www.avis.nl
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 06:ac:db:5b:93:64:ec:e7:5b:b1:14:60:7a:e8:f2:cc was issued on by DigiCert, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.avis.nl
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:ac:db:5b:93:64:ec:e7:5b:b1:14:60:7a:e8:f2:ccSerial Number (int): 8872892137459781875401764006970061516
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 3a:9a:1a:82:7b:58:f2:f7:f4:67:1f:12:9d:bb:af:78:22:49:d7:ab
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): 4c:bc:83:ec:d7:e4:2c:f5:83:7d:06:0c:b5:20:67:c5:ad:2c:44:a5
Fingerprint (sha256): 2a:06:9c:ab:6d:e7:a6:2d:2b:c6:69:ac:09:e4:01:0c:a2:d0:f6:5e:4c:37:60:7b:83:f5:d4:f0:85:e9:7f:45
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate www.avis.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.avis.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.avis.nl
Other certificates including the domain name avis.nl
(limited to 100 certificates)
*.avis.fr
avis.nl
mirror.avis.co.uk
www.avis.es
www.avis.fr
mirror.avis.co.uk
origin-mirror.avis.co.uk
mirror.avis.co.uk
secure.avis.fr
avis.nl
*.avis.fr
www.avis.fr
*.avis.fr
avis.nl
avis.nl
nl.avis.nl
mirror.avis.co.uk
www.avis.nl
*.avis.co.uk
uat.avis.co.uk
*.avis.fr
secureanalytics.avis.be
secureanalytics.avis.at
secureanalytics.avis.nl
*.avis.co.uk
*.avis.fr
reporting.avis.nl
nl.avis.nl
avisassets.abgemea.com
mirror.avis.fr
secureanalytics.avis.be
secureanalytics.avis.co.uk
mirror.avis.co.uk
uat.avis.co.uk
*.avis.fr
mirror.avis.de
www.avis.de
mirror.avis.es
*.avis.co.uk
secure-mirror.avis.es
mirror.avis.co.uk
*.avis.fr
secureanalytics.avis.at
mirror.avis.de
reporting.avis.nl
*.avis.co.uk
secure.avis.es
secure.avis.de
*.avis.fr
mirror.avis.co.uk
mirror.avis.co.uk
*.avis.co.uk
mirror.avis.fr
www.avis.es
nl.avis.nl
secureanalytics.avis.nl
reporting.avis.nl
reporting.avis.nl
origin.avis.ma
avis.nl
mirror.avis.co.uk
*.avis.fr
www.avisautonoleggio.it
www.avis.de
*.avis.fr
secure.avis.nl
mirror.avis.de
*.avis.fr
secure.avis.es
mirror.avis.co.uk
*.avis.fr
*.avis.fr
mirror.avis.co.uk
*.avis.fr
www.avis.nl
*.avis.fr
mirror.avis.co.uk
mirror.avis.co.uk
*.avis.fr
reporting.avis.nl
mirror.avis.fr
secureanalytics.avis.at
mirror.avis.co.uk
secure.avis.fr
mirror.avis.co.uk
origin.avis.fr
www.avis.nl
*.avis.fr
www.avis.co.uk
secure.avis.nl
avis.nl
mirror.avis.co.uk
www.avis.es
www.avis.fr
mirror.avis.co.uk
origin-mirror.avis.co.uk
mirror.avis.co.uk
secure.avis.fr
avis.nl
*.avis.fr
www.avis.fr
*.avis.fr
avis.nl
avis.nl
nl.avis.nl
mirror.avis.co.uk
www.avis.nl
*.avis.co.uk
uat.avis.co.uk
*.avis.fr
secureanalytics.avis.be
secureanalytics.avis.at
secureanalytics.avis.nl
*.avis.co.uk
*.avis.fr
reporting.avis.nl
nl.avis.nl
avisassets.abgemea.com
mirror.avis.fr
secureanalytics.avis.be
secureanalytics.avis.co.uk
mirror.avis.co.uk
uat.avis.co.uk
*.avis.fr
