www.hofa.de
- HOFA GmbH -
Issued by GeoTrust RSA CA 2018
About this certificate
This digital certificate with serial number 09:a1:f4:81:4a:4f:08:4a:4d:35:e7:52:a9:44:8e:53 was issued on by DigiCert Inc.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
HOFA GmbH
Organization:
HOFA GmbH
Locality:
Karlsdorf-Neuthard
Country: DE
Country: DE
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:a1:f4:81:4a:4f:08:4a:4d:35:e7:52:a9:44:8e:53Serial Number (int): 12803970907662040468094288607014325843
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c3:1c:af:0c:7f:c1:59:2e:91:de:1d:f0:4f:ec:96:17:1f:db:69:ff
AuthorityKeyId: 90:58:ff:b0:9c:75:a8:51:54:77:b1:ed:f2:a3:43:16:38:9e:6c:c5
Fingerprint (sha1): a2:32:8a:dd:a2:2f:a2:36:f2:94:b3:46:44:19:7d:db:dd:f7:f3:9e
Fingerprint (sha256): 38:d4:bd:af:7e:ac:2d:e5:36:4b:18:ba:bc:3a:c7:f7:ab:46:dc:45:23:b1:0a:fb:cb:04:3a:e5:df:de:64:97
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustRSACA2018.crl
Check the revocation status for certificate www.hofa.de
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.hofa.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.hofa.de
hofa-akustik.de
hofa-college.com
hofa-college.de
hofa-plugins.de
hofa-studios.de
hofa.de
oc.hofa-college.de
hofa-akustik.de
hofa-college.com
hofa-college.de
hofa-plugins.de
hofa-studios.de
hofa.de
oc.hofa-college.de
Other certificates including the domain name hofa.de
(limited to 100 certificates)
dev.hofa.de
hofa.de
tv.hofa.de
studionews.hofa.de
studionews.hofa.de
www.hofa.de
dev.hofa.de
www.hofa.de
studionews.hofa.de
hofa-college.test.hofa.de
hofa-wp.srv.hofa.de
hofa.de
hofa-wp.srv.hofa.de
dev.hofa.de
hofa.de
hofa-wp.srv.hofa.de
www.hofa.de
www.hofa.de
www.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
hofa.de
hofa-wp.srv.hofa.de
songcheck.hofa.de
studionews.hofa.de
hofa-college.test.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
www.hofa.de
studionews.hofa.de
hofa-wp.srv.hofa.de
studionews.hofa.de
hofa-wp.srv.hofa.de
studionews.hofa.de
studionews.hofa.de
hofa.de
dev.hofa.de
studionews.hofa.de
hofa.de
tv.hofa.de
studionews.hofa.de
studionews.hofa.de
www.hofa.de
dev.hofa.de
www.hofa.de
studionews.hofa.de
hofa-college.test.hofa.de
hofa-wp.srv.hofa.de
hofa.de
hofa-wp.srv.hofa.de
dev.hofa.de
hofa.de
hofa-wp.srv.hofa.de
www.hofa.de
www.hofa.de
www.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
hofa.de
hofa-wp.srv.hofa.de
songcheck.hofa.de
studionews.hofa.de
hofa-college.test.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
www.hofa.de
studionews.hofa.de
hofa-wp.srv.hofa.de
studionews.hofa.de
hofa-wp.srv.hofa.de
studionews.hofa.de
studionews.hofa.de
hofa.de
dev.hofa.de
studionews.hofa.de
Certificate
The complete raw certificate details for www.hofa.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGwzCCBaugAwIBAgIQCaH0gUpPCEpNNedSqUSOUzANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRHZW9UcnVzdCBSU0EgQ0EgMjAxODAe Fw0yMjA1MjcwMDAwMDBaFw0yMzA2MjcyMzU5NTlaMFQxCzAJBgNVBAYTAkRFMRsw GQYDVQQHExJLYXJsc2RvcmYtTmV1dGhhcmQxEjAQBgNVBAoTCUhPRkEgR21iSDEU MBIGA1UEAxMLd3d3LmhvZmEuZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDPx/Me3/OcZIg9nWbkXI/DQj4jEWaCgoQ3/bG/X4nR5O0XP29yTADZD2Z2 JWtPbLQX1jTeo1MuJJQd7djpjn0XHaaNOJQu6qHiBU9iuLXdyHoiYBpggaCyA+Xe Yxoyu/GIteNw7IgoA9ZD6YrIiiKpb7w23vw3MTctfR+bK06eAuIxNfzukaJM7UoL 0XkI6CtdEItsrhwkcti0BEKG80zGXXckZf/RM3HvDWppIo4o9dYMXNwgQ+HLAVsX VP4R/tVrtJc5sMs098GCbuBX+Z9vJ969THq5rkl8f/3kXwaVoGHWDtHIv9g7BHEU q1XtlTeEaeUI1SSy+yC1+jH8VQ69AgMBAAGjggOFMIIDgTAfBgNVHSMEGDAWgBSQ WP+wnHWoUVR3se3yo0MWOJ5sxTAdBgNVHQ4EFgQUwxyvDH/BWS6R3h3wT+yWFx/b af8wgYsGA1UdEQSBgzCBgIILd3d3LmhvZmEuZGWCD2hvZmEtYWt1c3Rpay5kZYIQ aG9mYS1jb2xsZWdlLmNvbYIPaG9mYS1jb2xsZWdlLmRlgg9ob2ZhLXBsdWdpbnMu