images.payback.it
- PAYBACK GmbH -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 09:42:a7:ca:fc:ce:29:89:fb:54:e0:6e:2b:11:91:41 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
PAYBACK GmbH
Company registration number:
HRB 135999
Organization: PAYBACK GmbH
Organization unit: IT Operations
Organization: PAYBACK GmbH
Organization unit: IT Operations
State / Province:
Bayern
Locality: München
Country: DE
Locality: München
Country: DE
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:42:a7:ca:fc:ce:29:89:fb:54:e0:6e:2b:11:91:41Serial Number (int): 12309146799459636546133922834728194369
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: d0:5e:50:4f:70:1a:02:2b:fb:51:bd:bb:88:5c:05:a2:aa:19:31:6e
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 02:c8:01:ef:f4:df:ab:47:38:a5:bc:87:66:94:5e:71:10:a1:6d:dc
Fingerprint (sha256): 40:65:6a:21:87:35:db:1d:e2:22:2a:a2:70:39:f7:2c:88:b1:63:fd:69:4c:d6:5e:8b:da:d5:bf:c9:01:df:ae
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate images.payback.it
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for images.payback.it
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
images.payback.it
www.images.payback.it
www.images.payback.it
Other certificates including the domain name payback.it
(limited to 100 certificates)
e1et-stage-images.payback.it
e1et-stage-images.payback.it
services-ext.payback.it
www.payback.it
shop.payback.it
images.payback.it
as.payback.it
smetrics.payback.it
smetrics.payback.it
e1et-ccint.payback.it
premi.payback.it
e1et-www.payback.it
is.payback.it
premi.payback.it
e1et-premi.payback.it
e1et.payback.it
services-int.payback.it
e1et-mobile.payback.it
e1et-pdv.payback.it
www.payback.it
csc.payback.it
stage.payback.it
shop.payback.it
images.payback.it
www.payback.it
www.payback.it
premi.payback.it
services-int.payback.it
e1et-www.payback.it
pdv.payback.it
e2tt-cmeditor.payback.it
e2tt-www.payback.it
smetrics.payback.it
branchfinder.payback.it
cdn2.payback.it
services-carrefour.payback.it
services-ext.payback.it
services-int.payback.it
images.payback.it
e1et-cdn2.payback.it
cdn99.payback.it
cmeditor.payback.it
puntipertutti.payback.it
thoughtspot.payback.it
newsletter.payback.it
e1et-premi.payback.it
mobile.payback.it
e1et-www.payback.it
boint.payback.it
cdn2.payback.it
images.payback.it
images.payback.it
e1et-stage-images.payback.it
mobile.payback.it
e1et-cmeditor.payback.it
e1et-cmeditor.payback.it
e1et-images.payback.it
e1et-mobile.payback.it
is.payback.it
e1et-stage-images.payback.it
vt.payback.it
e1et.payback.it
shop.payback.it
e1et-mobile.payback.it
shop.payback.it
e1et-puntipertutti.payback.it
e2tt-www.payback.it
m.payback.it
cdn98.payback.it
smetrics.payback.it
images.payback.it
e2tt-images.payback.it
e1et-images.payback.it
cmeditor.payback.it
services-carrefour.payback.it
mobile.payback.it
e2tt-mobile.payback.it
e1et-images.payback.it
e1et-sconti.payback.it
ccint.payback.it
e1et-images.payback.it
e1et2-www.payback.it
pdv.payback.it
e1et-cmeditor.payback.it
e1et-cdn2.payback.it
e1et-images.payback.it
newsletter.payback.it
images.payback.it
e1et-cdn2.payback.it
smetrics.payback.it
payback.it
branchfinder.payback.mx
stage.payback.it
offerte.payback.it
e1et-stage.payback.it
cdn2.payback.it
csc.payback.it
smetrics.payback.it
e1et-mobile.payback.it
e1et-int.payback.it
e1et-stage-images.payback.it
services-ext.payback.it
www.payback.it
shop.payback.it
images.payback.it
as.payback.it
smetrics.payback.it
smetrics.payback.it
e1et-ccint.payback.it
premi.payback.it
e1et-www.payback.it
is.payback.it
premi.payback.it
e1et-premi.payback.it
e1et.payback.it
services-int.payback.it
e1et-mobile.payback.it