mirror.avis.de
www.avis.de
mirror.avis.es
*.avis.co.uk
secure-mirror.avis.es
mirror.avis.co.uk
*.avis.fr
secureanalytics.avis.at
mirror.avis.de
reporting.avis.nl
*.avis.co.uk
secure.avis.es
secure.avis.de
*.avis.fr
mirror.avis.co.uk
mirror.avis.co.uk
*.avis.co.uk
mirror.avis.fr
www.avis.es
nl.avis.nl
secureanalytics.avis.nl
reporting.avis.nl
reporting.avis.nl
origin.avis.ma
avis.nl
mirror.avis.co.uk
*.avis.fr
www.avisautonoleggio.it
www.avis.de
*.avis.fr
secure.avis.nl
mirror.avis.de
*.avis.fr
secure.avis.es
mirror.avis.co.uk
*.avis.fr
*.avis.fr
mirror.avis.co.uk
*.avis.fr
www.avis.nl
*.avis.fr
mirror.avis.co.uk
mirror.avis.co.uk
*.avis.fr
reporting.avis.nl
mirror.avis.fr
secureanalytics.avis.at
mirror.avis.co.uk
secure.avis.fr
mirror.avis.co.uk
origin.avis.fr
www.avis.nl
*.avis.fr
www.avis.co.uk
secure.avis.nl
Certificate
The complete raw certificate details for www.avis.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHhzCCBW+gAwIBAgIQBqzbW5Nk7OdbsRRgeujyzDANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjMxMjA1MDAwMDAwWhcNMjQwNjA1MjM1OTU5WjAWMRQwEgYDVQQDEwt3d3cuYXZp cy5ubDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMTDh+r3BhvIwxqd CtEtS+PuaWcsK8OSxDMnl2rjxhexonEFbjNrXHh3oeoDof69PKFwutNinOswXkoW EnTRSD5KwJvQesDyeBkjnNaWdIAc5zoMc8zqr/m7F97ixs5EvD/Yyy0PNifN3raR SqlERcJlQK75QMLRXaSKrLcLzWt0MIPlq0pzCSydVTSXSRu9PhRSL5kOlnfbVsX5 El5UH3tM/2QD1nSaxamsb3ZiQt2c1x30GvhPlbJ3j4ceuTwbB1cc6lbghbqAgocr 7LMUUEBsk4krL1n5N7EjGxKyr71KV8PgfSKbK2qJHjQYlweqaJBRR8avlzQUjdtM YtaZvQECAwEAAaOCA4kwggOFMB8GA1UdIwQYMBaAFKW01us2xOdrpt/EZAsBKiAE uGYjMB0GA1UdDgQWBBQ6mhqCe1jy9/RnHxKdu694IknXqzAWBgNVHREEDzANggt3 d3cuYXZpcy5ubDA+BgNVHSAENzA1MDMGBmeBDAECATApMCcGCCsGAQUFBwIBFhto dHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBnwYDVR0fBIGXMIGUMEigRqBEhkJo dHRwOi8vY3JsMy5kaWdpY2VydC5jb20vR2VvVHJ1c3RHbG9iYWxUTFNSU0E0MDk2 U0hBMjU2MjAyMkNBMS5jcmwwSKBGoESGQmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNv bS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNybDCBhwYI KwYBBQUHAQEEezB5MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5j b20wUQYIKwYBBQUHMAKGRWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9HZW9U cnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNydDAMBgNVHRMBAf8E AjAAMIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoAdwDuzdBk1dsazsVct520zROi ModGfLzs3sNRSFlGcR+1mwAAAYw8EVQHAAAEAwBIMEYCIQDh3mO2kMJidmZ9WNTf 1lw0RpZ3TFqMygnVWiH4uU8uCAIhAP3prew30QiHLRhzL0GltHs3+VwSFZR8L3zF O9rniKbbAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGMPBFU FgAABAMARzBFAiBX2iv6Zi8vS6rBwkXeHkaFD0Bd0QArVyiDV6qrukPLFAIhAMtG 3Ss7AZ2jaBL8PbrXQLFjW2WNh4md1MKf3Rudh28CAHcA2ra/az+1tiKfm8K7XGvo cJFxbLtRhIU0vaQ9MEjX+6sAAAGMPBFUEwAABAMASDBGAiEAloyuOw1/i0o4MCcc S0dsFNHI2Vpw60+SE4065zueO+oCIQCwcY6SrKes17uO94b4kp1JB4Io3xXQS9E1 C7LrqJ92JjANBgkqhkiG9w0BAQsFAAOCAgEAGhNVmhBDTNHB3ptTT1z4AQf7ceSU