*.krita.org
- K Desktop Environment e.V. -
Issued by StartCom Class 3 OV Server CA
About this certificate
This digital certificate with serial number 46:29:86:82:05:06:33:14:4a:92:52:ac:f1:26:b1:65 was issued on by StartCom Ltd..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
K Desktop Environment e.V.
Organization:
K Desktop Environment e.V.
State / Province:
Berlin
Locality: Berlin
Country: DE
Locality: Berlin
Country: DE
StartCom Ltd.
Organization:
StartCom Ltd.
Organization unit: StartCom Certification Authority
Organization unit: StartCom Certification Authority
Country:
IL
This certificate has expire since
Certificate Details
Serial Number (hex): 46:29:86:82:05:06:33:14:4a:92:52:ac:f1:26:b1:65Serial Number (int): 93261572020246975033260309814417207653
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: a2:46:09:ca:41:3a:bd:8d:9c:51:8c:71:02:9f:80:de:2c:9e:2b:c2
AuthorityKeyId: b1:3f:1c:92:7b:92:b0:5a:25:b3:38:fb:9c:07:a4:26:50:32:e3:51
Fingerprint (sha1): ce:73:d6:13:dd:0d:13:b9:12:cf:8e:6c:63:23:86:b3:fe:c3:33:19
Fingerprint (sha256): 3c:1b:5d:bf:d4:36:e9:68:72:49:77:0e:07:a4:bb:3f:ca:18:c7:90:17:ed:56:db:cb:09:0a:57:57:56:5e:3e
Issuing Certificate URL: http://aia.startssl.com/certs/sca.server3.crt
Revocation information
OCSP Server: http://ocsp.startssl.comCRL Distribution Point: http://crl.startssl.com/sca-server3.crl
Check the revocation status for certificate *.krita.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.krita.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.krita.org
Other certificates including the domain name krita.org
(limited to 100 certificates)
share.krita.org
docs.krita.org
krita.org
krita.org
share.krita.org
krita.org
krita.org
share.krita.org
krita.org
krita.org
share.krita.org
krita.org
krita.org
share.krita.org
sni.cloudflaressl.com
krita.org
incapsula.com
docs.krita.org
share.krita.org
*.krita.org
krita.org
krita.org
docs.krita.org
share.krita.org
share.krita.org
share.krita.org
krita.org
share.krita.org
share.krita.org
krita.org
krita.org
sni.cloudflaressl.com
share.krita.org
share.krita.org
share.krita.org
krita.org
incapsula.com
share.krita.org
krita.org
incapsula.com
krita.org
krita.org
docs.krita.org
docs.krita.org
share.krita.org
docs.krita.org
*.krita.org
docs.krita.org
share.krita.org
krita.org
incapsula.com
share.krita.org
docs.krita.org
share.krita.org
docs.krita.org
incapsula.com
*.krita.org
krita.org
krita.org
*.krita.org
docs.krita.org
krita.org
krita.org
share.krita.org
krita.org
krita.org
docs.krita.org
krita.org
incapsula.com
share.krita.org
krita.org
krita.org
krita.org
krita.org
krita.org
share.krita.org
krita.org
docs.krita.org
sni.cloudflaressl.com
krita.org
krita.org
docs.krita.org
krita.org
krita.org
share.krita.org
krita.org
krita.org
share.krita.org
krita.org
krita.org
share.krita.org
krita.org
krita.org
share.krita.org
sni.cloudflaressl.com
krita.org
incapsula.com
docs.krita.org
share.krita.org
*.krita.org
krita.org
krita.org
docs.krita.org
share.krita.org
