git.sierrasoftworks.com
Issued by StartCom Class 1 Primary Intermediate Server CA
About this certificate
This digital certificate with serial number 06:77:3d:cd:d2:7c:1b was issued on by StartCom Ltd..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DigitalSignature KeyEncipherment KeyAgreement] (00010101) inconsistent with ExtKeyUsage serverAuth The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber certificate with an RSA key contains invalid key usage(s): KeyUsageKeyAgreement Key usage values digitalSignature, nonRepudiation, keyEncipherment, and dataEncipherment may only be present in an end entity certificate with an RSA key (RFC 3279: 2.3.1)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Compliant certificates SHOULD NOT use the noticeRef option (RFC 5280: 4.2.1.4)
- Compliant certificates should use the utf8string encoding for explicitText (RFC 6818: 3)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=git.sierrasoftworks.com,C=ZA,1.2.840.113549.1.9.1=#0c1b636f6e7461637440736965727261736f6674776f726b732e636f6d
StartCom Ltd.
Organization:
StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Organization unit: Secure Digital Certificate Signing
Country:
IL
This certificate has expire since
Certificate Details
Serial Number (hex): 06:77:3d:cd:d2:7c:1bSerial Number (int): 1819957190097947
Serial Number lenght: 51 bits, 7 octets
SubjectKeyId: 8f:f6:d2:7a:0f:4d:2c:0d:4d:09:75:bf:60:21:9d:3a:ec:c1:7f:f6
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45
Fingerprint (sha1): e0:d3:37:14:8e:03:68:0f:dd:5d:69:0a:34:be:b2:93:89:64:63:f5
Fingerprint (sha256): 2f:b3:b2:b7:5b:44:f8:4e:13:fb:a6:42:dc:7b:a6:a3:c8:58:bd:ea:0d:88:9d:f6:5a:99:d3:ac:3e:c2:f2:8a
Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt
Revocation information
OCSP Server: http://ocsp.startssl.com/sub/class1/server/caCRL Distribution Point: http://crl.startssl.com/crt1-crl.crl
Check the revocation status for certificate git.sierrasoftworks.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for git.sierrasoftworks.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Key Agreement
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
git.sierrasoftworks.com
sierrasoftworks.com
sierrasoftworks.com
Other certificates including the domain name sierrasoftworks.com
(limited to 100 certificates)
blog.sierrasoftworks.com
cdn.sierrasoftworks.com
sierrasoftworks.com
cdn.sierrasoftworks.com
git.sierrasoftworks.com
minio.sierrasoftworks.com
chieftan.sierrasoftworks.com
sentry.sierrasoftworks.com
bootstrap.dcos.eu.sierrasoftworks.com
rancher.eu.sierrasoftworks.com
chieftan.sierrasoftworks.com
drone.sierrasoftworks.com
chieftan.sierrasoftworks.com
cv.sierrasoftworks.com
cv.sierrasoftworks.com
www.sierrasoftworks.com
chieftan.sierrasoftworks.com
build.sierrasoftworks.com
sentry.sierrasoftworks.com
cv.sierrasoftworks.com
minio.sierrasoftworks.com
sierrasoftworks.com
ww.sierrasoftworks.com
drone.sierrasoftworks.com
blog.sierrasoftworks.com
cv.sierrasoftworks.com
sierrasoftworks.com
drone.sierrasoftworks.com
cv.sierrasoftworks.com
cv.sierrasoftworks.com
www.sierrasoftworks.com
sierrasoftworks.com
drone.sierrasoftworks.com
rancher.eu.sierrasoftworks.com
blog.sierrasoftworks.com
bender.sierrasoftworks.com
bender.sierrasoftworks.com
blog.sierrasoftworks.com
