*.thismoment.com
Issued by RapidSSL CA
About this certificate
This digital certificate with serial number 09:9d:2e was issued on by GeoTrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
SERIALNUMBER=/gXExMYUFT5l8Ev70x7gLjLODGXRyZLo,CN=*.thismoment.com,OU=GT53576152+OU=See www.rapidssl.com/resources/cps (c)12+OU=Domain Control Validated - RapidSSL(R)
GeoTrust, Inc.
Organization:
GeoTrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:9d:2eSerial Number (int): 630062
Serial Number lenght: 20 bits, 3 octets
SubjectKeyId: 7d:7f:db:63:3b:c3:b0:34:27:dd:9d:0e:9f:1f:2b:89:6e:70:71:f0
AuthorityKeyId: 6b:69:3d:6a:18:42:4a:dd:8f:02:65:39:fd:35:24:86:78:91:16:30
Fingerprint (sha1): bf:da:ce:61:33:d2:65:61:27:44:1e:b7:55:06:eb:6e:3f:05:f7:98
Fingerprint (sha256): 3a:43:73:e6:8d:16:0d:9d:6b:47:07:39:ed:ca:f1:6d:bd:9b:02:4e:3b:1a:79:bb:5c:0d:be:7e:61:c5:d2:94
Issuing Certificate URL: http://rapidssl-aia.geotrust.com/rapidssl.crt
Revocation information
OCSP Server: http://rapidssl-ocsp.geotrust.comCRL Distribution Point: http://rapidssl-crl.geotrust.com/crls/rapidssl.crl
Check the revocation status for certificate *.thismoment.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.thismoment.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.thismoment.com
thismoment.com
thismoment.com
Other certificates including the domain name thismoment.com
(limited to 100 certificates)
www.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
guru.thismoment.com
*.thismoment.com
*.preview.thismoment.com
*.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
*.preview.thismoment.com
*.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
xp.thismoment.com
xp.thismoment.com
disney.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
*.thismoment.com
xp.thismoment.com
*.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
*.preview.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
support.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
*.dev.thismoment.com
www.thismoment.com
info.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
guru.thismoment.com
*.thismoment.com
*.preview.thismoment.com
*.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
*.preview.thismoment.com
*.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
xp.thismoment.com
xp.thismoment.com
disney.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
*.thismoment.com
xp.thismoment.com
*.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
*.preview.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
support.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
*.dev.thismoment.com
www.thismoment.com
info.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
Certificate
The complete raw certificate details for *.thismoment.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgIDCZ0uMA0GCSqGSIb3DQEBBQUAMDwxCzAJBgNVBAYTAlVT MRcwFQYDVQQKEw5HZW9UcnVzdCwgSW5jLjEUMBIGA1UEAxMLUmFwaWRTU0wgQ0Ew HhcNMTIxMjEwMTUyODEyWhcNMTUwMzE0MDE0NzQ3WjCBvzEpMCcGA1UEBRMgL2dY RXhNWVVGVDVsOEV2NzB4N2dMakxPREdYUnlaTG8xEzARBgNVBAsTCkdUNTM1NzYx NTIxMTAvBgNVBAsTKFNlZSB3d3cucmFwaWRzc2wuY29tL3Jlc291cmNlcy9jcHMg KGMpMTIxLzAtBgNVBAsTJkRvbWFpbiBDb250cm9sIFZhbGlkYXRlZCAtIFJhcGlk U1NMKFIpMRkwFwYDVQQDDBAqLnRoaXNtb21lbnQuY29tMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEA4SDG0tvlEtldN5y4qK5qwBdGRCRTdqA2WGV0LdfM JKBavJZ5qUuALs4yCTQaQ2bU8SKzp/L3fT3XcaGXsxPKBrrJ1tVSRjiFa/riufH2 