www.anoka.k12.mn.us
- ANOKA-HENNEPIN PUBLIC SCHOOL DISTRICT -
Issued by thawte SSL CA - G2
About this certificate
This digital certificate with serial number 5b:cf:69:e5:11:df:8a:ee:d5:f0:29:a5:67:10:03:0a was issued on by thawte, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
ANOKA-HENNEPIN PUBLIC SCHOOL DISTRICT
Organization:
ANOKA-HENNEPIN PUBLIC SCHOOL DISTRICT
Organization unit: Anoka-Hennepin Public School District IT
Organization unit: Anoka-Hennepin Public School District IT
State / Province:
Minnesota
Locality: Anoka
Country: US
Locality: Anoka
Country: US
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 5b:cf:69:e5:11:df:8a:ee:d5:f0:29:a5:67:10:03:0aSerial Number (int): 122036700867933144662332599951667757834
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60
Fingerprint (sha1): c7:38:a3:2b:81:a6:df:fd:ea:b4:96:ed:03:11:ff:36:c2:03:6e:82
Fingerprint (sha256): 40:8d:70:1a:d6:33:ca:36:d6:11:c7:eb:a9:17:8b:5f:f4:8a:df:32:d2:57:61:76:b3:05:5f:ba:db:09:cb:87
Issuing Certificate URL: http://tj.symcb.com/tj.crt
Revocation information
OCSP Server: http://tj.symcd.comCRL Distribution Point: http://tj.symcb.com/tj.crl
Check the revocation status for certificate www.anoka.k12.mn.us
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.anoka.k12.mn.us
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.anoka.k12.mn.us
anoka.k12.mn.us
anoka.k12.mn.us
Other certificates including the domain name anoka.k12.mn.us
(limited to 100 certificates)
*.anoka.k12.mn.us
infofinderle.anoka.k12.mn.us
*.anoka.k12.mn.us
genesis.anoka.k12.mn.us
genesis.anoka.k12.mn.us
moodle.anoka.k12.mn.us
eepr.anoka.k12.mn.us
libguides.anoka.k12.mn.us
moodle.anoka.k12.mn.us
www.anoka.k12.mn.us
genesisportal.anoka.k12.mn.us
odyssey.anoka.k12.mn.us
genesisportal.anoka.k12.mn.us
infofinderle.anoka.k12.mn.us
viewpoint.anoka.k12.mn.us
*.anoka.k12.mn.us
genesis.anoka.k12.mn.us
genesis.anoka.k12.mn.us
eepr.anoka.k12.mn.us
genesis.anoka.k12.mn.us
remote.anoka.k12.mn.us
Destiny.anoka.k12.mn.us
*.anoka.k12.mn.us
libguides.anoka.k12.mn.us
dprs.anoka.k12.mn.us
genesisportal.anoka.k12.mn.us
genesisportal.anoka.k12.mn.us
ahzis.anoka.k12.mn.us
*.anoka.k12.mn.us
*.anoka.k12.mn.us
mealapplication.anoka.k12.mn.us
libguides.anoka.k12.mn.us
destiny.anoka.k12.mn.us
eepr.anoka.k12.mn.us
vpn.anoka.k12.mn.us
jss.anoka.k12.mn.us
genesis.anoka.k12.mn.us
genesisportal.anoka.k12.mn.us
odyssey.anoka.k12.mn.us
ahconnect.anoka.k12.mn.us
Destiny.anoka.k12.mn.us
jss.anoka.k12.mn.us
eepr.anoka.k12.mn.us
dprs.anoka.k12.mn.us
libguides.anoka.k12.mn.us
www.anoka.k12.mn.us
Destiny.anoka.k12.mn.us
libguides.anoka.k12.mn.us
