amusing.nm.cz
- NÁRODNÍ MUZEUM -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 03:a7:b3:4e:9d:a2:7c:21:57:ee:74:c1:f6:b1:ac:6f was issued on by TERENA.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
NÁRODNÍ MUZEUM
Organization:
NÁRODNÍ MUZEUM
Locality:
Praha 1
Country: CZ
Country: CZ
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a7:b3:4e:9d:a2:7c:21:57:ee:74:c1:f6:b1:ac:6fSerial Number (int): 4858434342631372307551539008917056623
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 59:1a:d5:db:7f:d5:ec:13:a5:9b:95:4d:20:80:48:73:a5:94:3a:22
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): c6:e7:8b:86:87:ea:b9:d6:4f:6c:e8:89:9f:b1:a9:22:1f:bc:13:2a
Fingerprint (sha256): 31:8d:e0:4e:2b:a4:8a:c7:a5:96:e3:0f:d9:96:e2:18:a0:14:76:99:59:d6:14:ec:df:0d:d9:25:3e:ee:1d:d9
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate amusing.nm.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for amusing.nm.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
amusing.nm.cz
www.amusing.nm.cz
www.amusing.nm.cz
Other certificates including the domain name nm.cz
(limited to 100 certificates)
nm.opac.nm.cz
mbssceny.opac.nm.cz
rezervace.benesovavila.nm.cz
kanesh.nm.cz
kanesh.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
vademecum.nm.cz
intro.nm.cz
nm.opac.nm.cz
vavobd.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
kanesh.nm.cz
nm.cz
stt.opac.nm.cz
npm.opac.nm.cz
nm.cz
npm.opac.nm.cz
prazskestopyantoninadvoraka.nm.cz
kanesh.nm.cz
sumerian.nm.cz
nm.cz
cmhdok.opac.nm.cz
posta.nm.cz
antonindvorak.nm.cz
kanesh.nm.cz
amusing.nm.cz
publikace.nm.cz
nm.cz
botanika.opac.nm.cz
android-app.nm.cz
amusing.nm.cz
intro.nm.cz
mbssceny.opac.nm.cz
entomologie.opac.nm.cz
oncd.opac.nm.cz
kanesh.nm.cz
kerio.nm.cz
edukace.benesovavila.nm.cz
grepo.nm.cz
mbs.opac.nm.cz
botanika.opac.nm.cz
publikace.nm.cz
botanika.opac.nm.cz
cmh.opac.nm.cz
nm.cz
*.opac.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
intro.nm.cz
helpdesk.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
csds.opac.nm.cz
eshop.nm.cz
posta.nm.cz
odtvs.opac.nm.cz
antonindvorak.nm.cz
stt.opac.nm.cz
odtvs.opac.nm.cz
zbraslav.opac.nm.cz
odtvs.opac.nm.cz
bedrichsmetana.nm.cz
rad.nm.cz
*.opac.nm.cz
navigation-app.nm.cz
mad.opac.nm.cz
no.opac.nm.cz
t.mailkit.com
no.opac.nm.cz
navigation-app.nm.cz
admin.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
ms.nm.cz
kanesh.nm.cz
amusing.nm.cz
mad.opac.nm.cz
npm.opac.nm.cz
antonindvorak.nm.cz
onedrive.nm.cz
p.pozvanky.nm.cz
intro.nm.cz
helpdesk.nm.cz
rezervace.pamatnikpalackeho.nm.cz
t.mailkit.com
prazskestopyantoninadvoraka.nm.cz
amusing.nm.cz
intro.nm.cz
t.mailkit.com
oncd.opac.nm.cz
ms.nm.cz
rd-gw.nm.cz
onedrive.nm.cz
mbs.opac.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
muzeum3000.nm.cz
oncd.opac.nm.cz
mbssceny.opac.nm.cz
rezervace.benesovavila.nm.cz
kanesh.nm.cz
kanesh.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
vademecum.nm.cz
intro.nm.cz
nm.opac.nm.cz
vavobd.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
kanesh.nm.cz
nm.cz
stt.opac.nm.cz
npm.opac.nm.cz
nm.cz
npm.opac.nm.cz
prazskestopyantoninadvoraka.nm.cz
kanesh.nm.cz
sumerian.nm.cz
nm.cz
cmhdok.opac.nm.cz
posta.nm.cz
antonindvorak.nm.cz
kanesh.nm.cz
amusing.nm.cz
publikace.nm.cz
nm.cz
botanika.opac.nm.cz
android-app.nm.cz
amusing.nm.cz
intro.nm.cz
mbssceny.opac.nm.cz
entomologie.opac.nm.cz
oncd.opac.nm.cz
kanesh.nm.cz
kerio.nm.cz
edukace.benesovavila.nm.cz
grepo.nm.cz
mbs.opac.nm.cz
botanika.opac.nm.cz
publikace.nm.cz
botanika.opac.nm.cz
cmh.opac.nm.cz
nm.cz
*.opac.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
intro.nm.cz
helpdesk.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
csds.opac.nm.cz
eshop.nm.cz
posta.nm.cz
odtvs.opac.nm.cz
antonindvorak.nm.cz
stt.opac.nm.cz
odtvs.opac.nm.cz
zbraslav.opac.nm.cz
odtvs.opac.nm.cz
bedrichsmetana.nm.cz
rad.nm.cz
*.opac.nm.cz
navigation-app.nm.cz
mad.opac.nm.cz
no.opac.nm.cz
t.mailkit.com
no.opac.nm.cz
navigation-app.nm.cz
admin.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
ms.nm.cz
