access.tchibo.com
- Tchibo GmbH -
Issued by GeoTrust SSL CA - G3
About this certificate
This digital certificate with serial number 12:0a:69:cd:66:f9:41:78:8e:c9:b6:a5:ae:de:35:b1 was issued on by GeoTrust Inc..
With 18 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Tchibo GmbH
Organization:
Tchibo GmbH
Organization unit: IT
Organization unit: IT
State / Province:
Hamburg
Locality: Hamburg
Country: DE
Locality: Hamburg
Country: DE
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 12:0a:69:cd:66:f9:41:78:8e:c9:b6:a5:ae:de:35:b1Serial Number (int): 23980172819364335546718423879172109745
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: d2:6f:f7:96:f4:85:3f:72:3c:30:7d:23:da:85:78:9b:a3:7c:5a:7c
Fingerprint (sha1): 35:54:e5:d2:6a:6a:45:d4:77:40:e2:26:e1:75:b0:ba:1b:b5:26:79
Fingerprint (sha256): 35:e9:a6:6b:f0:41:3c:fc:19:dc:b9:a6:84:f4:21:24:ce:98:7b:82:86:81:92:cc:c8:c8:06:6c:6a:18:a0:51
Issuing Certificate URL: http://gn.symcb.com/gn.crt
Revocation information
OCSP Server: http://gn.symcd.comCRL Distribution Point: http://gn.symcb.com/gn.crl
Check the revocation status for certificate access.tchibo.com
18
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for access.tchibo.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
access.tchibo.cz
access.tchibo-external.com
access.tchibo.com.bd
access.tchibo.com.tr
access.tchibo.at
access.qbo.coffee
access.tchibo.com.hk
access.tchibo.sk
access.tchibo.ch
access.tchibo.ro
access.tchibo.pl
access.tchibo-externe.de
access.eduscho.at
access.tchibo.hu
access.tchibo.ru
access.tchibo.de
skypeconf.tchibo.com
access.tchibo.com
access.tchibo-external.com
access.tchibo.com.bd
access.tchibo.com.tr
access.tchibo.at
access.qbo.coffee
access.tchibo.com.hk
access.tchibo.sk
access.tchibo.ch
access.tchibo.ro
access.tchibo.pl
access.tchibo-externe.de
access.eduscho.at
access.tchibo.hu
access.tchibo.ru
access.tchibo.de
skypeconf.tchibo.com
access.tchibo.com
Other certificates including the domain name tchibo.com
(limited to 100 certificates)
soc-med-agg.tchibo.com
brand.tchibo.com
recruitingtest.tchibo.com
blog-qs.tchibo.com
ssl.tchibo.com
deapp287.tchibo.tchiboroot.net
recruiting.tchibo.com
*.ship.tchibo.com
portal.tchibo.com
access.tchibo.com
access.tchibo.com
soc-med-agg.tchibo.com
jobs.tchibo.com
sip.tchibo.com
deapp287.tchibo.tchiboroot.net
soc-med-agg.tchibo.com
www.bestand.tchibo.com
soc-med-agg.tchibo.com
cloudbox.tchibo.com
deapp287.tchibo.tchiboroot.net
www.bestand.tchibo.com
blog-dev.tchibo.com
*.tchibo.com
*.login.tchibo.com
portal.tchibo.com
soc-med-agg.tchibo.com
portal.tchibo.com
*.tchibo.com
blog.tchibo.com
portal.tchibo.com
access.tchibo.com
*.tchibo.com
sip.tchibo.com
recruiting.tchibo.com
*.tchibo.com
blog.tchibo.com
jobs.tchibo.com
blog-dev.tchibo.com
www.tchibo.com
*.tchibo.com
jobs.tchibo.com
*.tchibo.com
blog-qs.tchibo.com
soc-med-agg.tchibo.com
*.login.tchibo.com
