www.invesco.nl
- Invesco Ltd -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0e:18:55:51:88:6b:8f:02:0f:5c:58:a0:84:2b:eb:29 was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Invesco Ltd
Organization:
Invesco Ltd
State / Province:
Georgia
Locality: Atlanta
Country: US
Locality: Atlanta
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:18:55:51:88:6b:8f:02:0f:5c:58:a0:84:2b:eb:29Serial Number (int): 18735537530111123865944501579055622953
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 46:90:69:b9:f2:d1:44:47:19:99:7d:3e:2a:e4:9b:3d:f5:07:85:cc
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): 90:36:f4:be:a5:1c:e5:78:b6:03:05:14:e2:af:f7:df:30:46:36:57
Fingerprint (sha256): 3c:36:a2:11:0c:5e:2a:10:c1:bd:25:05:be:91:f2:fe:a2:7d:b3:3c:ec:99:2a:36:f2:13:af:60:10:d2:6a:9f
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Check the revocation status for certificate www.invesco.nl
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.invesco.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.invesco.nl
invesco.nl
prd.invesco.nl
invesco.nl
prd.invesco.nl
Other certificates including the domain name invesco.nl
(limited to 100 certificates)
uat.invesco.nl
www.invesco.nl
dev.invesco.nl
dev.invesco.nl
institutional.invesco.nl
www.invesco.nl
dev.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
institutional.invesco.nl
www.invesco.nl
prd.invesco.nl
www.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
www.invesco.nl
www.invesco.nl
institutional.invesco.nl
prd.legacy.invesco.nl
www.invesco.nl
www.invesco.nl
institutional.invesco.nl
www.invesco.nl
www.invesco.nl
uat.invesco.nl
www.invesco.nl
www.invesco.nl
www.invesco.nl
www.invesco.nl
institutional.invesco.nl
uat.invesco.nl
institutional.invesco.nl
www.invesco.nl
www.invesco.nl
www.invesco.nl
dev.invesco.nl
dev.invesco.nl
institutional.invesco.nl
www.invesco.nl
dev.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
institutional.invesco.nl
www.invesco.nl
prd.invesco.nl
www.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
www.invesco.nl
www.invesco.nl
institutional.invesco.nl
prd.legacy.invesco.nl
www.invesco.nl
www.invesco.nl
institutional.invesco.nl
www.invesco.nl
www.invesco.nl
uat.invesco.nl
www.invesco.nl
www.invesco.nl
www.invesco.nl
www.invesco.nl
institutional.invesco.nl
uat.invesco.nl
institutional.invesco.nl
www.invesco.nl
www.invesco.nl
Certificate
The complete raw certificate details for www.invesco.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGxDCCBaygAwIBAgIQDhhVUYhrjwIPXFighCvrKTANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMzAyMTkwMDAwMDBa Fw0yNDAzMjEyMzU5NTlaMGAxCzAJBgNVBAYTAlVTMRAwDgYDVQQIEwdHZW9yZ2lh MRAwDgYDVQQHEwdBdGxhbnRhMRQwEgYDVQQKEwtJbnZlc2NvIEx0ZDEXMBUGA1UE AxMOd3d3LmludmVzY28ubmwwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK6ut9vemHvRJAHVZLGk+17sEeD9hq4JScJektLh2OgpE9qR2HKOmHipmFUREZ A9YKWpeyjD3QunzqLQJqhfrmsVCq5mfbz6ntQCU+QcPUWaplVCiU87Iy0uu+AEKp qgOY5cfneCcQ85QsWinaq2uOmaArR82RKKsKFFGmnnFoTGlCDRQx2kAxi+33AQ9M A/UDYS2qdbmZ0euVGg5ex8xe0QU9UO1T5YbX7YuvDT0HM8ZfDUOvCMYfWD8Cr13U tDUqB+boDiYuMe8y6IzEwdiPMB5JiKzkW5cFgBHviVhKkZr+uGBdE0/TVhiCKcU0 bu+DsPOhJ2q7eq/XskPWFmdVAgMBAAGjggOJMIIDhTAfBgNVHSMEGDAWgBS3a6Lq qKqEjHnqtNoPmLLFlXa59DAdBgNVHQ4EFgQURpBpufLRREcZmX0+KuSbPfUHhcww NQYDVR0RBC4wLIIOd3d3LmludmVzY28ubmyCCmludmVzY28ubmyCDnByZC5pbnZl