heel.com
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 0d:01:0e:02:e1:88:e9:42:66:d6:82:63:dc:d8:9b:14 was issued on by DigiCert, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=heel.com
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0d:01:0e:02:e1:88:e9:42:66:d6:82:63:dc:d8:9b:14Serial Number (int): 17285440424052859984848733853883865876
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c0:ac:69:8b:e9:1b:1d:db:c3:b7:74:1a:9f:85:41:a0:3c:41:e3:26
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): d9:93:e0:a7:8d:d0:9b:d4:85:b3:5e:9b:3e:7b:53:ee:5a:c3:b2:38
Fingerprint (sha256): 2f:ae:dd:71:3e:9d:eb:3a:fc:bd:0d:10:ca:e1:cd:bb:04:ae:a1:d8:a0:21:8b:51:a4:a7:13:07:68:16:02:75
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate heel.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for heel.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
heel.com
Other certificates including the domain name heel.com
(limited to 100 certificates)
*.staffbase.cloud
events.heel.com
heel.com
heel.com
*.heel.com
events.heel.com
about.heel.com
heel.com
heel.com
*.staffbase.cloud
www.learningzone.heel.com
heel.com
heel-com.prod.heel.com
h-guest.heel.com
heel-russia-ru.prod.heel.com
heel.com
firstspirit.heel.com
*.heel.com
about.heel.com
intranet.heel.com
heel.com
*.heel.com
extranet.heel.com
heel-russia-ru.prod.heel.com
intranet.heel.com
heel-russia-ru.prod.heel.com
sip.heel.com
heel.com
heel.com
csdbp.heel.com
www.heel.com
heel-be.prod.heel.com
*.heel.com
heel.com
*.heel.com
*.heel.com
www.heel.de
firstspirit.heel.com
h-guest.heel.com
intranet.heel.com
www.learningzone.heel.com
*.staffbase.cloud
lsac.heel.com
heel.com
heel-russia-ru.prod.heel.com
heel.com
events.heel.com
heel.com
heel-com.prod.heel.com
heel.com
heel.com
traumeel-com.prod.heel.com
about.heel.com
heel.com
heel-com.prod.heel.com
intranet.heel.com
*.heel.com
heel.com
events.heel.com
heel.com
intranet.heel.com
www.learningzone.heel.com
intranet.heel.com
events.heel.com
heel.com
heel.com
*.heel.com
events.heel.com
about.heel.com
heel.com
heel.com
*.staffbase.cloud
www.learningzone.heel.com
heel.com
heel-com.prod.heel.com
h-guest.heel.com
heel-russia-ru.prod.heel.com
heel.com
firstspirit.heel.com
*.heel.com
about.heel.com
intranet.heel.com
heel.com
*.heel.com
extranet.heel.com
heel-russia-ru.prod.heel.com
intranet.heel.com
heel-russia-ru.prod.heel.com
sip.heel.com
heel.com
heel.com
csdbp.heel.com
www.heel.com
heel-be.prod.heel.com
*.heel.com
heel.com
*.heel.com
*.heel.com
www.heel.de
firstspirit.heel.com
h-guest.heel.com
intranet.heel.com
www.learningzone.heel.com
*.staffbase.cloud
lsac.heel.com
heel.com
heel-russia-ru.prod.heel.com
heel.com
events.heel.com
heel.com
heel-com.prod.heel.com
heel.com
heel.com
traumeel-com.prod.heel.com
about.heel.com
heel.com
heel-com.prod.heel.com
intranet.heel.com
*.heel.com
heel.com
events.heel.com
heel.com
intranet.heel.com
www.learningzone.heel.com
intranet.heel.com
Certificate
The complete raw certificate details for heel.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHfjCCBWagAwIBAgIQDQEOAuGI6UJm1oJj3NibFDANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjQwNTEyMDAwMDAwWhcNMjQxMTEyMjM1OTU5WjATMREwDwYDVQQDEwhoZWVsLmNv bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPK39lYUXgOt1dmAKsWU 3WlJYofVckVaSBRknhVGJdf5UWofi8+yWqkWqKIe2dOiDMdckZ2VnZDMd3Qrm4CO 4WcoxLdUxgPq+kmtGn+gYCg/3bpxjPZtI/lVs9Yf9cFTXZHJ0EN+EuQuEWw8rZ5r 443Kc9berWPubE4CltbliNFlcMI/KSBofLxF8uxuoLwxyu2IEFCWkZXS5ZVihQu4 vejYoZZ3o6mQmOPGjDJkPbW5xihmXCxJK/Jec5B+1sCt7Ez9rNQyGLidgMhhIJhI