soc-med-agg.tchibo.com
*.login.tchibo.com
sofi.tchibo.com
*.tchibo.com
brand.tchibo.com
recruitingtest.tchibo.com
blog-qs.tchibo.com
ssl.tchibo.com
deapp287.tchibo.tchiboroot.net
recruiting.tchibo.com
*.ship.tchibo.com
portal.tchibo.com
access.tchibo.com
access.tchibo.com
soc-med-agg.tchibo.com
jobs.tchibo.com
sip.tchibo.com
deapp287.tchibo.tchiboroot.net
soc-med-agg.tchibo.com
www.bestand.tchibo.com
soc-med-agg.tchibo.com
cloudbox.tchibo.com
deapp287.tchibo.tchiboroot.net
www.bestand.tchibo.com
blog-dev.tchibo.com
*.tchibo.com
*.login.tchibo.com
portal.tchibo.com
soc-med-agg.tchibo.com
portal.tchibo.com
*.tchibo.com
blog.tchibo.com
portal.tchibo.com
access.tchibo.com
*.tchibo.com
sip.tchibo.com
recruiting.tchibo.com
*.tchibo.com
blog.tchibo.com
jobs.tchibo.com
blog-dev.tchibo.com
www.tchibo.com
*.tchibo.com
jobs.tchibo.com
*.tchibo.com
blog-qs.tchibo.com
soc-med-agg.tchibo.com
*.login.tchibo.com
soc-med-agg.tchibo.com
*.login.tchibo.com
sofi.tchibo.com
*.tchibo.com
Certificate
The complete raw certificate details for access.tchibo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVDCCBTygAwIBAgIQEgppzWb5QXiOybalrt41sTANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UEAxMU R2VvVHJ1c3QgU1NMIENBIC0gRzMwHhcNMTcwMjA4MDAwMDAwWhcNMTkwMjA4MjM1 OTU5WjBwMQswCQYDVQQGEwJERTEQMA4GA1UECAwHSGFtYnVyZzEQMA4GA1UEBwwH SGFtYnVyZzEUMBIGA1UECgwLVGNoaWJvIEdtYkgxCzAJBgNVBAsMAklUMRowGAYD VQQDDBFhY2Nlc3MudGNoaWJvLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAKPgMU6V/4c1VdZJUFo8dJDwoq5lV3o6V4AAmqFgElnf1k0ilT2rwbC2 BcYwsHDolYEZ5kVZczDYbDuBh6p6KKSPs6GxBuPME35mqzk2pY2/5A+RnGLHZa07 z2wuOxPkPgRVfCcKvNbt1QXRZpvyU7g30JxrutBWwlROa1IlR7KZhPZUAEBIsfKn 57dBbo5BfQcgl4vXVtAij0H+8VAn/AG8IWFQVDdd/4UZ9TZ5ysMmC1h8sS1FHTNl 2QjfyfEIuZRdMD6n7hmUi9yX4jbVgB8AN++wtq8FUzf7FtbXKU11OrLdHwzc9JK1 qDoH8FAGyP2yRQsMQUD55rMi3/xyGDUCAwEAAaOCAxQwggMQMIIBdgYDVR0RBIIB bTCCAWmCEGFjY2Vzcy50Y2hpYm8uY3qCGmFjY2Vzcy50Y2hpYm8tZXh0ZXJuYWwu Y29tghRhY2Nlc3MudGNoaWJvLmNvbS5iZIIUYWNjZXNzLnRjaGliby5jb20udHKC EGFjY2Vzcy50Y2hpYm8uYXSCEWFjY2Vzcy5xYm8uY29mZmVlghRhY2Nlc3MudGNo aWJvLmNvbS5oa4IQYWNjZXNzLnRjaGliby5za4IQYWNjZXNzLnRjaGliby5jaIIQ YWNjZXNzLnRjaGliby5yb4IQYWNjZXNzLnRjaGliby5wbIIYYWNjZXNzLnRjaGli by1leHRlcm5lLmRlghFhY2Nlc3MuZWR1c2Noby5hdIIQYWNjZXNzLnRjaGliby5o dYIQYWNjZXNzLnRjaGliby5ydYIQYWNjZXNzLnRjaGliby5kZYIUc2t5cGVjb25m LnRjaGliby5jb22CEWFjY2Vzcy50Y2hpYm8uY29tMAkGA1UdEwQCMAAwDgYDVR0P AQH/BAQDAgWgMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly9nbi5zeW1jYi5jb20v Z24uY3JsMIGdBgNVHSAEgZUwgZIwgY8GBmeBDAECAjCBhDA/BggrBgEFBQcCARYz aHR0cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0b3J5L2xl Z2FsMEEGCCsGAQUFBwICMDUMM2h0dHBzOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNv dXJjZXMvcmVwb3NpdG9yeS9sZWdhbDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwHwYDVR0jBBgwFoAU0m/3lvSFP3I8MH0j2oV4m6N8WnwwVwYIKwYBBQUH AQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8vZ24uc3ltY2QuY29tMCYGCCsGAQUF