www.novatours.lv
Issued by RapidSSL Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 07:ca:37:99:53:40:f7:cc:6c:e8:93:5f:40:d0:5e:0f was issued on by DigiCert, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.novatours.lv
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:ca:37:99:53:40:f7:cc:6c:e8:93:5f:40:d0:5e:0fSerial Number (int): 10354567616121309078738499789976002063
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: a3:57:e7:f2:06:a3:be:78:84:dd:db:c5:49:f8:9a:03:b3:3b:45:8d
AuthorityKeyId: f0:9c:85:fd:a2:9f:7d:8f:c9:68:bb:d5:d4:89:4d:1d:be:d3:90:ff
Fingerprint (sha1): db:ff:57:7b:23:31:bb:19:59:30:4c:51:0a:4a:e3:dc:0b:85:5a:a2
Fingerprint (sha256): 35:1e:9c:d3:01:b3:d3:01:79:e0:27:94:eb:32:52:5a:d2:1f:e4:22:e8:c3:df:a4:cd:d3:a2:df:4e:0e:22:7d
Issuing Certificate URL: http://cacerts.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate www.novatours.lv
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.novatours.lv
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.novatours.lv
novatours.lv
novatours.lv
Other certificates including the domain name novatours.lv
(limited to 100 certificates)
beta.novatours.lv
beta.novatours.lv
m.novatours.lv
beta.novatours.lv
mollerauto.lv
www.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
m.novatours.lv
novatours.lv
www.novatours.lv
www.novatours.lv
beta.novatours.lv
www.novatours.lv
beta.novatours.lv
novatours.lv
m.novatours.lv
mollerauto.lv
mollerauto.lv
www.novatours.lv
beta.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
beta.novatours.lv
www.novatours.lv
beta.novatours.lv
www.novatours.lv
beta.novatours.lv
novatours.lv
beta.novatours.lv
beta.novatours.lv
mollerauto.lv
mollerauto.lv
mollerauto.lv
beta.novatours.lv
beta.novatours.lv
www.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
beta.novatours.lv
mollerauto.lv
mollerauto.lv
beta.novatours.lv
m.novatours.lv
mollerauto.lv
beta.novatours.lv
m.novatours.lv
beta.novatours.lv
mollerauto.lv
www.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
m.novatours.lv
novatours.lv
www.novatours.lv
www.novatours.lv
beta.novatours.lv
www.novatours.lv
beta.novatours.lv
novatours.lv
m.novatours.lv
mollerauto.lv
mollerauto.lv
www.novatours.lv
beta.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
beta.novatours.lv
www.novatours.lv
beta.novatours.lv
www.novatours.lv
beta.novatours.lv
novatours.lv
beta.novatours.lv
beta.novatours.lv
mollerauto.lv
mollerauto.lv
mollerauto.lv
beta.novatours.lv
beta.novatours.lv
www.novatours.lv
m.novatours.lv
www.novatours.lv
www.novatours.lv
beta.novatours.lv
mollerauto.lv
mollerauto.lv
beta.novatours.lv
m.novatours.lv
mollerauto.lv
Certificate
The complete raw certificate details for www.novatours.lv in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHmjCCBYKgAwIBAgIQB8o3mVNA98xs6JNfQNBeDzANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K1JhcGlkU1NMIEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjMwMTIxMDAwMDAwWhcNMjQwMjA3MjM1OTU5WjAbMRkwFwYDVQQDExB3d3cubm92 YXRvdXJzLmx2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHeK+iW2 4TECN/uVpj90ajpJIDBjQv73CdEzyM2YVLk1ZEb5Ur8Q7r6lPWKv7BKAixUjiNaN rlVguGuZmqrZFTKwmzHVTwdEegnlTLecaCykW9veVLEEyuiyIGDCeOIO+iKoGirU pHESLI99au4SLzLh+NHC5UTjAhRk/a+vgu15hiO+fJqWkmoM4YkaP6KTvbmyIkPv EuNCkP9Xj7srEj5ifoL6WEUTBJKciKFtWaIijkLNT0hv4MwESdm5Co8YwXv4Yc79 P3aOK67aHAnMPZiHnHLyySrO4zDOybaY3/plfHpETwrvj3izsskf0LeH2OkHbtXC 4EDqy1pPH1GczwIDAQABo4IDlzCCA5MwHwYDVR0jBBgwFoAU8JyF/aKffY/JaLvV 1IlNHb7TkP8wHQYDVR0OBBYEFKNX5/IGo754hN3bxUn4mgOzO0WNMCkGA1UdEQQi