crmapipr.visionrt.com
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 0b:bf:f8:9d:5b:7b:d6:c6:86:17:0d:52:b9:f1:20:2c was issued on by DigiCert, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=crmapipr.visionrt.com
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:bf:f8:9d:5b:7b:d6:c6:86:17:0d:52:b9:f1:20:2cSerial Number (int): 15618279158330295050857211082199605292
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c1:ce:c3:24:8d:8d:e8:df:72:f9:c3:6e:94:87:7b:5e:da:86:54:0e
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): 32:6a:4f:c0:2d:52:fe:97:67:65:91:0a:cf:ff:96:75:09:2a:c5:2d
Fingerprint (sha256): 21:9f:c4:d1:ff:b4:23:a5:a3:b1:9b:a5:50:ae:b4:e1:fd:6f:0b:82:63:98:54:00:1d:2e:49:ce:07:01:cd:9c
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate crmapipr.visionrt.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for crmapipr.visionrt.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
crmapipr.visionrt.com
Other certificates including the domain name visionrt.com
(limited to 100 certificates)
azure-crmsupportliveprevious.visionrt.com
ithelp.visionrt.com
crmapipr.visionrt.com
azure-crmtest.visionrt.com
ithelp.visionrt.com
visionrt.com
azure-crmsupportpr.visionrt.com
azure-autocrmsupporttest.visionrt.com
azure-crmduolive.visionrt.com
sni11c16gl.wpc.edgecastcdn.net
exchange.visionrt.com
sni11c18gl.wpc.edgecastcdn.net
visionrt.com
visionrt.com
*.visionrt.com
sni1a5cegl.wpc.edgecastcdn.net
azure-crmsupporttest.visionrt.com
azure-crmportaltest.visionrt.com
azure-autocrmduotest.visionrt.com
visionrt.com
*.visionrt.com
*.visionrt.com
visionrt.com
azure-crmliveprevious.visionrt.com
azure-crmduotest.visionrt.com
sni1a5d0gl.wpc.edgecastcdn.net
sni11c14gl.wpc.edgecastcdn.net
azure-crmcustomerportaltest.visionrt.com
visionrt.com
apps.visionrt.com
azure-autocrmportaltest.visionrt.com
azure-crmapitestprevious.visionrt.com
*.visionrt.com
ithelp.visionrt.com
crmapipr.visionrt.com
azure-crmtest.visionrt.com
ithelp.visionrt.com
visionrt.com
azure-crmsupportpr.visionrt.com
azure-autocrmsupporttest.visionrt.com
azure-crmduolive.visionrt.com
sni11c16gl.wpc.edgecastcdn.net
exchange.visionrt.com
sni11c18gl.wpc.edgecastcdn.net
visionrt.com
visionrt.com
*.visionrt.com
sni1a5cegl.wpc.edgecastcdn.net
azure-crmsupporttest.visionrt.com
azure-crmportaltest.visionrt.com
azure-autocrmduotest.visionrt.com
visionrt.com
*.visionrt.com
*.visionrt.com
visionrt.com
azure-crmliveprevious.visionrt.com
azure-crmduotest.visionrt.com
sni1a5d0gl.wpc.edgecastcdn.net
sni11c14gl.wpc.edgecastcdn.net
azure-crmcustomerportaltest.visionrt.com
visionrt.com
apps.visionrt.com
azure-autocrmportaltest.visionrt.com
azure-crmapitestprevious.visionrt.com
*.visionrt.com
Certificate
The complete raw certificate details for crmapipr.visionrt.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHmTCCBYGgAwIBAgIQC7/4nVt71saGFw1SufEgLDANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjMxMjA4MDAwMDAwWhcNMjQwNjA4MjM1OTU5WjAgMR4wHAYDVQQDExVjcm1hcGlw ci52aXNpb25ydC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb 1SoRNJ7PkHHlcsSdiUpPEfx11pn1JyRvQJDkNDA3wRNJga+zgZz1F3rvdkB5Fax7 DYeBnESzFzxfVQmXCEt8oJLrN0Qz428/Vv498bPL0hU9zP6dGMb/JVFeYAQ3oTlk Z8Qbc5NGIKFc+cWZlDNV+IPO2nhK45hHcBCCG2qjMKR3i4qBXkPP2iTwRBgZyBop hczl2BfXz4N52JP/9owx4LASdT5uBOv+d9o+H1SgetH64wcK0EiZzqoL2POx2zom p3jGm50oqyn5MIN72X3n58qKDdOi+zVHlHhAGmUI3UlIlqeZEa4c24U7S4wZGMA6 YP5o3aYUVq5bph5WFUydAgMBAAGjggORMIIDjTAfBgNVHSMEGDAWgBSltNbrNsTn a6bfxGQLASogBLhmIzAdBgNVHQ4EFgQUwc7DJI2N6N9y+cNulId7XtqGVA4wIAYD