moodle.anoka.k12.mn.us
dprs.anoka.k12.mn.us
destiny.anoka.k12.mn.us
ahconnect.anoka.k12.mn.us
remote.anoka.k12.mn.us
ahconnect.anoka.k12.mn.us
helpdesk.anoka.k12.mn.us
dprs.anoka.k12.mn.us
genesisportal.anoka.k12.mn.us
eepr.anoka.k12.mn.us
mealapplication.anoka.k12.mn.us
videocall.ahschools.us
genesisportal.anoka.k12.mn.us
Destiny.anoka.k12.mn.us
tpvcse.anoka.k12.mn.us
remote.anoka.k12.mn.us
libguides.anoka.k12.mn.us
mail.anoka.k12.mn.us
remote.anoka.k12.mn.us
ahconnect.anoka.k12.mn.us
libguides.anoka.k12.mn.us
helpdesk.anoka.k12.mn.us
moodle.anoka.k12.mn.us
remote.anoka.k12.mn.us
guest.anoka.k12.mn.us
genesis.anoka.k12.mn.us
odyssey.anoka.k12.mn.us
moodle.anoka.k12.mn.us
ahconnect.anoka.k12.mn.us
remote.anoka.k12.mn.us
dprs.anoka.k12.mn.us
remote.anoka.k12.mn.us
genesis.anoka.k12.mn.us
ahzis.anoka.k12.mn.us
ahemployment.anoka.k12.mn.us
genesis.anoka.k12.mn.us
moodle.anoka.k12.mn.us
dprs.anoka.k12.mn.us
helpdesk.anoka.k12.mn.us
odyssey.anoka.k12.mn.us
ahemployment.anoka.k12.mn.us
destiny.anoka.k12.mn.us
moodle.anoka.k12.mn.us
Destiny.anoka.k12.mn.us
remote.anoka.k12.mn.us
ahemployment.anoka.k12.mn.us
dprs.anoka.k12.mn.us
libguides.anoka.k12.mn.us
genesis.anoka.k12.mn.us
ahconnect.anoka.k12.mn.us
genesis.anoka.k12.mn.us
jss.anoka.k12.mn.us
infofinderle.anoka.k12.mn.us
*.anoka.k12.mn.us
genesis.anoka.k12.mn.us
genesis.anoka.k12.mn.us
moodle.anoka.k12.mn.us
eepr.anoka.k12.mn.us
libguides.anoka.k12.mn.us
moodle.anoka.k12.mn.us
www.anoka.k12.mn.us
genesisportal.anoka.k12.mn.us
odyssey.anoka.k12.mn.us
genesisportal.anoka.k12.mn.us
infofinderle.anoka.k12.mn.us
viewpoint.anoka.k12.mn.us
*.anoka.k12.mn.us
genesis.anoka.k12.mn.us
genesis.anoka.k12.mn.us
eepr.anoka.k12.mn.us
genesis.anoka.k12.mn.us
remote.anoka.k12.mn.us
Destiny.anoka.k12.mn.us
*.anoka.k12.mn.us
libguides.anoka.k12.mn.us
dprs.anoka.k12.mn.us
genesisportal.anoka.k12.mn.us
genesisportal.anoka.k12.mn.us
ahzis.anoka.k12.mn.us
*.anoka.k12.mn.us
*.anoka.k12.mn.us
mealapplication.anoka.k12.mn.us
libguides.anoka.k12.mn.us
destiny.anoka.k12.mn.us
eepr.anoka.k12.mn.us
vpn.anoka.k12.mn.us
jss.anoka.k12.mn.us
genesis.anoka.k12.mn.us
genesisportal.anoka.k12.mn.us
odyssey.anoka.k12.mn.us
ahconnect.anoka.k12.mn.us
Destiny.anoka.k12.mn.us
jss.anoka.k12.mn.us
eepr.anoka.k12.mn.us
dprs.anoka.k12.mn.us
libguides.anoka.k12.mn.us
www.anoka.k12.mn.us
Destiny.anoka.k12.mn.us
libguides.anoka.k12.mn.us
moodle.anoka.k12.mn.us
dprs.anoka.k12.mn.us
destiny.anoka.k12.mn.us
ahconnect.anoka.k12.mn.us
remote.anoka.k12.mn.us
ahconnect.anoka.k12.mn.us
helpdesk.anoka.k12.mn.us
dprs.anoka.k12.mn.us
genesisportal.anoka.k12.mn.us
eepr.anoka.k12.mn.us
