*.tietoevry.com
- Tietoevry Oyj -
Issued by Thawte TLS RSA CA G1
About this certificate
This digital certificate with serial number 02:71:9c:ca:6d:dd:25:98:93:ea:b2:1f:d8:7b:55:4e was issued on by DigiCert Inc.
With 14 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Tietoevry Oyj
Organization:
Tietoevry Oyj
Locality:
ESPOO
Country: FI
Country: FI
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 02:71:9c:ca:6d:dd:25:98:93:ea:b2:1f:d8:7b:55:4eSerial Number (int): 3248365630572481028598828110148490574
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 7f:7e:8a:67:8e:99:21:b0:5b:09:d8:47:3a:d2:db:90:03:e7:b4:a1
AuthorityKeyId: a5:8c:fe:32:cc:eb:0f:2c:d4:19:c6:08:b8:00:24:88:5d:c3:c5:b7
Fingerprint (sha1): a6:4b:33:72:8b:97:16:74:53:6c:b7:61:86:90:93:94:e2:61:94:7e
Fingerprint (sha256): 23:2f:6c:ab:66:44:44:fb:21:9c:a3:48:76:fc:fa:97:39:dd:aa:dd:2a:bb:40:0d:71:c4:62:42:2b:da:31:f1
Issuing Certificate URL: http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteTLSRSACAG1.crl
Check the revocation status for certificate *.tietoevry.com
14
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.tietoevry.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.tietoevry.com
*.tieto.com
*.konts.lv
*.intra.tieto.com
*.mytime.tieto.com
*.portal.tieto.com
*.poland.tieto.com
*.int.tieto.com
*.eu.tieto.com
*.ap.tieto.com
*.service.tieto.com
*.tds.tieto.com
*.evry.com
*.sharepoint.evry.cloud
*.tieto.com
*.konts.lv
*.intra.tieto.com
*.mytime.tieto.com
*.portal.tieto.com
*.poland.tieto.com
*.int.tieto.com
*.eu.tieto.com
*.ap.tieto.com
*.service.tieto.com
*.tds.tieto.com
*.evry.com
*.sharepoint.evry.cloud
Other certificates including the domain name tietoevry.com
(limited to 100 certificates)
analytics.service.tieto.com
traefik.nextgendevops.tietoevry.com
backoffice-company.main.bauid.tietoevry.com
*.jpproject1.dev.devops.tietoevry.com
dashboard.nextgendevops.tietoevry.com
minio.chronos.tietoevry.com
apm.tietoevry.com
pile-turner.ci.chronos.tietoevry.com
*.tds-mvp18.dev.devops.tietoevry.com
chat-preview.tietoevry.com
test2.chronos.tietoevry.com
credit.api.tietoevry.com
apps.pasfin-qa.energydev.tietoevry.com
identity.bauid.tietoevry.com
live.experimental.chronos.tietoevry.com
sni.cloudflaressl.com
brand.tietoevry.com
*.test-api-test.stage.devops.tietoevry.com
temperature-store.security.nextgendevops.tietoevry.com
oneportal.tietoevry.com
message.tietoevry.com
*.petovsam.dev.devops.tietoevry.com
rancher.bauid.tietoevry.com
pile-turner.ci.stable.chronos.tietoevry.com
bix.tietoevry.com
se.wpa.tietoevry.com
cas.tietoevry.com
pile-turner.demo3.chronos.tietoevry.com
jenkinsdemo.nextgendevops.tietoevry.com
*.jkproject.dev.devops.tietoevry.com
cportal.service.tieto.com
cs-campaign.tietoevry.com
*.sandbox.dev.devops.tietoevry.com
vamui-preprod-tds.vam-saas.tietoevry.com
customer-experience.tieto.com
live.nightly.chronos.tietoevry.com
ui-components.stage.nextgendevops.tietoevry.com
temperature-store.security.nextgendevops.tietoevry.com
chat-preview.tietoevry.com
pre-prod-placeholder.cloud.tietoevry.com
status.test2.chronos.tietoevry.com
monitoring.chronos.tietoevry.com
lifecare-app.service.tietoevry.com
*.ls-project.dev.devops.tietoevry.com
testtest.ru.tietoevry.com
*.jkproject.dev.devops.tietoevry.com
lama.chronos.tietoevry.com
status.staging.stable.chronos.tietoevry.com