MCCCEHd3dy5ub3ZhdG91cnMubHaCDG5vdmF0b3Vycy5sdjAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGfBgNVHR8EgZcwgZQw SKBGoESGQmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9SYXBpZFNTTEdsb2JhbFRM U1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNybDBIoEagRIZCaHR0cDovL2NybDQuZGln aWNlcnQuY29tL1JhcGlkU1NMR2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEu Y3JsMD4GA1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93 d3cuZGlnaWNlcnQuY29tL0NQUzCBhwYIKwYBBQUHAQEEezB5MCQGCCsGAQUFBzAB hhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wUQYIKwYBBQUHMAKGRWh0dHA6Ly9j YWNlcnRzLmRpZ2ljZXJ0LmNvbS9SYXBpZFNTTEdsb2JhbFRMU1JTQTQwOTZTSEEy NTYyMDIyQ0ExLmNydDAJBgNVHRMEAjAAMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFq AWgAdQDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYXTxNvFAAAE AwBGMEQCIHIka3ifu9Y/05/8nKCMvTMccsc+u2teoSAKCbal5fu5AiB+MYfLug82 ksQ6o4b63xyRXL/NvfOpGD9g6lDwEcvobgB3AHPZnokbTJZ4oCB9R53mssYc0FFe cRkqjGuAEHrBd3K1AAABhdPE3EgAAAQDAEgwRgIhAIYEFTVfJjiB49KArQG2/mr4 xRLYUgJ5nIF82TW+eJDpAiEAn+c8v3lVGtWhge+MOXIxS8zoBZjmq5BBwJPLeZz3 lAYAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYXTxNu2AAAE AwBHMEUCICJ9Xg2X0/YFkw3NCRvXA2jaM8JcjG7D0SCkBLGlFK+oAiEAtAtCWJQR uPoTAhTp2o/ceBCFp7AVsLly0CvyHY1Zn3YwDQYJKoZIhvcNAQELBQADggIBAJHk i5He+SlTuamWYxG1TBuJCc9Cli/tpqQxP236LrpV/q4DTIEg/d5wnQaqLkHofabK RbJUvCC9ihLDzopN8hBlAeW5e//YtFDaDf7f6WkocgsXfS4L4VyuGEch+HTnNviY 0ujvWbKIzwfvfxFRO8Fws3VxhBWFsNxliCgZ6VIPlQgWHTrq1eV8EP0AKmmnPPpW 7lnk1FJlD5LrpMHpCVR4fzGxtjys98uizu4Kys9ixGMLkbybkWoabmSErme5OplK OMm8PgF/4Ffmb8CR8qTh+yO5+16gWUmBRwwmSiPLmSK39qwpN0KQeQCufJA8sUd4 ZSKlunv+spLwc8UyfEaiu6705gAqS+eV1dglawTtpiXVJJ4VcfTTL9RbHWRIUhFr VpQLXIx4uepT0RBTPG6wo3sWIZxOm3SHJYJvDbzQDcOSV5DjBOSslevJsv12OAxq 4PeREl31RdPuC/+kQJNqGBfERr9AR3mkX0hIu++r2OlJYJ39rUW0dxRgF+ZdOTfO HWLPmxChltO5qcpgILOeI7hXwY+S1Nc0MvOId3+gHLH4gmmd0gkCd6UtirBmjS3Q HoImdBUFpgZbW2B+NLPeBy4OE8JZe+au45R8bjX3cjhuH/BjfdMHydkTWCftUTe+ rLZu20iseuTvzYd7iODqOGKutH8zPZyp87hd7L39 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHeK+iW24TECN/uVpj90 ajpJIDBjQv73CdEzyM2YVLk1ZEb5Ur8Q7r6lPWKv7BKAixUjiNaNrlVguGuZmqrZ FTKwmzHVTwdEegnlTLecaCykW9veVLEEyuiyIGDCeOIO+iKoGirUpHESLI99au4S LzLh+NHC5UTjAhRk/a+vgu15hiO+fJqWkmoM4YkaP6KTvbmyIkPvEuNCkP9Xj7sr Ej5ifoL6WEUTBJKciKFtWaIijkLNT0hv4MwESdm5Co8YwXv4Yc79P3aOK67aHAnM PZiHnHLyySrO4zDOybaY3/plfHpETwrvj3izsskf0LeH2OkHbtXC4EDqy1pPH1Gc zwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10354567616121309078738499789976002063 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.novatours.lv' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24801656564253451463238384732692442274360299043159936905541853138338737650912166580409187799362281671932592016497277860537036878897716109534076153881497916088922606981816965238358742374390260489518779712918860873444492472064583529107288698244760602783798175150226711741174561596716302891294181199973584159333300769358736862033337517773898809247652452411633661649811640270765347876290275330417442827989044564990148082975087507601799032334323526078728611021898671230510239153333720060583932398093856170692628431330390662860529393670191812380396068548969191337567830065716318720020487338326946747430975885030242668092623 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f09c85fda29f7d8fc968bbd5d4894d1dbed390ff . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a357e7f206a3be7884dddbc549f89a03b33b458d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.novatours.lv' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novatours.lv' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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