webvpn.holcim.com
- Holcim (Schweiz) AG. -
Issued by VeriSign Class 3 International Server CA - G3
About this certificate
This digital certificate with serial number 2d:7a:4b:18:8d:f9:d6:9a:9b:1e:a4:4f:78:9e:12:eb was issued on by VeriSign, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
- Subscriber Certificate: extKeyUsage values other than id-kp-serverAuth, id-kp-clientAuth, and id-kp-emailProtection SHOULD NOT be present. (BRs: 7.1.2.3)
Holcim (Schweiz) AG.
Organization:
Holcim (Schweiz) AG.
Organization unit: IT
Organization unit: Terms of use at www.verisign.ch/rpa (c)05
Organization unit: Authenticated by VeriSign
Organization unit: Member, VeriSign Trust Network
Organization unit: IT
Organization unit: Terms of use at www.verisign.ch/rpa (c)05
Organization unit: Authenticated by VeriSign
Organization unit: Member, VeriSign Trust Network
State / Province:
Zuerich
Locality: Zuerich
Country: CH
Locality: Zuerich
Country: CH
VeriSign, Inc.
Organization:
VeriSign, Inc.
Organization unit: VeriSign Trust Network
Organization unit: Terms of use at https://www.verisign.com/rpa (c)10
Organization unit: VeriSign Trust Network
Organization unit: Terms of use at https://www.verisign.com/rpa (c)10
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 2d:7a:4b:18:8d:f9:d6:9a:9b:1e:a4:4f:78:9e:12:ebSerial Number (int): 60450243153198059821275107350137410283
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: d7:9b:7c:d8:22:a0:15:f7:dd:ad:5f:ce:29:9b:58:c3:bc:46:00:b5
Fingerprint (sha1): 1c:bd:89:6a:b0:bc:d2:ba:55:89:c2:c4:88:28:87:ac:50:06:38:e9
Fingerprint (sha256): 27:eb:e9:50:f8:09:2f:79:47:f2:25:56:42:d0:8b:71:3a:d5:f1:58:a3:08:6f:dc:5f:48:5b:0d:58:df:4c:55
Issuing Certificate URL: http://SVRIntl-G3-aia.verisign.com/SVRIntlG3.cer
Revocation information
OCSP Server: http://ocsp.verisign.comCRL Distribution Point: http://SVRIntl-G3-crl.verisign.com/SVRIntlG3.crl
Check the revocation status for certificate webvpn.holcim.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for webvpn.holcim.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Netscape Server-Gated Cryptography
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
webvpn.holcim.com
Other certificates including the domain name holcim.com
(limited to 100 certificates)
teamplace-qa.holcim.com
lp2-logon.holcim.com
*.hgrs.holcim.com
servicedesk.ap.holcim.com
brandportal.lafargeholcim.com
brandportal.lafargeholcim.com
aop.ap.holcim.com
iDispo-phl.ap.holcim.com
hronline.ap.holcim.com
trilogy.ap.holcim.com
stars-uat.ap.holcim.com
portal-qas.ap.holcim.com
brandportal.lafargeholcim.com
bwreport-poc.ap.holcim.com
crl-dev.privasphere.com
hronline-qas.ap.holcim.com
web-qa.hgrs.holcim.com
qlikview.ap.holcim.com
*.holcim.com
vd.hgrs.holcim.com
*.holcim.com
lp1-logon.holcim.com
stars.ap.holcim.com
*.hgrs.holcim.com
webvpn.holcim.com
esales.ap.holcim.com
*.hgrs.holcim.com
*.holcim.com
apbm.ap.holcim.com