AabF3LIzhSkN7Vf8G7U263mz437WBPde/v/lMekpFKkqkPnt4wvvWjkNTz0f1Qxy eyGC2bCOzMUgvOeIgy95j3V4IYZ79jRo+GboKjpdmUT1ZM25oXm9Z819pyq0dLBU +v2+IABIqd1vE03lLBhLW2Ph5RULBEY2r8wXUGjiSEDsG9EEPAuCxtuhaNf08SSl t8AWsq9KrE6rWC5ifJoMt45suZlVvLOBBCik5kuvJ8nG3BQOrSboD75gBmLlYYLx pXjQgOFSWnI+qQH/lONcVhYYuORtZ2XLnAMo4vV4iW4vN52GH+trb+AsEcASXrze PZE+2KWZcl8Lajmy2E8lZCXWxY2SeCLINjjraf9J2BzHl7+5s3V0n8pYkQWxgWVk Ta1dF2sNA4ZwHe77koMii19D3L4udC8vDzKa4Q6FEi0EvuM7rPagN5mB+OcBCxqI OjUBq6UC06H/aqjNwe442YnJvbq+52/bendjq3lJJL3bpGCJQBL/7rfX3hVCFuhf kbnCCFdji3rHS0vxzWqsYRV5mHXINsJiB+Xz+5/FFp7tMtLZEB6B+q6ZBkdkQilY IxbrFAoVyTFOrZhC3RSoDWosNSohgtCycIsORb/yF8RQonrkI4Yo1sBsjyViCfqL OhhzR8O7L8XAdJg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMOH6vcGG8jDGp0K0S1L 4+5pZywrw5LEMyeXauPGF7GicQVuM2tceHeh6gOh/r08oXC602Kc6zBeShYSdNFI PkrAm9B6wPJ4GSOc1pZ0gBznOgxzzOqv+bsX3uLGzkS8P9jLLQ82J83etpFKqURF wmVArvlAwtFdpIqstwvNa3Qwg+WrSnMJLJ1VNJdJG70+FFIvmQ6Wd9tWxfkSXlQf e0z/ZAPWdJrFqaxvdmJC3ZzXHfQa+E+VsnePhx65PBsHVxzqVuCFuoCChyvssxRQ QGyTiSsvWfk3sSMbErKvvUpXw+B9IpsraokeNBiXB6pokFFHxq+XNBSN20xi1pm9 AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8872892137459781875401764006970061516 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.avis.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24839127668071074652712694628223967211155877172220361097835651681878938270327527430863666042484708900183810043513648677343699891468221507422872411506689429962992015249249326570811095217067564591298407194301865707609050233360563433728359179787731561289592941472099720302422355258091767995351226221146813004544479188640344484393122434147336625755744275578619221941166563881694743171377462599549891141536903878790971106274106953795657254759280104047630630585968359092427555214315587605510496428391292831253199722576859726316396608894919762180267793170835978319585153250734957238832461173728959033928092749048931369467137 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3a9a1a827b58f2f7f4671f129dbbaf782249d7ab . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avis.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 016a007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c3c1154070000040300483046022100e1de63b690c26276667d58d4dfd65c344696774c5a8cca09d55a21f8b94f2e08022100fde9adec37d108872d18732f41a5b47b37f95c1215947c2f7cc53bdae788a6db00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c3c1154160000040300473045022057da2bfa662f2f4baac1c245de1e46850f405dd1002b57288357aaabba43cb14022100cb46dd2b3b019da36812fc3dbad740b1635b658d87899dd4c29fdd1b9d876f02007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018c3c1154130000040300483046022100968cae3b0d7f8b4a3830271c4b476c14d1c8d95a70eb4f92138d3ae73b9e3bea022100b0718e92aca7acd7bb8ef786f8929d49078228df15d04bd1350bb2eba89f7626 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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