*.a.portals.swisslife.ch
- Swiss Life AG -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 0b:3d:53:dd:5f:95:6d:ec:7f:28:87:47:d5:b3:91:b8 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Swiss Life AG
Organization:
Swiss Life AG
Organization unit: CH/IKS
Organization unit: CH/IKS
State / Province:
Zurich
Locality: Zurich
Country: CH
Locality: Zurich
Country: CH
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:3d:53:dd:5f:95:6d:ec:7f:28:87:47:d5:b3:91:b8Serial Number (int): 14939939041007442809037351381386891704
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: eb:7a:02:4e:87:13:1f:57:fe:9e:ef:0e:12:a3:8e:a6:4e:9a:22:24
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 7e:f3:0e:95:cb:13:4c:75:8f:31:47:ea:1e:84:a1:d4:db:99:13:71
Fingerprint (sha256): 29:f9:2c:f7:80:7c:7b:28:fa:ed:d7:8d:c8:6c:44:55:97:b8:d5:1d:28:3b:6c:c7:b5:a4:8d:41:27:e7:ad:84
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate *.a.portals.swisslife.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.a.portals.swisslife.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.a.portals.swisslife.ch
Other certificates including the domain name swisslife.ch
(limited to 100 certificates)
*.f2c-b.swisslife.ch
mi.swisslife.ch
vpn.finance.swisslife.ch
standorte.swisslife.ch
immopulse.swisslife.ch
sps.uat.finance.swisslife.ch
vote.swisslife.ch
sps-bcm.finance.swisslife.ch
events.biggestfantour.com
secure07.lithium.com
mydesk.swisslife.ch
berufsleben.swisslife.ch
ras.swisslife.ch
wahlensst.swisslife.ch
kvg.swisslife.ch
mylife-apps.swisslife.ch
secure04.stage.lithium.com
tax.swisslife.ch
berufsleben.swisslife.ch
entry.swisslife.ch
mis-q.swisslife.ch
secure08.lithium.com
sportclub.swisslife.ch
secure08.lithium.com
mis-q.swisslife.ch
immopulse.swisslife.ch
secure07.lithium.com
secure07.lithium.com
apps.uat.finance.swisslife.ch
*.entry.swisslife.ch
secure04.stage.lithium.com
events.biggestfantour.com
wwf.swisslife.ch
slwebext.swisslife.ch
mylife-sms.swisslife.ch
jobs.marugame-seimen.com
mylife-ucm-bcm.swisslife.ch
pwd.swisslife.ch
asdfgasg.events.swisslife.ch
mail.swisslife.ch
*.wafcez-uat.swisslife.ch
mylife-bcm.swisslife.ch
*.f2c-uat.swisslife.ch
wlanldap.swisslife.ch
*.f2c-c.swisslife.ch
secure04.stage.lithium.com
sps.uat.finance.swisslife.ch
ras-s.swisslife.ch
vpn.finance.swisslife.ch
mylife-apps-sms.swisslife.ch
*.entry.swisslife.ch
calculator.swisslife.ch
mail2.swisslife.ch
secure08.lithium.com
sftppublic.swisslife.ch
wlanldap.swisslife.ch
mylife-sso-uat.swisslife.ch
immopulse.swisslife.ch
*.wafcez-uat.swisslife.ch
video.swisslife.ch
wlanldap.swisslife.ch
entry.swisslife.ch
magazin.swisslife.ch
secure04.stage.lithium.com
www.swisslife.ch
mi-q.swisslife.ch
sps.finance.swisslife.ch
secure04.stage.lithium.com
kundenpanel.swisslife.ch
secure07.lithium.com
secure04.stage.lithium.com
mis.swisslife.ch
www-d.swisslife.ch
wahlensl2s.swisslife.ch
mylife-ts.swisslife.ch
sftp.swisslife.ch
secure08.lithium.com
*.apps.sps.st.finance.swisslife.ch
entry-vpn.swisslife.ch
ts.st.finance.swisslife.ch
wahlenbasis.swisslife.ch
signon.swisslife.ch
partner.swisslife.ch
secure04.stage.lithium.com
*.patch-fimu.swisslife.ch
kundenpanel.swisslife.ch
*.apps.sps.st.finance.swisslife.ch
wohnvorsorge.swisslife.ch
*.wafcez.swisslife.ch
secure08.lithium.com
wendungen.swisslife.ch
secure04.stage.lithium.com
