prpn.bankleumi.co.il
- Bank Leumi le-Israel Ltd -
Issued by thawte SSL CA - G2
About this certificate
This digital certificate with serial number 7f:41:2a:29:ed:71:20:d3:66:59:f2:4b:bf:98:48:9a was issued on by thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Bank Leumi le-Israel Ltd
Organization:
Bank Leumi le-Israel Ltd
State / Province:
Israel
Locality: Tel Aviv-Jaffa
Country: IL
Locality: Tel Aviv-Jaffa
Country: IL
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 7f:41:2a:29:ed:71:20:d3:66:59:f2:4b:bf:98:48:9aSerial Number (int): 169150309943531807070274504074682976410
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60
Fingerprint (sha1): 45:19:b0:38:11:37:06:26:d7:94:06:7f:f2:1f:33:a8:f3:7d:ce:25
Fingerprint (sha256): 1f:5b:35:5d:1c:25:31:ba:3e:96:46:79:0c:c1:ad:4b:76:3e:e0:86:c1:4e:c5:d0:79:e4:39:d4:26:42:cc:c9
Issuing Certificate URL: http://tj.symcb.com/tj.crt
Revocation information
OCSP Server: http://tj.symcd.comCRL Distribution Point: http://tj.symcb.com/tj.crl
Check the revocation status for certificate prpn.bankleumi.co.il
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for prpn.bankleumi.co.il
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
prpn.bankleumi.co.il
Other certificates including the domain name bankleumi.co.il
(limited to 100 certificates)
hb5wap.bankleumi.co.il
accessibility.bankleumi.co.il
widget.bankleumi.co.il
streamer.bankleumi.co.il
incomingcredit.bankleumi.co.il
akamai-san17.exacttarget.com
hb2.bankleumi.co.il
livenesshb3.bankleumi.co.il
lti-content.bankleumi.co.il
ufapi.bankleumi.co.il
liveness.bankleumi.co.il
akamai-san17.exacttarget.com
leumiservices-msr.bankleumi.co.il
incomingcredit5.bankleumi.co.il
lfxt.bankleumi.co.il
mobile.bankleumi.co.il
akamai-san17.exacttarget.com
forms-stg.bankleumi.co.il
mft.bankleumi.co.il
cellular.bankleumi.co.il
sdc.bankleumi.co.il
cache.bankleumi.co.il
accessibilitys.bankleumi.co.il
appdynlib.bankleumi.co.il
www.bankleumi.co.il
exp2.bankleumi.co.il
lyncweb.bankleumi.co.il
tradair.bankleumi.co.il
encmail.bankleumi.co.il
accessibilitys.bankleumi.co.il
ufapihb3.bankleumi.co.il
securemail.bankleumi.co.il
cache.bankleumi.co.il
sa5.bankleumi.co.il
*.bankleumi.co.il
cloud.digital.bankleumi.co.il
accessibilitys.bankleumi.co.il
Securemail.bankleumi.co.il
sa3.bankleumi.co.il
cellulardlv.bankleumi.co.il
prpn.bankleumi.co.il
apiportal.bankleumi.co.il
accessibility.bankleumi.co.il
streamer.bankleumi.co.il
hb3wap.bankleumi.co.il
akamai-san17.exacttarget.com
securemail.bankleumi.co.il
securemail.bankleumi.co.il
www.bankleumi.co.il
accessibility.bankleumi.co.il
access.bankleumi.co.il
hb5wap.bankleumi.co.il
prodapi.bankleumi.co.il
leumiservices.bankleumi.co.il
trade.bankleumi.co.il
e-learning.bankleumi.co.il
liveness.bankleumi.co.il
e-learning.bankleumi.co.il
sdc.bankleumi.co.il
widget.bankleumi.co.il
lfxt.bankleumi.co.il
hbwaptest.bankleumi.co.il
service-stg7.bankleumi.co.il
hb3wap.bankleumi.co.il
cache.bankleumi.co.il
e-learning.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
e-learning.bankleumi.co.il
sa5.bankleumi.co.il
trade.bankleumi.co.il
hb2.bankleumi.co.il
apidev.bankleumi.co.il
access.bankleumi.co.il
sdc.bankleumi.co.il
apidev.bankleumi.co.il
oobstg.bankleumi.co.il
service.bankleumi.co.il
