firewall.grad.hr
- Gradjevinski fakultet Sveučilišta u Zagrebu -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 03:69:a1:76:5e:7f:9e:72:20:7f:5a:aa:66:02:f5:c4 was issued on by TERENA.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Gradjevinski fakultet Sveučilišta u Zagrebu
Organization:
Gradjevinski fakultet Sveučilišta u Zagrebu
Organization unit: IT ODJEL
Organization unit: IT ODJEL
Locality:
Zagreb
Country: HR
Country: HR
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 03:69:a1:76:5e:7f:9e:72:20:7f:5a:aa:66:02:f5:c4Serial Number (int): 4536150003616141863309517032360441284
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 9c:51:8b:72:2e:83:7a:ac:6e:9e:64:9f:f9:96:93:ac:98:b2:88:20
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): c7:2d:1b:7d:23:a6:c5:9e:f5:10:ce:7b:dd:72:03:83:c4:7d:20:d3
Fingerprint (sha256): 2a:9e:40:e3:ac:2b:f3:25:6e:da:27:6c:87:72:28:c7:f3:89:2d:e9:4d:8e:63:31:9f:36:53:e5:c2:c0:9a:23
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate firewall.grad.hr
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for firewall.grad.hr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
firewall.grad.hr
Other certificates including the domain name grad.hr
(limited to 100 certificates)
hr.archive.ubuntu.com
www.grad.hr
ubuntu.grad.hr
praksa.grad.hr
hr.archive.ubuntu.com
hr.archive.ubuntu.com
firewall.grad.hr
master.grad.hr
student.grad.hr
master.grad.hr
student.grad.hr
student.grad.hr
student.grad.hr
hr.archive.ubuntu.com
hr.archive.ubuntu.com
hr.archive.ubuntu.com
master.grad.hr
sage.grad.hr
www.grad.hr
hr.archive.ubuntu.com
master.grad.hr
sage.grad.hr
master.grad.hr
master.grad.hr
firewall.grad.hr
ubuntu.grad.hr
2besafe.grad.hr
hr.archive.ubuntu.com
student.grad.hr
hr.archive.ubuntu.com
ubuntu.grad.hr
www.grad.hr
ubuntu.grad.hr
praksa.grad.hr
hr.archive.ubuntu.com
hr.archive.ubuntu.com
firewall.grad.hr
master.grad.hr
student.grad.hr
master.grad.hr
student.grad.hr
student.grad.hr
student.grad.hr
hr.archive.ubuntu.com
hr.archive.ubuntu.com
hr.archive.ubuntu.com
master.grad.hr
sage.grad.hr
www.grad.hr
hr.archive.ubuntu.com
master.grad.hr
sage.grad.hr
master.grad.hr
master.grad.hr
firewall.grad.hr
ubuntu.grad.hr
2besafe.grad.hr
hr.archive.ubuntu.com
student.grad.hr
hr.archive.ubuntu.com
ubuntu.grad.hr
Certificate
The complete raw certificate details for firewall.grad.hr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGvjCCBaagAwIBAgIQA2mhdl5/nnIgf1qqZgL1xDANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xODEwMDkwMDAwMDBaFw0yMDEwMTMxMjAwMDBaMIGEMQswCQYDVQQG EwJIUjEPMA0GA1UEBxMGWmFncmViMTYwNAYDVQQKDC1HcmFkamV2aW5za2kgZmFr dWx0ZXQgU3ZldcSNaWxpxaF0YSB1IFphZ3JlYnUxETAPBgNVBAsTCElUIE9ESkVM MRkwFwYDVQQDExBmaXJld2FsbC5ncmFkLmhyMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAyC8xoBxH0wqSj3E43yAfHynt4hQ3ib36JKq6lXLTPhDmgjqB udexz8kISK9AOX5dIH5MZNumHFRHuKCkWPw3mLCw1d0AoxrLQmbw/AYL87AWDB9Y iN9toyBmKl6CZnP2R8hMImY30t1rnKNatFhbIQnDUUghqIdyZmGm9QETfoVh9wAE KvNyme56hmRbI0+IpYj0EbmU3I0Cpzlw+73ZHthuGNjYAWFfl/kIoYCPIohTez4+ ILyhQkYULcFrKblcnBfaNtCWl4gPYXy7bISBJwU+Mb61V+gvkQMKYVRfhWvittVX Gd0KWe9ojyxh5MWJwhmI/MoNZQHoHkoQDJ8+pQIDAQABo4IDSTCCA0UwHwYDVR0j BBgwFoAUZ/2IIBQnmMcJ0iUZu+lREWN1UGIwHQYDVR0OBBYEFJxRi3Iug3qsbp5k n/mWk6yYsoggMBsGA1UdEQQUMBKCEGZpcmV3YWxsLmdyYWQuaHIwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBrBgNVHR8EZDBi MC+gLaArhilodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vVEVSRU5BU1NMQ0EzLmNy bDAvoC2gK4YpaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL1RFUkVOQVNTTENBMy5j cmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwbgYIKwYBBQUHAQEEYjBg MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wOAYIKwYBBQUH MAKGLGh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9URVJFTkFTU0xDQTMuY3J0 MAwGA1UdEwEB/wQCMAAwggF8BgorBgEEAdZ5AgQCBIIBbASCAWgBZgB1AKS5CZC0 GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABZlgZ21YAAAQDAEYwRAIgeWIv iKNvjLVhjkcmymGZcDZMUJ/SyuqJwICAzu79N9wCIGTYipxDreI1dFf7bPYX8Xu5 sYfUI279nIgtqXMutcdxAHYAh3W/51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq/16g gw8AAAFmWBncGQAABAMARzBFAiAfyFOrf4E62AupWY3r8t2prcKH7Q9hWkOKuX6c vavJ3AIhANHxFjU6wmpGsKxXyWl4qNyTuzrf/crjo6EJ+ex4mZJJAHUAu9nfvB+K cbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFmWBncHwAABAMARjBEAiAeMq3B 2iw24ya8rjXhE5oCFDcgJ8qoQMaqNTJ9NoB3TwIgDIqXqfnQbXYq/3ORsAQWXivB FucV0nBoAEKzaBBstjIwDQYJKoZIhvcNAQELBQADggEBADwqXXTA2EetPAMP6hIV 6IznNfdo3xNNlD1qY1xwa/Q6ZnIa21BR2Z0zUFEurS4JbbGU8csK9ULvgi5STCib jm4D0mC8L6zixGYg0cyDEHbruJS0fTbyLmhY5+ZKtVhLELSLmBzoKNQAr5Mk6qvN NccxQno0EHQQEvnEL1LZbcIEmKrmR3tPsHKejkIqjwZj9OZ5kQQkQiDvE95a9CY9 E6oAxerF1Zn7EDC1Coj/3aWv80vn0mFZY3wtuPBRB7CSwzloAFUbba8UrWI/BoHF tqdyJRPph6VYDzPwi6jR7e///cvR+vZVjInphSQBWh8eENMpXAukIDwSIxePARzU IYE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyC8xoBxH0wqSj3E43yAf Hynt4hQ3ib36JKq6lXLTPhDmgjqBudexz8kISK9AOX5dIH5MZNumHFRHuKCkWPw3 mLCw1d0AoxrLQmbw/AYL87AWDB9YiN9toyBmKl6CZnP2R8hMImY30t1rnKNatFhb IQnDUUghqIdyZmGm9QETfoVh9wAEKvNyme56hmRbI0+IpYj0EbmU3I0Cpzlw+73Z HthuGNjYAWFfl/kIoYCPIohTez4+ILyhQkYULcFrKblcnBfaNtCWl4gPYXy7bISB JwU+Mb61V+gvkQMKYVRfhWvittVXGd0KWe9ojyxh5MWJwhmI/MoNZQHoHkoQDJ8+ pQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4536150003616141863309517032360441284 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-10-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zagreb' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Gradjevinski fakultet Sveučilišta u Zagrebu' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT ODJEL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'firewall.grad.hr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25270933147687292313780258909213753188471901478978608927626762944639660839470472322680004370978445282824503965791542035394552706032649321868877874738263612908901826346831942897705297641054169275805092496197510133754698506686758138810129845209861217602930891965709752602765934033311431579329631095916123152231066300714572634145719978383367849106241265312078190959486928733306171262087375938426020398461420090482997482654555900190710777984759546137393858896685444619546903932123534050598365938329643465060858444734724006639008606996681748248740082352675777554881499781818511618555575538693721620134676744066426164166309 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9c518b722e837aac6e9e649ff99693ac98b28820 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'firewall.grad.hr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 0166007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc10000001665819db560000040300463044022079622f88a36f8cb5618e4726ca619970364c509fd2caea89c08080ceeefd37dc022064d88a9c43ade2357457fb6cf617f17bb9b187d4236efd9c882da9732eb5c7710076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f000001665819dc19000004030047304502201fc853ab7f813ad80ba9598debf2dda9adc287ed0f615a438ab97e9cbdabc9dc022100d1f116353ac26a46b0ac57c96978a8dc93bb3adffdcae3a3a109f9ec78999249007500bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed185000001665819dc1f000004030046304402201e32adc1da2c36e326bcae35e1139a0214372027caa840c6aa35327d3680774f02200c8a97a9f9d06d762aff7391b004165e2bc116e715d270680042b368106cb632 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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