liveness.bankleumi.co.il
- Bank Leumi le-Israel LTD -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 06:13:8b:49:df:07:46:13:4e:76:f7:6c:bc:da:92:ac was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Bank Leumi le-Israel LTD
Organization:
Bank Leumi le-Israel LTD
Organization unit: Terms of use at www.comsign.co.il/rpa (c) 03
Organization unit: Terms of use at www.comsign.co.il/rpa (c) 03
Locality:
Tel Aviv-Yafo
Country: IL
Country: IL
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:13:8b:49:df:07:46:13:4e:76:f7:6c:bc:da:92:acSerial Number (int): 8076846722636378678543664222677144236
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 29:b3:a2:3f:45:47:26:6c:c2:09:30:67:3f:f2:0e:97:75:7d:f4:93
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 7a:9c:d4:27:a7:24:60:73:44:a5:10:eb:a4:ca:41:b5:ba:b0:a2:8d
Fingerprint (sha256): 28:81:dd:44:16:73:f7:8c:31:f8:a4:6f:ea:82:07:6b:23:06:ec:1e:f4:27:fe:27:dc:69:6d:c5:35:c4:eb:9a
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate liveness.bankleumi.co.il
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for liveness.bankleumi.co.il
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
liveness.bankleumi.co.il
Other certificates including the domain name bankleumi.co.il
(limited to 100 certificates)
hb5wap.bankleumi.co.il
accessibility.bankleumi.co.il
widget.bankleumi.co.il
streamer.bankleumi.co.il
incomingcredit.bankleumi.co.il
akamai-san17.exacttarget.com
hb2.bankleumi.co.il
livenesshb3.bankleumi.co.il
lti-content.bankleumi.co.il
ufapi.bankleumi.co.il
liveness.bankleumi.co.il
akamai-san17.exacttarget.com
leumiservices-msr.bankleumi.co.il
incomingcredit5.bankleumi.co.il
lfxt.bankleumi.co.il
mobile.bankleumi.co.il
akamai-san17.exacttarget.com
forms-stg.bankleumi.co.il
mft.bankleumi.co.il
cellular.bankleumi.co.il
sdc.bankleumi.co.il
cache.bankleumi.co.il
accessibilitys.bankleumi.co.il
appdynlib.bankleumi.co.il
www.bankleumi.co.il
exp2.bankleumi.co.il
lyncweb.bankleumi.co.il
tradair.bankleumi.co.il
encmail.bankleumi.co.il
accessibilitys.bankleumi.co.il
ufapihb3.bankleumi.co.il
securemail.bankleumi.co.il
cache.bankleumi.co.il
sa5.bankleumi.co.il
*.bankleumi.co.il
cloud.digital.bankleumi.co.il
accessibilitys.bankleumi.co.il
Securemail.bankleumi.co.il
sa3.bankleumi.co.il
cellulardlv.bankleumi.co.il
prpn.bankleumi.co.il
apiportal.bankleumi.co.il
accessibility.bankleumi.co.il
streamer.bankleumi.co.il
hb3wap.bankleumi.co.il
akamai-san17.exacttarget.com
securemail.bankleumi.co.il
securemail.bankleumi.co.il
www.bankleumi.co.il
accessibility.bankleumi.co.il
access.bankleumi.co.il
hb5wap.bankleumi.co.il
prodapi.bankleumi.co.il
leumiservices.bankleumi.co.il
trade.bankleumi.co.il
e-learning.bankleumi.co.il
liveness.bankleumi.co.il
e-learning.bankleumi.co.il
sdc.bankleumi.co.il
widget.bankleumi.co.il
lfxt.bankleumi.co.il
hbwaptest.bankleumi.co.il
service-stg7.bankleumi.co.il
hb3wap.bankleumi.co.il
cache.bankleumi.co.il
e-learning.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
e-learning.bankleumi.co.il
sa5.bankleumi.co.il
trade.bankleumi.co.il
hb2.bankleumi.co.il
apidev.bankleumi.co.il
access.bankleumi.co.il
sdc.bankleumi.co.il
apidev.bankleumi.co.il
oobstg.bankleumi.co.il
service.bankleumi.co.il
video.bankleumi.co.il
lfxt.bankleumi.co.il
appdynlib.bankleumi.co.il
hb2.bankleumi.co.il
encmail.bankleumi.co.il
sa3.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
lyncweb.bankleumi.co.il
widget.bankleumi.co.il
