widget.bankleumi.co.il
- Bank Leumi le-Israel Ltd. -
Issued by Thawte TLS RSA CA G1
About this certificate
This digital certificate with serial number 03:95:95:2c:2d:85:9d:7c:2d:21:8e:5b:2d:21:32:bf was issued on by DigiCert Inc.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Bank Leumi le-Israel Ltd.
Organization:
Bank Leumi le-Israel Ltd.
Locality:
Tel Aviv-Yafo
Country: IL
Country: IL
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:95:95:2c:2d:85:9d:7c:2d:21:8e:5b:2d:21:32:bfSerial Number (int): 4764361798434887940041873765592806079
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 8c:41:9d:01:25:ce:05:a7:a9:88:a8:2e:43:71:29:87:5a:fd:af:4b
AuthorityKeyId: a5:8c:fe:32:cc:eb:0f:2c:d4:19:c6:08:b8:00:24:88:5d:c3:c5:b7
Fingerprint (sha1): 02:37:03:d0:98:89:b5:8f:30:93:3a:20:26:c3:68:d0:20:04:9f:50
Fingerprint (sha256): 2a:2a:7b:f0:76:8b:86:8b:0c:61:41:d8:f6:6d:0b:46:7a:1e:e1:b1:80:18:d1:09:8f:00:d3:9f:b5:06:fb:79
Issuing Certificate URL: http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteTLSRSACAG1.crl
Check the revocation status for certificate widget.bankleumi.co.il
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for widget.bankleumi.co.il
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
widget.bankleumi.co.il
Other certificates including the domain name bankleumi.co.il
(limited to 100 certificates)
hb5wap.bankleumi.co.il
accessibility.bankleumi.co.il
widget.bankleumi.co.il
streamer.bankleumi.co.il
incomingcredit.bankleumi.co.il
akamai-san17.exacttarget.com
hb2.bankleumi.co.il
livenesshb3.bankleumi.co.il
lti-content.bankleumi.co.il
ufapi.bankleumi.co.il
liveness.bankleumi.co.il
akamai-san17.exacttarget.com
leumiservices-msr.bankleumi.co.il
incomingcredit5.bankleumi.co.il
lfxt.bankleumi.co.il
mobile.bankleumi.co.il
akamai-san17.exacttarget.com
forms-stg.bankleumi.co.il
mft.bankleumi.co.il
cellular.bankleumi.co.il
sdc.bankleumi.co.il
cache.bankleumi.co.il
accessibilitys.bankleumi.co.il
appdynlib.bankleumi.co.il
www.bankleumi.co.il
exp2.bankleumi.co.il
lyncweb.bankleumi.co.il
tradair.bankleumi.co.il
encmail.bankleumi.co.il
accessibilitys.bankleumi.co.il
ufapihb3.bankleumi.co.il
securemail.bankleumi.co.il
cache.bankleumi.co.il
sa5.bankleumi.co.il
*.bankleumi.co.il
cloud.digital.bankleumi.co.il
accessibilitys.bankleumi.co.il
Securemail.bankleumi.co.il
sa3.bankleumi.co.il
cellulardlv.bankleumi.co.il
prpn.bankleumi.co.il
apiportal.bankleumi.co.il
accessibility.bankleumi.co.il
streamer.bankleumi.co.il
hb3wap.bankleumi.co.il
akamai-san17.exacttarget.com
securemail.bankleumi.co.il
securemail.bankleumi.co.il
www.bankleumi.co.il
accessibility.bankleumi.co.il
access.bankleumi.co.il
hb5wap.bankleumi.co.il
prodapi.bankleumi.co.il
leumiservices.bankleumi.co.il
trade.bankleumi.co.il
e-learning.bankleumi.co.il