portal-qas.ap.holcim.com
www.privasphere.com
*.analytics.hgrs.holcim.com
orf-poc.ap.holcim.com
Loyalty.ap.holcim.com
centennial-qa.holcim.com
*.holcim.com
*.hgrs.holcim.com
lq0-logon.holcim.com
awconsole.holcim.com
portal-poc.ap.holcim.com
vd.hgrs.holcim.com
dwa.hgrs.holcim.com
integrityline.holcim.com
loyalty-uat.ap.holcim.com
srm-qas.ap.holcim.com
mobilebi-cco.hgrs.holcim.com
trilogy.ap.holcim.com
hronline-qas.ap.holcim.com
cbs.holcim.com
awconsole.holcim.com
gw01hgrs.holcim.com
www.privasphere.com
stars.ap.holcim.com
cco.holcim.com
qa.holcim.com
websurvey.ap.holcim.com
bwreport-qas.ap.holcim.com
teamplace.holcim.com
webvpn.holcim.com
ecc-qas.ap.holcim.com
citrixphl.ap.holcim.com
hcm-qa.hgrs.holcim.com
emea-srmqimp.holcim.com
mobile.ap.holcim.com
emea-srmqbrt.holcim.com
dwa-qa.hgrs.holcim.com
bwreport-dev.ap.holcim.com
apbm.ap.holcim.com
bi.ap.holcim.com
orf-dev.ap.holcim.com
mdm.holcim.com
webvpn.holcim.com
workflow.ap.holcim.com
qvweb-dev.analytics.hgrs.holcim.com
integrity.lafargeholcim.com
www.privasphere.com
video.holcim.com
portal-qa.holcim.com
orf-dev.ap.holcim.com
maps.analytics.hgrs.holcim.com
global-workflow-dev.holcim.com
hcm.hgrs.holcim.com
crl-dev.privasphere.com
portal-dev.ap.holcim.com
*.hgrs.holcim.com
tmc.holcim.com
versand.ea.holcim.com
brandportal.lafargeholcim.com
bi-qa.hgrs.holcim.com
*.holcim.com
lj1-logon.holcim.com
stars-uat.ap.holcim.com
orf.ap.holcim.com
guesthgrs.hgrs.holcim.com
srm-qas.ap.holcim.com
logon.holcim.com
easybuild.holcim.com
*.holcim.com
appstore.ap.holcim.com
mobile.ap.holcim.com
lp2-logon.holcim.com
*.hgrs.holcim.com
servicedesk.ap.holcim.com
brandportal.lafargeholcim.com
brandportal.lafargeholcim.com
aop.ap.holcim.com
iDispo-phl.ap.holcim.com
hronline.ap.holcim.com
trilogy.ap.holcim.com
stars-uat.ap.holcim.com
portal-qas.ap.holcim.com
brandportal.lafargeholcim.com
bwreport-poc.ap.holcim.com
crl-dev.privasphere.com
hronline-qas.ap.holcim.com
web-qa.hgrs.holcim.com
qlikview.ap.holcim.com
*.holcim.com
vd.hgrs.holcim.com
*.holcim.com
lp1-logon.holcim.com
stars.ap.holcim.com
*.hgrs.holcim.com
webvpn.holcim.com
esales.ap.holcim.com
*.hgrs.holcim.com
*.holcim.com
apbm.ap.holcim.com
portal-qas.ap.holcim.com
www.privasphere.com
*.analytics.hgrs.holcim.com
orf-poc.ap.holcim.com
Loyalty.ap.holcim.com
centennial-qa.holcim.com
*.holcim.com
*.hgrs.holcim.com
lq0-logon.holcim.com
awconsole.holcim.com
portal-poc.ap.holcim.com
vd.hgrs.holcim.com
dwa.hgrs.holcim.com
integrityline.holcim.com
loyalty-uat.ap.holcim.com
srm-qas.ap.holcim.com
mobilebi-cco.hgrs.holcim.com
trilogy.ap.holcim.com
hronline-qas.ap.holcim.com
cbs.holcim.com
awconsole.holcim.com
gw01hgrs.holcim.com
www.privasphere.com
stars.ap.holcim.com
cco.holcim.com
qa.holcim.com
websurvey.ap.holcim.com
bwreport-qas.ap.holcim.com
teamplace.holcim.com
webvpn.holcim.com
ecc-qas.ap.holcim.com
citrixphl.ap.holcim.com
hcm-qa.hgrs.holcim.com
emea-srmqimp.holcim.com
mobile.ap.holcim.com