help.bankleumi.co.il
ufapi.bankleumi.co.il
cache.bankleumi.co.il
akamai-san17.exacttarget.com
oob.bankleumi.co.il
ufapi.bankleumi.co.il
apitest.bankleumi.co.il
appdynlib.bankleumi.co.il
access.bankleumi.co.il
streamer.bankleumi.co.il
ocrhb3.bankleumi.co.il
hb2.bankleumi.co.il
ufapihb1.bankleumi.co.il
mobile.bankleumi.co.il
accessibility.bankleumi.co.il
widget.bankleumi.co.il
streamer.bankleumi.co.il
incomingcredit.bankleumi.co.il
akamai-san17.exacttarget.com
hb2.bankleumi.co.il
livenesshb3.bankleumi.co.il
lti-content.bankleumi.co.il
ufapi.bankleumi.co.il
liveness.bankleumi.co.il
akamai-san17.exacttarget.com
leumiservices-msr.bankleumi.co.il
incomingcredit5.bankleumi.co.il
lfxt.bankleumi.co.il
mobile.bankleumi.co.il
akamai-san17.exacttarget.com
forms-stg.bankleumi.co.il
mft.bankleumi.co.il
cellular.bankleumi.co.il
sdc.bankleumi.co.il
cache.bankleumi.co.il
accessibilitys.bankleumi.co.il
appdynlib.bankleumi.co.il
www.bankleumi.co.il
exp2.bankleumi.co.il
lyncweb.bankleumi.co.il
tradair.bankleumi.co.il
encmail.bankleumi.co.il
accessibilitys.bankleumi.co.il
ufapihb3.bankleumi.co.il
securemail.bankleumi.co.il
cache.bankleumi.co.il
sa5.bankleumi.co.il
*.bankleumi.co.il
cloud.digital.bankleumi.co.il
accessibilitys.bankleumi.co.il
Securemail.bankleumi.co.il
sa3.bankleumi.co.il
cellulardlv.bankleumi.co.il
prpn.bankleumi.co.il
apiportal.bankleumi.co.il
accessibility.bankleumi.co.il
streamer.bankleumi.co.il
hb3wap.bankleumi.co.il
akamai-san17.exacttarget.com
securemail.bankleumi.co.il
securemail.bankleumi.co.il
www.bankleumi.co.il
accessibility.bankleumi.co.il
access.bankleumi.co.il
hb5wap.bankleumi.co.il
prodapi.bankleumi.co.il
leumiservices.bankleumi.co.il
trade.bankleumi.co.il
e-learning.bankleumi.co.il
liveness.bankleumi.co.il
e-learning.bankleumi.co.il
sdc.bankleumi.co.il
widget.bankleumi.co.il
lfxt.bankleumi.co.il
hbwaptest.bankleumi.co.il
service-stg7.bankleumi.co.il
hb3wap.bankleumi.co.il
cache.bankleumi.co.il
e-learning.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
e-learning.bankleumi.co.il
sa5.bankleumi.co.il
trade.bankleumi.co.il
hb2.bankleumi.co.il
apidev.bankleumi.co.il
access.bankleumi.co.il
sdc.bankleumi.co.il
apidev.bankleumi.co.il
oobstg.bankleumi.co.il
service.bankleumi.co.il
video.bankleumi.co.il
lfxt.bankleumi.co.il
appdynlib.bankleumi.co.il
hb2.bankleumi.co.il
encmail.bankleumi.co.il
sa3.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
lyncweb.bankleumi.co.il
widget.bankleumi.co.il
help.bankleumi.co.il
ufapi.bankleumi.co.il
cache.bankleumi.co.il
akamai-san17.exacttarget.com
oob.bankleumi.co.il
ufapi.bankleumi.co.il
apitest.bankleumi.co.il
appdynlib.bankleumi.co.il
access.bankleumi.co.il
streamer.bankleumi.co.il
ocrhb3.bankleumi.co.il
hb2.bankleumi.co.il
ufapihb1.bankleumi.co.il
mobile.bankleumi.co.il
Certificate
The complete raw certificate details for liveness.bankleumi.co.il in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIQBhOLSd8HRhNOdvdsvNqSrDANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTkxMjE5MDAwMDAwWhcNMjExMjE4MTIwMDAwWjCBojELMAkGA1UEBhMCSUwxFjAU BgNVBAcTDVRlbCBBdml2LVlhZm8xITAfBgNVBAoTGEJhbmsgTGV1bWkgbGUtSXNy YWVsIExURDE1MDMGA1UECxMsVGVybXMgb2YgdXNlIGF0IHd3dy5jb21zaWduLmNv LmlsL3JwYSAoYykgMDMxITAfBgNVBAMTGGxpdmVuZXNzLmJhbmtsZXVtaS5jby5p bDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKcKn8JmEjfg/VyN44Kc +oGjJ3kIWIuipGlnJAhkAl6BrHR0BQ9Xy6mMAg4Q+m+LkQdhOmSh4eFKTG+xONTq 6lrL9Ma+KwX6xgKbidOMt40S5PhNRObyA910fZaCLEBVwXhJH+BH7ECGHEAoR+rH