external.signicat.com
Issued by Buypass Class 2 CA 2
About this certificate
This digital certificate with serial number 30:97:43:ad:99:21:bc:71:24:bc was issued on by Buypass AS-983163327.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=external.signicat.com
Buypass AS-983163327
Organization:
Buypass AS-983163327
Country:
NO
This certificate has expire since
Certificate Details
Serial Number (hex): 30:97:43:ad:99:21:bc:71:24:bcSerial Number (int): 229463926255214799168700
Serial Number lenght: 78 bits, 10 octets
SubjectKeyId: 20:14:d7:f4:f4:fe:cb:ab:52:93:59:81:d2:ee:a7:75:7f:d0:13:db
AuthorityKeyId: 92:ad:65:89:b2:00:0f:cb:51:0d:c1:23:ec:94:4e:8f:c1:04:3f:77
Fingerprint (sha1): 36:28:10:63:e0:8d:14:c3:cc:72:bb:25:02:9b:24:f3:30:24:85:a1
Fingerprint (sha256): 1e:c3:7c:f6:c8:2f:ee:02:30:39:8c:17:43:ed:1c:53:f8:bc:15:9e:6b:02:60:57:f4:96:30:ce:9a:46:3f:60
Issuing Certificate URL: http://crt.buypass.no/crt/BPClass2CA2.cer
Revocation information
OCSP Server: http://ocsp.buypass.comCRL Distribution Point: http://crl.buypass.no/crl/BPClass2CA2.crl
Check the revocation status for certificate external.signicat.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for external.signicat.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
external.signicat.com
Other certificates including the domain name signicat.com
(limited to 100 certificates)
mobileid.dev.signicat.com
mwc-demo.signicat.com
eu01.signicat.com
qa.scid.signicat.com
*.internal.signicat.com
partners.signicat.com
signicat.com
na.smart-integration.status.ricoh.com
vpn.signicat.com
staging.signicat.com
na.smart-integration.status.ricoh.com
onboarding.dev.signicat.com
na.smart-integration.status.ricoh.com
www-beta.signicat.com
www-staging.signicat.com
dtp-vpn.signicat.com
mail.signicat.com
api.signicat.com
dashboard.signicat.com
personskadeforbundet.no
microsoft-api-prod.signicat.com
go.signicat.com
cert-manager-upgrade-test.internal.signicat.com
www-staging.signicat.com
developer.signicat.com
api.signicat.com
dashboard.signicat.com
encapserver.dev.signicat.com
staging.signicat.com
express-dashboard.signicat.com
*.app.signicat.com
labs.signicat.com
eu01.signicat.com
community.signicat.com
signature.signicat.com
support.signicat.com
labs.signicat.com
na.smart-integration.status.ricoh.com
api.signicat.com
qa.signicat.com
microsoft-developer-dev.signicat.com
api.signicat.com
static.signicat.com
signicat.com
signicat.com
signature.signicat.com
na.smart-integration.status.ricoh.com
customer.signicat.com
signature.signicat.com
labs.signicat.com
qa.signicat.com
*.app.signicat.com
qa.signicat.com
secure-share.signicat.com
encap.test.signicat.com
go.signicat.com
customerportal.signicat.com
eu01.signicat.com
bourne-status.wifinity.net
candidatesrv.dev.signicat.com
bourne-status.wifinity.net
api.signicat.com
community.signicat.com
id.signicat.com
bourne-status.wifinity.net
dev01.signicat.com
onboarding.dev.signicat.com
grafana.signicat.com
dev01.signicat.com
id.signicat.com
demo.signicat.com
*.dev.signicat.com
grafana.signicat.com
na.smart-integration.status.ricoh.com
developer.signicat.com
encap.signicat.com
candidatesrv.dev.signicat.com
qa.scid.signicat.com
express-dashboard.signicat.com
na.smart-integration.status.ricoh.com
encapserver.dev.signicat.com
microsoft-api-test.signicat.com
cert-manager-upgrade-test.internal.signicat.com
developer.signicat.com
encap.test.signicat.com
*.internal.signicat.com
qa.signicat.com
labs.signicat.com