mealapplication.anoka.k12.mn.us
videocall.ahschools.us
genesisportal.anoka.k12.mn.us
Destiny.anoka.k12.mn.us
tpvcse.anoka.k12.mn.us
remote.anoka.k12.mn.us
libguides.anoka.k12.mn.us
mail.anoka.k12.mn.us
remote.anoka.k12.mn.us
ahconnect.anoka.k12.mn.us
libguides.anoka.k12.mn.us
helpdesk.anoka.k12.mn.us
moodle.anoka.k12.mn.us
remote.anoka.k12.mn.us
guest.anoka.k12.mn.us
genesis.anoka.k12.mn.us
odyssey.anoka.k12.mn.us
moodle.anoka.k12.mn.us
ahconnect.anoka.k12.mn.us
remote.anoka.k12.mn.us
dprs.anoka.k12.mn.us
remote.anoka.k12.mn.us
genesis.anoka.k12.mn.us
ahzis.anoka.k12.mn.us
ahemployment.anoka.k12.mn.us
genesis.anoka.k12.mn.us
moodle.anoka.k12.mn.us
dprs.anoka.k12.mn.us
helpdesk.anoka.k12.mn.us
odyssey.anoka.k12.mn.us
ahemployment.anoka.k12.mn.us
destiny.anoka.k12.mn.us
moodle.anoka.k12.mn.us
Destiny.anoka.k12.mn.us
remote.anoka.k12.mn.us
ahemployment.anoka.k12.mn.us
dprs.anoka.k12.mn.us
libguides.anoka.k12.mn.us
genesis.anoka.k12.mn.us
ahconnect.anoka.k12.mn.us
genesis.anoka.k12.mn.us
jss.anoka.k12.mn.us
Certificate
The complete raw certificate details for www.anoka.k12.mn.us in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGiDCCBXCgAwIBAgIQW89p5RHfiu7V8CmlZxADCjANBgkqhkiG9w0BAQsFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMRswGQYDVQQDExJ0 aGF3dGUgU1NMIENBIC0gRzIwHhcNMTYwODEyMDAwMDAwWhcNMTgwODEyMjM1OTU5 WjCBsjELMAkGA1UEBhMCVVMxEjAQBgNVBAgMCU1pbm5lc290YTEOMAwGA1UEBwwF QW5va2ExLjAsBgNVBAoMJUFOT0tBLUhFTk5FUElOIFBVQkxJQyBTQ0hPT0wgRElT VFJJQ1QxMTAvBgNVBAsMKEFub2thLUhlbm5lcGluIFB1YmxpYyBTY2hvb2wgRGlz dHJpY3QgSVQxHDAaBgNVBAMME3d3dy5hbm9rYS5rMTIubW4udXMwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCROofxnhJt7jCcgCIURbiwXaJSC2lizH1F ftRsSIzK6AZEwUh1m8RuDb5O3yGvCBMN7+UPwR+tWRhKD27iwOFTrBQ82SgTv10s RgpkudIL6vGWLF/04nQ2cgJHU8IsN1qLs8fNEqwzBDYZ1Vw0WDdSmjo9iFjAcscn TKaRYK25ge+zMBCTOf0+vc5NH18IDCor+c7jNQzeXzRwSVjc9i5lG6zPDfxycZKg p4c7uH17CCiOhn7MqDY28xsBBFeuEBs2jtWOTfkKcs0O9CglnlzyskmK2NXPrG3B qIcOtGDNX9fp+UXnUQavIXvi2ubOzIEJywZs+CqXB6BeMrmIc2gvAgMBAAGjggMI MIIDBDAvBgNVHREEKDAmghN3d3cuYW5va2EuazEyLm1uLnVzgg9hbm9rYS5rMTIu bW4udXMwCQYDVR0TBAIwADBuBgNVHSAEZzBlMGMGBmeBDAECAjBZMCYGCCsGAQUF BwIBFhpodHRwczovL3d3dy50aGF3dGUuY29tL2NwczAvBggrBgEFBQcCAjAjDCFo dHRwczovL3d3dy50aGF3dGUuY29tL3JlcG9zaXRvcnkwDgYDVR0PAQH/BAQDAgWg MB8GA1UdIwQYMBaAFMJPSFf80U+awF04fQ4F29kutVJgMCsGA1UdHwQkMCIwIKAe oByGGmh0dHA6Ly90ai5zeW1jYi5jb20vdGouY3JsMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6 Ly90ai5zeW1jZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly90ai5zeW1jYi5jb20v dGouY3J0MIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgDd6x0reg1PpiCLga2B