tst01-talent.nordiccapital.com
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 0f:af:a5:53:f0:63:dc:39:43:3a:74:f8:01:d1:cf:bf was issued on by DigiCert, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=tst01-talent.nordiccapital.com
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:af:a5:53:f0:63:dc:39:43:3a:74:f8:01:d1:cf:bfSerial Number (int): 20850425134936550128309535585785204671
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 5b:77:8c:f9:c5:1e:60:12:21:ad:98:0c:86:e3:5c:fd:68:b1:b2:36
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): b1:cc:7a:2f:f6:94:28:46:54:26:e6:46:bc:39:c3:6b:c7:e2:89:7f
Fingerprint (sha256): 33:ab:8e:df:2d:d1:51:8e:08:60:2a:cd:b9:36:86:1a:be:56:71:62:57:53:31:b7:d6:46:2c:ed:1f:ef:39:9e
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate tst01-talent.nordiccapital.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tst01-talent.nordiccapital.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tst01-talent.nordiccapital.com
Other certificates including the domain name nordiccapital.com
(limited to 100 certificates)
vcse.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
investor.nordiccapital.com
nordiccapital.com
www.nordiccapital.com
tst01-talent.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
*.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
*.nordiccapital.com
secure.nordiccapital.com
www.nordiccapital.com
secure.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
preferredby.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
*.nordiccapital.com
*.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
www.nordiccapital.com
nordiccapital.com
nordiccapital.com
nordiccapital.com
nordiccapital.com
*.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
investor.nordiccapital.com
nordiccapital.com
www.nordiccapital.com
tst01-talent.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
*.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
*.nordiccapital.com
secure.nordiccapital.com
www.nordiccapital.com
secure.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
preferredby.nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
*.nordiccapital.com
*.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
www.nordiccapital.com
www.nordiccapital.com
nordiccapital.com
www.nordiccapital.com
nordiccapital.com
nordiccapital.com
nordiccapital.com
nordiccapital.com
*.nordiccapital.com
www.nordiccapital.com
Certificate
The complete raw certificate details for tst01-talent.nordiccapital.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHqjCCBZKgAwIBAgIQD6+lU/Bj3DlDOnT4AdHPvzANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjMxMjA1MDAwMDAwWhcNMjQwNjA1MjM1OTU5WjApMScwJQYDVQQDEx50c3QwMS10 YWxlbnQubm9yZGljY2FwaXRhbC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDWqtig5l/OynDxVOffXP239Lle6L62I/6iFRLIc929YhNY6FXgRJ96 Y6C+bYCFT51QZinkozNvDBK3S/oROYmiLCIKPFCjyRmg9l9/AxHGFx1b01QTLHhV FE+viIgP/cEhGnSarYv9J1kZUT4gBD5amfFTpBkGFRKExIObZZ1Sn5YDwyb8Cwtn ad7kSVfxRJrZAEu3qFl1Mmmuc9Zh3GiCKbdWtAJLz/1FYfDLF7ygJm8F9ihUXsFO m/HBAeF0aK6VdW53FNVKMdUaNpgZPDzCdqTzhPRIuP1/aM/Qa/LZA2E7U3Cavu7O 8HohdPuf4TkwCUPjSbHv6dI4zhgJqtJxAgMBAAGjggOZMIIDlTAfBgNVHSMEGDAW gBSltNbrNsTna6bfxGQLASogBLhmIzAdBgNVHQ4EFgQUW3eM+cUeYBIhrZgMhuNc /WixsjYwKQYDVR0RBCIwIIIedHN0MDEtdGFsZW50Lm5vcmRpY2NhcGl0YWwuY29t MD4GA1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cu ZGlnaWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMIGfBgNVHR8EgZcwgZQwSKBGoESGQmh0dHA6Ly9jcmwz LmRpZ2ljZXJ0LmNvbS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIy Q0ExLmNybDBIoEagRIZCaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0dlb1RydXN0 R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEuY3JsMIGHBggrBgEFBQcBAQR7 MHkwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBRBggrBgEF BQcwAoZFaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0dlb1RydXN0R2xvYmFs VExTUlNBNDA5NlNIQTI1NjIwMjJDQTEuY3J0MAwGA1UdEwEB/wQCMAAwggF9Bgor BgEEAdZ5AgQCBIIBbQSCAWkBZwB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf 5mdMWjp0AAABjDl/0CEAAAQDAEcwRQIhAL6EyUfEvUxk0mgbYhVToly7ku+1yDlp NRUFNUzj8mizAiA2V9YlABalhwJ4BDFP4LHNn9b95fAE6m5HPvT/5s+wVAB2AEiw 42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjDl/z/AAAAQDAEcwRQIh AM3egzpbyUcXSmGzlrOugZ41FFJxwNC047Uul9tdW6g5AiAUyX2jH2Exp/g+J0DO ls2zvPhSG1g88L3soAuoaqxQwQB1ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2k PTBI1/urAAABjDl/z8EAAAQDAEYwRAIgTmLldZgZygd2R/d61klYRolj5GvyJaBd 7ko+RosFh00CIGirDaHAr8mwDiB7VSVJ755EcYI82VWg8022yzgp2WhYMA0GCSqG SIb3DQEBCwUAA4ICAQDTLmUtbUBK03Vh0s2xDHFsBrozQe730OOoLx3nq453w1FP LybCW0VvtBpI5HnFiUJfPtgK/vdhtRAStLvlGPWSJo9mfvK8CQ2n3I3PiSjtg8EU RQFPx56tNOOA0ljkFDzEr9O1j6upDkY518RU83MFJrSyRI2WcYtleyH5hJt+JrOx P3q94s6Wkor8fzh1bykrBHnzIH8mzvC4Y4DItvspmWmbXoeiYPWynC4AUO0+T+ep RXo7ednabiEuoO5PjHiUPSGGaioOy0NjZg0WytxbWowdhlNCsAkrRBX4CZ4JeeMC AriEeNeZ1zdsmprypBrY0DdbBKC89EUQLAjZkkeAf+G4/45rtJLOyRDa3ZJVaNTq 6BFYU6QBMqIgTrsa7vGN1PqVEApnSOpMkJv6iImVbLvGYfL0Ytzv1nNZXzKMaY4m 4I/HpOsvR51OWYyIeM93oLrnCR/NzxquXnavxccRwu0QHfhaWiYmiIhUzIGEi03k gxj06Szq77Nllcr9r+1TcVy9UcHpWYTB6i1q0XDI0bEwyOvXV4It9Lr3955ArmoD pZPy3kyDfCItM4LqDCQ14fjm1yxb/99Q6R5ksQWvn0S37KVIrzuJ1A3tUk2Zfu1k LZGJnagOam8nRrGKOPXA939PC0BB4DwCv7kWzEq/AKXzHpx/1MvD7mhclu8YvQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1qrYoOZfzspw8VTn31z9 t/S5Xui+tiP+ohUSyHPdvWITWOhV4ESfemOgvm2AhU+dUGYp5KMzbwwSt0v6ETmJ oiwiCjxQo8kZoPZffwMRxhcdW9NUEyx4VRRPr4iID/3BIRp0mq2L/SdZGVE+IAQ+ WpnxU6QZBhUShMSDm2WdUp+WA8Mm/AsLZ2ne5ElX8USa2QBLt6hZdTJprnPWYdxo gim3VrQCS8/9RWHwyxe8oCZvBfYoVF7BTpvxwQHhdGiulXVudxTVSjHVGjaYGTw8 wnak84T0SLj9f2jP0Gvy2QNhO1Nwmr7uzvB6IXT7n+E5MAlD40mx7+nSOM4YCarS cQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20850425134936550128309535585785204671 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tst01-talent.nordiccapital.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27099244666433644196972054442042384610442814000251095644605124332909239661607948022262602831086916713077667069162694754921214252979252145072310776599294769618855489551980214110240532657384100406903090761507501522302435773951477034077106725240820724342724848409443839937937409144742575075244951640777527132874348407656181361903009537624158070241619226271409678402098052044867250216705897614177297476045198433869961225414935283594500636015506909149845066634736963564189362016456932542809000766218803066475254208978089957959610904634506476050850619610216181121883713809286863271214144120763333148993498232434147887600241 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5b778cf9c51e601221ad980c86e35cfd68b1b236 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tst01-talent.nordiccapital.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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