video.bankleumi.co.il
lfxt.bankleumi.co.il
appdynlib.bankleumi.co.il
hb2.bankleumi.co.il
encmail.bankleumi.co.il
sa3.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
lyncweb.bankleumi.co.il
widget.bankleumi.co.il
help.bankleumi.co.il
ufapi.bankleumi.co.il
cache.bankleumi.co.il
akamai-san17.exacttarget.com
oob.bankleumi.co.il
ufapi.bankleumi.co.il
apitest.bankleumi.co.il
appdynlib.bankleumi.co.il
access.bankleumi.co.il
streamer.bankleumi.co.il
ocrhb3.bankleumi.co.il
hb2.bankleumi.co.il
ufapihb1.bankleumi.co.il
mobile.bankleumi.co.il
accessibility.bankleumi.co.il
widget.bankleumi.co.il
streamer.bankleumi.co.il
incomingcredit.bankleumi.co.il
akamai-san17.exacttarget.com
hb2.bankleumi.co.il
livenesshb3.bankleumi.co.il
lti-content.bankleumi.co.il
ufapi.bankleumi.co.il
liveness.bankleumi.co.il
akamai-san17.exacttarget.com
leumiservices-msr.bankleumi.co.il
incomingcredit5.bankleumi.co.il
lfxt.bankleumi.co.il
mobile.bankleumi.co.il
akamai-san17.exacttarget.com
forms-stg.bankleumi.co.il
mft.bankleumi.co.il
cellular.bankleumi.co.il
sdc.bankleumi.co.il
cache.bankleumi.co.il
accessibilitys.bankleumi.co.il
appdynlib.bankleumi.co.il
www.bankleumi.co.il
exp2.bankleumi.co.il
lyncweb.bankleumi.co.il
tradair.bankleumi.co.il
encmail.bankleumi.co.il
accessibilitys.bankleumi.co.il
ufapihb3.bankleumi.co.il
securemail.bankleumi.co.il
cache.bankleumi.co.il
sa5.bankleumi.co.il
*.bankleumi.co.il
cloud.digital.bankleumi.co.il
accessibilitys.bankleumi.co.il
Securemail.bankleumi.co.il
sa3.bankleumi.co.il
cellulardlv.bankleumi.co.il
prpn.bankleumi.co.il
apiportal.bankleumi.co.il
accessibility.bankleumi.co.il
streamer.bankleumi.co.il
hb3wap.bankleumi.co.il
akamai-san17.exacttarget.com
securemail.bankleumi.co.il
securemail.bankleumi.co.il
www.bankleumi.co.il
accessibility.bankleumi.co.il
access.bankleumi.co.il
hb5wap.bankleumi.co.il
prodapi.bankleumi.co.il
leumiservices.bankleumi.co.il
trade.bankleumi.co.il
e-learning.bankleumi.co.il
liveness.bankleumi.co.il
e-learning.bankleumi.co.il
sdc.bankleumi.co.il
widget.bankleumi.co.il
lfxt.bankleumi.co.il
hbwaptest.bankleumi.co.il
service-stg7.bankleumi.co.il
hb3wap.bankleumi.co.il
cache.bankleumi.co.il
e-learning.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
e-learning.bankleumi.co.il
sa5.bankleumi.co.il
trade.bankleumi.co.il
hb2.bankleumi.co.il
apidev.bankleumi.co.il
access.bankleumi.co.il
sdc.bankleumi.co.il
apidev.bankleumi.co.il
oobstg.bankleumi.co.il
service.bankleumi.co.il
video.bankleumi.co.il
lfxt.bankleumi.co.il
appdynlib.bankleumi.co.il
hb2.bankleumi.co.il
encmail.bankleumi.co.il
sa3.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
lyncweb.bankleumi.co.il
widget.bankleumi.co.il
help.bankleumi.co.il
ufapi.bankleumi.co.il
cache.bankleumi.co.il
akamai-san17.exacttarget.com
oob.bankleumi.co.il
ufapi.bankleumi.co.il
apitest.bankleumi.co.il
appdynlib.bankleumi.co.il
access.bankleumi.co.il
streamer.bankleumi.co.il
ocrhb3.bankleumi.co.il
hb2.bankleumi.co.il
ufapihb1.bankleumi.co.il
mobile.bankleumi.co.il
Certificate