e1et-pdv.payback.it
www.payback.it
csc.payback.it
stage.payback.it
shop.payback.it
images.payback.it
www.payback.it
www.payback.it
premi.payback.it
services-int.payback.it
e1et-www.payback.it
pdv.payback.it
e2tt-cmeditor.payback.it
e2tt-www.payback.it
smetrics.payback.it
branchfinder.payback.it
cdn2.payback.it
services-carrefour.payback.it
services-ext.payback.it
services-int.payback.it
images.payback.it
e1et-cdn2.payback.it
cdn99.payback.it
cmeditor.payback.it
puntipertutti.payback.it
thoughtspot.payback.it
newsletter.payback.it
e1et-premi.payback.it
mobile.payback.it
e1et-www.payback.it
boint.payback.it
cdn2.payback.it
images.payback.it
images.payback.it
e1et-stage-images.payback.it
mobile.payback.it
e1et-cmeditor.payback.it
e1et-cmeditor.payback.it
e1et-images.payback.it
e1et-mobile.payback.it
is.payback.it
e1et-stage-images.payback.it
vt.payback.it
e1et.payback.it
shop.payback.it
e1et-mobile.payback.it
shop.payback.it
e1et-puntipertutti.payback.it
e2tt-www.payback.it
m.payback.it
cdn98.payback.it
smetrics.payback.it
images.payback.it
e2tt-images.payback.it
e1et-images.payback.it
cmeditor.payback.it
services-carrefour.payback.it
mobile.payback.it
e2tt-mobile.payback.it
e1et-images.payback.it
e1et-sconti.payback.it
ccint.payback.it
e1et-images.payback.it
e1et2-www.payback.it
pdv.payback.it
e1et-cmeditor.payback.it
e1et-cdn2.payback.it
e1et-images.payback.it
newsletter.payback.it
images.payback.it
e1et-cdn2.payback.it
smetrics.payback.it
payback.it
branchfinder.payback.mx
stage.payback.it
offerte.payback.it
e1et-stage.payback.it
cdn2.payback.it
csc.payback.it
smetrics.payback.it
e1et-mobile.payback.it
e1et-int.payback.it
Certificate
The complete raw certificate details for images.payback.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHhTCCBm2gAwIBAgIQCUKnyvzOKYn7VOBuKxGRQTANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE5MDgyNjAwMDAwMFoXDTIxMDgzMDEy MDAwMFowgfkxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAkRFMRcwFQYLKwYBBAGCNzwCAQITBkJheWVybjEZMBcGCysGAQQB gjc8AgEBDAhNw7xuY2hlbjETMBEGA1UEBRMKSFJCIDEzNTk5OTELMAkGA1UEBhMC REUxDzANBgNVBAgTBkJheWVybjERMA8GA1UEBwwITcO8bmNoZW4xFTATBgNVBAoT DFBBWUJBQ0sgR21iSDEWMBQGA1UECxMNSVQgT3BlcmF0aW9uczEaMBgGA1UEAxMR aW1hZ2VzLnBheWJhY2suaXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOS2cN2M1eyUrnn7BGZMc9BKIbsDZ5234p7modMGcwbbFEiTulfVUV6LtuGjR5 71JdV76pVXhRnH+6W2JMZlZw+kwARLll7sGITSGmHkCSn2Gym6p78JZLHq6moMJL lOs+kMXjeQaBI4ubqkIzrUhrNgxU/45RZDtbgvEOifnuiXpmNtUFojk3/tUzejsT AcdlR0Uk6PfPpijMAj7jSBUGNXYNbFnd7yE8xY5Qdq/LQi0dfjMpb+gfUn3qwlax arKlGcUFb56nAnA/54EfldI48Cw6j2aE2VK01zNQdeaDDvTLyRFJbT8Q/CFGDcL9 F332QBp9rExVIf3yD+l64U6jAgMBAAGjggOKMIIDhjAfBgNVHSMEGDAWgBQ901Cl 1qCt7vNKYApl0yHU+PjWDzAdBgNVHQ4EFgQU0F5QT3AaAiv7Ub27iFwFoqoZMW4w MwYDVR0RBCwwKoIRaW1hZ2VzLnBheWJhY2suaXSCFXd3dy5pbWFnZXMucGF5YmFj ay5pdDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMHUGA1UdHwRuMGwwNKAyoDCGLmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9z aGEyLWV2LXNlcnZlci1nMi5jcmwwNKAyoDCGLmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0 LmNvbS9zaGEyLWV2LXNlcnZlci1nMi5jcmwwSwYDVR0gBEQwQjA3BglghkgBhv1s AgEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAH BgVngQwBATCBiAYIKwYBBQUHAQEEfDB6MCQGCCsGAQUFBzABhhhodHRwOi8vb2Nz cC5kaWdpY2VydC5jb20wUgYIKwYBBQUHMAKGRmh0dHA6Ly9jYWNlcnRzLmRpZ2lj ZXJ0LmNvbS9EaWdpQ2VydFNIQTJFeHRlbmRlZFZhbGlkYXRpb25TZXJ2ZXJDQS5j cnQwDAYDVR0TAQH/BAIwADCCAYEGCisGAQQB1nkCBAIEggFxBIIBbQFrAHcAu9nf vB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFszZ577AAABAMASDBGAiEA xzO/lHwQxBk+xohGHW1grFMI7r93ACcY7lf3er29R2UCIQC5BWB1bb/iMiUPdor9 tGoXRYOwpaXL1m6G1lOMSvgUugB3AFYUBpov18Ls0/XhvUSyPsdGdrm8mRFcwO+U