aleph.techlib.cz
- National Library of Technology -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 0e:81:d0:be:20:32:82:62:e9:bf:5e:95:86:15:ae:c5 was issued on by TERENA.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
National Library of Technology
Organization:
National Library of Technology
State / Province:
Prague
Locality: Praha 6
Country: CZ
Locality: Praha 6
Country: CZ
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:81:d0:be:20:32:82:62:e9:bf:5e:95:86:15:ae:c5Serial Number (int): 19283232040252834579936807735036063429
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 3a:61:15:51:0d:23:37:67:ce:b0:69:0c:37:ae:0e:94:08:23:33:ce
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): 36:63:3e:8a:aa:0d:93:34:8d:82:ff:89:c9:d5:5c:fb:5b:33:11:df
Fingerprint (sha256): 3a:03:56:8f:1a:58:41:a8:37:35:2b:89:43:a4:e2:ff:d3:56:56:50:0c:0d:d5:01:d1:18:0b:6c:a7:28:5f:3f
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate aleph.techlib.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aleph.techlib.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aleph.techlib.cz
aleph22.ntkcz.cz
aleph22.ntkcz.cz
Other certificates including the domain name techlib.cz
(limited to 100 certificates)
elag2011.techlib.cz
vykukator.techlib.cz
icolc.techlib.cz
sfx.techlib.cz
matrix.techlib.cz
old.techlib.cz
elag2011.techlib.cz
caslin2013.techlib.cz
techlib.cz
space.techlib.cz
bigclean.techlib.cz
liber-lag2012.techlib.cz
caslin2013.techlib.cz
blog.techlib.cz
bigclean.techlib.cz
*.ezproxy.techlib.cz
blog.techlib.cz
eod2013.techlib.cz
bigclean.techlib.cz
old.techlib.cz
eod2013.techlib.cz
*.ezproxy.techlib.cz
caslin2013.techlib.cz
repozitar.techlib.cz
eod2013.techlib.cz
aleph.techlib.cz
ezproxy1.ntkcz.cz
summon-custom.techlib.cz
eod2013.techlib.cz
vykukator.techlib.cz
summon-custom.techlib.cz
indico.techlib.cz
blog.techlib.cz
liber-lag2012.techlib.cz
stanik.techlib.cz
bigclean.techlib.cz
caslin2013.techlib.cz
eod2013.techlib.cz
icolc.techlib.cz
bigclean.techlib.cz
ps.techlib.cz
summon-custom.techlib.cz
caslin2013.techlib.cz
caslin2013.techlib.cz
eod2013.techlib.cz
old.techlib.cz
space.techlib.cz
bigclean.techlib.cz
stanik.techlib.cz
liber-lag2012.techlib.cz
caslin2013.techlib.cz
icolc.techlib.cz
bigclean.techlib.cz
bigclean.techlib.cz
ps.techlib.cz
elag2011.techlib.cz
doc.techlib.cz
matrix.techlib.cz
mail.ntkcz.cz
techlib.cz
bigclean.techlib.cz
vykukator.techlib.cz
liber-lag2012.techlib.cz
liber-lag2012.techlib.cz
psh.techlib.cz
eod2013.techlib.cz
stanik.techlib.cz
psh.techlib.cz
elag2011.techlib.cz
kramerius.techlib.cz
ifis.techlib.cz
matrix.techlib.cz
safeq.ntkcz.cz
techlib.cz
liber-lag2012.techlib.cz
vykukator.techlib.cz
*.ezproxy.techlib.cz
old.techlib.cz
rs.techlib.cz
elag2011.techlib.cz
eod2013.techlib.cz
blog.techlib.cz
blog.techlib.cz
blog.techlib.cz
eod2013.techlib.cz
aleph.techlib.cz
nrgl.techlib.cz
psh.techlib.cz
old.techlib.cz
nejtek.techlib.cz
www.techlib.cz
summon-custom.techlib.cz
caslin2013.techlib.cz
vufind.techlib.cz
www.techlib.cz
eod2013.techlib.cz
bigclean.techlib.cz
