staging.schwab.de
Issued by GeoTrust TLS RSA CA G1
About this certificate
This digital certificate with serial number 0a:c1:a8:36:98:cb:d0:aa:26:09:4e:be:d1:3a:e2:a5 was issued on by DigiCert Inc.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=staging.schwab.de
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:c1:a8:36:98:cb:d0:aa:26:09:4e:be:d1:3a:e2:a5Serial Number (int): 14297805021968688537391867599085298341
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 71:10:39:b6:54:0b:c9:5e:28:78:0a:27:1c:d1:bb:48:df:2f:9d:b4
AuthorityKeyId: 94:4f:d4:5d:8b:e4:a4:e2:a6:80:fe:fd:d8:f9:00:ef:a3:be:02:57
Fingerprint (sha1): b9:70:de:93:37:33:6c:59:f7:0b:82:7e:ff:c1:66:b5:f4:ee:b0:6b
Fingerprint (sha256): 31:da:1f:4e:dd:56:02:9b:28:9d:51:4c:9e:e8:bc:4f:d4:d3:d1:80:6e:32:5c:43:76:4f:86:6e:e4:aa:b0:3c
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
Check the revocation status for certificate staging.schwab.de
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for staging.schwab.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
staging.schwab.de
test1.schwab.de
staging2.schwab.de
test2.schwab.de
www2.schwab.de
test1.schwab.de
staging2.schwab.de
test2.schwab.de
www2.schwab.de
Other certificates including the domain name schwab.de
(limited to 100 certificates)
news2.schwab.de
news2.schwab.de
test3.schwab.de
ews.app.schwab.de
news2.schwab.de
staging.schwab.de
img.schwab.de
m.schwab.de
testexport.schwab.de
img.schwab.de
*.oghub.io
web.schwab.de
m.schwab.de
js.oghub.io
news2.schwab.de
schwab.de
*.oghub.io
m.schwab.de
*.oghub.io
img.schwab.de
testexport.schwab.de
cakmzz.schwab.de
schwab.de
schwab.de
js.oghub.io
*.oghub.io
news2.schwab.de
img.schwab.de
sv.schwab.de
img.schwab.de
cakmzz.schwab.de
*.oghub.io
js.oghub.io
gitlab.schwab.de
jira.app.schwab.de
gitlab.schwab.de
www.schwab.de
gitlab.schwab.de
news2.schwab.de
schwab.de
schwab.de
*.oghub.io
www.schwab.de
project1.schwab.de
testexport.schwab.de
gitlab.schwab.de
export.schwab.de
news2.schwab.de
*.oghub.io
news2.schwab.de
remote.app.schwab.de
news2.schwab.de
staging.schwab.de
staging.schwab.de
export.schwab.de
js.oghub.io
schwab.de
asmreports.schwab.de
news2.schwab.de
news2.schwab.de
*.oghub.io
gitlab.schwab.de
*.oghub.io
news2.schwab.de
web.schwab.de
*.oghub.io
news2.schwab.de
cakmzz.schwab.de
gitlab.schwab.de
js.oghub.io
news2.schwab.de
js.oghub.io
testexport.schwab.de
testexport.schwab.de
export.schwab.de
gitlab.schwab.de
www.schwab.de
web.schwab.de
img.schwab.de
schwab.de
m.schwab.de
www.schwab.de
remote.app.schwab.de
img.schwab.de
schwab.de
export.schwab.de
gitlab.schwab.de
js.oghub.io
gitlab.schwab.de
export.schwab.de
www.schwab.de
www.schwab.de
js.oghub.io
schwab.de
export.schwab.de
export.schwab.de
schwab.de
web.schwab.de
schwab.de
sv.schwab.de
news2.schwab.de
test3.schwab.de
ews.app.schwab.de
news2.schwab.de
staging.schwab.de
img.schwab.de
m.schwab.de
testexport.schwab.de
img.schwab.de
*.oghub.io
web.schwab.de
m.schwab.de
js.oghub.io
news2.schwab.de
schwab.de
*.oghub.io
m.schwab.de
*.oghub.io
img.schwab.de
testexport.schwab.de
cakmzz.schwab.de
schwab.de
schwab.de
js.oghub.io
*.oghub.io
news2.schwab.de
img.schwab.de
sv.schwab.de
img.schwab.de
cakmzz.schwab.de
*.oghub.io
js.oghub.io
gitlab.schwab.de
jira.app.schwab.de
gitlab.schwab.de
www.schwab.de
gitlab.schwab.de
news2.schwab.de
schwab.de
schwab.de
*.oghub.io
www.schwab.de
project1.schwab.de
testexport.schwab.de
gitlab.schwab.de
export.schwab.de
news2.schwab.de
*.oghub.io
news2.schwab.de
remote.app.schwab.de
news2.schwab.de
staging.schwab.de
staging.schwab.de
export.schwab.de
js.oghub.io
schwab.de
asmreports.schwab.de
news2.schwab.de
news2.schwab.de
*.oghub.io
gitlab.schwab.de
*.oghub.io
news2.schwab.de
web.schwab.de
*.oghub.io
news2.schwab.de
cakmzz.schwab.de
gitlab.schwab.de
js.oghub.io
news2.schwab.de
js.oghub.io
testexport.schwab.de
testexport.schwab.de
export.schwab.de
gitlab.schwab.de
www.schwab.de
web.schwab.de
img.schwab.de
schwab.de
m.schwab.de
www.schwab.de
remote.app.schwab.de
img.schwab.de
schwab.de
