adfs.o365.suni.se
- Södertörns högskola -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 04:e0:43:31:23:a7:09:e6:c6:79:0a:a1:15:ad:bd:03 was issued on by TERENA.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Södertörns högskola
Organization:
Södertörns högskola
Locality:
Huddinge
Country: SE
Country: SE
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 04:e0:43:31:23:a7:09:e6:c6:79:0a:a1:15:ad:bd:03Serial Number (int): 6481349294108785455250683004564913411
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: f5:4b:7c:3f:11:8e:67:ce:55:db:97:af:63:cb:8c:47:c6:40:3a:a8
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): 0f:9f:f4:d1:d6:f7:4a:78:2d:cc:80:c9:a3:3d:fc:af:e8:6b:e0:04
Fingerprint (sha256): 1e:c7:ff:a4:47:e6:38:69:3b:3c:d3:68:56:05:dd:c0:84:5e:3a:f1:6b:87:11:e7:f1:bd:ce:12:a2:22:2a:53
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate adfs.o365.suni.se
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for adfs.o365.suni.se
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
adfs.o365.suni.se
Other certificates including the domain name suni.se
(limited to 100 certificates)
elnath.lab.suni.se
dubhe.suni.se
adldap.suni.se
s167_224CG.suni.se
dubhe.suni.se
adfs.o365.suni.se
izar.suni.se
altarf.suni.se
azha.suni.se
shguestkonto.suni.se
terebellum.suni.se
Zhang.suni.se
dubhe.suni.se
connect2.suni.se
portal.suni.se
apputv.sh.se
adfs.o365.suni.se
phad.suni.se
salm.suni.se
adfs.o365.suni.se
dubhe.suni.se
idp-v2.suni.se
altarf.suni.se
muliphen.suni.se
turais.suni.se
azha.suni.se
idp.suni.se
dsiban.suni.se
arrakis.suni.se
nekkar.suni.se
idp-test.suni.se
zosma.suni.se
idp-v2.suni.se
idp-v2.suni.se
azha.suni.se
arrakis.suni.se
arrakis.suni.se
idp-v2.suni.se
dschubba.suni.se
dubhe.suni.se
arrakis.suni.se
adfs.o365.suni.se
idp-test.suni.se
dubhe.suni.se
Kang.suni.se
connect2.suni.se
Fang.suni.se
apptest.sh.se
idp-test.suni.se
view.suni.se
shguestkonto.suni.se
hadar.suni.se
dubhe.suni.se
adldap.suni.se
s167_224CG.suni.se
dubhe.suni.se
adfs.o365.suni.se
izar.suni.se
altarf.suni.se
azha.suni.se
shguestkonto.suni.se
terebellum.suni.se
Zhang.suni.se
dubhe.suni.se
connect2.suni.se
portal.suni.se
apputv.sh.se
adfs.o365.suni.se
phad.suni.se
salm.suni.se
adfs.o365.suni.se
dubhe.suni.se
idp-v2.suni.se
altarf.suni.se
muliphen.suni.se
turais.suni.se
azha.suni.se
idp.suni.se
dsiban.suni.se
arrakis.suni.se
nekkar.suni.se
idp-test.suni.se
zosma.suni.se
idp-v2.suni.se
idp-v2.suni.se
azha.suni.se
arrakis.suni.se
arrakis.suni.se
idp-v2.suni.se
dschubba.suni.se
dubhe.suni.se
arrakis.suni.se
adfs.o365.suni.se
idp-test.suni.se
dubhe.suni.se
Kang.suni.se
connect2.suni.se
Fang.suni.se
apptest.sh.se
idp-test.suni.se
view.suni.se
shguestkonto.suni.se
hadar.suni.se
Certificate
The complete raw certificate details for adfs.o365.suni.se in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGmjCCBYKgAwIBAgIQBOBDMSOnCebGeQqhFa29AzANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xOTAzMTIwMDAwMDBaFw0yMTAzMTYxMjAwMDBaMF0xCzAJBgNVBAYT AlNFMREwDwYDVQQHEwhIdWRkaW5nZTEfMB0GA1UECgwWU8O2ZGVydMO2cm5zIGjD tmdza29sYTEaMBgGA1UEAxMRYWRmcy5vMzY1LnN1bmkuc2UwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDcjbAwHzSyFEdTSkwhsnTd3tGT0h8UbwYGClqX j9Qygye+CNwfEVXsrE8Iu+o73m2IclFv726+8t3FRvfjkRFZ51zlxeJll7gBWb5d HGZvhK2WqDC/EUUOuMoDjJ/KKhdyyoFJOssiMh24aFAATDK/yIwUPBajVOOpNP8h d/O0LgZpozggCYz4GJCqH7F/n3WkmEWVVpqwU1OYkFPvZcC+A3h7rvOdbrxe8IFt