techlib.cz
aleph.techlib.cz
techlib.cz
vykukator.techlib.cz
icolc.techlib.cz
sfx.techlib.cz
matrix.techlib.cz
old.techlib.cz
elag2011.techlib.cz
caslin2013.techlib.cz
techlib.cz
space.techlib.cz
bigclean.techlib.cz
liber-lag2012.techlib.cz
caslin2013.techlib.cz
blog.techlib.cz
bigclean.techlib.cz
*.ezproxy.techlib.cz
blog.techlib.cz
eod2013.techlib.cz
bigclean.techlib.cz
old.techlib.cz
eod2013.techlib.cz
*.ezproxy.techlib.cz
caslin2013.techlib.cz
repozitar.techlib.cz
eod2013.techlib.cz
aleph.techlib.cz
ezproxy1.ntkcz.cz
summon-custom.techlib.cz
eod2013.techlib.cz
vykukator.techlib.cz
summon-custom.techlib.cz
indico.techlib.cz
blog.techlib.cz
liber-lag2012.techlib.cz
stanik.techlib.cz
bigclean.techlib.cz
caslin2013.techlib.cz
eod2013.techlib.cz
icolc.techlib.cz
bigclean.techlib.cz
ps.techlib.cz
summon-custom.techlib.cz
caslin2013.techlib.cz
caslin2013.techlib.cz
eod2013.techlib.cz
old.techlib.cz
space.techlib.cz
bigclean.techlib.cz
stanik.techlib.cz
liber-lag2012.techlib.cz
caslin2013.techlib.cz
icolc.techlib.cz
bigclean.techlib.cz
bigclean.techlib.cz
ps.techlib.cz
elag2011.techlib.cz
doc.techlib.cz
matrix.techlib.cz
mail.ntkcz.cz
techlib.cz
bigclean.techlib.cz
vykukator.techlib.cz
liber-lag2012.techlib.cz
liber-lag2012.techlib.cz
psh.techlib.cz
eod2013.techlib.cz
stanik.techlib.cz
psh.techlib.cz
elag2011.techlib.cz
kramerius.techlib.cz
ifis.techlib.cz
matrix.techlib.cz
safeq.ntkcz.cz
techlib.cz
liber-lag2012.techlib.cz
vykukator.techlib.cz
*.ezproxy.techlib.cz
old.techlib.cz
rs.techlib.cz
elag2011.techlib.cz
eod2013.techlib.cz
blog.techlib.cz
blog.techlib.cz
blog.techlib.cz
eod2013.techlib.cz
aleph.techlib.cz
nrgl.techlib.cz
psh.techlib.cz
old.techlib.cz
nejtek.techlib.cz
www.techlib.cz
summon-custom.techlib.cz
caslin2013.techlib.cz
vufind.techlib.cz
www.techlib.cz
eod2013.techlib.cz
bigclean.techlib.cz
techlib.cz
aleph.techlib.cz
techlib.cz
Certificate
The complete raw certificate details for aleph.techlib.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgIQDoHQviAygmLpv16VhhWuxTANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xNjEyMDIwMDAwMDBaFw0xOTEyMTExMjAwMDBaMHQxCzAJBgNVBAYT AkNaMQ8wDQYDVQQIEwZQcmFndWUxEDAOBgNVBAcTB1ByYWhhIDYxJzAlBgNVBAoT Hk5hdGlvbmFsIExpYnJhcnkgb2YgVGVjaG5vbG9neTEZMBcGA1UEAxMQYWxlcGgu dGVjaGxpYi5jejCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMVqjy7T 8UAPAcsiI7VuwNyvJjLFyRzANzWFlLsv1nYVa7lKLQSntMuPNUgJyz42VycbY0PG I4lUD80AtckHRmtGvgFW9n+77MLm5WlBBlWxw2F2kKqLOrzDfhp4zKnLOaoSWbe5 C6PuggnglGkwj34dQJCxWYlOo7z6CnOszyrF5Z0r5LkuE1kDaA8v9dw503Alux9s SjFmcieQjkz9r+Y7rLSkkcgSQOSop6oWVh8Tvg9kNI7WOi73O9VtxDwOOVN/8SX9 sWV8V0Ub/3MML64+SMybGVh0Z652sxLHc4KvvtpTig/XeYj9T0eAtbV9rHSfAU/S JMEJTwbKnVLDamECAwEAAaOCAdswggHXMB8GA1UdIwQYMBaAFGf9iCAUJ5jHCdIl GbvpURFjdVBiMB0GA1UdDgQWBBQ6YRVRDSM3Z86waQw3rg6UCCMzzjAtBgNVHREE JjAkghBhbGVwaC50ZWNobGliLmN6ghBhbGVwaDIyLm50a2N6LmN6MA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwawYDVR0fBGQw YjAvoC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL1RFUkVOQVNTTENBMy5j