*.hkl-baumaschinen.de
Issued by Thawte TLS RSA CA G1
About this certificate
This digital certificate with serial number 06:5c:77:53:04:4b:5c:5f:eb:8e:47:23:f8:08:ef:cd was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.hkl-baumaschinen.de
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:5c:77:53:04:4b:5c:5f:eb:8e:47:23:f8:08:ef:cdSerial Number (int): 8455479469704068314855288749207121869
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 3a:e8:56:26:cd:38:7a:79:0f:75:2a:b3:b8:cc:cb:6c:eb:a0:56:eb
AuthorityKeyId: a5:8c:fe:32:cc:eb:0f:2c:d4:19:c6:08:b8:00:24:88:5d:c3:c5:b7
Fingerprint (sha1): 73:48:b8:9d:e1:7f:43:74:15:6f:66:17:a7:8d:e1:c6:75:81:77:69
Fingerprint (sha256): 28:4c:f5:59:75:ad:88:db:cd:b1:c2:34:b2:62:43:40:a0:7e:c8:83:f2:c7:1f:1e:f9:c8:a4:1d:a1:74:24:1d
Issuing Certificate URL: http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteTLSRSACAG1.crl
Check the revocation status for certificate *.hkl-baumaschinen.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.hkl-baumaschinen.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.hkl-baumaschinen.de
hkl-baumaschinen.de
hkl-baumaschinen.de
Other certificates including the domain name hkl-baumaschinen.de
(limited to 100 certificates)
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
enterpriseenrollment.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
*.hkl-baumaschinen.de
kiosk.laloupe.com
intranet.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
mitarbeiter.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
mitarbeiter.hkl-baumaschinen.de
test-mingle.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
*.hkl-baumaschinen.de
intranet.hkl-baumaschinen.de
tennis.yumpu100.com
monitoring.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
intranet.hkl-baumaschinen.de
go.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
gasthh.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
www.hkl-baumaschinen.de
workflow.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
mail.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
de-hh-vfic01.ger.hkl-baumaschinen.de
*.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
gateway.hkl-baumaschinen.de
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
*.hkl-baumaschinen.de
test-webapps.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
enterpriseenrollment.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
*.hkl-baumaschinen.de
kiosk.laloupe.com
intranet.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
mitarbeiter.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
mitarbeiter.hkl-baumaschinen.de
test-mingle.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
*.hkl-baumaschinen.de
intranet.hkl-baumaschinen.de
tennis.yumpu100.com
monitoring.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
intranet.hkl-baumaschinen.de
go.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
gasthh.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
www.hkl-baumaschinen.de
workflow.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
mail.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
de-hh-vfic01.ger.hkl-baumaschinen.de
*.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
gateway.hkl-baumaschinen.de
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
*.hkl-baumaschinen.de
test-webapps.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
Certificate