KPrAezk/20BfCajNXYT9qAhzgE7dLVU6qt7kyRKpz16BmjOIqeVDBNjEsKl4u37Z 3uenJI47vxrEdFODWHeCEvUd18Jo6rb2G7gqw1Ylnd2s80WRAgMBAAGjggNNMIID STAfBgNVHSMEGDAWgBRn/YggFCeYxwnSJRm76VERY3VQYjAdBgNVHQ4EFgQU9Ut8 PxGOZ85V25evY8uMR8ZAOqgwHAYDVR0RBBUwE4IRYWRmcy5vMzY1LnN1bmkuc2Uw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBr BgNVHR8EZDBiMC+gLaArhilodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vVEVSRU5B U1NMQ0EzLmNybDAvoC2gK4YpaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL1RFUkVO QVNTTENBMy5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcC ARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwbgYIKwYB BQUHAQEEYjBgMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20w OAYIKwYBBQUHMAKGLGh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9URVJFTkFT U0xDQTMuY3J0MAwGA1UdEwEB/wQCMAAwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsB aQB3ALvZ37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABaXINLjMAAAQD AEgwRgIhAJl6eEFEZfufqVHOAySKvxEHVJl1hkSRsAf0PL1/qyA8AiEAwWe/kpBw LqsABvDlHGOwL6zPoeMN5Xoh4fmNBqtcPlgAdwCHdb/nWXz4jEOZX73zbv9WjUdW Nv9KtWDBtOr/XqCDDwAAAWlyDS92AAAEAwBIMEYCIQDzEHzovfRq72ZXFsIbxQEf kmCSoGlIqIXPpkl2A9vtuAIhAL/AhGR3jLodV5/G7DukHcflr+bvBOgsUGBqWU1H iOg9AHUARJRlLrDuzq/EQAfYqP4owNrmgr7YyzG1P9MzlrW2gagAAAFpcg0uOQAA BAMARjBEAiB6hIMrlppCZ04Lnk44nTHPgqdjVpexsn08NuyzMjwtWAIge9C799Up xOz2Pm2l/gr0xOaI0U6u1egDWKEzAleUVuwwDQYJKoZIhvcNAQELBQADggEBAGlq nXf/tAgvRGcia4BsXVFNbF8CbvjwrCZ4QscRRv08FMGzt5RKrSPoUjMo6nwCm5vU HCZU2J8iwy6LXtHl9mERDAQY5SNpqDOGDcDodTtPzk0mHWwHnZpT+VuWuED+Pxs8 EQYMoMsozhll4aFliNwqy/oA0WncKGrNhK6B2omZnAsfDSK8HGlduc6gguMvMDsL yfEHeU19VfDpJhRQVqg1+aL//QcyUbJF8A8CXy59vFlJ/loGM9LKDCXnuSVbuaik COfM3YqMlR5xFC6YV+pOXp6JkjuQKHS2W64SLH7xZO5Zty7czodEG6cThSD5UiOK AEDqHj3ocBD/XxmcRwo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3I2wMB80shRHU0pMIbJ0 3d7Rk9IfFG8GBgpal4/UMoMnvgjcHxFV7KxPCLvqO95tiHJRb+9uvvLdxUb345ER Wedc5cXiZZe4AVm+XRxmb4StlqgwvxFFDrjKA4yfyioXcsqBSTrLIjIduGhQAEwy v8iMFDwWo1TjqTT/IXfztC4GaaM4IAmM+BiQqh+xf591pJhFlVaasFNTmJBT72XA vgN4e67znW68XvCBbSj6wHs5P9tAXwmozV2E/agIc4BO3S1VOqre5MkSqc9egZoz iKnlQwTYxLCpeLt+2d7npySOO78axHRTg1h3ghL1HdfCaOq29hu4KsNWJZ3drPNF kQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6481349294108785455250683004564913411 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-16 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Huddinge' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Södertörns högskola' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'adfs.o365.suni.se' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27842296164913285014554993182970178691014296986455176567270930441794784000194999520650065531889064132102138080817676713546548117838601456176646853333206461794802110605427956696710145932713786369930260419769930275337814853289926349063593882385232961848607109784028998691345549904876652819033027210390681770354922558331109854240501062472072198213871306148587642018434365168652301457832536621854092432923635892024595692258895226538599510652442614177417804781878323261252777653418341735089616825898910473293193259741013258537707877669696606288013327461670468936536662754373062787548869799540075078195728785290295933879697 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f54b7c3f118e67ce55db97af63cb8c47c6403aa8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfs.o365.suni.se' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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