mFXWidDdAAABbM2efBwAAAQDAEgwRgIhAO0jWfeILaWnywkm1A9VkNd04vi5Xa33 Pi9XzxpBjnq2AiEAu1W+L9hVsf4CXtJiCJqirD9nugiv3GGjZv8Hp5xsHD0AdwCH db/nWXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/XqCDDwAAAWzNnn1kAAAEAwBIMEYC IQD0JXUSj0yr5pfFBAkkxKTmRTQoiRELFCyo+d7Icqb1IwIhAID8Dag3030MeLI4 nlcNlZfnU9SB0jzKdYHqkLlUTEfwMA0GCSqGSIb3DQEBCwUAA4IBAQAaoqCAgsdk pF9taXqC6DWWyooXj7mzku7Yal5ZMCs2J6dm5CCMWmaUGZd6b5d/l3ovV1N3131J 1Qv9EjUi6jUw110dRQr1v1eo5Fp0ne8V0Eg97r1ydoTAWQFuLmGhQ/fPVhAK0W9P cgyxbBkk0KEoAWVULtk3Ru4sbnD99PfAbVyoLL8lpV/cADoyxO6efXwbxBmETba5 ibayRf5vfqyk3Rgur7K9eLd3XPkxQFxZFAZFG9mA3KnpoOvh6r8Ox6q0JJOyQKSP pMsEiEGFZFAqpmDaelcl1zo/c4pX67xpaO5JTxd+Mln8PmWqAuFck5HppQ9MSADx f5qNAjvnhK29 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzktnDdjNXslK55+wRmTH PQSiG7A2edt+Ke5qHTBnMG2xRIk7pX1VFei7bho0ee9SXVe+qVV4UZx/ultiTGZW cPpMAES5Ze7BiE0hph5Akp9hspuqe/CWSx6upqDCS5TrPpDF43kGgSOLm6pCM61I azYMVP+OUWQ7W4LxDon57ol6ZjbVBaI5N/7VM3o7EwHHZUdFJOj3z6YozAI+40gV BjV2DWxZ3e8hPMWOUHavy0ItHX4zKW/oH1J96sJWsWqypRnFBW+epwJwP+eBH5XS OPAsOo9mhNlStNczUHXmgw70y8kRSW0/EPwhRg3C/Rd99kAafaxMVSH98g/peuFO owIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12309146799459636546133922834728194369 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-30 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bayern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.1 (jurisdictionOfIncorporationL) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'München' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HRB 135999' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bayern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'München' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PAYBACK GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT Operations' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'images.payback.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26042273208703154793218248790706612461811912066067484964967406095701490039615334430167038638246485216340368484889811190718314614871067681037369321776001002067208372425441463769048642348983885595346431277905980393287847175599574628914680855612027362608655910721163032447162378308254808806473144037915554003369546213893353676991721953396164917802652279460786130508183575965529594567775892412684624258697506100226601219425360947688842983036723322650403702084910457921198447832015809574504468398614077569778477719796183624517480786770513407163071625068186525826252118849654826651427584164595509728126603416574877027618467 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d05e504f701a022bfb51bdbb885c05a2aa19316e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.payback.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.images.payback.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (369 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) 016b007700bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016ccd9e7bec0000040300483046022100c733bf947c10c4193ec688461d6d60ac5308eebf77002718ee57f77abdbd4765022100b90560756dbfe232250f768afdb46a174583b0a5a5cbd66e86d6538c4af814ba0077005614069a2fd7c2ecd3f5e1bd44b23ec74676b9bc99115cc0ef949855d689d0dd0000016ccd9e7c1c0000040300483046022100ed2359f7882da5a7cb0926d40f5590d774e2f8b95dadf73e2f57cf1a418e7ab6022100bb55be2fd855b1fe025ed262089aa2ac3f67ba08afdc61a366ff07a79c6c1c3d0077008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016ccd9e7d640000040300483046022100f42575128f4cabe697c5040924c4a4e645342889110b142ca8f9dec872a6f52302210080fc0da837d37d0c78b2389e570d9597e753d481d23cca7581ea90b9544c47f0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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