share.krita.org
share.krita.org
krita.org
share.krita.org
share.krita.org
krita.org
krita.org
sni.cloudflaressl.com
share.krita.org
share.krita.org
share.krita.org
krita.org
incapsula.com
share.krita.org
krita.org
incapsula.com
krita.org
krita.org
docs.krita.org
docs.krita.org
share.krita.org
docs.krita.org
*.krita.org
docs.krita.org
share.krita.org
krita.org
incapsula.com
share.krita.org
docs.krita.org
share.krita.org
docs.krita.org
incapsula.com
*.krita.org
krita.org
krita.org
*.krita.org
docs.krita.org
krita.org
krita.org
share.krita.org
krita.org
krita.org
docs.krita.org
krita.org
incapsula.com
share.krita.org
krita.org
krita.org
krita.org
krita.org
krita.org
share.krita.org
krita.org
docs.krita.org
sni.cloudflaressl.com
krita.org
krita.org
Certificate
The complete raw certificate details for *.krita.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGLjCCBRagAwIBAgIQRimGggUGMxRKklKs8SaxZTANBgkqhkiG9w0BAQsFADB4 MQswCQYDVQQGEwJJTDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjEpMCcGA1UECxMg U3RhcnRDb20gQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkxJjAkBgNVBAMTHVN0YXJ0 Q29tIENsYXNzIDMgT1YgU2VydmVyIENBMB4XDTE2MDYxNTEwMTIzMFoXDTE5MDYx NTEwMTIzMFowajELMAkGA1UEBhMCREUxDzANBgNVBAgMBkJlcmxpbjEPMA0GA1UE BwwGQmVybGluMSMwIQYDVQQKDBpLIERlc2t0b3AgRW52aXJvbm1lbnQgZS5WLjEU MBIGA1UEAwwLKi5rcml0YS5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDJNRilQeyLpBaSsF4SIeQB4SANd8H85bRA6p0JUmnm9Yb+DqSAK0zLh849 cPzUOz+klOXbGubSumRP/YGg1q/w1U139l6U8OfZ70IDSdlD61ZTpSLhAgr/+UZY IYo/1GteXrcKFcVmRp4ns22ltUtPct3aCtzXCpD09gm2NIrNfyQtGKTyCNXd/46K YUNl6BkjvJ0jHUw+zAnwCTXoDmo3Al2TPOLtCcHuZSh13NctQDpOJF7D87COMH/P btTayFG//PSHDl7f17OmbIYkz8XR5yl2KIkQL3TRjgUDuHAoIuX7hb9l9F6vC+te ff5RXiZ9Xlw31aq5gaLUp4Vemj2BAgMBAAGjggLAMIICvDAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMAkGA1UdEwQCMAAwHQYD VR0OBBYEFKJGCcpBOr2NnFGMcQKfgN4snivCMB8GA1UdIwQYMBaAFLE/HJJ7krBa JbM4+5wHpCZQMuNRMG8GCCsGAQUFBwEBBGMwYTAkBggrBgEFBQcwAYYYaHR0cDov L29jc3Auc3RhcnRzc2wuY29tMDkGCCsGAQUFBzAChi1odHRwOi8vYWlhLnN0YXJ0 c3NsLmNvbS9jZXJ0cy9zY2Euc2VydmVyMy5jcnQwOAYDVR0fBDEwLzAtoCugKYYn aHR0cDovL2NybC5zdGFydHNzbC5jb20vc2NhLXNlcnZlcjMuY3JsMBYGA1UdEQQP MA2CCyoua3JpdGEub3JnMCMGA1UdEgQcMBqGGGh0dHA6Ly93d3cuc3RhcnRzc2wu Y29tLzBRBgNVHSAESjBIMAgGBmeBDAECAjA8BgsrBgEEAYG1NwECBTAtMCsGCCsG AQUFBwIBFh9odHRwczovL3d3dy5zdGFydHNzbC5jb20vcG9saWN5MIIBAwYKKwYB BAHWeQIEAgSB9ASB8QDvAHYAaPaY+B9kgr46jO65KB1M/HFRXWeT1ETRCmesu09P +8QAAAFVU6W/XgAABAMARzBFAiEApT/4QT1X19QzS/ISd6FyNE1tPHKeCQBfzJZd FqWzbPwCIFdDWFgEKZ/1TffVR7gsJgoeCCKqnT5t8Kv1qNWNNsZiAHUApLkJkLQY WBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFVU6W/+wAABAMARjBEAiA1vfVW vq2cDDPzGzWQgZHylruREarv1bzZEKuhmZ2vSwIgaGe+1+ajSf1+lFMf8FYguXBi 4yhR8MuRERC57eZ7KCwwDQYJKoZIhvcNAQELBQADggEBAJ/rEQfSPYNSZV6W5Z17 l0+lKbcHla4OWIXl9kZnh85Ot8BgE3/h+lwKTw1OnUmrvrh8CStA1z2Qf8CfCTUa C7lmjv8J3A7RVSPQfkG5E7yv3u9f//W2idhNQvjeT5p1WbuujXfSi5OE2jtxsOib w4bMkfWVWL9pFKrJaNOdwxjviTxpRH4zr6o6nHxTGdFodCwsHXt21Cz61n87Q2iz nB8aNi6HR+o5yumcsjyO7Saxw9GhmpR3z7rEVCQCunfr5SuL0AOlQqtnEhKwDx48 