widget.bankleumi.co.il
- Bank Leumi le-Israel Ltd -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 0b:7a:e1:19:ae:54:5c:0d:b1:c2:b4:20:03:ce:e1:01 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Bank Leumi le-Israel Ltd
Organization:
Bank Leumi le-Israel Ltd
Organization unit: Terms of use at www.comsign.co.il/rpa (c) 03
Organization unit: Terms of use at www.comsign.co.il/rpa (c) 03
Locality:
Tel Aviv-Jaffa
Country: IL
Country: IL
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:7a:e1:19:ae:54:5c:0d:b1:c2:b4:20:03:ce:e1:01Serial Number (int): 15259533747192584243171192299548762369
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 09:84:bc:58:d8:09:1d:47:32:60:ce:f7:33:70:e2:36:5c:81:fa:53
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): e8:4f:0c:d1:7c:bc:64:3a:7a:2a:b1:87:e6:78:af:e0:76:69:55:ef
Fingerprint (sha256): 39:67:80:4c:f3:c0:e0:47:bf:ad:6a:c5:d7:94:13:88:f8:a1:64:0d:16:ed:7c:3c:2e:11:c8:80:99:b0:f5:9a
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate widget.bankleumi.co.il
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for widget.bankleumi.co.il
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
widget.bankleumi.co.il
Other certificates including the domain name bankleumi.co.il
(limited to 100 certificates)
hb5wap.bankleumi.co.il
accessibility.bankleumi.co.il
widget.bankleumi.co.il
streamer.bankleumi.co.il
incomingcredit.bankleumi.co.il
akamai-san17.exacttarget.com
hb2.bankleumi.co.il
livenesshb3.bankleumi.co.il
lti-content.bankleumi.co.il
ufapi.bankleumi.co.il
liveness.bankleumi.co.il
akamai-san17.exacttarget.com
leumiservices-msr.bankleumi.co.il
incomingcredit5.bankleumi.co.il
lfxt.bankleumi.co.il
mobile.bankleumi.co.il
akamai-san17.exacttarget.com
forms-stg.bankleumi.co.il
mft.bankleumi.co.il
cellular.bankleumi.co.il
sdc.bankleumi.co.il
cache.bankleumi.co.il
accessibilitys.bankleumi.co.il
appdynlib.bankleumi.co.il
www.bankleumi.co.il
exp2.bankleumi.co.il
lyncweb.bankleumi.co.il
tradair.bankleumi.co.il
encmail.bankleumi.co.il
accessibilitys.bankleumi.co.il
ufapihb3.bankleumi.co.il
securemail.bankleumi.co.il
cache.bankleumi.co.il
sa5.bankleumi.co.il
*.bankleumi.co.il
cloud.digital.bankleumi.co.il
accessibilitys.bankleumi.co.il
Securemail.bankleumi.co.il
sa3.bankleumi.co.il
cellulardlv.bankleumi.co.il
prpn.bankleumi.co.il
apiportal.bankleumi.co.il
accessibility.bankleumi.co.il
streamer.bankleumi.co.il
hb3wap.bankleumi.co.il
akamai-san17.exacttarget.com
securemail.bankleumi.co.il
securemail.bankleumi.co.il
www.bankleumi.co.il
accessibility.bankleumi.co.il
access.bankleumi.co.il
hb5wap.bankleumi.co.il
prodapi.bankleumi.co.il
leumiservices.bankleumi.co.il
trade.bankleumi.co.il
e-learning.bankleumi.co.il
liveness.bankleumi.co.il
e-learning.bankleumi.co.il
sdc.bankleumi.co.il
widget.bankleumi.co.il
lfxt.bankleumi.co.il
hbwaptest.bankleumi.co.il
service-stg7.bankleumi.co.il
hb3wap.bankleumi.co.il
cache.bankleumi.co.il
e-learning.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
e-learning.bankleumi.co.il
sa5.bankleumi.co.il
trade.bankleumi.co.il
hb2.bankleumi.co.il
apidev.bankleumi.co.il
access.bankleumi.co.il
sdc.bankleumi.co.il
apidev.bankleumi.co.il
oobstg.bankleumi.co.il
service.bankleumi.co.il
video.bankleumi.co.il
lfxt.bankleumi.co.il
appdynlib.bankleumi.co.il
hb2.bankleumi.co.il
encmail.bankleumi.co.il
sa3.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
lyncweb.bankleumi.co.il
widget.bankleumi.co.il
help.bankleumi.co.il
ufapi.bankleumi.co.il
