quartz.cruzio.com
- Cruzio -
Issued by Thawte SSL CA
About this certificate
This digital certificate with serial number 3a:28:04:84:e6:64:ad:47:90:ac:c3:14:09:9d:66:58 was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Cruzio
Organization:
Cruzio
Organization unit: Secure Services Division
Organization unit: Secure Services Division
State / Province:
California
Locality: Santa Cruz
Country: US
Locality: Santa Cruz
Country: US
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 3a:28:04:84:e6:64:ad:47:90:ac:c3:14:09:9d:66:58Serial Number (int): 77303007288925643353552403620689700440
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: a7:a2:83:bb:34:45:40:3d:fc:d5:30:4f:12:b9:3e:a1:01:9f:f6:db
Fingerprint (sha1): e2:cd:08:7d:30:63:6d:ff:f9:a8:74:85:c9:42:85:1f:e5:ed:fe:9b
Fingerprint (sha256): 39:36:43:e1:fe:59:f2:28:60:bc:d3:0e:1a:23:53:d6:49:e7:a5:23:4b:b6:45:2c:17:4b:77:48:27:46:93:a2
Issuing Certificate URL: http://svr-ov-aia.thawte.com/ThawteOV.cer
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl
Check the revocation status for certificate quartz.cruzio.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for quartz.cruzio.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
quartz.cruzio.com
Other certificates including the domain name cruzio.com
(limited to 100 certificates)
host4.cruzio.com
host9.cruzio.com
cruziomail.cruzio.com
members.cruzio.com
host8.cruzio.com
secure.cruzio.com
host3.cruzio.com
cruziomail.cruzio.com
cruziomail.cruzio.com
www.cruzio.com
www8.cruzio.com
host1.cruzio.com
host10.cruzio.com
cruziomail.cruzio.com
www6.cruzio.com
secure.cruzio.com
tools.cruzio.com
tools.cruzio.com
portal.cruzio.com
cruziomail.cruzio.com
host6.cruzio.com
host6.cruzio.com
secure.cruzio.com
cruziomail.cruzio.com
www.cruzio.com
host8.cruzio.com
cruziomail.cruzio.com
www10.cruzio.com
mail.cruzio.com
host9.cruzio.com
host1.cruzio.com
cruzio.com
host3.cruzio.com
members.cruzio.com
host10.cruzio.com
host1.cruzio.com
www4.cruzio.com
www.cruzio.com
cruziomail.cruzio.com
cruziomail.cruzio.com
host6.cruzio.com
www3.cruzio.com
host11.cruzio.com
host7.cruzio.com
host1.cruzio.com
nagios.cruzio.com
www5.cruzio.com
host8.cruzio.com
cruziomail.cruzio.com
host12.cruzio.com
host10.cruzio.com
host10.cruzio.com
tools.cruzio.com
cruziomail.cruzio.com
mail.cruzio.com
www7.cruzio.com
host1.cruzio.com
quartz.cruzio.com
cruziomail.cruzio.com
portal.cruzio.com
www7.cruzio.com
cruziomail.cruzio.com
host7.cruzio.com
www.cruzio.com
cruziomail.cruzio.com
mail.cruzio.com
host8.cruzio.com
www10.cruzio.com
www15.cruzio.com
www9.cruzio.com
cruziomail.cruzio.com
www12.cruzio.com
quartz.cruzio.com
www9.cruzio.com
cruziomail.cruzio.com
www5.cruzio.com
www.cruzio.com
host9.cruzio.com
quartz.cruzio.com
host9.cruzio.com
host11.cruzio.com
cruziomail.cruzio.com
www8.cruzio.com
secure.cruzio.com
mail.cruzio.com
www4.cruzio.com