RBwZGQiuVyI6v0iUsdlYdWzlkreqlxo1STc9KPZ89FxNzWulDoXVxUjXvjMrYF+q 19g= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyTUYpUHsi6QWkrBeEiHk AeEgDXfB/OW0QOqdCVJp5vWG/g6kgCtMy4fOPXD81Ds/pJTl2xrm0rpkT/2BoNav 8NVNd/ZelPDn2e9CA0nZQ+tWU6Ui4QIK//lGWCGKP9RrXl63ChXFZkaeJ7NtpbVL T3Ld2grc1wqQ9PYJtjSKzX8kLRik8gjV3f+OimFDZegZI7ydIx1MPswJ8Ak16A5q NwJdkzzi7QnB7mUoddzXLUA6TiRew/OwjjB/z27U2shRv/z0hw5e39ezpmyGJM/F 0ecpdiiJEC900Y4FA7hwKCLl+4W/ZfRerwvrXn3+UV4mfV5cN9WquYGi1KeFXpo9 gQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 93261572020246975033260309814417207653 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Certification Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Class 3 OV Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-06-15 10:12:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-15 10:12:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'K Desktop Environment e.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.krita.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25400082045562683970691780321699034279738811790239018490198748691779314985225096099281238598402790980903453508017037478246504121976579337319903568288567992517078925336681211057935896194054340517026068944238329214966222204819479770933126826661341476734814312899014032574407526200631739687959512288346293576207445958634229435857166236313727563160707296415679553090623635962709483101996424652415743375213117787542769679397996640384273554041861284223509369134054845454783517334178475128440433047946299333455957249288786209227700161494785186906443677789400631469228863185044441138099927074830922305861296842258918831439233 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a24609ca413abd8d9c518c71029f80de2c9e2bc2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b13f1c927b92b05a25b338fb9c07a4265032e351 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.startssl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.startssl.com/certs/sca.server3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.startssl.com/sca-server3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.krita.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.18 (issuerAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.startssl.com/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23223.1.2.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.startssl.com/policy' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760068f698f81f6482be3a8ceeb9281d4cfc71515d6793d444d10a67acbb4f4ffbc40000015553a5bf5e0000040300473045022100a53ff8413d57d7d4334bf21277a172344d6d3c729e09005fcc965d16a5b36cfc02205743585804299ff54df7d547b82c260a1e0822aa9d3e6df0abf5a8d58d36c662007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015553a5bffb0000040300463044022035bdf556bead9c0c33f31b35908191f296bb9111aaefd5bcd910aba1999daf4b02206867bed7e6a349fd7e94531ff05620b97062e32851f0cb911110b9ede67b282c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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