www.nivea.de
- Microsoft Corporation -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 06:bb:b9:1a:5d:9a:f5:d2:0c:4d:40:78:14:ef:d8:8c was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Microsoft Corporation
Organization:
Microsoft Corporation
State / Province:
Washington
Locality: Redmond
Country: US
Locality: Redmond
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:bb:b9:1a:5d:9a:f5:d2:0c:4d:40:78:14:ef:d8:8cSerial Number (int): 8950081821933850277955991261422803084
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 04:82:e7:f2:12:eb:e7:72:46:c3:8b:b7:88:11:64:e4:63:ae:04:e6
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): d4:d9:cb:ac:ff:88:ad:5e:af:89:90:cd:b1:72:56:1a:93:3f:7d:43
Fingerprint (sha256): 3e:81:0c:fb:90:81:8b:d3:f4:f9:38:09:c4:ab:cc:c9:24:25:f4:c9:e2:e4:70:e8:02:47:ac:53:ad:fc:1b:7b
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Check the revocation status for certificate www.nivea.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.nivea.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.nivea.de
Other certificates including the domain name nivea.de
(limited to 100 certificates)
Beiersdorf Aktiengesellschaft
chiosco.flp.ch
www.glamitalia.com
autodiscover.epaper-poonen.neuer-bund-verlag.de
magazin.nivea.de
kiosk.citytipp.org
www.nivea.de
magazin.ferienmagazin-deutschland.de
nivea.de
chiosco.flp.ch
nivea.de
ref-ci-brands.nivea.de
dialog.nivea.de
webkiosk.die-bank.de
akamai-san204.exacttarget.com
magazine.arbeit-und-arbeitsrecht.de
www.nivea.de
dialog.nivea.de
nivea.de
www.nivea.de
brochures.hilliard.com
akamai-san204.exacttarget.com
az-cdn-test.nivea.de
epaper.chili-peppers.de
shop.nivea.de
kiosk.astrosofa.com
autodiscover.epaper-poonen.neuer-bund-verlag.de
fall-magazine.robinsonlightingandbath.com
publikationen.kmu.org
magazine.arbeit-und-arbeitsrecht.de
nivea.de
preview.nivea.de
magazine.arbeit-und-arbeitsrecht.de
kiosk.seniorenreisen.de
akamai-san204.exacttarget.com
neubau-projekte.vr-immoservice-mainfranken.de
magazin.ferienmagazin-deutschland.de
blaetterkatalog.andrees-angelreisen.de
dialog.nivea.de
www.nivea.de
www.nivea.de
www.podworko.nivea.pl
webkiosk.die-bank.de
fall-magazine.robinsonlightingandbath.com
www.nivea.de
www.sblaettle.at
ext14.nivea.de
ext14.nivea.de
social.nivea.de
www.nivea.de
www.nivea.de
akamai-san204.exacttarget.com
www.podworko.nivea.pl
m.nivea.de
kiosk.velototal.de
www.nivea.de
dialog.nivea.de
nivea.com.tr
cloud.newsletter.nivea.de
nivea.de
nivea.de
neubau-projekte.vr-immoservice-mainfranken.de
dialog.nivea.de
bhuat.nivea.de
kiosk.seniorenreisen.de
kiosk.flp.at
www.nivea.de
www.sblaettle.at
brochures.hilliard.com
chiosco.flp.ch
nivea.de
nivea.de
magazine.arbeit-und-arbeitsrecht.de
social.nivea.de
magazin.plusperfekt.de
brochures.hilliard.com
epaper.immobilienboerse-ag.ch
az.nivea.de
kiosk.seniorenreisen.de
nivea.de
nivea.de
Beiersdorf Aktiengesellschaft
kiosk.seniorenreisen.de
app-service.nivea.de
nivea.de
bhuat.nivea.de
webkiosk.die-bank.de
kiosk.flp.at
kiosk.flp.de
www.nivea.de
*.app-service.nivea.de
