*.thismoment.com
Issued by RapidSSL CA
About this certificate
This digital certificate with serial number 11:d9:dc was issued on by GeoTrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
SERIALNUMBER=WPKZN2UI5sxNTXWD-Mxhjq1GfYHDZqU/,CN=*.thismoment.com,OU=GT53576152+OU=See www.rapidssl.com/resources/cps (c)12+OU=Domain Control Validated - RapidSSL(R)
GeoTrust, Inc.
Organization:
GeoTrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 11:d9:dcSerial Number (int): 1169884
Serial Number lenght: 21 bits, 3 octets
SubjectKeyId: 53:3c:a4:b5:f8:dd:b8:e7:50:b2:13:d5:04:4d:35:c5:1a:d4:e3:66
AuthorityKeyId: 6b:69:3d:6a:18:42:4a:dd:8f:02:65:39:fd:35:24:86:78:91:16:30
Fingerprint (sha1): 46:28:88:66:39:0f:4e:48:9a:1b:e9:6d:4b:0c:19:c2:90:2b:fb:c9
Fingerprint (sha256): 29:4a:8c:96:d0:e0:78:b1:1e:cc:3c:17:fb:0f:d4:5b:22:4d:b0:8c:f1:a4:82:50:36:1e:32:87:8d:e3:c4:49
Issuing Certificate URL: http://rapidssl-aia.geotrust.com/rapidssl.crt
Revocation information
OCSP Server: http://rapidssl-ocsp.geotrust.comCRL Distribution Point: http://rapidssl-crl.geotrust.com/crls/rapidssl.crl
Check the revocation status for certificate *.thismoment.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.thismoment.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.thismoment.com
thismoment.com
thismoment.com
Other certificates including the domain name thismoment.com
(limited to 100 certificates)
www.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
guru.thismoment.com
*.thismoment.com
*.preview.thismoment.com
*.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
*.preview.thismoment.com
*.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
xp.thismoment.com
xp.thismoment.com
disney.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
*.thismoment.com
xp.thismoment.com
*.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
*.preview.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
support.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
*.dev.thismoment.com
www.thismoment.com
info.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
guru.thismoment.com
*.thismoment.com
*.preview.thismoment.com
*.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
*.preview.thismoment.com
*.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
xp.thismoment.com
xp.thismoment.com
disney.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
*.thismoment.com
xp.thismoment.com
*.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
*.preview.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
support.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
*.dev.thismoment.com
www.thismoment.com
info.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
Certificate
The complete raw certificate details for *.thismoment.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgIDEdncMA0GCSqGSIb3DQEBBQUAMDwxCzAJBgNVBAYTAlVT MRcwFQYDVQQKEw5HZW9UcnVzdCwgSW5jLjEUMBIGA1UEAxMLUmFwaWRTU0wgQ0Ew HhcNMTQwNDA4MTAzMTU2WhcNMTUwMzE0MDc1MjM1WjCBvzEpMCcGA1UEBRMgV1BL Wk4yVUk1c3hOVFhXRC1NeGhqcTFHZllIRFpxVS8xEzARBgNVBAsTCkdUNTM1NzYx NTIxMTAvBgNVBAsTKFNlZSB3d3cucmFwaWRzc2wuY29tL3Jlc291cmNlcy9jcHMg KGMpMTIxLzAtBgNVBAsTJkRvbWFpbiBDb250cm9sIFZhbGlkYXRlZCAtIFJhcGlk U1NMKFIpMRkwFwYDVQQDDBAqLnRoaXNtb21lbnQuY29tMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEA8ZipF1YRfTe8vOzl81rLB7hYKk0OIWTi5OC1+078 NbiToxvGJKduCRWsPfrd07A4E+PcFtLxdNsJHmWylTMlHSLDDmgVtkBl160BFh9k