MPzpL21k+XPURwrnZZV4t/8cNuMbFOvuOrbEhSqlLeaFinpS1LI7fR13JZQF0+FI E2ECAwEAAaOCA4MwggN/MB8GA1UdIwQYMBaAFKW01us2xOdrpt/EZAsBKiAEuGYj MB0GA1UdDgQWBBTArGmL6Rsd28O3dBqfhUGgPEHjJjATBgNVHREEDDAKgghoZWVs LmNvbTA+BgNVHSAENzA1MDMGBmeBDAECATApMCcGCCsGAQUFBwIBFhtodHRwOi8v d3d3LmRpZ2ljZXJ0LmNvbS9DUFMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjCBnwYDVR0fBIGXMIGUMEigRqBEhkJodHRwOi8v Y3JsMy5kaWdpY2VydC5jb20vR2VvVHJ1c3RHbG9iYWxUTFNSU0E0MDk2U0hBMjU2 MjAyMkNBMS5jcmwwSKBGoESGQmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9HZW9U cnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNybDCBhwYIKwYBBQUH AQEEezB5MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wUQYI KwYBBQUHMAKGRWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9HZW9UcnVzdEds b2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNydDAMBgNVHRMBAf8EAjAAMIIB fQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdQDuzdBk1dsazsVct520zROiModGfLzs 3sNRSFlGcR+1mwAAAY9qgloLAAAEAwBGMEQCIHoFaPz25Xv1ST0qwVPBoyoKcht0 N7oVqXsTPuvaGh4vAiAY8V5GRpO2Hw/u46PFr/erHizjHS8e4qUcfQMRkBq+AwB3 AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABj2qCWgYAAAQDAEgw RgIhAKrsfLOUEqg8uVoDRL+2O1Y+ncVi4leroJOcNuDkaOeZAiEA37fCZ+KX3n/H j3qsCj63fPx9NY0cXfd+EVlPyB42StQAdQDatr9rP7W2Ip+bwrtca+hwkXFsu1GE hTS9pD0wSNf7qwAAAY9qgloxAAAEAwBGMEQCIDENDmGLQxX9Q9PX8+xEh5iQvzGx dQNcp8QIYegtOy8HAiBwP2MuFr2fLY0zAbMDITWIQtfq+kv54L5Xi+MkuDpHiDAN BgkqhkiG9w0BAQsFAAOCAgEA4Hv7YwOm+q1gfwFNuqYT27RQpiK59QDD66xTZ7Dm ytfd3WkMbKCY1nx760F81Qwg3G4qEHrplbN3854vOk7TgM+SZPQrUk6UqzadORa9 xvFIqzHNN/CisXevO9WzkV2cCQlFED2AVTLTXtjLQk5Fb+C1rD5Ehap7wbTOo7be Rz8SdYNbwmHAfC+6FVGXosREV4kHxZ7bha0YSVchLYDcGAqLYiR1BygKg5n8aEX7 khd2tyhdpkp2ehRYyhpN1etUIhfXisupC6kJDDWWd+1ajkeTwk6M3zatJjZVBv1M 6AGap2twAXE4s/n4lrZmBy/Cj3Z03fepybjR30UZxAXH5SDQ8inwk9YTh74Xc33Q u1HY7VQqBmX3H2CX9r79uw5ZtEZ9HCXhj3lVyiuQc638lrgznKbyB4PfIypLOof9 Hc6GNC6fgOwqe0sonf6zz2xAwd8OTPQ118v7STQF3J5F+VR0wN55fx6TK5+BwvT+ 0coA4rfELBwLNy43PGlfKlI2MGgfonMn0kHRNYQhJAPC+IJugg6lhCYGlxd1Nrlu +ChnFNuejOhYKeD+VDEoXwNBVl5EoSIQ6y51nNd2ZIWtl+AinqNFyRGZEoH74loe 1GveBShVTb4MOEAUxJtCjlJo79lPzFF0jtHRAVdurgS7z1QDLvgFZwTju70T+Xqm IuE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8rf2VhReA63V2YAqxZTd aUlih9VyRVpIFGSeFUYl1/lRah+Lz7JaqRaooh7Z06IMx1yRnZWdkMx3dCubgI7h ZyjEt1TGA+r6Sa0af6BgKD/dunGM9m0j+VWz1h/1wVNdkcnQQ34S5C4RbDytnmvj jcpz1t6tY+5sTgKW1uWI0WVwwj8pIGh8vEXy7G6gvDHK7YgQUJaRldLllWKFC7i9 6NihlnejqZCY48aMMmQ9tbnGKGZcLEkr8l5zkH7WwK3sTP2s1DIYuJ2AyGEgmEgw /OkvbWT5c9RHCudllXi3/xw24xsU6+46tsSFKqUt5oWKelLUsjt9HXcllAXT4UgT YQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17285440424052859984848733853883865876 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'heel.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30640384968739989283134814063052837949832218541983848940073416690414148313270382691310487125286264120918773502751131044035947654199764686472825945743093943131611134349517280332808886765756006443671804047516852580726795779061611595402332233069658199523690757425591528225329263565928314828248951080827217741528230311442756095709942644979462555472407523046609270508688924168649594909777996478513842450324647435030337791038430915249701257304243960043546588578339315153354271102156668344342371069810611902993789552471415592565052276330275330456374010097515156795947489650973504840677343075496706777577322770475012525134689 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c0ac698be91b1ddbc3b7741a9f8541a03c41e326 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heel.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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