nivea.de
shop.nivea.de
www.podworko.nivea.pl
nivea.com.tr
brochures.hilliard.com
kiosk.flp.de
www.nivea.de
nivea.de
kiosk.flp.at
chiosco.flp.ch
www.glamitalia.com
autodiscover.epaper-poonen.neuer-bund-verlag.de
magazin.nivea.de
kiosk.citytipp.org
www.nivea.de
magazin.ferienmagazin-deutschland.de
nivea.de
chiosco.flp.ch
nivea.de
ref-ci-brands.nivea.de
dialog.nivea.de
webkiosk.die-bank.de
akamai-san204.exacttarget.com
magazine.arbeit-und-arbeitsrecht.de
www.nivea.de
dialog.nivea.de
nivea.de
www.nivea.de
brochures.hilliard.com
akamai-san204.exacttarget.com
az-cdn-test.nivea.de
epaper.chili-peppers.de
shop.nivea.de
kiosk.astrosofa.com
autodiscover.epaper-poonen.neuer-bund-verlag.de
fall-magazine.robinsonlightingandbath.com
publikationen.kmu.org
magazine.arbeit-und-arbeitsrecht.de
nivea.de
preview.nivea.de
magazine.arbeit-und-arbeitsrecht.de
kiosk.seniorenreisen.de
akamai-san204.exacttarget.com
neubau-projekte.vr-immoservice-mainfranken.de
magazin.ferienmagazin-deutschland.de
blaetterkatalog.andrees-angelreisen.de
dialog.nivea.de
www.nivea.de
www.nivea.de
www.podworko.nivea.pl
webkiosk.die-bank.de
fall-magazine.robinsonlightingandbath.com
www.nivea.de
www.sblaettle.at
ext14.nivea.de
ext14.nivea.de
social.nivea.de
www.nivea.de
www.nivea.de
akamai-san204.exacttarget.com
www.podworko.nivea.pl
m.nivea.de
kiosk.velototal.de
www.nivea.de
dialog.nivea.de
nivea.com.tr
cloud.newsletter.nivea.de
nivea.de
nivea.de
neubau-projekte.vr-immoservice-mainfranken.de
dialog.nivea.de
bhuat.nivea.de
kiosk.seniorenreisen.de
kiosk.flp.at
www.nivea.de
www.sblaettle.at
brochures.hilliard.com
chiosco.flp.ch
nivea.de
nivea.de
magazine.arbeit-und-arbeitsrecht.de
social.nivea.de
magazin.plusperfekt.de
brochures.hilliard.com
epaper.immobilienboerse-ag.ch
az.nivea.de
kiosk.seniorenreisen.de
nivea.de
nivea.de
Beiersdorf Aktiengesellschaft
kiosk.seniorenreisen.de
app-service.nivea.de
nivea.de
bhuat.nivea.de
webkiosk.die-bank.de
kiosk.flp.at
kiosk.flp.de
www.nivea.de
*.app-service.nivea.de
nivea.de
shop.nivea.de
www.podworko.nivea.pl
nivea.com.tr
brochures.hilliard.com
kiosk.flp.de
www.nivea.de
nivea.de
kiosk.flp.at
Certificate
The complete raw certificate details for www.nivea.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGsDCCBZigAwIBAgIQBru5Gl2a9dIMTUB4FO/YjDANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMzA0MzAwMDAwMDBa Fw0yNDA0MzAyMzU5NTlaMGsxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5n dG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9y YXRpb24xFTATBgNVBAMTDHd3dy5uaXZlYS5kZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAPUK6tmeyYJERFNcfBWxKEH4No8bbUOUcJzlwnzE8n1QxgZ7 zxcR5+3M9KEWuqh0AbzTkrLxi3je1ufhZIfM+QJHLyIwfxPInQicU2f+GgKAqENa PHPY6s50gVDXgzToaAA1+K0fpJc1l7L9m6GmnTXz3YOPmqnMxENWuyJD3hMJu1NE a4bezXgCtnS8Hu54c0vgT2uDwn3FA52TDld0vLsPAM6PnWbyizF4IHM27T8934yk ZDIk8NkV288qKZ7ual1A72zOYb9KmmxwpubLPfQMAjL7fuAHyewXny2/95UX+h5c OIpRwwbcRM2yaJ/+juiANTcCcKOBwJGedqInim0CAwEAAaOCA2owggNmMB8GA1Ud IwQYMBaAFLdrouqoqoSMeeq02g+YssWVdrn0MB0GA1UdDgQWBBQEgufyEuvnckbD