news.sandyspringbank.com
Issued by GeoTrust DV SSL CA - G3
About this certificate
This digital certificate with serial number 3f:05:34:3a:a2:50:04:aa:03:a7:93:d2:22:a8:80:ff was issued on by GeoTrust Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=news.sandyspringbank.com
GeoTrust Inc.
Organization:
GeoTrust Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 3f:05:34:3a:a2:50:04:aa:03:a7:93:d2:22:a8:80:ffSerial Number (int): 83768384549508497527578960072477802751
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: ad:65:22:85:90:d0:3b:e3:a1:49:8b:37:f9:f1:0b:1d:5f:17:a0:77
Fingerprint (sha1): 13:00:73:b5:45:ee:23:d6:81:8c:00:42:a9:4c:e6:e7:38:12:7f:dd
Fingerprint (sha256): 3d:b2:48:76:62:3e:07:09:3d:47:9c:35:09:41:dc:1f:a3:9e:79:d7:77:94:f9:65:36:ab:c6:d6:6b:77:86:3f
Issuing Certificate URL: http://gt.symcb.com/gt.crt
Revocation information
OCSP Server: http://gt.symcd.comCRL Distribution Point: http://gt.symcb.com/gt.crl
Check the revocation status for certificate news.sandyspringbank.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for news.sandyspringbank.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
news.sandyspringbank.com
Other certificates including the domain name sandyspringbank.com
(limited to 100 certificates)
sni.cloudflaressl.com
mymortgage.sandyspringbank.com
sni.cloudflaressl.com
ssl511589.cloudflaressl.com
dialog.sandyspringbank.com
remotedeposit.sandyspringbank.com
news.sandyspringbank.com
secure.sandyspringbank.com
remotedeposit.sandyspringbank.com
www.sandyspringbank.com
offer.sandyspringbank.com
ssl511590.cloudflaressl.com
ssl511588.cloudflaressl.com
news.sandyspringbank.com
www.sandyspringbank.com
sandyspringbankfoundation.org
owa.sandyspringbank.com
offer.sandyspringbank.com
secure.sandyspringbank.com
www.sandyspringbank.com
sni.cloudflaressl.com
offer.sandyspringbank.com
www.sandyspringbank.com
secure.sandyspringbank.com
vpn1.sandyspringbank.com
*.sandyspringbank.com
remotedeposit2.sandyspringbank.com
sni.cloudflaressl.com
ssl511589.cloudflaressl.com
www.sandyspringbank.com
secure.sandyspringbank.com
offer.sandyspringbank.com
sni.cloudflaressl.com
secure.sandyspringbank.com
san-21-s12.tlsprovisioning.exacttarget.com
fs.sandyspringbank.com
ssl511589.cloudflaressl.com
news.sandyspringbank.com
www.sandyspringbank.com
news.sandyspringbank.com
www.sandyspringbank.com
san-21-s12.tlsprovisioning.exacttarget.com
ssl511590.cloudflaressl.com
secure.sandyspringbank.com
*.sandyspringbank.com
ssl511590.cloudflaressl.com
vpn1.sandyspringbank.com
remotedeposit2.sandyspringbank.com
remotedeposit.sandyspringbank.com
OWA.SandySpringBank.com
owa.SandySpringBank.com
sandyspringbank.com
secure.sandyspringbank.com
offer.sandyspringbank.com
ssl327486.cloudflaressl.com
secure.sandyspringbank.com
*.sandyspringbank.com
remotedeposit2.sandyspringbank.com
offer.sandyspringbank.com
sni.cloudflaressl.com
secure.readiness.sandyspringbank.com
sni.cloudflaressl.com
www.sandyspringbank.com
lync-col-1.sandyspringcorp.com
ssl511589.cloudflaressl.com
owa.sandyspringbank.com
offer.sandyspringbank.com
www.sandyspringbank.com
owa.sandyspringbank.com
ssl511590.cloudflaressl.com
ssl511590.cloudflaressl.com
www.sandyspringbank.com
offer.sandyspringbank.com
remotedeposit.sandyspringbank.com
remotedeposit2.sandyspringbank.com
secure.sandyspringbank.com
vpn1.sandyspringbank.com
offer.sandyspringbank.com
www.sandyspringbank.com
search.sandyspringbank.com
fs.sandyspringbank.com
owa.sandyspringbank.com
secure.sandyspringbank.com
san-21-s12.tlsprovisioning.exacttarget.com
lync-col-1.sandyspringcorp.com