customer.signicat.com
qa.scid.signicat.com
beta.developer.signicat.com
www.signicat.com
www-staging.signicat.com
customerportal.signicat.com
qa.signicat.com
grafana.signicat.com
api.signicat.com
external.signicat.com
mwc-demo.signicat.com
eu01.signicat.com
qa.scid.signicat.com
*.internal.signicat.com
partners.signicat.com
signicat.com
na.smart-integration.status.ricoh.com
vpn.signicat.com
staging.signicat.com
na.smart-integration.status.ricoh.com
onboarding.dev.signicat.com
na.smart-integration.status.ricoh.com
www-beta.signicat.com
www-staging.signicat.com
dtp-vpn.signicat.com
mail.signicat.com
api.signicat.com
dashboard.signicat.com
personskadeforbundet.no
microsoft-api-prod.signicat.com
go.signicat.com
cert-manager-upgrade-test.internal.signicat.com
www-staging.signicat.com
developer.signicat.com
api.signicat.com
dashboard.signicat.com
encapserver.dev.signicat.com
staging.signicat.com
express-dashboard.signicat.com
*.app.signicat.com
labs.signicat.com
eu01.signicat.com
community.signicat.com
signature.signicat.com
support.signicat.com
labs.signicat.com
na.smart-integration.status.ricoh.com
api.signicat.com
qa.signicat.com
microsoft-developer-dev.signicat.com
api.signicat.com
static.signicat.com
signicat.com
signicat.com
signature.signicat.com
na.smart-integration.status.ricoh.com
customer.signicat.com
signature.signicat.com
labs.signicat.com
qa.signicat.com
*.app.signicat.com
qa.signicat.com
secure-share.signicat.com
encap.test.signicat.com
go.signicat.com
customerportal.signicat.com
eu01.signicat.com
bourne-status.wifinity.net
candidatesrv.dev.signicat.com
bourne-status.wifinity.net
api.signicat.com
community.signicat.com
id.signicat.com
bourne-status.wifinity.net
dev01.signicat.com
onboarding.dev.signicat.com
grafana.signicat.com
dev01.signicat.com
id.signicat.com
demo.signicat.com
*.dev.signicat.com
grafana.signicat.com
na.smart-integration.status.ricoh.com
developer.signicat.com
encap.signicat.com
candidatesrv.dev.signicat.com
qa.scid.signicat.com
express-dashboard.signicat.com
na.smart-integration.status.ricoh.com
encapserver.dev.signicat.com
microsoft-api-test.signicat.com
cert-manager-upgrade-test.internal.signicat.com
developer.signicat.com
encap.test.signicat.com
*.internal.signicat.com
qa.signicat.com
labs.signicat.com
customer.signicat.com
qa.scid.signicat.com
beta.developer.signicat.com
www.signicat.com
www-staging.signicat.com
customerportal.signicat.com
qa.signicat.com
grafana.signicat.com
api.signicat.com
external.signicat.com
Certificate
The complete raw certificate details for external.signicat.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF2zCCBMOgAwIBAgIKMJdDrZkhvHEkvDANBgkqhkiG9w0BAQsFADBLMQswCQYD VQQGEwJOTzEdMBsGA1UECgwUQnV5cGFzcyBBUy05ODMxNjMzMjcxHTAbBgNVBAMM FEJ1eXBhc3MgQ2xhc3MgMiBDQSAyMB4XDTE5MDQzMDA4MjUyOVoXDTIxMDQzMDIx NTkwMFowIDEeMBwGA1UEAwwVZXh0ZXJuYWwuc2lnbmljYXQuY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuLhtqKWLvkJyNTDDkI37C+yoBvoq+grp RWA3IAOWEF9yGHdma9IJM5xPsPNaS/E/a3LHI59+V/bSQFRhz3xB+zdI/JEXQaM5 Mz3aQY9jakJGxK2HJYQdtjNIibqFUBPaxRy4IEtAuYQu6Febqx6ylXLuKt4h90L1 m7LykmWaaUaNRKzOxq0a5zMIrrEchtT3BpP2xi8UjeLuFOcS+z+4WrWfjpuNCDO0 NeXGIdsSXANOMrgZUYTdfGSjxSVIPN7Qa/KuqDNoMPkuoHreNFNjqsDKXBEDGumO a/T1nLydUDhKeACaIHxUJRIUgeP3R2ovWlvttyMvgpIJBep2bsyk3wIDAQABo4IC 6jCCAuYwCQYDVR0TBAIwADAfBgNVHSMEGDAWgBSSrWWJsgAPy1ENwSPslE6PwQQ/ dzAdBgNVHQ4EFgQUIBTX9PT+y6tSk1mB0u6ndX/QE9swDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAfBgNVHSAEGDAWMAoGCGCE