cruziomail.cruzio.com
host6.cruzio.com
cruziomail.cruzio.com
secure.cruzio.com
amail.cruzio.com
mail.cruzio.com
quartz.cruzio.com
cruziomail.cruzio.com
host7.cruzio.com
quartz.cruzio.com
wwwsb1.cruzio.com
www7.cruzio.com
www8.cruzio.com
host10.cruzio.com
host9.cruzio.com
cruziomail.cruzio.com
members.cruzio.com
host8.cruzio.com
secure.cruzio.com
host3.cruzio.com
cruziomail.cruzio.com
cruziomail.cruzio.com
www.cruzio.com
www8.cruzio.com
host1.cruzio.com
host10.cruzio.com
cruziomail.cruzio.com
www6.cruzio.com
secure.cruzio.com
tools.cruzio.com
tools.cruzio.com
portal.cruzio.com
cruziomail.cruzio.com
host6.cruzio.com
host6.cruzio.com
secure.cruzio.com
cruziomail.cruzio.com
www.cruzio.com
host8.cruzio.com
cruziomail.cruzio.com
www10.cruzio.com
mail.cruzio.com
host9.cruzio.com
host1.cruzio.com
cruzio.com
host3.cruzio.com
members.cruzio.com
host10.cruzio.com
host1.cruzio.com
www4.cruzio.com
www.cruzio.com
cruziomail.cruzio.com
cruziomail.cruzio.com
host6.cruzio.com
www3.cruzio.com
host11.cruzio.com
host7.cruzio.com
host1.cruzio.com
nagios.cruzio.com
www5.cruzio.com
host8.cruzio.com
cruziomail.cruzio.com
host12.cruzio.com
host10.cruzio.com
host10.cruzio.com
tools.cruzio.com
cruziomail.cruzio.com
mail.cruzio.com
www7.cruzio.com
host1.cruzio.com
quartz.cruzio.com
cruziomail.cruzio.com
portal.cruzio.com
www7.cruzio.com
cruziomail.cruzio.com
host7.cruzio.com
www.cruzio.com
cruziomail.cruzio.com
mail.cruzio.com
host8.cruzio.com
www10.cruzio.com
www15.cruzio.com
www9.cruzio.com
cruziomail.cruzio.com
www12.cruzio.com
quartz.cruzio.com
www9.cruzio.com
cruziomail.cruzio.com
www5.cruzio.com
www.cruzio.com
host9.cruzio.com
quartz.cruzio.com
host9.cruzio.com
host11.cruzio.com
cruziomail.cruzio.com
www8.cruzio.com
secure.cruzio.com
mail.cruzio.com
www4.cruzio.com
cruziomail.cruzio.com
host6.cruzio.com
cruziomail.cruzio.com
secure.cruzio.com
amail.cruzio.com
mail.cruzio.com
quartz.cruzio.com
cruziomail.cruzio.com
host7.cruzio.com
quartz.cruzio.com
wwwsb1.cruzio.com
www7.cruzio.com
www8.cruzio.com
host10.cruzio.com
Certificate
The complete raw certificate details for quartz.cruzio.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEuDCCA6CgAwIBAgIQOigEhOZkrUeQrMMUCZ1mWDANBgkqhkiG9w0BAQUFADA8 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRYwFAYDVQQDEw1U aGF3dGUgU1NMIENBMB4XDTEzMTIxMDAwMDAwMFoXDTE0MTIxNDIzNTk1OVowgYcx CzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMRMwEQYDVQQHFApTYW50 YSBDcnV6MQ8wDQYDVQQKFAZDcnV6aW8xITAfBgNVBAsUGFNlY3VyZSBTZXJ2aWNl cyBEaXZpc2lvbjEaMBgGA1UEAxQRcXVhcnR6LmNydXppby5jb20wggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6iMUyJGM4l1MEVW76YkMVFyRMb6flJ/Yt XMRm9sf8rR9JN86nyjKxNKe83dHwiE2Jod1nUaHKNqeD35kuPzY5hUam+dY0uvsU KANEXmFZZ8NkqXiwJDb8JWEaNrIkxDGgxZSfQ3VQD3MMLVx7yodFBsQ0IhDwkk1c VpZDQ75H+XArD24DK5vVQ1Ql/jjIn/N0ftA0xy8qA1KipVK7An3dgGhTGqUUDDx3 dzPBt0JNMsgnoNaCyLphnVZG/FB3j9CgR/LE3MJXDJLLjFoTxcYcE5ByJKD47Uwf