offer.sandyspringbank.com
www.sandyspringbank.com
*.sandyspringbank.com
www.sandyspringbank.com
vpn2.sandyspringbank.com
remotedeposit.sandyspringbank.com
vpn1.sandyspringbank.com
ssl327486.cloudflaressl.com
remotedeposit.sandyspringbank.com
sandyspringbank.com
remotedeposit2.sandyspringbank.com
*.online.sandyspringbank.com
remotedeposit.sandyspringbank.com
www.sandyspringbank.com
vpn1.sandyspringbank.com
mymortgage.sandyspringbank.com
sni.cloudflaressl.com
ssl511589.cloudflaressl.com
dialog.sandyspringbank.com
remotedeposit.sandyspringbank.com
news.sandyspringbank.com
secure.sandyspringbank.com
remotedeposit.sandyspringbank.com
www.sandyspringbank.com
offer.sandyspringbank.com
ssl511590.cloudflaressl.com
ssl511588.cloudflaressl.com
news.sandyspringbank.com
www.sandyspringbank.com
sandyspringbankfoundation.org
owa.sandyspringbank.com
offer.sandyspringbank.com
secure.sandyspringbank.com
www.sandyspringbank.com
sni.cloudflaressl.com
offer.sandyspringbank.com
www.sandyspringbank.com
secure.sandyspringbank.com
vpn1.sandyspringbank.com
*.sandyspringbank.com
remotedeposit2.sandyspringbank.com
sni.cloudflaressl.com
ssl511589.cloudflaressl.com
www.sandyspringbank.com
secure.sandyspringbank.com
offer.sandyspringbank.com
sni.cloudflaressl.com
secure.sandyspringbank.com
san-21-s12.tlsprovisioning.exacttarget.com
fs.sandyspringbank.com
ssl511589.cloudflaressl.com
news.sandyspringbank.com
www.sandyspringbank.com
news.sandyspringbank.com
www.sandyspringbank.com
san-21-s12.tlsprovisioning.exacttarget.com
ssl511590.cloudflaressl.com
secure.sandyspringbank.com
*.sandyspringbank.com
ssl511590.cloudflaressl.com
vpn1.sandyspringbank.com
remotedeposit2.sandyspringbank.com
remotedeposit.sandyspringbank.com
OWA.SandySpringBank.com
owa.SandySpringBank.com
sandyspringbank.com
secure.sandyspringbank.com
offer.sandyspringbank.com
ssl327486.cloudflaressl.com
secure.sandyspringbank.com
*.sandyspringbank.com
remotedeposit2.sandyspringbank.com
offer.sandyspringbank.com
sni.cloudflaressl.com
secure.readiness.sandyspringbank.com
sni.cloudflaressl.com
www.sandyspringbank.com
lync-col-1.sandyspringcorp.com
ssl511589.cloudflaressl.com
owa.sandyspringbank.com
offer.sandyspringbank.com
www.sandyspringbank.com
owa.sandyspringbank.com
ssl511590.cloudflaressl.com
ssl511590.cloudflaressl.com
www.sandyspringbank.com
offer.sandyspringbank.com
remotedeposit.sandyspringbank.com
remotedeposit2.sandyspringbank.com
secure.sandyspringbank.com
vpn1.sandyspringbank.com
offer.sandyspringbank.com
www.sandyspringbank.com
search.sandyspringbank.com
fs.sandyspringbank.com
owa.sandyspringbank.com
secure.sandyspringbank.com
san-21-s12.tlsprovisioning.exacttarget.com
lync-col-1.sandyspringcorp.com
offer.sandyspringbank.com
www.sandyspringbank.com
*.sandyspringbank.com
www.sandyspringbank.com
vpn2.sandyspringbank.com
remotedeposit.sandyspringbank.com
vpn1.sandyspringbank.com
ssl327486.cloudflaressl.com
remotedeposit.sandyspringbank.com
sandyspringbank.com
remotedeposit2.sandyspringbank.com
*.online.sandyspringbank.com
remotedeposit.sandyspringbank.com
www.sandyspringbank.com
vpn1.sandyspringbank.com
Certificate