QgEaAQIEMAgGBmeBDAECATA6BgNVHR8EMzAxMC+gLaArhilodHRwOi8vY3JsLmJ1 eXBhc3Mubm8vY3JsL0JQQ2xhc3MyQ0EyLmNybDAgBgNVHREEGTAXghVleHRlcm5h bC5zaWduaWNhdC5jb20wagYIKwYBBQUHAQEEXjBcMCMGCCsGAQUFBzABhhdodHRw Oi8vb2NzcC5idXlwYXNzLmNvbTA1BggrBgEFBQcwAoYpaHR0cDovL2NydC5idXlw YXNzLm5vL2NydC9CUENsYXNzMkNBMi5jZXIwggF9BgorBgEEAdZ5AgQCBIIBbQSC AWkBZwB2ALvZ37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABam1ZUf8A AAQDAEcwRQIgC+ACA2+0H1l+3XeJoJYumWT8W5HsG80x0WppdThwsL0CIQDWVbpq yvheoC+rn+xR6z4eLmmVa2d0eMDs6pNLBOhRIgB2AKS5CZC0GFgUh7sTosxncAo8 NZgE+RvfuON3zQ7IDdwQAAABam1ZUgAAAAQDAEcwRQIgIukrajJ5yuwldbn0Tzti P6yv3iX3DI4SYH0YZ8JuHFQCIQD0bVkMRUYEI4Gqg9tIHch7+1pCJTBjkfG6sL2N YxFImgB1AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABam1ZUuQA AAQDAEYwRAIgPQknJ5Hq7HA33L4WWoDW2XjhrUhT+NPCRORIHSKbe3oCIBw6TuDY 7qFlkPdlJhXFfyHN3XsQeOeO88jCRVO1RrmFMA0GCSqGSIb3DQEBCwUAA4IBAQBl r8ZUcleRUUYNQEcS06aVVQMylopSeo5mC7VZpyC3Gfx40jEVjv2mDUciarMRlQNp qOlK5YSUo9Qzqiim43zqiYFVO5P5oE5M5Keu2Sf4UtuhKC0fnPyuP0cIAyQHncQd fk4vPGhPPHFfSBtdXJz78ejmsRKroW0Euw2HKoz2P6XeXTRCDN7EWPEF/dVfeiB8 XSiQqLs1axgXmm5zDLs+hK0QSDv0wHhhvl4enauPsVLO+HYb9vDBZ/LCKH7pMQTh FSorhF/SFIrpvXAKSbuGpuS2NMxOR5zw8kt2/g2089eYr8mUSuj4OZpaKvMC4p6e dGGiiJSpksdh6i2Fc9wc -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuLhtqKWLvkJyNTDDkI37 C+yoBvoq+grpRWA3IAOWEF9yGHdma9IJM5xPsPNaS/E/a3LHI59+V/bSQFRhz3xB +zdI/JEXQaM5Mz3aQY9jakJGxK2HJYQdtjNIibqFUBPaxRy4IEtAuYQu6Febqx6y lXLuKt4h90L1m7LykmWaaUaNRKzOxq0a5zMIrrEchtT3BpP2xi8UjeLuFOcS+z+4 WrWfjpuNCDO0NeXGIdsSXANOMrgZUYTdfGSjxSVIPN7Qa/KuqDNoMPkuoHreNFNj qsDKXBEDGumOa/T1nLydUDhKeACaIHxUJRIUgeP3R2ovWlvttyMvgpIJBep2bsyk 3wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 229463926255214799168700 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NO' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Buypass AS-983163327' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Buypass Class 2 CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-30 08:25:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-30 21:59:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'external.signicat.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23318793124972008284357690199437655904209883982532605038788597265797907250408324363582727666780034858320838673324243870704819279009041021174943894998935142244446945477780266766354386559239185752269514766827742687334950981311616495785724628144995395176920955010478027818652532042233026845589430945552013772613878925812920712641763602968235276905834799817433844610662782909151060604999150047669972689368897224734270667830507878291342092948995247131902322536805904066658750074667807010978851425214681344218094449441884316815238397069999519381830290411093475431162167780338286164588568030810052662419816910936851830580447 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 92ad6589b2000fcb510dc123ec944e8fc1043f77 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2014d7f4f4fecbab52935981d2eea7757fd013db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.578.1.26.1.2.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.buypass.no/crl/BPClass2CA2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'external.signicat.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.buypass.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.buypass.no/crt/BPClass2CA2.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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