BzAChhpodHRwOi8vZ24uc3ltY2IuY29tL2duLmNydDATBgorBgEEAdZ5AgQDAQH/ BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUCMlzbUxyCJjVJqbqdt7qjYIoNg52X3S u0TQ1+c1zv+HgBC7v87TNS54pZO9GhDaSrAvNh02I34TaSy0nXdPdE1e3gKuR83F M1Ue4Em34i/T+6SnI4Ty4IxopKfxtMM/q1XnBasmTh3EfUea+mXVC4gMJYDkZ9ao ohvaHIGqryNufrTRW2KtcLY3dMctCDCwsOymL9UHZ8WvUijQRcATRHA1D0McHyYE JImSSfBBId8LJQEmDdM+7tnTgFerRUAjORj6swalSKJsjgZqTtviU+V+cFbO0D9F K9Gplsy6hlSsbeLMjOaDO4gL3HpVEi2LjZiMGRCZ3KfnLyR2hOI4dA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+AxTpX/hzVV1klQWjx0 kPCirmVXejpXgACaoWASWd/WTSKVPavBsLYFxjCwcOiVgRnmRVlzMNhsO4GHqnoo pI+zobEG48wTfmarOTaljb/kD5GcYsdlrTvPbC47E+Q+BFV8Jwq81u3VBdFmm/JT uDfQnGu60FbCVE5rUiVHspmE9lQAQEix8qfnt0FujkF9ByCXi9dW0CKPQf7xUCf8 AbwhYVBUN13/hRn1NnnKwyYLWHyxLUUdM2XZCN/J8Qi5lF0wPqfuGZSL3JfiNtWA HwA377C2rwVTN/sW1tcpTXU6st0fDNz0krWoOgfwUAbI/bJFCwxBQPnmsyLf/HIY NQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 23980172819364335546718423879172109745 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-08 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Hamburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Hamburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Tchibo GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'access.tchibo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20687397203563678882365589647192260869397009928778749422503784019492304981465551071088615587128868399436874272113859083982172380780766966170158984152970085158462193626155494374257544428691970760351222117945646982342608898216207448881116655079740656550476731405302649376970565829787442483560932236137285596848688972099960505478458813704040833527460296800705926907980266241664780884347671399763825835148270326138682281370002066705050233522434183577170201360049389652412522945056744670026817373074666728838037114592803511670121286954471971065152597073149753586430544814530258727629788731321946052696699353014711096580149 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo-external.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo.com.bd' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo.com.tr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo.at' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.qbo.coffee' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo.com.hk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo.ro' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo-externe.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.eduscho.at' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo.ru' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'skypeconf.tchibo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access.tchibo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d26ff796f4853f723c307d23da85789ba37c5a7c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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