The complete raw certificate details for *.hkl-baumaschinen.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGNDCCBRygAwIBAgIQBlx3UwRLXF/rjkcj+AjvzTANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRUaGF3dGUgVExTIFJTQSBDQSBHMTAe Fw0yMzA5MjAwMDAwMDBaFw0yNDEwMjAyMzU5NTlaMCAxHjAcBgNVBAMMFSouaGts LWJhdW1hc2NoaW5lbi5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALvD8KuCAhtGGffXGlzxNAUX3ldIR10riwEPdWyhN8vyRW/cK8kK34SzirQT1OyI /2S3z/VPJrVIK5MaDXV44eIUpkekDb2C6zd2N/gNt+TnY23cb9Za6jQJUwDJMNyj 89omG58/vonYTeoYLNboGlAsMEgIET+jEWfMMCm9c0WR8n/zNYvYwlPm8jpBpre5 RAIlpHGFcyssaaU8diOqbeHGoC5N8VTAhfYH4QVbu+TKKsy4qu3XX0W6TCUI088k VNyYnBz7Wo9mMC6WOYIZ+cYWUl/Fxt/+aVRs6WWXIP1IO/8QTkwUsxMsEgs4K4HL AuzxMYxlm0xp61OA3RFuHTECAwEAAaOCAyowggMmMB8GA1UdIwQYMBaAFKWM/jLM 6w8s1BnGCLgAJIhdw8W3MB0GA1UdDgQWBBQ66FYmzTh6eQ91KrO4zMts66BW6zA1 BgNVHREELjAsghUqLmhrbC1iYXVtYXNjaGluZW4uZGWCE2hrbC1iYXVtYXNjaGlu ZW4uZGUwPgYDVR0gBDcwNTAzBgZngQwBAgEwKTAnBggrBgEFBQcCARYbaHR0cDov L3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2Nk cC50aGF3dGUuY29tL1RoYXd0ZVRMU1JTQUNBRzEuY3JsMHAGCCsGAQUFBwEBBGQw YjAkBggrBgEFBQcwAYYYaHR0cDovL3N0YXR1cy50aGF3dGUuY29tMDoGCCsGAQUF BzAChi5odHRwOi8vY2FjZXJ0cy50aGF3dGUuY29tL1RoYXd0ZVRMU1JTQUNBRzEu Y3J0MAwGA1UdEwEB/wQCMAAwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB2AO7N 0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABirE7aIEAAAQDAEcwRQIh APO+315e7VK2IQUS8dqWJnFyWC2z5bgvsSlqEwV0z7GrAiAV4Zb/L20+TXOOQtwc +gz95EOoCh6OKsC75MJwVNDfVgB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7 v6s52IRzAAABirE7aNMAAAQDAEcwRQIhAMcnTfdu6lvyobgu3eTce2yjb6pFTjgK saUQrlmg96KrAiBeSwLL7B8zqziaQYFWD8qo4qQJd9n8UngZ75yyDSL1KAB3ANq2 v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABirE7aKkAAAQDAEgwRgIh AJ9SD8WXIJQsuCSEDQ6ka0fb+gxnonE66P9tQZKTPKDPAiEA3EMJk+n198trzUjp o+3IUrN0KjwitxT/yHBT0x/DFWcwDQYJKoZIhvcNAQELBQADggEBABRZ8UUQJfUv XAr7GRHMUZ+32yKhrlrNtIvMfSj8SUEclA72JRmFrQI9A0vMmbtAQYMy6AXBonKp BcW0dMNM9yIgao0GNxpcWmYQIaFd/sin3J+0vThd7tadvPqdyoJZoG+tqWtYhYH7 iMfevKzxqlJ25wrDm/CheeO77VhTLBMuBrxZ3XHI5DEugOH1//1Pf5mPllEf/N84 CHlJGN2Qp6GpGkF9rIGhDV9Cswf1Refi+UxXIvrulMHVy8QK8yQST9eTW5E2qcG3 yxpPMChZjFEldJrSlqSuDYjECg+3jh0SrWCoG2OSeLBeoxfB+81lxMK2wK0cnqL9 4I2gNN+Hhrg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu8Pwq4ICG0YZ99caXPE0 BRfeV0hHXSuLAQ91bKE3y/JFb9wryQrfhLOKtBPU7Ij/ZLfP9U8mtUgrkxoNdXjh 4hSmR6QNvYLrN3Y3+A235Odjbdxv1lrqNAlTAMkw3KPz2iYbnz++idhN6hgs1uga UCwwSAgRP6MRZ8wwKb1zRZHyf/M1i9jCU+byOkGmt7lEAiWkcYVzKyxppTx2I6pt 4cagLk3xVMCF9gfhBVu75MoqzLiq7ddfRbpMJQjTzyRU3JicHPtaj2YwLpY5ghn5 xhZSX8XG3/5pVGzpZZcg/Ug7/xBOTBSzEywSCzgrgcsC7PExjGWbTGnrU4DdEW4d MQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8455479469704068314855288749207121869 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-20 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.hkl-baumaschinen.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23703184701485722952666110288547735949958422520062998675293019464876262161192311402881372085256038562161155272227004834727392947656895026703715797452995333405648068524801264155421764625726923546081333709579252958348147216803406571138204217301080717856018346766318467304391860935938437191296024077954335398005843667766351303848507938975690221676630060158294883882076274997713303648520886640001041473259606690465432067972678259054236014821518284744314381648365365342368232367723048686848450627888817140149038238338977027252075935504893380646925511250750192871062594620190340001717638473370819924843106915232310010715441 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a58cfe32cceb0f2cd419c608b80024885dc3c5b7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3ae85626cd387a790f752ab3b8cccb6ceba056eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hkl-baumaschinen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hkl-baumaschinen.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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