emea-srmqbrt.holcim.com
dwa-qa.hgrs.holcim.com
bwreport-dev.ap.holcim.com
apbm.ap.holcim.com
bi.ap.holcim.com
orf-dev.ap.holcim.com
mdm.holcim.com
webvpn.holcim.com
workflow.ap.holcim.com
qvweb-dev.analytics.hgrs.holcim.com
integrity.lafargeholcim.com
www.privasphere.com
video.holcim.com
portal-qa.holcim.com
orf-dev.ap.holcim.com
maps.analytics.hgrs.holcim.com
global-workflow-dev.holcim.com
hcm.hgrs.holcim.com
crl-dev.privasphere.com
portal-dev.ap.holcim.com
*.hgrs.holcim.com
tmc.holcim.com
versand.ea.holcim.com
brandportal.lafargeholcim.com
bi-qa.hgrs.holcim.com
*.holcim.com
lj1-logon.holcim.com
stars-uat.ap.holcim.com
orf.ap.holcim.com
guesthgrs.hgrs.holcim.com
srm-qas.ap.holcim.com
logon.holcim.com
easybuild.holcim.com
*.holcim.com
appstore.ap.holcim.com
mobile.ap.holcim.com
Certificate
The complete raw certificate details for webvpn.holcim.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIQLXpLGI351pqbHqRPeJ4S6zANBgkqhkiG9w0BAQUFADCB vDELMAkGA1UEBhMCVVMxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMR8wHQYDVQQL ExZWZXJpU2lnbiBUcnVzdCBOZXR3b3JrMTswOQYDVQQLEzJUZXJtcyBvZiB1c2Ug YXQgaHR0cHM6Ly93d3cudmVyaXNpZ24uY29tL3JwYSAoYykxMDE2MDQGA1UEAxMt VmVyaVNpZ24gQ2xhc3MgMyBJbnRlcm5hdGlvbmFsIFNlcnZlciBDQSAtIEczMB4X DTEyMDkyNjAwMDAwMFoXDTEzMDkyOTIzNTk1OVowgfoxCzAJBgNVBAYTAkNIMRAw DgYDVQQIEwdadWVyaWNoMRAwDgYDVQQHFAdadWVyaWNoMR0wGwYDVQQKFBRIb2xj aW0gKFNjaHdlaXopIEFHLjELMAkGA1UECxQCSVQxMjAwBgNVBAsTKVRlcm1zIG9m IHVzZSBhdCB3d3cudmVyaXNpZ24uY2gvcnBhIChjKTA1MSIwIAYDVQQLExlBdXRo ZW50aWNhdGVkIGJ5IFZlcmlTaWduMScwJQYDVQQLEx5NZW1iZXIsIFZlcmlTaWdu IFRydXN0IE5ldHdvcmsxGjAYBgNVBAMUEXdlYnZwbi5ob2xjaW0uY29tMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4JP1PD4O0O1Q1/gdSossCOuneu9+ qZI7SWDS4RDwjOJhTRHDkKBDE+FG/G0wx636F3VQ1CnjyaieRCUZ5a5ba1xCQz2k mK+xlUeJmsFKHtulNMAfKEbSCNc+QDRn1AdjgVJE5HmzRiefs0db8HSUlbi0VGgW YBA+rTkkVPdi3j1EHQhIenqVnaHCv25EiL9+eHQxmWv3ZS1U2ke0UNrKEoJJjUCR 15ZbOWMjd3Xwzf4K48SW1WVP3ZYmsCo0i6QjXxPXtBwkBaVNYF7y/NUtO7cQkoZr pmldECZv3j7Q7COvbu3pqg/SWo2ZLbIhsYq4QCN4zDK7tZZrMTbV64jAKQIDAQAB o4IBhDCCAYAwHAYDVR0RBBUwE4IRd2VidnBuLmhvbGNpbS5jb20wCQYDVR0TBAIw ADAOBgNVHQ8BAf8EBAMCBaAwQwYDVR0gBDwwOjA4BgpghkgBhvhFAQc2MCowKAYI KwYBBQUHAgEWHGh0dHBzOi8vd3d3LnZlcmlzaWduLmNvbS9jcHMwQQYDVR0fBDow ODA2oDSgMoYwaHR0cDovL1NWUkludGwtRzMtY3JsLnZlcmlzaWduLmNvbS9TVlJJ bnRsRzMuY3JsMCgGA1UdJQQhMB8GCCsGAQUFBwMBBggrBgEFBQcDAgYJYIZIAYb4 QgQBMB8GA1UdIwQYMBaAFNebfNgioBX33a1fzimbWMO8RgC1MHIGCCsGAQUFBwEB BGYwZDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AudmVyaXNpZ24uY29tMDwGCCsG AQUFBzAChjBodHRwOi8vU1ZSSW50bC1HMy1haWEudmVyaXNpZ24uY29tL1NWUklu dGxHMy5jZXIwDQYJKoZIhvcNAQEFBQADggEBAE6d71puHdGUQUrslvRZNwt4uYcE BxgROI9E0CgM4OVFSRIqW/ZVuR6rivf7s4/H+DOvQhvGfVK0p1Y3d4cqDdZiEk9M ucDKnzLXLNmgvGtCIiU6ITPtSF1/MlMiwsXx6NFDz5JX6VcKIqmj3vBa3LjJXdt3 jzNZWJ1MVmUE2L7Z4hMDdVdo2ok3T+NuhWtg8hB4q3m7fxe+0Tzv6592vkV7XFkp O+vJlTiWgjbKzkK5jknu5aYv00uythGkf+iRBf9QWaUDIs/l10mMKthH4tQe5IJI