slackinvite.sierrasoftworks.com
bender-staging.sierrasoftworks.com
minio.sierrasoftworks.com
sentry.sierrasoftworks.com
minio.sierrasoftworks.com
heimdall.sierrasoftworks.com
drone.sierrasoftworks.com
heimdall.sierrasoftworks.com
git.sierrasoftworks.com
www.sierrasoftworks.com
minio.sierrasoftworks.com
drone.sierrasoftworks.com
auth.sierrasoftworks.com
www.sierrasoftworks.com
cdn.sierrasoftworks.com
git.sierrasoftworks.com
blog.sierrasoftworks.com
chieftan.sierrasoftworks.com
bender.sierrasoftworks.com
sentry.sierrasoftworks.com
w.sierrasoftworks.com
sierrasoftworks.com
sentry.sierrasoftworks.com
drone.sierrasoftworks.com
bender.sierrasoftworks.com
sierrasoftworks.com
bender.sierrasoftworks.com
blog.sierrasoftworks.com
sentry.sierrasoftworks.com
markout.sierrasoftworks.com
blog.sierrasoftworks.com
drone.sierrasoftworks.com
www.neoerainnovision.com
drone.sierrasoftworks.com
build.sierrasoftworks.com
sierrasoftworks.com
sentry.sierrasoftworks.com
drone.sierrasoftworks.com
w.sierrasoftworks.com
bender.firebase.sierrasoftworks.com
cv.sierrasoftworks.com
www.sierrasoftworks.com
heimdall.sierrasoftworks.com
drone.sierrasoftworks.com
traefik.sierrasoftworks.com
brule.tech
sierrasoftworks.com
drone.sierrasoftworks.com
chieftan.sierrasoftworks.com
cv.sierrasoftworks.com
drone.sierrasoftworks.com
www.sierrasoftworks.com
www.raveseguros.com
oceanstream.fr
staging.blog.sierrasoftworks.com
minio.sierrasoftworks.com
blog.sierrasoftworks.com
cv.sierrasoftworks.com
git.sierrasoftworks.com
blog.sierrasoftworks.com
ww.w.sierrasoftworks.com
cdn.sierrasoftworks.com
cdn.sierrasoftworks.com
sierrasoftworks.com
cdn.sierrasoftworks.com
git.sierrasoftworks.com
minio.sierrasoftworks.com
chieftan.sierrasoftworks.com
sentry.sierrasoftworks.com
bootstrap.dcos.eu.sierrasoftworks.com
rancher.eu.sierrasoftworks.com
chieftan.sierrasoftworks.com
drone.sierrasoftworks.com
chieftan.sierrasoftworks.com
cv.sierrasoftworks.com
cv.sierrasoftworks.com
www.sierrasoftworks.com
chieftan.sierrasoftworks.com
build.sierrasoftworks.com
sentry.sierrasoftworks.com
cv.sierrasoftworks.com
minio.sierrasoftworks.com
sierrasoftworks.com
ww.sierrasoftworks.com
drone.sierrasoftworks.com
blog.sierrasoftworks.com
cv.sierrasoftworks.com
sierrasoftworks.com
drone.sierrasoftworks.com
cv.sierrasoftworks.com
cv.sierrasoftworks.com
www.sierrasoftworks.com
sierrasoftworks.com
drone.sierrasoftworks.com
rancher.eu.sierrasoftworks.com
blog.sierrasoftworks.com
bender.sierrasoftworks.com
bender.sierrasoftworks.com
blog.sierrasoftworks.com
slackinvite.sierrasoftworks.com
bender-staging.sierrasoftworks.com
minio.sierrasoftworks.com
sentry.sierrasoftworks.com
minio.sierrasoftworks.com
heimdall.sierrasoftworks.com
drone.sierrasoftworks.com
heimdall.sierrasoftworks.com
git.sierrasoftworks.com
www.sierrasoftworks.com
minio.sierrasoftworks.com
drone.sierrasoftworks.com
auth.sierrasoftworks.com
www.sierrasoftworks.com
cdn.sierrasoftworks.com
git.sierrasoftworks.com
blog.sierrasoftworks.com
chieftan.sierrasoftworks.com
bender.sierrasoftworks.com
sentry.sierrasoftworks.com
w.sierrasoftworks.com
sierrasoftworks.com
sentry.sierrasoftworks.com
drone.sierrasoftworks.com
bender.sierrasoftworks.com
sierrasoftworks.com
bender.sierrasoftworks.com
blog.sierrasoftworks.com
sentry.sierrasoftworks.com
markout.sierrasoftworks.com
