfinger.net
bmcloud.bilfinger.net
Certificate
The complete raw certificate details for i-doit.bilfinger.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIQKvB1T5d4om1XQ4l7gEv0yTANBgkqhkiG9w0BAQsFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMRswGQYDVQQDExJ0 aGF3dGUgU1NMIENBIC0gRzIwHhcNMTYwODIyMDAwMDAwWhcNMTkwODIyMjM1OTU5 WjCBpjELMAkGA1UEBhMCREUxGzAZBgNVBAgMEkJhZGVuLVd1ZXJ0dGVtYmVyZzER MA8GA1UEBwwITWFubmhlaW0xITAfBgNVBAoMGEJpbGZpbmdlciBHbG9iYWwgSVQg R21iSDElMCMGA1UECwwcSW5mcmFzdHJ1Y3R1cmUgYW5kIFBsYXRmb3JtczEdMBsG A1UEAwwUaS1kb2l0LmJpbGZpbmdlci5uZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBW2p5VMTMQDaUfdsOjGNh0YCXnS7g0OJqPrMC0P1GstYUaQO9 GblZEtlGGusB1ptEs+8gR+yyAKRykgc7PItiBCiwGDl6CtwC/9Gop7rABy1WkaLW TBAbdBM6D9HPbQ+B8Pgz8MUIDL7ZBBZHfJk8QbFllyF+6lTT9h51u3i734VOPw/3 RI1iz6oxb1W2rdnmBi56PvFEuBZRsvTiex+0Bcly5MnXCo5QYHIVdR6Plpjxwtcy Apvq1rmCXbpBEJLDRfGRnIWWUosEq6bjSVqCqHqKKlzoV2MygcBPNCn6/ZrZzGrE BkAGrgwUJrjdYimLH30nmeP8XdrdtPXpcm6tAgMBAAGjggGLMIIBhzAfBgNVHREE GDAWghRpLWRvaXQuYmlsZmluZ2VyLm5ldDAJBgNVHRMEAjAAMG4GA1UdIARnMGUw YwYGZ4EMAQICMFkwJgYIKwYBBQUHAgEWGmh0dHBzOi8vd3d3LnRoYXd0ZS5jb20v Y3BzMC8GCCsGAQUFBwICMCMMIWh0dHBzOi8vd3d3LnRoYXd0ZS5jb20vcmVwb3Np dG9yeTAOBgNVHQ8BAf8EBAMCBaAwHwYDVR0jBBgwFoAUwk9IV/zRT5rAXTh9DgXb 2S61UmAwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL3RqLnN5bWNiLmNvbS90ai5j cmwwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEBBEsw STAfBggrBgEFBQcwAYYTaHR0cDovL3RqLnN5bWNkLmNvbTAmBggrBgEFBQcwAoYa aHR0cDovL3RqLnN5bWNiLmNvbS90ai5jcnQwEwYKKwYBBAHWeQIEAwEB/wQCBQAw DQYJKoZIhvcNAQELBQADggEBAA+ycwi57wetVNOkqHDuUQwyik5cVGj0k5JDRVWD tFRYbnhmdaDV+/KwUY8AzdHtpySCqlbZwsoV0KcAAxiRH47lZwrRGoHBLB8PsPVF M7TlIZBumgygtM7WxV2gKV1z1iG9plNQLrwYYu0kJJGzyI3kNO1RQntDl9QdPwpV G3oPZwE/makUtQ+6kMdUDOJ/XMvDjX/8UWYl7cuvMLW4T1qo4kBacfH4ET2MzIde QjCX1y5vcDGih+ytiRAcHFtwLjG5UyGdl1w9l80SLJbkXZdwBoX1a/pPXO0zxPCG axhKr/mTB/vK5btSdyAVvJITOhy9spC1Flkdq8puiajqZ48= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwVtqeVTEzEA2lH3bDoxj YdGAl50u4NDiaj6zAtD9RrLWFGkDvRm5WRLZRhrrAdabRLPvIEfssgCkcpIHOzyL YgQosBg5egrcAv/RqKe6wActVpGi1kwQG3QTOg/Rz20PgfD4M/DFCAy+2QQWR3yZ PEGxZZchfupU0/Yedbt4u9+FTj8P90SNYs+qMW9Vtq3Z5gYuej7xRLgWUbL04nsf tAXJcuTJ1wqOUGByFXUej5aY8cLXMgKb6ta5gl26QRCSw0XxkZyFllKLBKum40la gqh6iipc6FdjMoHATzQp+v2a2cxqxAZABq4MFCa43WIpix99J5nj/F3a3bT16XJu rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 57076106416841365786859697832698049737 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Baden-Wuerttemberg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Mannheim' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bilfinger Global IT GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Infrastructure and Platforms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'i-doit.bilfinger.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24409071725689072203348858370789140449605574965563670359012531984830605887774733260318102999713552758586514136594767877637298081004040157981976520492950229097606100703059460039529152811969641902523931262146269771300232056158670132517017268582661824852042720706621117574945159556234274564554276831148228232634846636375575654792769382736821759561741527569624399375020639490412800330292249886274212438219386444747829202539008641668846034195805978988314881942360938021135121806819091627091824386389958408779332271785523954590324642194819301485857678401277513820547230823466538455508493312737975659167202349002652889804461 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'i-doit.bilfinger.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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