cache.bankleumi.co.il
akamai-san17.exacttarget.com
oob.bankleumi.co.il
ufapi.bankleumi.co.il
apitest.bankleumi.co.il
appdynlib.bankleumi.co.il
access.bankleumi.co.il
streamer.bankleumi.co.il
ocrhb3.bankleumi.co.il
hb2.bankleumi.co.il
ufapihb1.bankleumi.co.il
mobile.bankleumi.co.il
accessibility.bankleumi.co.il
widget.bankleumi.co.il
streamer.bankleumi.co.il
incomingcredit.bankleumi.co.il
akamai-san17.exacttarget.com
hb2.bankleumi.co.il
livenesshb3.bankleumi.co.il
lti-content.bankleumi.co.il
ufapi.bankleumi.co.il
liveness.bankleumi.co.il
akamai-san17.exacttarget.com
leumiservices-msr.bankleumi.co.il
incomingcredit5.bankleumi.co.il
lfxt.bankleumi.co.il
mobile.bankleumi.co.il
akamai-san17.exacttarget.com
forms-stg.bankleumi.co.il
mft.bankleumi.co.il
cellular.bankleumi.co.il
sdc.bankleumi.co.il
cache.bankleumi.co.il
accessibilitys.bankleumi.co.il
appdynlib.bankleumi.co.il
www.bankleumi.co.il
exp2.bankleumi.co.il
lyncweb.bankleumi.co.il
tradair.bankleumi.co.il
encmail.bankleumi.co.il
accessibilitys.bankleumi.co.il
ufapihb3.bankleumi.co.il
securemail.bankleumi.co.il
cache.bankleumi.co.il
sa5.bankleumi.co.il
*.bankleumi.co.il
cloud.digital.bankleumi.co.il
accessibilitys.bankleumi.co.il
Securemail.bankleumi.co.il
sa3.bankleumi.co.il
cellulardlv.bankleumi.co.il
prpn.bankleumi.co.il
apiportal.bankleumi.co.il
accessibility.bankleumi.co.il
streamer.bankleumi.co.il
hb3wap.bankleumi.co.il
akamai-san17.exacttarget.com
securemail.bankleumi.co.il
securemail.bankleumi.co.il
www.bankleumi.co.il
accessibility.bankleumi.co.il
access.bankleumi.co.il
hb5wap.bankleumi.co.il
prodapi.bankleumi.co.il
leumiservices.bankleumi.co.il
trade.bankleumi.co.il
e-learning.bankleumi.co.il
liveness.bankleumi.co.il
e-learning.bankleumi.co.il
sdc.bankleumi.co.il
widget.bankleumi.co.il
lfxt.bankleumi.co.il
hbwaptest.bankleumi.co.il
service-stg7.bankleumi.co.il
hb3wap.bankleumi.co.il
cache.bankleumi.co.il
e-learning.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
e-learning.bankleumi.co.il
sa5.bankleumi.co.il
trade.bankleumi.co.il
hb2.bankleumi.co.il
apidev.bankleumi.co.il
access.bankleumi.co.il
sdc.bankleumi.co.il
apidev.bankleumi.co.il
oobstg.bankleumi.co.il
service.bankleumi.co.il
video.bankleumi.co.il
lfxt.bankleumi.co.il
appdynlib.bankleumi.co.il
hb2.bankleumi.co.il
encmail.bankleumi.co.il
sa3.bankleumi.co.il
leumisrv-prod.bankleumi.co.il
lyncweb.bankleumi.co.il
widget.bankleumi.co.il
help.bankleumi.co.il
ufapi.bankleumi.co.il
cache.bankleumi.co.il
akamai-san17.exacttarget.com
oob.bankleumi.co.il
ufapi.bankleumi.co.il
apitest.bankleumi.co.il
appdynlib.bankleumi.co.il
access.bankleumi.co.il
streamer.bankleumi.co.il
ocrhb3.bankleumi.co.il
hb2.bankleumi.co.il
ufapihb1.bankleumi.co.il
mobile.bankleumi.co.il
Certificate
The complete raw certificate details for widget.bankleumi.co.il in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGqTCCBZGgAwIBAgIQC3rhGa5UXA2xwrQgA87hATANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTgwODA5MDAwMDAwWhcNMjAxMDA3MTIwMDAwWjCBoTELMAkGA1UEBhMCSUwxFzAV BgNVBAcTDlRlbCBBdml2LUphZmZhMSEwHwYDVQQKExhCYW5rIExldW1pIGxlLUlz cmFlbCBMdGQxNTAzBgNVBAsTLFRlcm1zIG9mIHVzZSBhdCB3d3cuY29tc2lnbi5j by5pbC9ycGEgKGMpIDAzMR8wHQYDVQQDExZ3aWRnZXQuYmFua2xldW1pLmNvLmls MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwLtIRhnauxGOBMDWxRC9 p+S7vqxmDWj7I5369vtFwwV1RBYnZO3ZZ1cx3WA5/o+bu8Ydxn0gcwzx6o5nE+ZG XdXMy0hszCzO3++S+Ez/Mn/yL6r7K6t8cYEX4q0aLBrSTS4id2Lz0uVn8dcqnce7 +uFuNj6KHzSjq9bWdSE0mLXBT/YsXseFLGpN+r7p6qy98Q0WFQT2N0s9EBa57ofP 