The complete raw certificate details for prpn.bankleumi.co.il in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIQf0EqKe1xINNmWfJLv5hImjANBgkqhkiG9w0BAQsFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMRswGQYDVQQDExJ0 aGF3dGUgU1NMIENBIC0gRzIwHhcNMTYwNTAxMDAwMDAwWhcNMTkwNTAxMjM1OTU5 WjB5MQswCQYDVQQGEwJJTDEPMA0GA1UECAwGSXNyYWVsMRcwFQYDVQQHDA5UZWwg QXZpdi1KYWZmYTEhMB8GA1UECgwYQmFuayBMZXVtaSBsZS1Jc3JhZWwgTHRkMR0w GwYDVQQDDBRwcnBuLmJhbmtsZXVtaS5jby5pbDCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJw0Of/ZoCGc6AHwKxfyP+8zwyEpEfRsA69qaXOyL3mAbSIG mIgB5KUS1Ys/EvcvZWgbmKrkUxgdqP15AedjA7SBigg0H5WMaicbORxKKVggX+qO /ZvPsUHS9NU4fsQfyY3V2Uc9SFm2vcL3o8I6pB0rguQ+dKBvpANOv7yRWAbwMziE woJWpukuYzTMsW9Vt5wnSHxviJ4ezcVKNCSHndeCyyNHaFqhopWvyI3M6me0IV7P yHOsI91nDsSWw8k99n3qkA52m9CzfaSm6eipoXdt4toqS8aweheM6kLd9cwE9nHb cvKdq/CktKa1WO5CJV+RwUTqEncWV5ZRrsQqe90CAwEAAaOCAYswggGHMB8GA1Ud EQQYMBaCFHBycG4uYmFua2xldW1pLmNvLmlsMAkGA1UdEwQCMAAwbgYDVR0gBGcw ZTBjBgZngQwBAgIwWTAmBggrBgEFBQcCARYaaHR0cHM6Ly93d3cudGhhd3RlLmNv bS9jcHMwLwYIKwYBBQUHAgIwIwwhaHR0cHM6Ly93d3cudGhhd3RlLmNvbS9yZXBv c2l0b3J5MA4GA1UdDwEB/wQEAwIFoDAfBgNVHSMEGDAWgBTCT0hX/NFPmsBdOH0O BdvZLrVSYDArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vdGouc3ltY2IuY29tL3Rq LmNybDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwVwYIKwYBBQUHAQEE SzBJMB8GCCsGAQUFBzABhhNodHRwOi8vdGouc3ltY2QuY29tMCYGCCsGAQUFBzAC hhpodHRwOi8vdGouc3ltY2IuY29tL3RqLmNydDATBgorBgEEAdZ5AgQDAQH/BAIF ADANBgkqhkiG9w0BAQsFAAOCAQEANPDr2HkzrIQlWJAw71rOEIqrkwmxdxIk/+qS zmLKeKoSACy3/9/YVe5AF3BSeZrW+jSPfGEEnXrIlW0M6ADX8gnP1K9XZbSIsvaJ X1a2a1/4GX/2R50qQiL6Ww2/6/zRqh+qAXbLFdihORT4FNV7ETKxDnVi0DPqhcX+ glPgCBO1vDpHBDip6jbhhHKlyB5b0Ur6V0+T9kQgLteL3MQsAVLJuOVzk45Fv1E8 fI5eqff2F9mtWemONRAHoBXu+NT4i0ABYbd4e70M6Ggo7igHd9AVZk9Veg6oT8Qz 402m5GvzkauFMTmXq9P3rCo/1pb26RVkge8XRaZT8913p88WRQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDQ5/9mgIZzoAfArF/I/ 7zPDISkR9GwDr2ppc7IveYBtIgaYiAHkpRLViz8S9y9laBuYquRTGB2o/XkB52MD tIGKCDQflYxqJxs5HEopWCBf6o79m8+xQdL01Th+xB/JjdXZRz1IWba9wvejwjqk HSuC5D50oG+kA06/vJFYBvAzOITCglam6S5jNMyxb1W3nCdIfG+Inh7NxUo0JIed 14LLI0doWqGila/IjczqZ7QhXs/Ic6wj3WcOxJbDyT32feqQDnab0LN9pKbp6Kmh d23i2ipLxrB6F4zqQt31zAT2cdty8p2r8KS0prVY7kIlX5HBROoSdxZXllGuxCp7 3QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 169150309943531807070274504074682976410 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Israel' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Tel Aviv-Jaffa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bank Leumi le-Israel Ltd' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'prpn.bankleumi.co.il' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19718929451406158120306520886630325647863981027192459496352306143120012233493465811034018127544137445250800115951053212725912692453082383304965577404680184562076660929842856099387068396561445697826775154743181517670153637486057515091208743741196257304929617995499935357172423997262140936231357497828939351332112258276417843678873898800824754413449872234752347405178948517439688148658397372211581432515044365836053397018527651022055460125530308049132971052550358807431732713166698340313553925420080546340701768253855164055376307991428633835323101927505149244461990310714333717388322593664683315293081865388884235025373 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prpn.bankleumi.co.il' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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