mTOQ6LNnszmbhI5c6Vb0xJme+fvtJByLbDguKJ4VH50oqgXf94ABAgMBAAGjggFo MIIBZDAcBgNVHREEFTATghFxdWFydHouY3J1emlvLmNvbTAJBgNVHRMEAjAAMEIG A1UdIAQ7MDkwNwYKYIZIAYb4RQEHNjApMCcGCCsGAQUFBwIBFhtodHRwczovL3d3 dy50aGF3dGUuY29tL2Nwcy8wDgYDVR0PAQH/BAQDAgWgMB8GA1UdIwQYMBaAFKei g7s0RUA9/NUwTxK5PqEBn/bbMDoGA1UdHwQzMDEwL6AtoCuGKWh0dHA6Ly9zdnIt b3YtY3JsLnRoYXd0ZS5jb20vVGhhd3RlT1YuY3JsMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjBpBggrBgEFBQcBAQRdMFswIgYIKwYBBQUHMAGGFmh0dHA6 Ly9vY3NwLnRoYXd0ZS5jb20wNQYIKwYBBQUHMAKGKWh0dHA6Ly9zdnItb3YtYWlh LnRoYXd0ZS5jb20vVGhhd3RlT1YuY2VyMA0GCSqGSIb3DQEBBQUAA4IBAQCU2r6K x35/PV1+gujorCb3Nx/aKiSTU0cW2FpFSTb8xbUEBydbfEE+gPFjdLHucFTvC4BO AWZUaqYV88Gt5xr4evFDM9xm9esAYKWSHagQN5hS2fQ97w1z/Uc5fYVUiFUr3Dlg S+FSOdFqti0GP8JLSGViSbvFI4ePeMzvhnMGyIWeCynSV2vFqwW3AM5Q1P8xzvNW jTO4iNamvzFca7UfUCOzs2fr6h6/k99I0g//+ebfbRA5ldRaPWQcnB7/qzHDCt3X 6je3ZoWP5qWgHuMkG7LNgMgo8f4mEhJaamS1aBA8di+Xe2JVfif+0lz2kSlrLITA wKJCHwVZnboFY9wb -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuojFMiRjOJdTBFVu+mJD FRckTG+n5Sf2LVzEZvbH/K0fSTfOp8oysTSnvN3R8IhNiaHdZ1Ghyjang9+ZLj82 OYVGpvnWNLr7FCgDRF5hWWfDZKl4sCQ2/CVhGjayJMQxoMWUn0N1UA9zDC1ce8qH RQbENCIQ8JJNXFaWQ0O+R/lwKw9uAyub1UNUJf44yJ/zdH7QNMcvKgNSoqVSuwJ9 3YBoUxqlFAw8d3czwbdCTTLIJ6DWgsi6YZ1WRvxQd4/QoEfyxNzCVwySy4xaE8XG HBOQciSg+O1MH5kzkOizZ7M5m4SOXOlW9MSZnvn77SQci2w4LiieFR+dKKoF3/eA AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 77303007288925643353552403620689700440 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-12-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-12-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Santa Cruz' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Cruzio' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Secure Services Division' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'quartz.cruzio.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23547768670491513408630309362357963216216137615601036845529968999584449200510192731086892585673062196322153130592737261333962573693191269402913015181335033433220383192051601793838816445515360165285593086799751544119145842619559719314249801251910023281231964902351055544100665867489270484722974682171648579469653736924860209978179991501516611137628856924514480626944765275943481471246189906399748556839906917342790952217121315254289696630781725273056029030458080572172583171128408985531205693765679006057076925647536497822925359156155590193736533799146051463353093661280626273196942357859860863285266527356070074482689 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'quartz.cruzio.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a7a283bb3445403dfcd5304f12b93ea1019ff6db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-aia.thawte.com/ThawteOV.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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