pile-turner.test3.chronos.tietoevry.com
www.tietoevry.com
*.tietoevry.com
*.demo3.chronos.tietoevry.com
dmapi.service.tietoevry.com
backoffice-bauid.test1.bauid.tietoevry.com
create.tietoevry.com
napfin.tietoevry.com
aggregation.api.tietoevry.com
lifecare-app.service.tietoevry.com
terpqa.tietoevry.com
bmo-vam-test.cloud.tietoevry.com
*.dpm.tietoevry.com
jenkins.nextgendevops.tietoevry.com
*.prod.chronos.tietoevry.com
pile-turner.stable.chronos.tietoevry.com
portal-employee.test2.bauid.tietoevry.com
status.test3.chronos.tietoevry.com
alertmanager.chronos.tietoevry.com
*.jkproject.dev.devops.tietoevry.com
status.nightly.chronos.tietoevry.com
sni.cloudflaressl.com
ru.tietoevry.com
staging.stable.chronos.tietoevry.com
pile-turner.demo1.chronos.tietoevry.com
*.test-api-test.stage.devops.tietoevry.com
view2.tietoevry.com
prometheus.chronos.tietoevry.com
lama.chronos.tietoevry.com
ar2020.tietoevry.com
lifecare-api.service.tietoevry.com
napind.tietoevry.com
*.tds-mvp10.test1.devops.tietoevry.com
tietoevry.com
rancher.maas.int.tietoevry.com
*.test-api-test.stage.devops.tietoevry.com
status.test1.chronos.tietoevry.com
temperature-store.e2e.nextgendevops.tietoevry.com
pile-turner.nightly.chronos.tietoevry.com
ci.stable.chronos.tietoevry.com
monitoring.chronos.tietoevry.com
banking.tietoevry.com
demo3.chronos.tietoevry.com
sonarqube.nextgendevops.tietoevry.com
sni.cloudflaressl.com
temperature-ui.e2e.nextgendevops.tietoevry.com
qa.chronos.tietoevry.com
bmo-ftp-test.cloud.tietoevry.com
ci.chronos.tietoevry.com
*.test-api-test.stage.devops.tietoevry.com
ar.tietoevry.com
demo.archiving.tietoevry.com
traefik.nextgendevops.tietoevry.com
backoffice-company.main.bauid.tietoevry.com
*.jpproject1.dev.devops.tietoevry.com
dashboard.nextgendevops.tietoevry.com
minio.chronos.tietoevry.com
apm.tietoevry.com
pile-turner.ci.chronos.tietoevry.com
*.tds-mvp18.dev.devops.tietoevry.com
chat-preview.tietoevry.com
test2.chronos.tietoevry.com
credit.api.tietoevry.com
apps.pasfin-qa.energydev.tietoevry.com
identity.bauid.tietoevry.com
live.experimental.chronos.tietoevry.com
sni.cloudflaressl.com
brand.tietoevry.com
*.test-api-test.stage.devops.tietoevry.com
temperature-store.security.nextgendevops.tietoevry.com
oneportal.tietoevry.com
message.tietoevry.com
*.petovsam.dev.devops.tietoevry.com
rancher.bauid.tietoevry.com
pile-turner.ci.stable.chronos.tietoevry.com
bix.tietoevry.com
se.wpa.tietoevry.com
cas.tietoevry.com
pile-turner.demo3.chronos.tietoevry.com
jenkinsdemo.nextgendevops.tietoevry.com
*.jkproject.dev.devops.tietoevry.com
cportal.service.tieto.com
cs-campaign.tietoevry.com
*.sandbox.dev.devops.tietoevry.com
vamui-preprod-tds.vam-saas.tietoevry.com
customer-experience.tieto.com
live.nightly.chronos.tietoevry.com
ui-components.stage.nextgendevops.tietoevry.com
temperature-store.security.nextgendevops.tietoevry.com
chat-preview.tietoevry.com
pre-prod-placeholder.cloud.tietoevry.com
status.test2.chronos.tietoevry.com
monitoring.chronos.tietoevry.com
lifecare-app.service.tietoevry.com
*.ls-project.dev.devops.tietoevry.com
testtest.ru.tietoevry.com
*.jkproject.dev.devops.tietoevry.com
lama.chronos.tietoevry.com
status.staging.stable.chronos.tietoevry.com
pile-turner.test3.chronos.tietoevry.com
www.tietoevry.com
*.tietoevry.com
*.demo3.chronos.tietoevry.com
dmapi.service.tietoevry.com