pEr129o1va+AwVn9k8XvtNb+fI7OlutFzQY0gu8Y1YA6wwZrry/mWuEXdujAgXUj 3pLC10+4saJkgVBNEx2h2d9iB78uwaBTzY/uiF5UxyCdyI4DgrFkCVONIEd1j4nt xnOeT5jXmh3bGfoQ9O6hNeuxT9AvwujLAVXGfh47I9kTiWEG6c+C4/8iM9Wj4gU7 mfO/cB43nKsDA4jklsjSNgQIDILwHF6gdySAsS6mPEm0AQIDAQABo4IBuzCCAbcw HwYDVR0jBBgwFoAUa2k9ahhCSt2PAmU5/TUkhniRFjAwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjArBgNVHREEJDAighAqLnRo aXNtb21lbnQuY29tgg50aGlzbW9tZW50LmNvbTBDBgNVHR8EPDA6MDigNqA0hjJo dHRwOi8vcmFwaWRzc2wtY3JsLmdlb3RydXN0LmNvbS9jcmxzL3JhcGlkc3NsLmNy bDAdBgNVHQ4EFgQUUzyktfjduOdQshPVBE01xRrU42YwDAYDVR0TAQH/BAIwADB4 BggrBgEFBQcBAQRsMGowLQYIKwYBBQUHMAGGIWh0dHA6Ly9yYXBpZHNzbC1vY3Nw Lmdlb3RydXN0LmNvbTA5BggrBgEFBQcwAoYtaHR0cDovL3JhcGlkc3NsLWFpYS5n ZW90cnVzdC5jb20vcmFwaWRzc2wuY3J0MEwGA1UdIARFMEMwQQYKYIZIAYb4RQEH NjAzMDEGCCsGAQUFBwIBFiVodHRwOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJj ZXMvY3BzMA0GCSqGSIb3DQEBBQUAA4IBAQDHOTaIUDCoXTeChTwUS44O601bLCpB S+RTrZO5z+0Q3KYYxXrrKIBSUftGFvT5ghoo9I9haSqh6bFFcCLSZF5g5R8vZ/6H ZEKwkWP0bfDjHskI2nAk6mwDAnbkXuD8XMHM1WFrJ1bCIpPQOwNgM37uSoFYI/td q5xS4U2JHm5QC4lBfp+Rdc2mUvckwOYPLCvbCkKnEsXMS2zLwa4Pg0L771O2k0y+ vXVP7Orbf6XEE24vq0aCvB8TJEUTSFnMwBFMfo+iyFQbbirX9Y8tqzLyedqyijDG fCDP1RpUEqAiUSWziBx33u7IpufKnT5PlH9FZDlMndq1tQvtgqho/LlA -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8ZipF1YRfTe8vOzl81rL B7hYKk0OIWTi5OC1+078NbiToxvGJKduCRWsPfrd07A4E+PcFtLxdNsJHmWylTMl HSLDDmgVtkBl160BFh9kpEr129o1va+AwVn9k8XvtNb+fI7OlutFzQY0gu8Y1YA6 wwZrry/mWuEXdujAgXUj3pLC10+4saJkgVBNEx2h2d9iB78uwaBTzY/uiF5UxyCd yI4DgrFkCVONIEd1j4ntxnOeT5jXmh3bGfoQ9O6hNeuxT9AvwujLAVXGfh47I9kT iWEG6c+C4/8iM9Wj4gU7mfO/cB43nKsDA4jklsjSNgQIDILwHF6gdySAsS6mPEm0 AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1169884 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-04-08 10:31:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-03-14 07:52:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WPKZN2UI5sxNTXWD-Mxhjq1GfYHDZqU/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT53576152' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)12' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.thismoment.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30498711201164149561180005745652862199873805832123464999342187225048233723952696196806661393476593006867374460972228472966963678747248619277599651535599475580965353099924311902594877781702744340676808814537440087869431695774963314986806929616065907283129408991974982755522028168005017159110702305558330270194029503730762977556468091752028574040423685941981220061067818534867613650923822194348351147332031189964030528636267953769413951339359479673907893187519636597328165732302534460586147511648511794606844358195997818450569852380544851144045275063728241204420031195955902848267929272342121544219028223898883665277953 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b693d6a18424add8f026539fd35248678911630 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.thismoment.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thismoment.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-crl.geotrust.com/crls/rapidssl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 533ca4b5f8ddb8e750b213d5044d35c51ad4e366 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-ocsp.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-aia.geotrust.com/rapidssl.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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