*.fimu.swisslife.ch
secure04.stage.lithium.com
immosearch.swisslife.ch
secure04.stage.lithium.com
answers-embed.campusfederal.org.pagescdn.com
hrdbint.swisslife.ch
mi.swisslife.ch
slfs1.swisslife.ch
mi.swisslife.ch
vpn.finance.swisslife.ch
standorte.swisslife.ch
immopulse.swisslife.ch
sps.uat.finance.swisslife.ch
vote.swisslife.ch
sps-bcm.finance.swisslife.ch
events.biggestfantour.com
secure07.lithium.com
mydesk.swisslife.ch
berufsleben.swisslife.ch
ras.swisslife.ch
wahlensst.swisslife.ch
kvg.swisslife.ch
mylife-apps.swisslife.ch
secure04.stage.lithium.com
tax.swisslife.ch
berufsleben.swisslife.ch
entry.swisslife.ch
mis-q.swisslife.ch
secure08.lithium.com
sportclub.swisslife.ch
secure08.lithium.com
mis-q.swisslife.ch
immopulse.swisslife.ch
secure07.lithium.com
secure07.lithium.com
apps.uat.finance.swisslife.ch
*.entry.swisslife.ch
secure04.stage.lithium.com
events.biggestfantour.com
wwf.swisslife.ch
slwebext.swisslife.ch
mylife-sms.swisslife.ch
jobs.marugame-seimen.com
mylife-ucm-bcm.swisslife.ch
pwd.swisslife.ch
asdfgasg.events.swisslife.ch
mail.swisslife.ch
*.wafcez-uat.swisslife.ch
mylife-bcm.swisslife.ch
*.f2c-uat.swisslife.ch
wlanldap.swisslife.ch
*.f2c-c.swisslife.ch
secure04.stage.lithium.com
sps.uat.finance.swisslife.ch
ras-s.swisslife.ch
vpn.finance.swisslife.ch
mylife-apps-sms.swisslife.ch
*.entry.swisslife.ch
calculator.swisslife.ch
mail2.swisslife.ch
secure08.lithium.com
sftppublic.swisslife.ch
wlanldap.swisslife.ch
mylife-sso-uat.swisslife.ch
immopulse.swisslife.ch
*.wafcez-uat.swisslife.ch
video.swisslife.ch
wlanldap.swisslife.ch
entry.swisslife.ch
magazin.swisslife.ch
secure04.stage.lithium.com
www.swisslife.ch
mi-q.swisslife.ch
sps.finance.swisslife.ch
secure04.stage.lithium.com
kundenpanel.swisslife.ch
secure07.lithium.com
secure04.stage.lithium.com
mis.swisslife.ch
www-d.swisslife.ch
wahlensl2s.swisslife.ch
mylife-ts.swisslife.ch
sftp.swisslife.ch
secure08.lithium.com
*.apps.sps.st.finance.swisslife.ch
entry-vpn.swisslife.ch
ts.st.finance.swisslife.ch
wahlenbasis.swisslife.ch
signon.swisslife.ch
partner.swisslife.ch
secure04.stage.lithium.com
*.patch-fimu.swisslife.ch
kundenpanel.swisslife.ch
*.apps.sps.st.finance.swisslife.ch
wohnvorsorge.swisslife.ch
*.wafcez.swisslife.ch
secure08.lithium.com
wendungen.swisslife.ch
secure04.stage.lithium.com
*.fimu.swisslife.ch
secure04.stage.lithium.com
immosearch.swisslife.ch
secure04.stage.lithium.com
answers-embed.campusfederal.org.pagescdn.com
hrdbint.swisslife.ch
mi.swisslife.ch
slfs1.swisslife.ch
Certificate
The complete raw certificate details for *.a.portals.swisslife.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGhDCCBWygAwIBAgIQCz1T3V+Vbex/KIdH1bORuDANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTgwNjE0MDAwMDAwWhcNMjAwNjEzMTIwMDAwWjB7MQswCQYDVQQGEwJDSDEPMA0G A1UECBMGWnVyaWNoMQ8wDQYDVQQHEwZadXJpY2gxFjAUBgNVBAoTDVN3aXNzIExp ZmUgQUcxDzANBgNVBAsTBkNIL0lLUzEhMB8GA1UEAwwYKi5hLnBvcnRhbHMuc3dp c3NsaWZlLmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxac60YlU Rw0+SQkUM5yqbrye35rkF3u5ZxuMC+t7GiSHCFCEuXI67RSDvYMez5SyqD1kHUKf LnKOqlIAkitwJ8Cf0+D3yR5Fi/TrpUY4iGwoi4WAZmwQr/twWky8ct/4JwoD8jb0 KMXvzvbjR4/PV6Sva4e3Sy2UdpkGchJqgcrgQ5MjPu0ayY/NY5YtHigKDc8iUd0I hrkBVPgUyZ0aAIKqTdxqQ3F8SQPecV1gq9vVjUUuHM38cZGEXNQfv+5JiNQzWpxV xpns3KZRm8vInFxZK6ZJ8eXi4LmL0dKQL23KEwZcva0eFtlUEUbjttJXDy1i5iXi +VRYzGHds72P7QIDAQABo4IDITCCAx0wHwYDVR0jBBgwFoAUo8heZVTlMHjBBeoH CmpZzLn+3lowHQYDVR0OBBYEFOt6Ak6HEx9X/p7vDhKjjqZOmiIkMCMGA1UdEQQc MBqCGCouYS5wb3J0YWxzLnN3aXNzbGlmZS5jaDAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDoGA1UdHwQzMDEwL6AtoCuGKWh0 dHA6Ly9jZHAudGhhd3RlLmNvbS9UaGF3dGVSU0FDQTIwMTguY3JsMEwGA1UdIARF MEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2lj ZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMG8GCCsGAQUFBwEBBGMwYTAkBggrBgEFBQcw AYYYaHR0cDovL3N0YXR1cy50aGF3dGUuY29tMDkGCCsGAQUFBzAChi1odHRwOi8v Y2FjZXJ0cy50aGF3dGUuY29tL1RoYXd0ZVJTQUNBMjAxOC5jcnQwCQYDVR0TBAIw ADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFpAHYApLkJkLQYWBSHuxOizGdwCjw1 mAT5G9+443fNDsgN3BAAAAFj/UVSbAAABAMARzBFAiEA1amZqqA1Fn0SeATQX702 6ZtfCrcO9q3CA7NWCZ7km50CIBSQKkSV91weX3U0BD4NmNhXFvxqzHHInlaJ9RE8 uWIeAHYAh3W/51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq/16ggw8AAAFj/UVTRQAA BAMARzBFAiASVC4TNIRZyictC/hsz1yPnyUN934PbEvdumbUCnlK6AIhAPjl+rO+ oWUoOE7sRqAKU5pXp1cjNrOdReWfm4jq3iLkAHcAu9nfvB+KcbWTlCOXqpJ7RzhX lQqrUugakJZkNo4e0YUAAAFj/UVSkgAABAMASDBGAiEAiRPFGtkGIjKwvbwCwEPM V1cQ8Uoo8gNi7QdP94i9aEgCIQCFoZ1yxsFt7uIJY54KKu8OcwFXVHgh9VHsLbXm qf94MTANBgkqhkiG9w0BAQsFAAOCAQEADLltnhHoCHCbwDJ7OtSP7wSmKINdc5dE EMuANckWXxTwJUT2KOL3Cp5QTRmCL5EXSssypdKFHvUKwE/egYX2o5Rjy8AJducw lf+0KonBYNlafi/RVwZxW2MbmDTAw19cgRvHckLJ/e00iWnVjvoN8jxRDKVjK0aC P0PxWe21mzzlgQy2xtNFFrEO1SbOfZJtMivXiDx0w4qcLQrTccnrXSnh3Af/yyLj WVA4dRqUr9WPHcFC/TWdqYH8INrVQoutratIBtCqkknljgneMBBzB3zd5v0BsCJx MFE1ALMmdj3+71brEKXQoenlEbP9wcqYSjKFV/QS5RVdz1M7WqLIYg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxac60YlURw0+SQkUM5yq brye35rkF3u5ZxuMC+t7GiSHCFCEuXI67RSDvYMez5SyqD1kHUKfLnKOqlIAkitw J8Cf0+D3yR5Fi/TrpUY4iGwoi4WAZmwQr/twWky8ct/4JwoD8jb0KMXvzvbjR4/P V6Sva4e3Sy2UdpkGchJqgcrgQ5MjPu0ayY/NY5YtHigKDc8iUd0IhrkBVPgUyZ0a AIKqTdxqQ3F8SQPecV1gq9vVjUUuHM38cZGEXNQfv+5JiNQzWpxVxpns3KZRm8vI nFxZK6ZJ8eXi4LmL0dKQL23KEwZcva0eFtlUEUbjttJXDy1i5iXi+VRYzGHds72P 7QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14939939041007442809037351381386891704 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zurich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zurich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Swiss Life AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH/IKS' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.a.portals.swisslife.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24951410146335210769073084735355989700571450654355303342596501719570656425974678710175386184474480723716202028654363680923344965074523428312897777287900606928092932705064841513876007669973221567852987577832892403596955182476937838409623111828291219977241765785270335664870955694978503746173927684354357292473255352910000159988167427532628977513314073716468615719471548185012099643534950695683699412260149213980586545316969752603274222994188692915726654981808324442759359672794642063950722357454663198913214304460562679189368833857017878734581109511847276077073063544569904918925231590528069806469062761902351394377709 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) eb7a024e87131f57fe9eef0e12a38ea64e9a2224 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.a.portals.swisslife.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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