export.schwab.de
gitlab.schwab.de
js.oghub.io
gitlab.schwab.de
export.schwab.de
www.schwab.de
www.schwab.de
js.oghub.io
schwab.de
export.schwab.de
export.schwab.de
schwab.de
web.schwab.de
schwab.de
sv.schwab.de
Certificate
The complete raw certificate details for staging.schwab.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIQCsGoNpjL0KomCU6+0TripTANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZHZW9UcnVzdCBUTFMgUlNBIENBIEcx MB4XDTE4MTAxMDAwMDAwMFoXDTIwMDEwOTEyMDAwMFowHDEaMBgGA1UEAxMRc3Rh Z2luZy5zY2h3YWIuZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp fj3LqAij8bUGvTHGpuEbCwT1cZG4/TWiYzpg9pjjsJCvq73+Vq5PPX5ad+KwnPqa e3VZrfasQlwiCXHlrwYCsauyQBE8TC1O8kdhyjFAaFqueI0JmF64fYe078+enl5O MyoKJ1bM2y/0YGxtB0OAaIA7ok4ZrUFn1MafIK0/If7OQHthuegFfG7IbzUR1hfL rbuQdAfhjFY7Wauz+8h6ojlkw/5OY3jKdSm862Ktqfo2KbiNj06mD7Fw06BEK0TE aR2Hl2NN5DqZSZ11R9U/YQO7AQLjdJLy2mddveFHiYHDVd/ru6YEBPXBBqKcMpwd javDqINrZIMEBpDuhzJdAgMBAAGjggH+MIIB+jAfBgNVHSMEGDAWgBSUT9Rdi+Sk 4qaA/v3Y+QDvo74CVzAdBgNVHQ4EFgQUcRA5tlQLyV4oeAonHNG7SN8vnbQwYgYD VR0RBFswWYIRc3RhZ2luZy5zY2h3YWIuZGWCD3Rlc3QxLnNjaHdhYi5kZYISc3Rh Z2luZzIuc2Nod2FiLmRlgg90ZXN0Mi5zY2h3YWIuZGWCDnd3dzIuc2Nod2FiLmRl MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw PwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL2NkcC5nZW90cnVzdC5jb20vR2VvVHJ1 c3RUTFNSU0FDQUcxLmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBAjAqMCgGCCsG AQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECATB2 BggrBgEFBQcBAQRqMGgwJgYIKwYBBQUHMAGGGmh0dHA6Ly9zdGF0dXMuZ2VvdHJ1 c3QuY29tMD4GCCsGAQUFBzAChjJodHRwOi8vY2FjZXJ0cy5nZW90cnVzdC5jb20v R2VvVHJ1c3RUTFNSU0FDQUcxLmNydDAJBgNVHRMEAjAAMBMGCisGAQQB1nkCBAMB Af8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA40K4rXWGmAfeDEy2Gt49LN7cHw02h yvNCNd01cSe76Tg0asm4REpeyhv7bl1/nr2BOwFXaHj98dJevdIKqpxVSjX+MRsT sf/XaS8Jkt2KjrSVvSUrCLAmlXVDZv6rgYfcFVSZDF17peJD/gzKETeVb4+xed+Z PGLXJdUkI2q23nEhIXmBK58a9nqgoh5svgQg3BNrFYNLQYGnCpeYPfqQw0ajrmqb Q6VGGEtzYij8s/kJQFjKDzGviScfPr1YVUC5aphxgDZHnQYY2SW3wQYf4cKE9U5l WIAJCyYqJmYwmqLDHhrj1pm3O8BLTPvByl/01nax2qml3GcMABJUKybk -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqX49y6gIo/G1Br0xxqbh GwsE9XGRuP01omM6YPaY47CQr6u9/lauTz1+WnfisJz6mnt1Wa32rEJcIglx5a8G ArGrskARPEwtTvJHYcoxQGharniNCZheuH2HtO/Pnp5eTjMqCidWzNsv9GBsbQdD gGiAO6JOGa1BZ9TGnyCtPyH+zkB7YbnoBXxuyG81EdYXy627kHQH4YxWO1mrs/vI eqI5ZMP+TmN4ynUpvOtiran6Nim4jY9Opg+xcNOgRCtExGkdh5djTeQ6mUmddUfV P2EDuwEC43SS8tpnXb3hR4mBw1Xf67umBAT1wQainDKcHY2rw6iDa2SDBAaQ7ocy XQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14297805021968688537391867599085298341 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-09 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging.schwab.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21396525488242986713622944056462599487809956744267013211056567618543563486144499267908389588166314396227581666053308802414963135625701012820897186512374680098328913767630945909751311144428249177477844077005414279336964037117087649122658153486205547012090538021169579487635614899167126801402122187305658848187626183844088241406008363888474433120263598020702012053853113568957108606424498593608414681219436656315984596276594205283008862789607401394949119918749210283022449177560139555633404378714033221133245226282461115034962469428190522032509606847832447403758055286379564317602266170690422520611506795526881062367837 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 944fd45d8be4a4e2a680fefdd8f900efa3be0257 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 711039b6540bc95e28780a271cd1bb48df2f9db4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (91 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.schwab.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test1.schwab.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging2.schwab.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test2.schwab.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www2.schwab.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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