liveness.bankleumi.co.il
e-learning.bankleumi.co.il
sdc.bankleumi.co.il
widget.bankleumi.co.il
lfxt.bankleumi.co.il
hbwaptest.bankleumi.co.il
service-stg7.bankleumi.co.il
hb3wap.bankleumi.co.il
cache.bankleumi.co.il
e-learning.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
e-learning.bankleumi.co.il
sa5.bankleumi.co.il
trade.bankleumi.co.il
hb2.bankleumi.co.il
apidev.bankleumi.co.il
access.bankleumi.co.il
sdc.bankleumi.co.il
apidev.bankleumi.co.il
oobstg.bankleumi.co.il
service.bankleumi.co.il
video.bankleumi.co.il
lfxt.bankleumi.co.il
appdynlib.bankleumi.co.il
hb2.bankleumi.co.il
encmail.bankleumi.co.il
sa3.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
lyncweb.bankleumi.co.il
widget.bankleumi.co.il
help.bankleumi.co.il
ufapi.bankleumi.co.il
cache.bankleumi.co.il
akamai-san17.exacttarget.com
oob.bankleumi.co.il
ufapi.bankleumi.co.il
apitest.bankleumi.co.il
appdynlib.bankleumi.co.il
access.bankleumi.co.il
streamer.bankleumi.co.il
ocrhb3.bankleumi.co.il
hb2.bankleumi.co.il
ufapihb1.bankleumi.co.il
mobile.bankleumi.co.il
accessibility.bankleumi.co.il
widget.bankleumi.co.il
streamer.bankleumi.co.il
incomingcredit.bankleumi.co.il
akamai-san17.exacttarget.com
hb2.bankleumi.co.il
livenesshb3.bankleumi.co.il
lti-content.bankleumi.co.il
ufapi.bankleumi.co.il
liveness.bankleumi.co.il
akamai-san17.exacttarget.com
leumiservices-msr.bankleumi.co.il
incomingcredit5.bankleumi.co.il
lfxt.bankleumi.co.il
mobile.bankleumi.co.il
akamai-san17.exacttarget.com
forms-stg.bankleumi.co.il
mft.bankleumi.co.il
cellular.bankleumi.co.il
sdc.bankleumi.co.il
cache.bankleumi.co.il
accessibilitys.bankleumi.co.il
appdynlib.bankleumi.co.il
www.bankleumi.co.il
exp2.bankleumi.co.il
lyncweb.bankleumi.co.il
tradair.bankleumi.co.il
encmail.bankleumi.co.il
accessibilitys.bankleumi.co.il
ufapihb3.bankleumi.co.il
securemail.bankleumi.co.il
cache.bankleumi.co.il
sa5.bankleumi.co.il
*.bankleumi.co.il
cloud.digital.bankleumi.co.il
accessibilitys.bankleumi.co.il
Securemail.bankleumi.co.il
sa3.bankleumi.co.il
cellulardlv.bankleumi.co.il
prpn.bankleumi.co.il
apiportal.bankleumi.co.il
accessibility.bankleumi.co.il
streamer.bankleumi.co.il
hb3wap.bankleumi.co.il
akamai-san17.exacttarget.com
securemail.bankleumi.co.il
securemail.bankleumi.co.il
www.bankleumi.co.il
accessibility.bankleumi.co.il
access.bankleumi.co.il
hb5wap.bankleumi.co.il
prodapi.bankleumi.co.il
leumiservices.bankleumi.co.il
trade.bankleumi.co.il
e-learning.bankleumi.co.il
liveness.bankleumi.co.il
e-learning.bankleumi.co.il
sdc.bankleumi.co.il
widget.bankleumi.co.il
lfxt.bankleumi.co.il
hbwaptest.bankleumi.co.il
service-stg7.bankleumi.co.il
hb3wap.bankleumi.co.il
cache.bankleumi.co.il
e-learning.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
e-learning.bankleumi.co.il