8FncZsJprDq6hCpGYT8hd9Ua5AssotwekVCiiuqYxMFm16KMVsT5if9lT2An739Q TNLXhmZdFOF3/IxhI+r3FJhenqV++R+UIyPA2FG6cNLimqWd6lIFtZw811cWEuzo 4QIDAQABo4IDHzCCAxswHwYDVR0jBBgwFoAUo8heZVTlMHjBBeoHCmpZzLn+3low HQYDVR0OBBYEFAmEvFjYCR1HMmDO9zNw4jZcgfpTMCEGA1UdEQQaMBiCFndpZGdl dC5iYW5rbGV1bWkuY28uaWwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjA6BgNVHR8EMzAxMC+gLaArhilodHRwOi8vY2RwLnRo YXd0ZS5jb20vVGhhd3RlUlNBQ0EyMDE4LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG /WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BT MAgGBmeBDAECAjBvBggrBgEFBQcBAQRjMGEwJAYIKwYBBQUHMAGGGGh0dHA6Ly9z dGF0dXMudGhhd3RlLmNvbTA5BggrBgEFBQcwAoYtaHR0cDovL2NhY2VydHMudGhh d3RlLmNvbS9UaGF3dGVSU0FDQTIwMTguY3J0MAkGA1UdEwQCMAAwggF/BgorBgEE AdZ5AgQCBIIBbwSCAWsBaQB2AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6 qP3LAAABZR05BSYAAAQDAEcwRQIhAOzREFZSXOlKjbRSJmpatfS+QoIQk5kjlTMM 2EYCAd5AAiAVl8ZY18gB2jfRs7SV1au0pnXl4IWQ+y5QZojfzEOo6QB3AId1v+dZ fPiMQ5lfvfNu/1aNR1Y2/0q1YMG06v9eoIMPAAABZR05BZYAAAQDAEgwRgIhAK6b ojiDTcda8D+oNzz7/HQRGzPOzer+nFqkXzk9SFp9AiEA9ArtG+iLm0NQJlFUYwad RQ6Us+TSK4jNQAISP/knfvEAdgC72d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQlmQ2 jh7RhQAAAWUdOQWbAAAEAwBHMEUCIQDr3fkwrakb5zT/VlvmtJ7r2wqxLN7zc4AJ NImtyxiWHwIgKy4I2UzDcU63iZQQASG1wudvJ2eCQaab2DbKtW0DrcwwDQYJKoZI hvcNAQELBQADggEBAIA2WQx95xZunXlcWGGUFaJGzfk3G6rDDBsSy/t5GLYa+mgp iVuKtFc9AfdcMi2WtZ8B4szYHNZykD5fLHTAUSDTP94Lp9RXN4KMIg2ZUj3mTU4h 4jbhwqorz4tlF2CFHSUE8cFksOrryKzSGql+7F4R9X2UF+KVXOq879eqIP8doUy9 rNp2lLUxk2N8wC7d8m+IwPf+KEOBTf/J1PLG1BtKgcxbraUMxDUFT1vZM+wiFItX SQH3daO1kKUm3z5McIhi945STU6o0M+2o1Uhi3/xM4900Mnx5qmmNGgqnjNksgwq irFQNLcyHvf7GlzW45sfVlbbrnQS2p2ERh3A72o= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwLtIRhnauxGOBMDWxRC9 p+S7vqxmDWj7I5369vtFwwV1RBYnZO3ZZ1cx3WA5/o+bu8Ydxn0gcwzx6o5nE+ZG XdXMy0hszCzO3++S+Ez/Mn/yL6r7K6t8cYEX4q0aLBrSTS4id2Lz0uVn8dcqnce7 +uFuNj6KHzSjq9bWdSE0mLXBT/YsXseFLGpN+r7p6qy98Q0WFQT2N0s9EBa57ofP 8FncZsJprDq6hCpGYT8hd9Ua5AssotwekVCiiuqYxMFm16KMVsT5if9lT2An739Q TNLXhmZdFOF3/IxhI+r3FJhenqV++R+UIyPA2FG6cNLimqWd6lIFtZw811cWEuzo 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15259533747192584243171192299548762369 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-10-07 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Tel Aviv-Jaffa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bank Leumi le-Israel Ltd' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Terms of use at www.comsign.co.il/rpa (c) 03' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'widget.bankleumi.co.il' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24330106907325130714173539458604427679624322276458519314150641219964165896384910289815747865700133515141344871377749117775761098378918974678909496238794033968621180244048573947557926842412175591219055630222883883649184479062212503465953901368579268735563537992508776695655179804227353640495258883346348873939223370131865504087872619579771047667696064846418519086111964903495971338791020347931130589493893992353772449654598736224292887120234005955239861536324677234493810348982962285211467880366572819122248950588170810931409050799388050432599114225564501501770154777585444825845176783461603764660489251266148885653729 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0984bc58d8091d473260cef73370e2365c81fa53 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'widget.bankleumi.co.il' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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