blog.sierrasoftworks.com
drone.sierrasoftworks.com
www.neoerainnovision.com
drone.sierrasoftworks.com
build.sierrasoftworks.com
sierrasoftworks.com
sentry.sierrasoftworks.com
drone.sierrasoftworks.com
w.sierrasoftworks.com
bender.firebase.sierrasoftworks.com
cv.sierrasoftworks.com
www.sierrasoftworks.com
heimdall.sierrasoftworks.com
drone.sierrasoftworks.com
traefik.sierrasoftworks.com
brule.tech
sierrasoftworks.com
drone.sierrasoftworks.com
chieftan.sierrasoftworks.com
cv.sierrasoftworks.com
drone.sierrasoftworks.com
www.sierrasoftworks.com
www.raveseguros.com
oceanstream.fr
staging.blog.sierrasoftworks.com
minio.sierrasoftworks.com
blog.sierrasoftworks.com
cv.sierrasoftworks.com
git.sierrasoftworks.com
blog.sierrasoftworks.com
ww.w.sierrasoftworks.com
cdn.sierrasoftworks.com
Certificate
The complete raw certificate details for git.sierrasoftworks.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXDCCBUSgAwIBAgIHBnc9zdJ8GzANBgkqhkiG9w0BAQsFADCBjDELMAkGA1UE BhMCSUwxFjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4xKzApBgNVBAsTIlNlY3VyZSBE aWdpdGFsIENlcnRpZmljYXRlIFNpZ25pbmcxODA2BgNVBAMTL1N0YXJ0Q29tIENs YXNzIDEgUHJpbWFyeSBJbnRlcm1lZGlhdGUgU2VydmVyIENBMB4XDTE1MTAyMDA4 NDUxNFoXDTE2MTAyMDE1NDgyN1owWzELMAkGA1UEBhMCWkExIDAeBgNVBAMTF2dp dC5zaWVycmFzb2Z0d29ya3MuY29tMSowKAYJKoZIhvcNAQkBFhtjb250YWN0QHNp ZXJyYXNvZnR3b3Jrcy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDI/5ovp0Hrx0wkaOCY2m2NNw2GQ9lY9o+06tbdfiUzMoJlYi2fOgi7MwORkzWK +/Rp9dKrJn7jSaDxiZKzxSsoBPa3uSsJyQYi6X0XEEKzful+vCVA2Pif+D84rTjt riV7ptGB5s92GzdxT0VXDWG8/ByL2n43CiiqMXgGXZR/+I3qvovQkT3lTOeg2XjK dYiJTWC5rWyfmeUu53gcPywkhuYZwZjLD6NzAe4tIdFNqIu+QHafXuixVlA0PoF7 WaWVF0tC14ium7HYeGlC1R2O6jDb1dI4vGBm7NV1qiEHDq3XdHIinLIh6suJjaJ3 4QmYGdDx5vgx+MqGFfNwCEwXAgMBAAGjggLxMIIC7TAJBgNVHRMEAjAAMAsGA1Ud DwQEAwIDqDATBgNVHSUEDDAKBggrBgEFBQcDATAdBgNVHQ4EFgQUj/bSeg9NLA1N CXW/YCGdOuzBf/YwHwYDVR0jBBgwFoAU60I00Jiwq5/0G2sI98xkLu8OLEUwNwYD VR0RBDAwLoIXZ2l0LnNpZXJyYXNvZnR3b3Jrcy5jb22CE3NpZXJyYXNvZnR3b3Jr cy5jb20wggFWBgNVHSAEggFNMIIBSTAIBgZngQwBAgEwggE7BgsrBgEEAYG1NwEC AzCCASowLgYIKwYBBQUHAgEWImh0dHA6Ly93d3cuc3RhcnRzc2wuY29tL3BvbGlj eS5wZGYwgfcGCCsGAQUFBwICMIHqMCcWIFN0YXJ0Q29tIENlcnRpZmljYXRpb24g QXV0aG9yaXR5MAMCAQEagb5UaGlzIGNlcnRpZmljYXRlIHdhcyBpc3N1ZWQgYWNj b3JkaW5nIHRvIHRoZSBDbGFzcyAxIFZhbGlkYXRpb24gcmVxdWlyZW1lbnRzIG9m IHRoZSBTdGFydENvbSBDQSBwb2xpY3ksIHJlbGlhbmNlIG9ubHkgZm9yIHRoZSBp bnRlbmRlZCBwdXJwb3NlIGluIGNvbXBsaWFuY2Ugb2YgdGhlIHJlbHlpbmcgcGFy dHkgb2JsaWdhdGlvbnMuMDUGA1UdHwQuMCwwKqAooCaGJGh0dHA6Ly9jcmwuc3Rh cnRzc2wuY29tL2NydDEtY3JsLmNybDCBjgYIKwYBBQUHAQEEgYEwfzA5BggrBgEF BQcwAYYtaHR0cDovL29jc3Auc3RhcnRzc2wuY29tL3N1Yi9jbGFzczEvc2VydmVy L2NhMEIGCCsGAQUFBzAChjZodHRwOi8vYWlhLnN0YXJ0c3NsLmNvbS9jZXJ0cy9z dWIuY2xhc3MxLnNlcnZlci5jYS5jcnQwIwYDVR0SBBwwGoYYaHR0cDovL3d3dy5z dGFydHNzbC5jb20vMA0GCSqGSIb3DQEBCwUAA4IBAQCiXF36GWkbmLwWGYOYPMHo vlg/1zQgkDZDo5I7wWQI3Ssl8WnPATK7Z/gDoSI+cvf9hE4QnDjrVHJeMG+1mZHh Q+h2mc3Rao7yA1JyzKwcchTO9C4aJ7lqAzBEr9Pzr/xWU9PiKE7C/PL5pkJeTDdm uCBHIFiftZkQVwqPgo+rCXSAJbiobU/sTDK4VH3EpbcZ+hCUjWsum1PK2VlOMRZ2 jCAAlr43aBSnEj7yhAwfH3bmIQOV5Y1BWTS5bu2c0wdpPV9BHol/OLXxmCWTZe+B RkCzCdZC/aZfZLKZcly66W0vwzerHrKzJ8GzNPn01+ViI3tyu/1hGJ69ODMHplC8 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyP+aL6dB68dMJGjgmNpt jTcNhkPZWPaPtOrW3X4lMzKCZWItnzoIuzMDkZM1ivv0afXSqyZ+40mg8YmSs8Ur