toad.macif.fr
- MACIF -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 01:e2:5e:34:51:f6:52:f8:fe:20:14:10:0a:5e:59:6d was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
MACIF
Organization:
MACIF
Organization unit: IT
Organization unit: IT
State / Province:
Nouvelle-Aquitaine
Locality: NIORT
Country: FR
Locality: NIORT
Country: FR
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:e2:5e:34:51:f6:52:f8:fe:20:14:10:0a:5e:59:6dSerial Number (int): 2504597777547054290027038215166122349
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 14:7b:c0:9c:c8:db:56:d1:f6:ff:7b:e8:55:57:00:57:c0:58:b8:db
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): b0:66:14:6c:96:b3:5a:9d:f1:76:9d:d3:f4:9e:f5:dd:67:70:1e:09
Fingerprint (sha256): 1d:af:6a:5e:a6:be:82:46:1e:ed:d7:e0:00:1d:48:9f:95:a1:b5:4c:d0:c6:96:c4:2a:ce:8b:a0:f5:75:dc:d1
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate toad.macif.fr
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for toad.macif.fr
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
toad.macif.fr
Other certificates including the domain name macif.fr
(limited to 100 certificates)
www.macifevasions.macif.fr
jevote.macif.fr
jeparticipe.macif.fr
fisso-sp.macif.fr
messervices.macif.fr
communaute-auto.macif.fr
atelier.macif.fr
actualites.wiztopic.com
fisso-hub.macif.fr
atelier.macif.fr
signatureelectronique.macif.fr
actualites.wiztopic.com
www.macif.fr
actualites.wiztopic.com
www.ceidf.macif.fr
emmcentre-rec.macif.fr
faq.macif.fr
mailhost.macif.fr
fisso-inter-vip.preprod.macif.fr
www.macifevasions.macif.fr
presse.macif.fr
sosg.macif.fr
mcs.macif.fr
servicesweb.macif.fr
atelier.macif.fr
connect.macif.fr
*.macif.fr
agence.macif.fr
actualites.wiztopic.com
atelier.macif.fr
agence.macif.fr
atelier.macif.fr
mcs.macif.fr
actualites.wiztopic.com
actualites.wiztopic.com
toad.macif.fr
toad.macif.fr
www.macifevasions.macif.fr
www.macif.fr
espacegandreck.macif.fr
www.brandcenter.macif.fr
www.macif.fr
preprod-presse.macif.fr
nvmp1815.macif.fr
www.ceidf.macif.fr
device.macif.fr
evenements.macif.fr
www.rsvm.macif.fr
www.macif.fr
presse.macif.fr
actualites.wiztopic.com
atelier.macif.fr
atelier.macif.fr
cds.macif.fr
communaute-auto.macif.fr
lessentiel.macif.fr
actualites.wiztopic.com
de.newsletter.events.renault.com
nvmp1816.macif.fr
as.macif.fr
as.macif.fr
actualites.wiztopic.com
ee.macif.fr
*.recette.macif.fr
rendezvousbrisdeglace-rec.macif.fr
gw.visio.vt.macif.fr
toad.macif.fr
satisfaction.macif.fr
agence.macif.fr
actualites.wiztopic.com
as.macif.fr
agence.macif.fr
pdtv.macif.fr
pca.macif.fr
lessentiel.macif.fr
www.macifevasions.macif.fr
jevote.macif.fr
www.macif.fr
satisfaction.macif.fr
expert.macif.fr
fisso-hub.macif.fr
signatureelectronique.macif.fr
signatureelectronique.macif.fr
i-reliure.macif.fr
as.macif.fr
jevote.macif.fr
rendezvousbrisdeglace.macif.fr
expert.macif.fr
messervices.macif.fr
presse.macif.fr
actualites.wiztopic.com
www.ceidf.macif.fr
as.macif.fr
atelier.macif.fr
evenements.macif.fr
expert.macif.fr
gestionsante.macif.fr
messervices.macif.fr
www.macif.fr
communaute-auto.macif.fr
jevote.macif.fr
jeparticipe.macif.fr
fisso-sp.macif.fr
messervices.macif.fr
communaute-auto.macif.fr
atelier.macif.fr
actualites.wiztopic.com
fisso-hub.macif.fr
atelier.macif.fr