backoffice-bauid.test1.bauid.tietoevry.com
create.tietoevry.com
napfin.tietoevry.com
aggregation.api.tietoevry.com
lifecare-app.service.tietoevry.com
terpqa.tietoevry.com
bmo-vam-test.cloud.tietoevry.com
*.dpm.tietoevry.com
jenkins.nextgendevops.tietoevry.com
*.prod.chronos.tietoevry.com
pile-turner.stable.chronos.tietoevry.com
portal-employee.test2.bauid.tietoevry.com
status.test3.chronos.tietoevry.com
alertmanager.chronos.tietoevry.com
*.jkproject.dev.devops.tietoevry.com
status.nightly.chronos.tietoevry.com
sni.cloudflaressl.com
ru.tietoevry.com
staging.stable.chronos.tietoevry.com
pile-turner.demo1.chronos.tietoevry.com
*.test-api-test.stage.devops.tietoevry.com
view2.tietoevry.com
prometheus.chronos.tietoevry.com
lama.chronos.tietoevry.com
ar2020.tietoevry.com
lifecare-api.service.tietoevry.com
napind.tietoevry.com
*.tds-mvp10.test1.devops.tietoevry.com
tietoevry.com
rancher.maas.int.tietoevry.com
*.test-api-test.stage.devops.tietoevry.com
status.test1.chronos.tietoevry.com
temperature-store.e2e.nextgendevops.tietoevry.com
pile-turner.nightly.chronos.tietoevry.com
ci.stable.chronos.tietoevry.com
monitoring.chronos.tietoevry.com
banking.tietoevry.com
demo3.chronos.tietoevry.com
sonarqube.nextgendevops.tietoevry.com
sni.cloudflaressl.com
temperature-ui.e2e.nextgendevops.tietoevry.com
qa.chronos.tietoevry.com
bmo-ftp-test.cloud.tietoevry.com
ci.chronos.tietoevry.com
*.test-api-test.stage.devops.tietoevry.com
ar.tietoevry.com
demo.archiving.tietoevry.com
Certificate
The complete raw certificate details for *.tietoevry.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHMDCCBhigAwIBAgIQAnGcym3dJZiT6rIf2HtVTjANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRUaGF3dGUgVExTIFJTQSBDQSBHMTAe Fw0yNDAxMTkwMDAwMDBaFw0yNTAyMTgyMzU5NTlaME8xCzAJBgNVBAYTAkZJMQ4w DAYDVQQHEwVFU1BPTzEWMBQGA1UEChMNVGlldG9ldnJ5IE95ajEYMBYGA1UEAwwP Ki50aWV0b2V2cnkuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA nlOzVSFpErFjSNS/O4BmoExuBbxRmbkgJR6iP9tOsVTaNSHl/iwOM3W1Hu9/Z/3t 1FqgIqwdl3wvLhVbbYMb2xHHlnfdltCgHYWexYBKgCWCCcC94hCB1wAuLjn7q/ov 34OyvEYuVgs9K6F6UomIStvHjGQ/Ca1vVV1WZn/NYWLr/R/k0j/NkB3oDtdNwAj7 jJynyjCG/KCEewFFZeWmrC/mV6NQLFaBGem5yzTqCtletsv4SFfrPgvnHzNl53yE k3/+1wcs/5XsAvZT2u/iUI3Nge61nf/P37wFoIhwrHM52ybTqFWtyjgNAGKoAUlS WBNrtDnyFHEuDF9pEjvrSQIDAQABo4ID9zCCA/MwHwYDVR0jBBgwFoAUpYz+Mszr DyzUGcYIuAAkiF3DxbcwHQYDVR0OBBYEFH9+imeOmSGwWwnYRzrS25AD57ShMIIB AAYDVR0RBIH4MIH1gg8qLnRpZXRvZXZyeS5jb22CCyoudGlldG8uY29tggoqLmtv bnRzLmx2ghEqLmludHJhLnRpZXRvLmNvbYISKi5teXRpbWUudGlldG8uY29tghIq LnBvcnRhbC50aWV0by5jb22CEioucG9sYW5kLnRpZXRvLmNvbYIPKi5pbnQudGll dG8uY29tgg4qLmV1LnRpZXRvLmNvbYIOKi5hcC50aWV0by5jb22CEyouc2Vydmlj ZS50aWV0by5jb22CDyoudGRzLnRpZXRvLmNvbYIKKi5ldnJ5LmNvbYIXKi5zaGFy ZXBvaW50LmV2cnkuY2xvdWQwPgYDVR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEF BQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6g LIYqaHR0cDovL2NkcC50aGF3dGUuY29tL1RoYXd0ZVRMU1JTQUNBRzEuY3JsMHAG CCsGAQUFBwEBBGQwYjAkBggrBgEFBQcwAYYYaHR0cDovL3N0YXR1cy50aGF3dGUu Y29tMDoGCCsGAQUFBzAChi5odHRwOi8vY2FjZXJ0cy50aGF3dGUuY29tL1RoYXd0 ZVRMU1JTQUNBRzEuY3J0MAwGA1UdEwEB/wQCMAAwggF/BgorBgEEAdZ5AgQCBIIB bwSCAWsBaQB2AE51oydcmhDDOFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABjSIC ThoAAAQDAEcwRQIgG8PPVjsn17wnHX7ZMHi+cXomrEMyBQCB3Yu8Iaw9arcCIQCG L1gs/LaQor9ayemHKjwM1DjOWXWXlZ9YTNf7cfmTgwB3AH1ZHhLheCp7HGFnfF79 +NCHXBSgTpWeuQMv2Q6MLnm4AAABjSICTlkAAAQDAEgwRgIhAIdpWPfXtx4kHyR1 0yDQdGrnPLnfcoeiuHXld5QO7HHMAiEAsOCpQ9Qg6bRQLIsXR9QhPx0BhV4dFvXe te3PFwA5z/8AdgDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAY0i Ak5xAAAEAwBHMEUCIC5XXRWbigZxGvvjDo/ivE6DfOudIOP6p3zQYatuwyuiAiEA rHcm6xUM8cgjw5yw8/uJCuj6zR4HALmV7VRVLW92Ge4wDQYJKoZIhvcNAQELBQAD ggEBAMGYE6w+JDIyhXQo9cqDvr7zj3TGXc1L/OmDDZ6mQ2HbB3Fr/4x0EihPL1BE LB6PbvA44383XbCg5PnDxVizYK2LgMlEOvPvY4je9owJXp/S42I+pP1PPzXce62v hzkIWPh8YJzUWo855oRFSgNZju0RcUgiP/0oZYUg5Dplz35NEQ07Atpkw45DIAdZ uPglRnI9gUDm02DkdhQya1nLdugwhYoBvWKm1yyUC9EOu1EVDFrV0DpwNVdr4uhC ZveHPTY0hirFHh+xAvTY8DIPt/RIeNslZAeFupg4LdOjeGpm2dMZAiP6TMZfQk36 6KvTQRgxcQisNnqqSnEDp4eTHZE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlOzVSFpErFjSNS/O4Bm oExuBbxRmbkgJR6iP9tOsVTaNSHl/iwOM3W1Hu9/Z/3t1FqgIqwdl3wvLhVbbYMb 2xHHlnfdltCgHYWexYBKgCWCCcC94hCB1wAuLjn7q/ov34OyvEYuVgs9K6F6UomI StvHjGQ/Ca1vVV1WZn/NYWLr/R/k0j/NkB3oDtdNwAj7jJynyjCG/KCEewFFZeWm rC/mV6NQLFaBGem5yzTqCtletsv4SFfrPgvnHzNl53yEk3/+1wcs/5XsAvZT2u/i UI3Nge61nf/P37wFoIhwrHM52ybTqFWtyjgNAGKoAUlSWBNrtDnyFHEuDF9pEjvr SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3248365630572481028598828110148490574 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-18 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ESPOO' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Tietoevry Oyj' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.tietoevry.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19986926448246981940891249332410859027938159399452140947043711187439026412112190271453325068500623330087831320425168563906066604490074476620656386135219504021899566757859009128099985170959677628026399116026958203554653810851550541439755634036545226508777096466174075107565879758749526837174892479654991783301564615790831178663634316505972390566058618652505833430274950820424265181789916692790343798772338993869585286479671412311950554732158562013488908234854575489123294713666370069914450108653893425313470637098573027277031939087505819065818681081571158516290376360838479145428010338074430733274680090520790798953289 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a58cfe32cceb0f2cd419c608b80024885dc3c5b7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7f7e8a678e9921b05b09d8473ad2db9003e7b4a1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (248 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tietoevry.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tieto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.konts.lv' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.intra.tieto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mytime.tieto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.portal.tieto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.poland.tieto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.int.tieto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.eu.tieto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ap.tieto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.service.tieto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tds.tieto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.evry.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sharepoint.evry.cloud' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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