VR0RBBkwF4IVY3JtYXBpcHIudmlzaW9ucnQuY29tMD4GA1UdIAQ3MDUwMwYGZ4EM AQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGf BgNVHR8EgZcwgZQwSKBGoESGQmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9HZW9U cnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNybDBIoEagRIZCaHR0 cDovL2NybDQuZGlnaWNlcnQuY29tL0dlb1RydXN0R2xvYmFsVExTUlNBNDA5NlNI QTI1NjIwMjJDQTEuY3JsMIGHBggrBgEFBQcBAQR7MHkwJAYIKwYBBQUHMAGGGGh0 dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBRBggrBgEFBQcwAoZFaHR0cDovL2NhY2Vy dHMuZGlnaWNlcnQuY29tL0dlb1RydXN0R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIw MjJDQTEuY3J0MAwGA1UdEwEB/wQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoB aAB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjErpkkEAAAQD AEcwRQIhAMQ3bTjUGFbykb8w5sq+96JSQG0DOAkkckN0ekKRPy48AiBOA5rvJlae +wb9beG+JqBeqdRPtrI1fy4/7FKaKhocQQB3AEiw42vapkc0D+VqAvqdMOscUgHL Vt0sgdm7v6s52IRzAAABjErpkmIAAAQDAEgwRgIhALMrvTiYdVH0n/y6ngUpJ6ew wZNj0nh5/+VO24uLnfgfAiEAk6m2cksA3tf3ROqZ3wELeLoQJf81AvPoACz0llZN t0UAdQDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYxK6ZJDAAAE AwBGMEQCIFB3utXMD3+8P+xADJmBzMnj/feyLskLbIXRZC4SeHlnAiA9w0BJ5qLv LXxdU7g8qUbNa6V6bbklzSgOd7voKtpubTANBgkqhkiG9w0BAQsFAAOCAgEAWQB1 d9OoKieW9C1Xn2bSqNDrLIqe3JfhzhHeX67ZwYzE50QczHUAPfMNF1iNA8m5/dK2 y0xEzjWPC8FAi90/lU7kUpkH0p4cLJxzaBkYO2MMSTxhZnUAaslyZhy/TQuHactS JE2vPehq6SbR1brm7kaQPQ13QRZdgRkKvX2qdYKCFFDEpeWOJ3goUHUSyWGVlwYm afdiPVPOktzpMh1RSA4HI4sjlvNCeHKb78M1Sai57tF9/JA6HV1LG1dkAKVWmC8G +OUmPGnv5amzOBDB4YaTq6KDHD6tS/nOfYeGo8+Lp8+hI+VoI85daexjF8wDjo+z 8AeCOmIFuODuBRTaNHm8l1QELKuwCQRzey6EzaU7YTYFSJ4KY2eMkCSPV8Nx8oNU NTdyOOmag1XN3fBhXsjJTqRrvl62XY10JATHxiz+rFAu1XroA/fVjwwMe9ISXwlQ dIA09YvAw1XfgUd9B3aIN8ZbPNQZs6ZTd5OA4pUZJFdxEtbwjnpphWzC8kfqaGvQ 0/UCThzjaaRKW+EaR4J7RNTBrk6UmVlD+bfUc2YbaL8Ub2EM8MpCag+V/M/T31HM y9SGui4nDBonkzuLXgc/BeNRA+0VYN/yfqeiDGl8nkm+/x6ZvDYGA1ZORkLZfT6e S0PQ4gDhUywTw6JHJaINsjeYd10bu3t4prP87O8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29UqETSez5Bx5XLEnYlK TxH8ddaZ9Sckb0CQ5DQwN8ETSYGvs4Gc9Rd673ZAeRWsew2HgZxEsxc8X1UJlwhL fKCS6zdEM+NvP1b+PfGzy9IVPcz+nRjG/yVRXmAEN6E5ZGfEG3OTRiChXPnFmZQz VfiDztp4SuOYR3AQghtqozCkd4uKgV5Dz9ok8EQYGcgaKYXM5dgX18+DediT//aM MeCwEnU+bgTr/nfaPh9UoHrR+uMHCtBImc6qC9jzsds6Jqd4xpudKKsp+TCDe9l9 5+fKig3Tovs1R5R4QBplCN1JSJanmRGuHNuFO0uMGRjAOmD+aN2mFFauW6YeVhVM nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15618279158330295050857211082199605292 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-08 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'crmapipr.visionrt.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27751304033940890448559878030011751276805152281188320145783535008111292791706558442029136897643191069525119502578864521278927875925829947655405087114555729248111839644375888136007812171037666600969040663329962160510419720391783268119974395957043725173831655047131761901950298286931566330997949650139879480527975392864141338195660384897018448696519770137358609551126162577601260659206621232136111571816861214346803535610867605864629588503902218308272564183201995396944097241863992377672350771604157991934114463692768424146116925892886270712686814904288319111022453657668145175446968629920827324272278010597508765797533 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c1cec3248d8de8df72f9c36e94877b5eda86540e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'crmapipr.visionrt.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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