The complete raw certificate details for news.sandyspringbank.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIQPwU0OqJQBKoDp5PSIqiA/zANBgkqhkiG9w0BAQsFADBm MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UECxMU RG9tYWluIFZhbGlkYXRlZCBTU0wxIDAeBgNVBAMTF0dlb1RydXN0IERWIFNTTCBD QSAtIEczMB4XDTE2MDMxMDAwMDAwMFoXDTE3MDUwOTIzNTk1OVowIzEhMB8GA1UE AwwYbmV3cy5zYW5keXNwcmluZ2JhbmsuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAumSTLVAz6X18yDhZ2sBCu+6fpPby7m1uU18OnyedSq8kmByB w7wD1+vP9Y+IYX+ZOibyWIIcV2s4CnYZxwrStPiW1ppeufzWFZ5DhbZpBUAFtLSA oGHXfP7N9OYWHCWFuMJFozoYyqtXMYiQxzi6Mc4cc/sR725zV49jqaHxFdlJqVa6 wdaIAi4PpQfsXD4k9Ez/Y5UWcvgB93h69Tt037FWaoh6Y/4RKYghynbskaNOkRAJ spgASqk4qIc/gjaEQv+posZciKsZS8OZbNEgDOZhHsNQHttinYgqOCr6Lpof7uCW +c5n4nYKJ7P74WcMPoINchw1NO4sbqlbmFtmdQIDAQABo4IBvzCCAbswIwYDVR0R BBwwGoIYbmV3cy5zYW5keXNwcmluZ2JhbmsuY29tMAkGA1UdEwQCMAAwKwYDVR0f BCQwIjAgoB6gHIYaaHR0cDovL2d0LnN5bWNiLmNvbS9ndC5jcmwwgZ0GA1UdIASB lTCBkjCBjwYGZ4EMAQIBMIGEMD8GCCsGAQUFBwIBFjNodHRwczovL3d3dy5nZW90 cnVzdC5jb20vcmVzb3VyY2VzL3JlcG9zaXRvcnkvbGVnYWwwQQYIKwYBBQUHAgIw NQwzaHR0cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0b3J5 L2xlZ2FsMB8GA1UdIwQYMBaAFK1lIoWQ0DvjoUmLN/nxCx1fF6B3MA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwVwYIKwYBBQUH AQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8vZ3Quc3ltY2QuY29tMCYGCCsGAQUF BzAChhpodHRwOi8vZ3Quc3ltY2IuY29tL2d0LmNydDATBgorBgEEAdZ5AgQDAQH/ BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIxiIjARQNoP0iZuF/UkjT31dtacV6ZNf aChOp3Rk+EmY3jggh9UdE0Y+raK/xrIpqPMHeVGsUAK5b5NH4uMTjqV10MSsfqSS nQRdSF8Z8FBYwvVBQMyuxf5CKljU0NCZJEwDPKLYyiHp41jeG5jgFYcR0I+gH1qT iZZBSb00934Mjki1qGi+7IOQDCmusbuh/gceHBgPr+k4B0DGsAAJVWgb/cCOjk2v LVKnJHJ8UMAb5xK+mtsLJsLHyPnMjRI5cA5IQHLCnp0Zvme8hGPC9vgENI2IfraT R6Lyaku4tLbruOzTbfG5PpeuT3H/nEjkS4WkerDMf04UXlNfWVj1CQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumSTLVAz6X18yDhZ2sBC u+6fpPby7m1uU18OnyedSq8kmByBw7wD1+vP9Y+IYX+ZOibyWIIcV2s4CnYZxwrS tPiW1ppeufzWFZ5DhbZpBUAFtLSAoGHXfP7N9OYWHCWFuMJFozoYyqtXMYiQxzi6 Mc4cc/sR725zV49jqaHxFdlJqVa6wdaIAi4PpQfsXD4k9Ez/Y5UWcvgB93h69Tt0 37FWaoh6Y/4RKYghynbskaNOkRAJspgASqk4qIc/gjaEQv+posZciKsZS8OZbNEg DOZhHsNQHttinYgqOCr6Lpof7uCW+c5n4nYKJ7P74WcMPoINchw1NO4sbqlbmFtm dQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 83768384549508497527578960072477802751 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust DV SSL CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-03-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'news.sandyspringbank.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23529920060338183285419734435248027401942375455747278902094140008894979698147616796212974230173640690103631864099113734433846859530397867122602152277906453873098235789625542118057256139930756057928119521867595970376775921299132049523104259078434848267080852764216311410544448445446046645542745610859903681741025011620427749965361831549873443305420730663667571243745123129069420794459133364400114918263926833349186571828164780918400211931521850243352332639060905684745981503249813958393156028892102275245638873970139964293480375895375824198376967217592403165698293258230766506983819350038253693382095484662348972254837 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'news.sandyspringbank.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcb.com/gt.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ad65228590d03be3a1498b37f9f10b1d5f17a077 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcb.com/gt.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 002318888c04503683f4899b85fd49234f7d5db5a715e9935f68284ea77464f84998de382087d51d13463eada2bfc6b229a8f3077951ac5002b96f9347e2e3138ea575d0c4ac7ea4929d045d485f19f05058c2f54140ccaec5fe422a58d4d0d099244c033ca2d8ca21e9e358de1b98e0158711d08fa01f5a9389964149bd34f77e0c8e48b5a868beec83900c29aeb1bba1fe071e1c180fafe9380740c6b0000955681bfdc08e8e4daf2d52a724727c50c01be712be9adb0b26c2c7c8f9cc8d1239700e484072c29e9d19be67bc8463c2f6f804348d887eb69347a2f26a4bb8b4b6ebb8ecd36df1b93e97ae4f71ff9c48e44b85a47ab0cc7f4e145e535f5958f509