aHB+Lo6dAdVciI09EcTNtuy+zAAAAVZ+yMaQAAAEAwBHMEUCIEJqO3xMSVy7ItHW Ki7fMsTPgMY5ClC9S6UkzXqd/BV4AiEAkg/ieAuVyckas/cBYK5PZEIRJ+vCOrBN v3OJmJeC/HIAdwCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAAAVZ+ yMarAAAEAwBIMEYCIQDHymJMbSyhBuOQ6N0wyKU/4GxyXQTLXAokN4/yaG08bQIh AMHJ1vyEK+BNBxnNlDN6Db6pJHMKmFoSKaZ3dmTIMbKVAHUAaPaY+B9kgr46jO65 KB1M/HFRXWeT1ETRCmesu09P+8QAAAFWfsjGpgAABAMARjBEAiAijbLIrMseZ7w0 oJrETQKJ5tgqtkRyiUIrpSkF/i4HcQIgDM3O28+xj5ChzFqe4P7hDnWiOZKobVQJ URqZCUcY06owDQYJKoZIhvcNAQELBQADggEBAK4NU59Dp2AaHynI/YIV2c7mwKUB KeuUkRfV/n04olq/ldL8MVc5h/1gaXTZORxjtnD1LlHdxoRmN6n0gLx0Pxtch65a yYcUdo/Y/lyBpIWG/vC2rW9dNm6aYWdcMkM30vs0P4ms6yCFFEfzoGnr2e73b4YN xDXEcKkJfajDkmTa97U4G+vNchQGMOoYkaHHf0u0LV047Gsaxru2Kq344/fBNIUO blaZWfK++27IL+tcuciMKGBIK44gJRY64bzC0BCHVDKvr+HOxithyL0IAU2HpI1A w0Ghx85+1b5G0ypcHS5c6JxEgiREYBCxDjWITsY+LHSirqhyiDKlp6nSvLM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkTqH8Z4Sbe4wnIAiFEW4 sF2iUgtpYsx9RX7UbEiMyugGRMFIdZvEbg2+Tt8hrwgTDe/lD8EfrVkYSg9u4sDh U6wUPNkoE79dLEYKZLnSC+rxlixf9OJ0NnICR1PCLDdai7PHzRKsMwQ2GdVcNFg3 Upo6PYhYwHLHJ0ymkWCtuYHvszAQkzn9Pr3OTR9fCAwqK/nO4zUM3l80cElY3PYu ZRuszw38cnGSoKeHO7h9ewgojoZ+zKg2NvMbAQRXrhAbNo7Vjk35CnLNDvQoJZ5c 8rJJitjVz6xtwaiHDrRgzV/X6flF51EGryF74trmzsyBCcsGbPgqlwegXjK5iHNo LwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 122036700867933144662332599951667757834 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Minnesota' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Anoka' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ANOKA-HENNEPIN PUBLIC SCHOOL DISTRICT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Anoka-Hennepin Public School District IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.anoka.k12.mn.us' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18333416946966331501648364789799416957898466434448067796681796742713964371576292655144164228845016231492776810044085997082346294965939172793555937901097457942375772475478428380447486865855893724824331586042868182854217144239384077753677036142001883018458711103232950684051466986923355904307218804812205229998469382088622391378126645345950921782569340955682585278797294877798495101799486319658707092932681285576801870496604262025843259084805655008875943627659977764662702811646464638219359966397356904766666036059262884397406108155721324853643067334958916643173863901049485038029775942606782189297169655969550664165423 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.anoka.k12.mn.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'anoka.k12.mn.us' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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