sa5.bankleumi.co.il
trade.bankleumi.co.il
hb2.bankleumi.co.il
apidev.bankleumi.co.il
access.bankleumi.co.il
sdc.bankleumi.co.il
apidev.bankleumi.co.il
oobstg.bankleumi.co.il
service.bankleumi.co.il
video.bankleumi.co.il
lfxt.bankleumi.co.il
appdynlib.bankleumi.co.il
hb2.bankleumi.co.il
encmail.bankleumi.co.il
sa3.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
lyncweb.bankleumi.co.il
widget.bankleumi.co.il
help.bankleumi.co.il
ufapi.bankleumi.co.il
cache.bankleumi.co.il
akamai-san17.exacttarget.com
oob.bankleumi.co.il
ufapi.bankleumi.co.il
apitest.bankleumi.co.il
appdynlib.bankleumi.co.il
access.bankleumi.co.il
streamer.bankleumi.co.il
ocrhb3.bankleumi.co.il
hb2.bankleumi.co.il
ufapihb1.bankleumi.co.il
mobile.bankleumi.co.il
Certificate
The complete raw certificate details for widget.bankleumi.co.il in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZzCCBU+gAwIBAgIQA5WVLC2FnXwtIY5bLSEyvzANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRUaGF3dGUgVExTIFJTQSBDQSBHMTAe Fw0yMzEwMjMwMDAwMDBaFw0yNDExMjAyMzU5NTlaMGoxCzAJBgNVBAYTAklMMRYw FAYDVQQHEw1UZWwgQXZpdi1ZYWZvMSIwIAYDVQQKExlCYW5rIExldW1pIGxlLUlz cmFlbCBMdGQuMR8wHQYDVQQDExZ3aWRnZXQuYmFua2xldW1pLmNvLmlsMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgKX6twFFzxJd7qTobbD5g9gpLtYa ytcrfVeCAgxmoDBN0LAx73mD+50XEiMwvGGccd/zK/pSwosvuCFB/Wbcx8/qPFaB AWbLBszfhOMqsiueUoNdO60yMTHEEu645GQon6lWo03yBJj9KWrOMDoPeVdGB7Zw hRWp2I7bjWzT9wbsZQRpibVmbp7x/mYU4mtyIr0t2IiZkCnHOsojZv4JefQxTWU2 omMMyP3OwzVXzXQ8NbdkCk5u8nffuwtCBqWZ+a7ivo2EHc+/iTTEMX1VnSnUX7l2 oP3AhIr/E1/7tCSDrFjiyYsmY9K4wnAF61cjFJ9HdpjjZaNkAc8zc1rAdwIDAQAB o4IDEzCCAw8wHwYDVR0jBBgwFoAUpYz+MszrDyzUGcYIuAAkiF3DxbcwHQYDVR0O BBYEFIxBnQElzgWnqYioLkNxKYda/a9LMCEGA1UdEQQaMBiCFndpZGdldC5iYW5r bGV1bWkuY28uaWwwPgYDVR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEFBQcCARYb aHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0 cDovL2NkcC50aGF3dGUuY29tL1RoYXd0ZVRMU1JTQUNBRzEuY3JsMHAGCCsGAQUF BwEBBGQwYjAkBggrBgEFBQcwAYYYaHR0cDovL3N0YXR1cy50aGF3dGUuY29tMDoG CCsGAQUFBzAChi5odHRwOi8vY2FjZXJ0cy50aGF3dGUuY29tL1RoYXd0ZVRMU1JT QUNBRzEuY3J0MAwGA1UdEwEB/wQCMAAwggF8BgorBgEEAdZ5AgQCBIIBbASCAWgB ZgB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABi1wlU/MAAAQD AEcwRQIhAPPXaQe0V6Vlmt6CeEPRh+KTppcQz/cRwPEkDUd3W3nCAiAyZ2cUhEd1 8FaYVkRGn1ACudp4T3t0y5WZFbSoaLyqzAB1AEiw42vapkc0D+VqAvqdMOscUgHL Vt0sgdm7v6s52IRzAAABi1wlU5YAAAQDAEYwRAIgXKuBDtksevg0uj5QCLYGwO5k 9l67fEii6JtQwpKkbZYCIF7ZahA8sgNr4TFgl0KEax5RFdy5qWRHZIqXnV9tCmO0 AHUA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGLXCVThgAABAMA RjBEAiBrI/+cyWgU32rb9BBpokF0Hujvw2VRgKWSO9u98i1K5AIgYov/tRWYdsCi vujO8RxW3TKFCRvqqvXfoCEyKX80JMMwDQYJKoZIhvcNAQELBQADggEBAIiJp+Bz /cxyps5O1GhWKF8ERok/AHkGzBV1JFhKESewPuxr5+HkG/OeR7CGapVDLRNGLvp0 PvWdgDahPQOuC67YYmXVojoGp7ag+7O8t2WrcUQzmWQ2OChag/Ly/VKyagaxoHmG