ZGWCD2hvZmEtc3R1ZGlvcy5kZYIHaG9mYS5kZYISb2MuaG9mYS1jb2xsZWdlLmRl MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw PgYDVR0fBDcwNTAzoDGgL4YtaHR0cDovL2NkcC5nZW90cnVzdC5jb20vR2VvVHJ1 c3RSU0FDQTIwMTguY3JsMD4GA1UdIAQ3MDUwMwYGZ4EMAQICMCkwJwYIKwYBBQUH AgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzB1BggrBgEFBQcBAQRpMGcw JgYIKwYBBQUHMAGGGmh0dHA6Ly9zdGF0dXMuZ2VvdHJ1c3QuY29tMD0GCCsGAQUF BzAChjFodHRwOi8vY2FjZXJ0cy5nZW90cnVzdC5jb20vR2VvVHJ1c3RSU0FDQTIw MTguY3J0MAkGA1UdEwQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB1AOg+ 0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABgQcDhTIAAAQDAEYwRAIg NJgoVx096U5dt0hwWF9TlUGyCabpfL99fLoVibIxqFoCIFOXRgboovyx9G5X5BUi GyoPnLM/4A16af+6hzfBBS+EAHYANc8ZG7+xbFe/D61MbULLu7YnICZR6j/hKu+o A8M71kwAAAGBBwOFcAAABAMARzBFAiEAvtcIbEJsX01L9aKLUYsPpBqxSE3TzW5A gd1y5i6pIHcCIDDw0drtojoEUS6/ef9cD0MPOGU5s5sRC9LmKVrOBfcOAHcAtz77 JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGBBwOFVgAABAMASDBGAiEA sN0Y+J+rzzDIgb5gNbGpQITK1Oyvnqgcbcg7vntaT8ACIQDVAkTnCAxCsG/HF2Ub FXUPPTi8jRFzUUQbNYXZzB9F9zANBgkqhkiG9w0BAQsFAAOCAQEAYvuxdCg0LN8y 1Irwetr2liyOi5SxDyyWas+8YbDxWyGp3oOkmiiylcgzezBUqQ7UG/Rf+CUou915 joQSGctoBwOnmiHUkeEOO9WHgQe6zLNro6HqBxfRSwpgcpL3lqBegRDDjkrM/que e8q+SpfkeiOgsM45Vplww70K6otWjwkYTLsSyRtden6cDEhXLrQbLNZjAzkyWU86 GQDYVpPX/11Nql+ZIKp4rSwbAElZARJNecEvtwgpVOYbk2k9vxeAY9xOfZyU4vBj asWQeaGmgTYMHAmjRCv8JjDP3tNsFW7XqnLHrttat7CbWdPcRSlxKshDPI5p96ab FNAyWdnILA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8fzHt/znGSIPZ1m5FyP w0I+IxFmgoKEN/2xv1+J0eTtFz9vckwA2Q9mdiVrT2y0F9Y03qNTLiSUHe3Y6Y59 Fx2mjTiULuqh4gVPYri13ch6ImAaYIGgsgPl3mMaMrvxiLXjcOyIKAPWQ+mKyIoi qW+8Nt78NzE3LX0fmytOngLiMTX87pGiTO1KC9F5COgrXRCLbK4cJHLYtARChvNM xl13JGX/0TNx7w1qaSKOKPXWDFzcIEPhywFbF1T+Ef7Va7SXObDLNPfBgm7gV/mf byfevUx6ua5JfH/95F8GlaBh1g7RyL/YOwRxFKtV7ZU3hGnlCNUksvsgtfox/FUO vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12803970907662040468094288607014325843 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Karlsdorf-Neuthard' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HOFA GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.hofa.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26229927994875293973852906115999732996352886305440700031593100743851271352310747594337195796780630017499913394470428188586780224763653057454977566279723918698623240841549173984559107465716812342355344193408487253457581868046243407338618064795782793229132788269983254042532094904680503174165940120650725766846496346606010662635608986585185038798484822328915394582841938090232102096249200326200918962513352925280471845252951041051690878908016856128550935111758674980791663540966470259406830728909248211662917338521593474418144143207938267534805659064832701782088143660508468141782554203708400656234177375096878677692093 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9058ffb09c75a8515477b1edf2a34316389e6cc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c31caf0c7fc1592e91de1df04fec96171fdb69ff . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (131 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hofa.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hofa-akustik.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hofa-college.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hofa-college.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hofa-plugins.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hofa-studios.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hofa.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oc.hofa-college.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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