signatureelectronique.macif.fr
actualites.wiztopic.com
www.macif.fr
actualites.wiztopic.com
www.ceidf.macif.fr
emmcentre-rec.macif.fr
faq.macif.fr
mailhost.macif.fr
fisso-inter-vip.preprod.macif.fr
www.macifevasions.macif.fr
presse.macif.fr
sosg.macif.fr
mcs.macif.fr
servicesweb.macif.fr
atelier.macif.fr
connect.macif.fr
*.macif.fr
agence.macif.fr
actualites.wiztopic.com
atelier.macif.fr
agence.macif.fr
atelier.macif.fr
mcs.macif.fr
actualites.wiztopic.com
actualites.wiztopic.com
toad.macif.fr
toad.macif.fr
www.macifevasions.macif.fr
www.macif.fr
espacegandreck.macif.fr
www.brandcenter.macif.fr
www.macif.fr
preprod-presse.macif.fr
nvmp1815.macif.fr
www.ceidf.macif.fr
device.macif.fr
evenements.macif.fr
www.rsvm.macif.fr
www.macif.fr
presse.macif.fr
actualites.wiztopic.com
atelier.macif.fr
atelier.macif.fr
cds.macif.fr
communaute-auto.macif.fr
lessentiel.macif.fr
actualites.wiztopic.com
de.newsletter.events.renault.com
nvmp1816.macif.fr
as.macif.fr
as.macif.fr
actualites.wiztopic.com
ee.macif.fr
*.recette.macif.fr
rendezvousbrisdeglace-rec.macif.fr
gw.visio.vt.macif.fr
toad.macif.fr
satisfaction.macif.fr
agence.macif.fr
actualites.wiztopic.com
as.macif.fr
agence.macif.fr
pdtv.macif.fr
pca.macif.fr
lessentiel.macif.fr
www.macifevasions.macif.fr
jevote.macif.fr
www.macif.fr
satisfaction.macif.fr
expert.macif.fr
fisso-hub.macif.fr
signatureelectronique.macif.fr
signatureelectronique.macif.fr
i-reliure.macif.fr
as.macif.fr
jevote.macif.fr
rendezvousbrisdeglace.macif.fr
expert.macif.fr
messervices.macif.fr
presse.macif.fr
actualites.wiztopic.com
www.ceidf.macif.fr
as.macif.fr
atelier.macif.fr
evenements.macif.fr
expert.macif.fr
gestionsante.macif.fr
messervices.macif.fr
www.macif.fr
communaute-auto.macif.fr
Certificate
The complete raw certificate details for toad.macif.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/zCCBOegAwIBAgIQAeJeNFH2Uvj+IBQQCl5ZbTANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MjAwMzEzMDAwMDAwWhcNMjAxMTIzMTIwMDAwWjBvMQswCQYDVQQGEwJGUjEbMBkG A1UECBMSTm91dmVsbGUtQXF1aXRhaW5lMQ4wDAYDVQQHEwVOSU9SVDEOMAwGA1UE ChMFTUFDSUYxCzAJBgNVBAsTAklUMRYwFAYDVQQDEw10b2FkLm1hY2lmLmZyMIIC IjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArdX380MRCqLtrRhUQtE0KsAN EKegLo/yJah/Lbqc3o4xH0BuTNDKLjDqRwxup5DNvRPN1WnyBDXx9if0s1g9BeKX Bg/Rgca2si1+33x3AUb5obVU6Paczt3GjMHv2sCCktlKN9aMHXyeeTaL4Li6KECQ qLwB5kwNaz1qdqiNP+f8mKc5ZrDkYZjL1AFH2UXOYCniCefngmxR151YIVjLB2ey ch2IZRx+MfHQhzzvGal+CvaZfnhijQP1X++Rfx2KE2luYsTUb+/C+3FFWiB/2Jkn KhfYkMidphMLx6CuzfJalqnDfo5JvdrV/chz1lZu0aXvFZCOVj+lov5HsRSQ5Xn1 ip4THWB2PGv61oYNrLePDj0Ark3J+rU+jSgto++vGt/5ejbsAD08thCALVwkcF36 yQD4bytCc+oqaPWxSmmgvo7qx3RMpm+q+3/YB8CPoNN/1GwFjDEn/OTEx6gzxUCI x+PKE1ZQhdCSZa8w7kKtwZqiQmE60Q25rKaoxCwqj8uflteX4rM7EYQut8l2urt5 svu0aU6ZWt/0qbMNUe76ZZQBBhtTPlsUqKELEMsOBxTun+kmd2P/vGWRbNLLR5nf DaBqR6sEjFTTVxuc/9jPYEPcvtoaCT9NbU2rdKX2kHsjKipB+gT4Sv1fLuGnFgrk myNTvjWwt8STfESfxVECAwEAAaOCAagwggGkMB8GA1UdIwQYMBaAFKPIXmVU5TB4 wQXqBwpqWcy5/t5aMB0GA1UdDgQWBBQUe8CcyNtW0fb/e+hVVwBXwFi42zAYBgNV HREEETAPgg10b2FkLm1hY2lmLmZyMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2Nk cC50aGF3dGUuY29tL1RoYXd0ZVJTQUNBMjAxOC5jcmwwTAYDVR0gBEUwQzA3Bglg hkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29t L0NQUzAIBgZngQwBAgIwbwYIKwYBBQUHAQEEYzBhMCQGCCsGAQUFBzABhhhodHRw