RGaGOWZEShNQKzylJGKTwvb+j4byU6mNyMvP6oAjvC9h7hqTuhcuQq6ewN1oLbiC e90xV8yYCF42rinBlgBHmueuCdQ6+yfAMnX0NUzprNoCoQcLrtyQ5Ywia7jOa2IT OH1KwbvRJChVP8TwxJpeZNErkzXWGGmsj0XppuHM93phWGRMoDvNf+8TBcxQsAXw oaR6+OOIDNXT5zE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgKX6twFFzxJd7qTobbD5 g9gpLtYaytcrfVeCAgxmoDBN0LAx73mD+50XEiMwvGGccd/zK/pSwosvuCFB/Wbc x8/qPFaBAWbLBszfhOMqsiueUoNdO60yMTHEEu645GQon6lWo03yBJj9KWrOMDoP eVdGB7ZwhRWp2I7bjWzT9wbsZQRpibVmbp7x/mYU4mtyIr0t2IiZkCnHOsojZv4J efQxTWU2omMMyP3OwzVXzXQ8NbdkCk5u8nffuwtCBqWZ+a7ivo2EHc+/iTTEMX1V nSnUX7l2oP3AhIr/E1/7tCSDrFjiyYsmY9K4wnAF61cjFJ9HdpjjZaNkAc8zc1rA dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4764361798434887940041873765592806079 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-20 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Tel Aviv-Yafo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bank Leumi le-Israel Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'widget.bankleumi.co.il' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16240350506070583289862062190454359152474629461999399053275457598361782123460594010754719212760442061565086290469761562568170250191962632486334320784436812393037915956314940667799417797132720307770589269469658706886364915543980394707147057395618802005160301974843861617518516961428072614940352929276887806789993542746905645031692873748444033619818317032741532202263055763397403744524532220321262353999849930974579314088217233460777474358105160249405785957415190843494510414061179409278486160644613349455438830856623510124792451973515207960142803983026279701754196715167307181670227675990707011274938132521163115118711 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a58cfe32cceb0f2cd419c608b80024885dc3c5b7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8c419d0125ce05a7a988a82e437129875afdaf4b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'widget.bankleumi.co.il' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 0166007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018b5c2553f30000040300473045022100f3d76907b457a5659ade827843d187e293a69710cff711c0f1240d47775b79c2022032676714844775f056985644469f5002b9da784f7b74cb959915b4a868bcaacc00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018b5c255396000004030046304402205cab810ed92c7af834ba3e5008b606c0ee64f65ebb7c48a2e89b50c292a46d9602205ed96a103cb2036be131609742846b1e5115dcb9a96447648a979d5f6d0a63b4007500dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b5c255386000004030046304402206b23ff9cc96814df6adbf41069a241741ee8efc3655180a5923bdbbdf22d4ae40220628bffb5159876c0a2bee8cef11c56dd3285091beaaaf5dfa02132297f3424c3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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