c2NvLm5sMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwgY8GA1UdHwSBhzCBhDBAoD6gPIY6aHR0cDovL2NybDMuZGlnaWNlcnQu Y29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS00LmNybDBAoD6gPIY6aHR0 cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENB MS00LmNybDA+BgNVHSAENzA1MDMGBmeBDAECAjApMCcGCCsGAQUFBwIBFhtodHRw Oi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwfwYIKwYBBQUHAQEEczBxMCQGCCsGAQUF BzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wSQYIKwYBBQUHMAKGPWh0dHA6 Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFRMU1JTQVNIQTI1NjIwMjBD QTEtMS5jcnQwCQYDVR0TBAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYA dv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGGaaD2SgAABAMARzBF AiEAhwJq/t8C3N+kFoMixQUWDkwZxOMW+NxH47fwhfBM2BsCICITR5wBAg9o8xFb By42j2ZDV1b5tsQ2t862dKeQV9zQAHYAc9meiRtMlnigIH1HneayxhzQUV5xGSqM a4AQesF3crUAAAGGaaD2UAAABAMARzBFAiAqx/dCVvLdEbnPNlo/KFocCvnjxPm2 DV2kDwoq0c8XfQIhAO6+LGIkLLY/gyExCebfXrDcuOnMPGghHdtiurCYVNLdAHUA SLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGGaaD2FQAABAMARjBE AiA8zoIw5EqvWMKCmGNyWICFD1Rs29rYthzXqo2hj5wnLQIgFXaekurcmP45Qs+a Yhis8OZEyrADIW0UmXUf4NeIuFUwDQYJKoZIhvcNAQELBQADggEBACD4XRojejMe U2DbnNGhFSzGfX2ZH8wk9W6/WDTxyrVKQ0QY0Lxbfc4lXyf1jl3UirF3G8ZzfkTn lOBAT0Td184rBy/oQGxuznPeH5sxbOpjVmHCfytEJKlCJlPdZj7BYsByAshzcUfS JvL4GM2JzahL2n9w03ojVkyqbj9/9pnjFJ/JNkGgRRC26tiPKvgs6Sq1yxfg8lwp 9FFQ8Foo1I86Le0llIC+bhKEQk1SFbGOsHxOh/SX5u5tAlR9zXFh5vTku+wK3lo7 gp+96xt9fvcpE3ZN28bzDR9RsHsnyYh6xKkkbh57y/DNLp4JUk2zXdFbGvgAcwhK fXD7C/2TAEc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyurrfb3ph70SQB1WSxpP te7BHg/YauCUnCXpLS4djoKRPakdhyjph4qZhVERGQPWClqXsow90Lp86i0CaoX6 5rFQquZn28+p7UAlPkHD1FmqZVQolPOyMtLrvgBCqaoDmOXH53gnEPOULFop2qtr jpmgK0fNkSirChRRpp5xaExpQg0UMdpAMYvt9wEPTAP1A2EtqnW5mdHrlRoOXsfM XtEFPVDtU+WG1+2Lrw09BzPGXw1DrwjGH1g/Aq9d1LQ1Kgfm6A4mLjHvMuiMxMHY jzAeSYis5FuXBYAR74lYSpGa/rhgXRNP01YYginFNG7vg7DzoSdqu3qv17JD1hZn VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18735537530111123865944501579055622953 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Georgia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Atlanta' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Invesco Ltd' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.invesco.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25615980917169237993875637935450076497381981891404787322598600341195543896916639600074590864070990881061449479848647503782964978626832609785956724048335705910998126879968891209940709580998589979602748959857033780121232625254112333740243880694757648345785981217943013332276076969127413100669687270098247787694274779613426729106906208754416032093552413820502241495391000173280706232379597299358534202536493934611142605883818440764724401647877018023310702815951406401913514023511238263277720127331773507014356525375826615834163335380613866517566716191829562083500241375435595415827640368692323387317732950245659049879381 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 469069b9f2d1444719997d3e2ae49b3df50785cc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.invesco.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'invesco.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prd.invesco.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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