Oi8vc3RhdHVzLnRoYXd0ZS5jb20wOQYIKwYBBQUHMAKGLWh0dHA6Ly9jYWNlcnRz LnRoYXd0ZS5jb20vVGhhd3RlUlNBQ0EyMDE4LmNydDAJBgNVHRMEAjAAMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBpC4CdQwG1eqhN6S1+ xZSONT5pXwFFN6EJQ4ZfQuVamZ3rRpWGSJmRv2QpvOW7/v4TNqC0P5DnfUsYqAy8 +RzQ950gkhkKym5O9fdBgexZ6iYWAHo8AegWbZLWoYmLeWZYQQBY8785gLPBuO53 PgkJpVQB1B3bcr7zSCoFdT3hr4s/62UEeVQtbI6jdeGekmXYMoOOjgsQDudJhYwL hT03IHFphftFAg7iRVRlAbtfpG3i6/8Bx5q0EQWhosrUb+PhJO0xuXBrplRISZKc 8SRphx7D83BAdvVoVtuEVy95zBgRRXknsS19Cp2M3lMke3pkBoLiA/t11gIBahnd exH8 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArdX380MRCqLtrRhUQtE0 KsANEKegLo/yJah/Lbqc3o4xH0BuTNDKLjDqRwxup5DNvRPN1WnyBDXx9if0s1g9 BeKXBg/Rgca2si1+33x3AUb5obVU6Paczt3GjMHv2sCCktlKN9aMHXyeeTaL4Li6 KECQqLwB5kwNaz1qdqiNP+f8mKc5ZrDkYZjL1AFH2UXOYCniCefngmxR151YIVjL B2eych2IZRx+MfHQhzzvGal+CvaZfnhijQP1X++Rfx2KE2luYsTUb+/C+3FFWiB/ 2JknKhfYkMidphMLx6CuzfJalqnDfo5JvdrV/chz1lZu0aXvFZCOVj+lov5HsRSQ 5Xn1ip4THWB2PGv61oYNrLePDj0Ark3J+rU+jSgto++vGt/5ejbsAD08thCALVwk cF36yQD4bytCc+oqaPWxSmmgvo7qx3RMpm+q+3/YB8CPoNN/1GwFjDEn/OTEx6gz xUCIx+PKE1ZQhdCSZa8w7kKtwZqiQmE60Q25rKaoxCwqj8uflteX4rM7EYQut8l2 urt5svu0aU6ZWt/0qbMNUe76ZZQBBhtTPlsUqKELEMsOBxTun+kmd2P/vGWRbNLL R5nfDaBqR6sEjFTTVxuc/9jPYEPcvtoaCT9NbU2rdKX2kHsjKipB+gT4Sv1fLuGn FgrkmyNTvjWwt8STfESfxVECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2504597777547054290027038215166122349 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-23 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nouvelle-Aquitaine' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NIORT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MACIF' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'toad.macif.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 709188250129715972570162313442358868434387199387678389069889160294278499922363243556004036652355052508664503566186975037758838219406799043293989075926300971707359023737507827458849147464743909794089247031985717261426916613938238055359877733985007049109797712490379392493419779386740926489344077142659287735382374420867013120718741948417623428086702192787833352162448659473292942035951785036430551010279824874740842372636246790157917099974153420904133054992555856674241157171118517028618362964880896560133927145381825013758003662767195008934182087731556747881795985739353966034360001887068615909694934416514692482036564946314820413839271853600579506142995548129053346689025036157706729563534038632131243789177369607683763677502860157745307362127616745241595605066768499241635894866393569004219099551604198752450162082170264103655850310711124496443425597231560604764328631974659915918281259028378929504939827811726317377682407420824245825400922687606348307560342595427475579069293471841696973091386385703676514387172589302761213026099991218522619605852754512943163966131990333082269603992390527148087071152109640837323498357992812820588548414129704549440951868010679673424947859778200285398493631422000019011626944165930980787726828881 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 147bc09cc8db56d1f6ff7be855570057c058b8db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'toad.macif.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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