MmcJTmYeIcpxJJwlPw0y+tOclAgReX6jwgC2WiXAOa5/2eE3wYfKX3alr0GgOgMT 7PlAi1DHyIhGlTYeZR57Y1wO6g3gzhverj8T1OJmlTeP3tQH5v6OsicM354BKq5o 2XYz6z7i0OHoHJVrnJsyf2Ns2fuvHQ+uZpTZKHOZMwfeL4B/lIAIz9szqYLd5Co3 b4lBso9Uoi+PgTvww6vevqmD2xeovHdi32tyLpVBzKfjdQIDAQABo4IBuzCCAbcw HwYDVR0jBBgwFoAUa2k9ahhCSt2PAmU5/TUkhniRFjAwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjArBgNVHREEJDAighAqLnRo aXNtb21lbnQuY29tgg50aGlzbW9tZW50LmNvbTBDBgNVHR8EPDA6MDigNqA0hjJo dHRwOi8vcmFwaWRzc2wtY3JsLmdlb3RydXN0LmNvbS9jcmxzL3JhcGlkc3NsLmNy bDAdBgNVHQ4EFgQUfX/bYzvDsDQn3Z0Onx8riW5wcfAwDAYDVR0TAQH/BAIwADB4 BggrBgEFBQcBAQRsMGowLQYIKwYBBQUHMAGGIWh0dHA6Ly9yYXBpZHNzbC1vY3Nw Lmdlb3RydXN0LmNvbTA5BggrBgEFBQcwAoYtaHR0cDovL3JhcGlkc3NsLWFpYS5n ZW90cnVzdC5jb20vcmFwaWRzc2wuY3J0MEwGA1UdIARFMEMwQQYKYIZIAYb4RQEH NjAzMDEGCCsGAQUFBwIBFiVodHRwOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJj ZXMvY3BzMA0GCSqGSIb3DQEBBQUAA4IBAQA/uwbsweIdrbL7LVlOwXWtvyCxEEQd nQsPS377jF5+V8wVtr9oR+OYgwmAW2WLah6qi0F3p8bwHH/l8aRI5nWKO68v6Ybp ExDa35WMGF67Sa8zahZreer92KLeiahXZTn1hpFicjSRlwPzyhK2AhyM3Sj320pO H3CSDCnZO/GRpkwJ2l9xakXqesoekJCMPNcqa+CuMouagZWu+4dfP+38WEqJ8JRr t8Fah7i5oPq7k6iiDbLUzzCKzBE9cPXHJY9NgYthP2jHlWzugyakz2xmZfdxRpam 3iiqAQDPzbaYR+mKVCwqTVyTPbA//hH8eTPL3p884Sox/8PGhip8anjm -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4SDG0tvlEtldN5y4qK5q wBdGRCRTdqA2WGV0LdfMJKBavJZ5qUuALs4yCTQaQ2bU8SKzp/L3fT3XcaGXsxPK BrrJ1tVSRjiFa/riufH2MmcJTmYeIcpxJJwlPw0y+tOclAgReX6jwgC2WiXAOa5/ 2eE3wYfKX3alr0GgOgMT7PlAi1DHyIhGlTYeZR57Y1wO6g3gzhverj8T1OJmlTeP 3tQH5v6OsicM354BKq5o2XYz6z7i0OHoHJVrnJsyf2Ns2fuvHQ+uZpTZKHOZMwfe L4B/lIAIz9szqYLd5Co3b4lBso9Uoi+PgTvww6vevqmD2xeovHdi32tyLpVBzKfj dQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 630062 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-12-10 15:28:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-03-14 01:47:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '/gXExMYUFT5l8Ev70x7gLjLODGXRyZLo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT53576152' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)12' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.thismoment.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28419781388314968827723642613368367584363778585971633472000117473629062452350149770910421190849416055250184751471599641213926310443105063241046850380754321870650553685813696011146577368395502477935236614539148686906015348408719721542909752464518875592314126539697086127572352939788179394951870818030049967297734994356800044327578324028274322087504470773458700683000171135983919971080884632649877060223153640058296256100397757122026339985857995237739758311825383599632218692959523412281820202987694696607383093307437958703842348926222032737160269551186634330741461144891415516541807298418376442538388045516847974966133 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b693d6a18424add8f026539fd35248678911630 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.thismoment.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thismoment.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-crl.geotrust.com/crls/rapidssl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7d7fdb633bc3b03427dd9d0e9f1f2b896e7071f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-ocsp.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-aia.geotrust.com/rapidssl.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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