E4gUJTGTL73OtSTmtx6CpqfaRJM3OIplMdMx5YXgasawPljwlbWhIzW5XVZJFMgo 57SoLwPTE7Znqo11dqR6Dgjv2QmuEjxNQPCm8LFWpfzApOTYbkipP/cUgU/O2a7T UTq1vIGZAb3O+jgTmnW6zfhGWtUmX2KpoRSiiup2+7s7l03hQNYV5Q2BzxDbPYeh WcUCAwEAAaOCAbMwggGvMB8GA1UdIwQYMBaAFKPIXmVU5TB4wQXqBwpqWcy5/t5a MB0GA1UdDgQWBBQps6I/RUcmbMIJMGc/8g6XdX30kzAjBgNVHREEHDAaghhsaXZl bmVzcy5iYW5rbGV1bWkuY28uaWwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjA6BgNVHR8EMzAxMC+gLaArhilodHRwOi8vY2Rw LnRoYXd0ZS5jb20vVGhhd3RlUlNBQ0EyMDE4LmNybDBMBgNVHSAERTBDMDcGCWCG SAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20v Q1BTMAgGBmeBDAECAjBvBggrBgEFBQcBAQRjMGEwJAYIKwYBBQUHMAGGGGh0dHA6 Ly9zdGF0dXMudGhhd3RlLmNvbTA5BggrBgEFBQcwAoYtaHR0cDovL2NhY2VydHMu dGhhd3RlLmNvbS9UaGF3dGVSU0FDQTIwMTguY3J0MAkGA1UdEwQCMAAwEwYKKwYB BAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAJyhmDyFNGN1LK0x8xN9 q9VAN6ux/+q+5hUQDJWSf6AWFyVMA9PpxxNWUZtaeKPB8XsJ6oAzgvHK5UtaNpTF gA2uXvct8g6bAU3mARD994g+/MyOey8LqD5m8b/3i++vQvscnYr+nNc2bvUbR9lZ FUOmWTKwrvpvHAjWnkEXgMpwyPzx6z07wNsDPCa0iLHLRXA5uNPPaO/JVyWp2U3b U2QSAEETp8zclpBR3OZ9YUczRybCswnHVdh9W3+geVX78vr0oY0QVJcYDAOPMsxQ ro0m2H9EGxJNl/VtbUd2cZyxwezThh+ApZmPMvBfUPy5GK+pe4gpOQ4SD+I0FkHj bc0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwqfwmYSN+D9XI3jgpz6 gaMneQhYi6KkaWckCGQCXoGsdHQFD1fLqYwCDhD6b4uRB2E6ZKHh4UpMb7E41Orq Wsv0xr4rBfrGApuJ04y3jRLk+E1E5vID3XR9loIsQFXBeEkf4EfsQIYcQChH6scT iBQlMZMvvc61JOa3HoKmp9pEkzc4imUx0zHlheBqxrA+WPCVtaEjNbldVkkUyCjn tKgvA9MTtmeqjXV2pHoOCO/ZCa4SPE1A8KbwsVal/MCk5NhuSKk/9xSBT87ZrtNR OrW8gZkBvc76OBOadbrN+EZa1SZfYqmhFKKK6nb7uzuXTeFA1hXlDYHPENs9h6FZ xQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8076846722636378678543664222677144236 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-18 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Tel Aviv-Yafo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bank Leumi le-Israel LTD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Terms of use at www.comsign.co.il/rpa (c) 03' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'liveness.bankleumi.co.il' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21087035848594212571039746485010568556107102968474846560790050056873847526572616159227072908718391798352145206378877542898672462112178872221083684429052020623322740094360668441314396829043256650701891041225108284286450323034403709773719610970285523958729463683073807740855935053301535360145144637278219547050327114701483835437986675973272340095840475989673272865907683127913448072899439445318660550019737033386473536332478558095990557153014449986470292678982770630961749957239187593700226735789507927790737355094641972228585135886414083076129409643510760706239418110042130048522799967158964923521933750138938098538949 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 29b3a23f4547266cc20930673ff20e97757df493 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'liveness.bankleumi.co.il' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 009ca1983c853463752cad31f3137dabd54037abb1ffeabee615100c95927fa01617254c03d3e9c71356519b5a78a3c1f17b09ea803382f1cae54b5a3694c5800dae5ef72df20e9b014de60110fdf7883efccc8e7b2f0ba83e66f1bff78befaf42fb1c9d8afe9cd7366ef51b47d9591543a65932b0aefa6f1c08d69e411780ca70c8fcf1eb3d3bc0db033c26b488b1cb457039b8d3cf68efc95725a9d94ddb536412004113a7ccdc969051dce67d6147334726c2b309c755d87d5b7fa07955fbf2faf4a18d105497180c038f32cc50ae8d26d87f441b124d97f56d6d4776719cb1c1ecd3861f80a5998f32f05f50fcb918afa97b8829390e120fe2341641e36dcd