i7eIEWTkY64E5jAXBgNVHREEEDAOggx3d3cubml2ZWEuZGUwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBjwYDVR0fBIGHMIGE MECgPqA8hjpodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vRGlnaUNlcnRUTFNSU0FT SEEyNTYyMDIwQ0ExLTQuY3JsMECgPqA8hjpodHRwOi8vY3JsNC5kaWdpY2VydC5j b20vRGlnaUNlcnRUTFNSU0FTSEEyNTYyMDIwQ0ExLTQuY3JsMD4GA1UdIAQ3MDUw MwYGZ4EMAQICMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29t L0NQUzB/BggrBgEFBQcBAQRzMHEwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRp Z2ljZXJ0LmNvbTBJBggrBgEFBQcwAoY9aHR0cDovL2NhY2VydHMuZGlnaWNlcnQu Y29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS0xLmNydDAJBgNVHRMEAjAA MIIBfAYKKwYBBAHWeQIEAgSCAWwEggFoAWYAdQDuzdBk1dsazsVct520zROiModG fLzs3sNRSFlGcR+1mwAAAYfQfk85AAAEAwBGMEQCIEQH9BscCF818nyt5jP9do5U QN431bXSZ4D23mKnJGbtAiBMU9Q0swkyXAgbgoBejZ/KepCExjWZ2wXx9tMwos9H 8gB2AHPZnokbTJZ4oCB9R53mssYc0FFecRkqjGuAEHrBd3K1AAABh9B+T5oAAAQD AEcwRQIhALBhZkrPW4+g8urMyG02jFmTUktJeu5N8g6mUvvNc3ytAiBu9XE8R+Zx JupX7QjBBcFozFbem+Ztj/caApFkW/HMjwB1AEiw42vapkc0D+VqAvqdMOscUgHL Vt0sgdm7v6s52IRzAAABh9B+T2YAAAQDAEYwRAIgW/KN68W5rzl1bEkYmANxZtP9 5t+Fu0rZZFXQVomyIHkCIBLpY1I9LPkBBOMPYuKihM5vsSABWit+SjZ++Q8TN51u MA0GCSqGSIb3DQEBCwUAA4IBAQAOJ/aC3eknHb9gDwsXUEFjlGY9qzFcT/IjRkFX kid5PKd/khvTS/eMONCzebf2YJdkuPFoY66tf/LlOuxhRyCt8JqNbvO81iOPC6XR nGoCD7+cicLMicaL+PNWbICtLdbuj7Wkrnv56AqBWrCBmrfl62EnCSF7sgVr7PZa 3Qw/Rbq9nvllwIH+/FiH7bSzvmLp4A8507Qo22wU0E0dkb2s3koQAom8tP3ARLMr C1hdgwboagitSl2adPp1zhI6TGAj+Zaqw3CKDvfvkSjRH4Ci8prc2WONUbrvFoLo ucWgzYTflWEzHOX4o39Sq+7X1Glqq6zDKZdC4/Y6zDsdhF1t -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9Qrq2Z7JgkREU1x8FbEo Qfg2jxttQ5RwnOXCfMTyfVDGBnvPFxHn7cz0oRa6qHQBvNOSsvGLeN7W5+Fkh8z5 AkcvIjB/E8idCJxTZ/4aAoCoQ1o8c9jqznSBUNeDNOhoADX4rR+klzWXsv2boaad NfPdg4+aqczEQ1a7IkPeEwm7U0Rrht7NeAK2dLwe7nhzS+BPa4PCfcUDnZMOV3S8 uw8Azo+dZvKLMXggczbtPz3fjKRkMiTw2RXbzyopnu5qXUDvbM5hv0qabHCm5ss9 9AwCMvt+4AfJ7BefLb/3lRf6Hlw4ilHDBtxEzbJon/6O6IA1NwJwo4HAkZ52oieK bQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8950081821933850277955991261422803084 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-30 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.nivea.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30933768278949775238763071122869399072991499624478580430379424861227656963888439700952900192001442339345102764730887273780347465494585050342312885094253201707695950060513866551483503085417194462462535224295658645987715507583094926659572884897656087561983545357415365760066797283005774215081550713113069511070884375675425643113345352326517107323033542921543129865162503307725058242892920124390190525695743484070996455217013784412473748356342649757513860356924754683542328704068583109983226528067466849095272663184327030297553401563744744207900626722730176734728756974940061744432430971882375166519253718080698060343917 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0482e7f212ebe77246c38bb7881164e463ae04e6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nivea.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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