kanesh.nm.cz
amusing.nm.cz
mad.opac.nm.cz
npm.opac.nm.cz
antonindvorak.nm.cz
onedrive.nm.cz
p.pozvanky.nm.cz
intro.nm.cz
helpdesk.nm.cz
rezervace.pamatnikpalackeho.nm.cz
t.mailkit.com
prazskestopyantoninadvoraka.nm.cz
amusing.nm.cz
intro.nm.cz
t.mailkit.com
oncd.opac.nm.cz
ms.nm.cz
rd-gw.nm.cz
onedrive.nm.cz
mbs.opac.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
muzeum3000.nm.cz
oncd.opac.nm.cz
Certificate
The complete raw certificate details for amusing.nm.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIQA6ezTp2ifCFX7nTB9rGsbzANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xODA3MDkwMDAwMDBaFw0xOTA3MTcxMjAwMDBaMFIxCzAJBgNVBAYT AkNaMRAwDgYDVQQHEwdQcmFoYSAxMRkwFwYDVQQKDBBOw4FST0ROw40gTVVaRVVN MRYwFAYDVQQDEw1hbXVzaW5nLm5tLmN6MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAwuLaWVX7aQxEknUTm1UKJqLzqi3iwkRa1RMuIS0jdGI9xOeiX4k6 WiSvxVJddExlbEedwgOvjEiIpRRas/jz7QJhU/dh7Bu1BKcMfFSUPLGOAH6oTNZB iIepaJ835A1lLdH/UAFMpIs+scqaUzy84ci2q7nvo3MjbPVJXY6odLejlXexJlr+ HTrjadJOLtVamKXO9PYbM6Glj6q0zyQ9jHqY8vfeomWZu/zfYlReTt4t8HLXnGkL 1e5FokY17U5AqraJw3Nd3RelvTgJwYXLaigc6sVuG+VT/78yRRWAx+eKsg2q7hmx X1EUXy8o/wntfxlHew4zDSdrarhNdOJQwQIDAQABo4IB7jCCAeowHwYDVR0jBBgw FoAUZ/2IIBQnmMcJ0iUZu+lREWN1UGIwHQYDVR0OBBYEFFka1dt/1ewTpZuVTSCA SHOllDoiMCsGA1UdEQQkMCKCDWFtdXNpbmcubm0uY3qCEXd3dy5hbXVzaW5nLm5t LmN6MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwawYDVR0fBGQwYjAvoC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL1RF UkVOQVNTTENBMy5jcmwwL6AtoCuGKWh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9U RVJFTkFTU0xDQTMuY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYB BQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMG4G CCsGAQUFBwEBBGIwYDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQu Y29tMDgGCCsGAQUFBzAChixodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vVEVS RU5BU1NMQ0EzLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUA MA0GCSqGSIb3DQEBCwUAA4IBAQAElALdiJX/bh5TEvk2cae1c3Jq+WZQ93hwcRw0 tpYEbHORLltCddodDmregTLH1VktHqMYRYdrccBBbE6eQuqTDEqJ8FDTgJcrqs8Q mRdyvAYKCumx2VYNUacUt7klaVzHb5Gr1jVoAyljvF+noqVCfXJCLRbIsHmRVnf6 ZRgDt0M7XKULxX6pHKFj6AUQJtHbieznPndgar2aOXZt2YaBqucT9CxHa1E3pbM9 2KkC7Xa5OgKBBtgCxNuum1DCCrH77cxJQQ/P1OAaJgXpuDuJJnFLKtRacJ7H1J4P 705R2UJQcgNw4YOYIYcQ8jiNLqIK1B1zt7p4mHHISDJmFydL -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwuLaWVX7aQxEknUTm1UK JqLzqi3iwkRa1RMuIS0jdGI9xOeiX4k6WiSvxVJddExlbEedwgOvjEiIpRRas/jz 7QJhU/dh7Bu1BKcMfFSUPLGOAH6oTNZBiIepaJ835A1lLdH/UAFMpIs+scqaUzy8 4ci2q7nvo3MjbPVJXY6odLejlXexJlr+HTrjadJOLtVamKXO9PYbM6Glj6q0zyQ9 jHqY8vfeomWZu/zfYlReTt4t8HLXnGkL1e5FokY17U5AqraJw3Nd3RelvTgJwYXL aigc6sVuG+VT/78yRRWAx+eKsg2q7hmxX1EUXy8o/wntfxlHew4zDSdrarhNdOJQ wQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4858434342631372307551539008917056623 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-17 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Praha 1' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'NÁRODNÍ MUZEUM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'amusing.nm.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24602096510335493268968398815322288387620783098687218715854718713317858870115612328268600010715844430872973208322366273360342034098186058372299445395429541041284033027201769486602202130809751791923906281187369422157472413492612579492760347590399016130530941865651088312580246383880325827472571892187185022499253134675767631756249415641037908787319619532780011124683647492894697323494984546999676536125045571470389264048629602172374280562377440985229567013695816312267229425594135803623560594315484140000970969502455898118729718732131985026609572257836571022679773713189132103373612734485406429484303552212721777922241 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 591ad5db7fd5ec13a59b954d20804873a5943a22 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amusing.nm.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.amusing.nm.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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