KAT2t7krCckGIul9FxBCs37pfrwlQNj4n/g/OK047a4le6bRgebPdhs3cU9FVw1h vPwci9p+NwooqjF4Bl2Uf/iN6r6L0JE95UznoNl4ynWIiU1gua1sn5nlLud4HD8s JIbmGcGYyw+jcwHuLSHRTaiLvkB2n17osVZQND6Be1mllRdLQteIrpux2HhpQtUd juow29XSOLxgZuzVdaohBw6t13RyIpyyIerLiY2id+EJmBnQ8eb4MfjKhhXzcAhM FwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1819957190097947 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Secure Digital Certificate Signing' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Class 1 Primary Intermediate Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-10-20 08:45:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-10-20 15:48:27 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'git.sierrasoftworks.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25373703179886095638944713290333118643503896365436757704132074298860922327202477381550519717686173200616451552341166201476252859148774966693078807865534978669511126970339271709037410388552248337796433338733898451642103720222671010645896042977933245211395810707593067281528284882145758245607500169608961912029327250742886890160691721540337315274640177228175276568229529927438235355144262888254938262292848707767096790872178467080106157653130232688607466585439870354084446249191630383889726332382105465568756841334168274165683199890243963237688049593304088316491628375048834278436509598137873453609217408555683007712279 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 03a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8ff6d27a0f4d2c0d4d0975bf60219d3aecc17ff6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName eb4234d098b0ab9ff41b6b08f7cc642eef0e2c45 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'git.sierrasoftworks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sierrasoftworks.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (333 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23223.1.2.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.startssl.com/policy.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'StartCom Certification Authority' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [84 104 105 115 32 99 101 114 116 105 102 105 99 97 116 101 32 119 97 115 32 105 115 115 117 101 100 32 97 99 99 111 114 100 105 110 103 32 116 111 32 116 104 101 32 67 108 97 115 115 32 49 32 86 97 108 105 100 97 116 105 111 110 32 114 101 113 117 105 114 101 109 101 110 116 115 32 111 102 32 116 104 101 32 83 116 97 114 116 67 111 109 32 67 65 32 112 111 108 105 99 121 44 32 114 101 108 105 97 110 99 101 32 111 110 108 121 32 102 111 114 32 116 104 101 32 105 110 116 101 110 100 101 100 32 112 117 114 112 111 115 101 32 105 110 32 99 111 109 112 108 105 97 110 99 101 32 111 102 32 116 104 101 32 114 101 108 121 105 110 103 32 112 97 114 116 121 32 111 98 108 105 103 97 116 105 111 110 115 46] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.startssl.com/crt1-crl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.startssl.com/sub/class1/server/ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.startssl.com/certs/sub.class1.server.ca.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.18 (issuerAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.startssl.com/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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