Ew83Si8An3TVzO8kDxNRR2dsYZVyGcJJGk9hJvrfy6XLMgf8RzZ8Fn65Dkc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4JP1PD4O0O1Q1/gdSoss COuneu9+qZI7SWDS4RDwjOJhTRHDkKBDE+FG/G0wx636F3VQ1CnjyaieRCUZ5a5b a1xCQz2kmK+xlUeJmsFKHtulNMAfKEbSCNc+QDRn1AdjgVJE5HmzRiefs0db8HSU lbi0VGgWYBA+rTkkVPdi3j1EHQhIenqVnaHCv25EiL9+eHQxmWv3ZS1U2ke0UNrK EoJJjUCR15ZbOWMjd3Xwzf4K48SW1WVP3ZYmsCo0i6QjXxPXtBwkBaVNYF7y/NUt O7cQkoZrpmldECZv3j7Q7COvbu3pqg/SWo2ZLbIhsYq4QCN4zDK7tZZrMTbV64jA KQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 60450243153198059821275107350137410283 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'VeriSign, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'VeriSign Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Terms of use at https://www.verisign.com/rpa (c)10' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'VeriSign Class 3 International Server CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-09-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-09-29 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zuerich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Zuerich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Holcim (Schweiz) AG.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Terms of use at www.verisign.ch/rpa (c)05' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Authenticated by VeriSign' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Member, VeriSign Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'webvpn.holcim.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28350341097062669694990791225828194727947340513019857835416790701751369814281333412541900714253433468412335194610251436857966363905843127092222408306584964133346243870775951861639637389680821080690169797810445894261800791209072980565684045976357681968714083837135980998113252807050558152268965595295467643651182786269330237622227928924581159011393966134033877342941509490441539778322560698408302593509266840346774576865246807615525763945305050702238761134426789375115019199082175936456418633789282680095656098020954946735861192749100048603249199300984661847578196579634991951450498163313601773691688972106276654333993 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webvpn.holcim.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.verisign.com/cps' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://SVRIntl-G3-crl.verisign.com/SVRIntlG3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (33 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113730.4.1 (serverGatedCrypto) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d79b7cd822a015f7ddad5fce299b58c3bc4600b5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (102 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.verisign.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://SVRIntl-G3-aia.verisign.com/SVRIntlG3.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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