cmwwL6AtoCuGKWh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9URVJFTkFTU0xDQTMu Y3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBz Oi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMG4GCCsGAQUFBwEBBGIw YDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMDgGCCsGAQUF BzAChixodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vVEVSRU5BU1NMQ0EzLmNy dDAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQAspIiwRocWITyEXvRD 39BvuLCrOdESWLDw9uD+6uzzrxzWsYRfAvUzhVnuCHoYW/hTB6II3MjSzkS4XdH9 0n5B/+fl2PPZpzyI0EwOEGx7JLeLNVMiwAy5E/zqDJJkfXURrLYTjFBtgaNVmIm0 GLic77NTPBRvdY7IDJ/z0Ju6k8JxOicYIoOkNJH61d0bI88bLdEh3q1UhU33SqMM 5sCelUcv+K5O9XpbOFhwDRbnfzTAT1BJCbHYm+R/zKf/y3kQ4sayjxr+ZfuNAoYe UQK9ls1XYeUE423nsZ9B2opksNVqCxyw+uTVVAD/oy30VfELuyboMIA2EvSA4oN+ MQDf -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxWqPLtPxQA8ByyIjtW7A 3K8mMsXJHMA3NYWUuy/WdhVruUotBKe0y481SAnLPjZXJxtjQ8YjiVQPzQC1yQdG a0a+AVb2f7vswublaUEGVbHDYXaQqos6vMN+GnjMqcs5qhJZt7kLo+6CCeCUaTCP fh1AkLFZiU6jvPoKc6zPKsXlnSvkuS4TWQNoDy/13DnTcCW7H2xKMWZyJ5COTP2v 5justKSRyBJA5KinqhZWHxO+D2Q0jtY6Lvc71W3EPA45U3/xJf2xZXxXRRv/cwwv rj5IzJsZWHRnrnazEsdzgq++2lOKD9d5iP1PR4C1tX2sdJ8BT9IkwQlPBsqdUsNq YQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19283232040252834579936807735036063429 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-11 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Prague' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Praha 6' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'National Library of Technology' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aleph.techlib.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24921492431659300710107076643113856783817518073718103801490645049288790188159979960967547494698984298138219357675630607292272172806706757353403554730653430438420294386891591484090490628978122375796218923730378196620400793642383521038598800181283490513143097225183028349765767715786888905728453738031345298813799642577070488328656137086015868952994383406174571490656675984107387375556424649879090549784782717832489497172055765428209660052296571216912977066688295297370938686908160539658548107114951235062830376479865174807039673149781920496437818560260013531177501448548187329316746661466142850729841500140702590528097 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3a6115510d233767ceb0690c37ae0e94082333ce . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aleph.techlib.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aleph22.ntkcz.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 002ca488b0468716213c845ef443dfd06fb8b0ab39d11258b0f0f6e0feeaecf3af1cd6b1845f02f5338559ee087a185bf85307a208dcc8d2ce44b85dd1fdd27e41ffe7e5d8f3d9a73c88d04c0e106c7b24b78b355322c00cb913fcea0c92647d7511acb6138c506d81a3559889b418b89cefb3533c146f758ec80c9ff3d09bba93c2713a27182283a43491fad5dd1b23cf1b2dd121dead54854df74aa30ce6c09e95472ff8ae4ef57a5b3858700d16e77f34c04f504909b1d89be47fcca7ffcb7910e2c6b28f1afe65fb8d02861e5102bd96cd5761e504e36de7b19f41da8a64b0d56a0b1cb0fae4d55400ffa32df455f10bbb26e830803612f480e2837e3100df