connect.bpmcpa.com
- Burr Pilger Mayer, Inc. -
Issued by thawte SSL CA - G2
About this certificate
This digital certificate with serial number 37:b2:3d:4f:d5:52:dc:1d:e9:c0:21:a5:9d:48:ba:cb was issued on by thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Burr Pilger Mayer, Inc.
Organization:
Burr Pilger Mayer, Inc.
Organization unit: IT
Organization unit: IT
State / Province:
California
Locality: San Francisco
Country: US
Locality: San Francisco
Country: US
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 37:b2:3d:4f:d5:52:dc:1d:e9:c0:21:a5:9d:48:ba:cbSerial Number (int): 74033012161020712187946555626106698443
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60
Fingerprint (sha1): 62:91:92:4c:35:95:b9:9e:fd:fc:43:9e:2e:1c:b9:a2:d2:c7:4a:9b
Fingerprint (sha256): 41:a6:44:d9:0b:39:17:11:b8:54:0a:da:85:9e:cd:8f:20:02:0c:bf:81:96:d2:0e:32:e6:dc:6e:c2:5a:b6:c3
Issuing Certificate URL: http://tj.symcb.com/tj.crt
Revocation information
OCSP Server: http://tj.symcd.comCRL Distribution Point: http://tj.symcb.com/tj.crl
Check the revocation status for certificate connect.bpmcpa.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for connect.bpmcpa.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
connect.bpmcpa.com
Other certificates including the domain name bpmcpa.com
(limited to 100 certificates)
servicedesk.6dca.flcourts.gov
bpmcpa.com
it-support.perimeter81.com
it.servicedesk.ucity.co.th
citrixbackup.bpmcpa.com
support.bpmcpa.com
webmail.bpmcpa.com
sdp.rikkyo.ac.jp
311help.seminolecountyfl.gov
secureweb2lead.bpmcpa.com
webmail.bpmcpa.com
webmail.bpmcpa.com
mobilityrouter.bpmcpa.com
sdp.rikkyo.ac.jp
bpmcpa.com
bpmskype.bpmcpa.com
ajghelpdesk.ajgaustralia.com.au
apps2.bpmcpa.com
ajghelpdesk.ajgaustralia.com.au
support.bpmcpa.com
citrix.bpmcpa.com
311help.seminolecountyfl.gov
311help.seminolecountyfl.gov
bpmskype.bpmcpa.com
vpnbackup.bpmcpa.com
helpdesk.waterfordbankna.com
support.bpmcpa.com
support.bpmcpa.com
servicedesk.6dca.flcourts.gov
311help.seminolecountyfl.gov
webmail.bpmcpa.com
webmail.bpmcpa.com
citrix.bpmcpa.com
helpdesk.johnhcarter.com
it.servicedesk.ucity.co.th
citrixbackup.bpmcpa.com
helpdesk.jicjo.com
emfserver.bpmcpa.com
311help.seminolecountyfl.gov
connect.bpmcpa.com
www.bpmcpa.com
bpmpool1.bpmcpa.com
duo.bpmcpa.com
helpdesk.jicjo.com
311help.seminolecountyfl.gov
servicedesk.1solar.com
webmail.bpmcpa.com
bpmcpa.com
www.bpmcpa.com
helpdesk.waterfordbankna.com
ajghelpdesk.ajgaustralia.com.au
311help.seminolecountyfl.gov
www.bpmcpa.com
help.enmu-roswell.edu
311help.seminolecountyfl.gov
it.servicedesk.ucity.co.th
citrixbackup.bpmcpa.com
duo.bpmcpa.com
sdp.rikkyo.ac.jp
servicedesk.1solar.com
311help.seminolecountyfl.gov
311help.seminolecountyfl.gov
www.bpmcpa.com
support.bpmcpa.com
vpn.bpmcpa.com
citrix.bpmcpa.com
bpmskype.bpmcpa.com
turn.bpmcpa.com
311help.seminolecountyfl.gov
support.bpmcpa.com
helpdesk.jicjo.com
mobilityrouter.bpmcpa.com
311help.seminolecountyfl.gov
rast.bpmcpa.com
www.bpmcpa.com
support.bpmcpa.com
gp.bpmcpa.com
311help.seminolecountyfl.gov
www.bpmcpa.com
bpmcpa.com
citrixbackup.bpmcpa.com
it-support.perimeter81.com
helpdesk.jicjo.com
webmailbackup.bpmcpa.com
helpdesk.jicjo.com
sdp.rikkyo.ac.jp
helpdesk.johnhcarter.com
helpdesk.johnhcarter.com
vpn.bpmcpa.com
ithelpdesk.magpul.com
emfserver.bpmcpa.com
servicedesk.1solar.com
webmail.bpmcpa.com
citrixbackup.bpmcpa.com
helpdesk.jicjo.com
servicedesk.6dca.flcourts.gov
it-support.perimeter81.com
citrix.bpmcpa.com
bpmcpa.com
it-support.perimeter81.com
it.servicedesk.ucity.co.th
citrixbackup.bpmcpa.com
support.bpmcpa.com
webmail.bpmcpa.com
sdp.rikkyo.ac.jp
311help.seminolecountyfl.gov
secureweb2lead.bpmcpa.com
webmail.bpmcpa.com
webmail.bpmcpa.com
mobilityrouter.bpmcpa.com
sdp.rikkyo.ac.jp
bpmcpa.com
bpmskype.bpmcpa.com
ajghelpdesk.ajgaustralia.com.au
apps2.bpmcpa.com
ajghelpdesk.ajgaustralia.com.au
support.bpmcpa.com
citrix.bpmcpa.com
311help.seminolecountyfl.gov
311help.seminolecountyfl.gov
bpmskype.bpmcpa.com
vpnbackup.bpmcpa.com
helpdesk.waterfordbankna.com
support.bpmcpa.com
support.bpmcpa.com
servicedesk.6dca.flcourts.gov
311help.seminolecountyfl.gov
webmail.bpmcpa.com
webmail.bpmcpa.com
citrix.bpmcpa.com
helpdesk.johnhcarter.com
it.servicedesk.ucity.co.th
citrixbackup.bpmcpa.com
helpdesk.jicjo.com
emfserver.bpmcpa.com
311help.seminolecountyfl.gov
connect.bpmcpa.com
www.bpmcpa.com
bpmpool1.bpmcpa.com
duo.bpmcpa.com
helpdesk.jicjo.com
311help.seminolecountyfl.gov
servicedesk.1solar.com
webmail.bpmcpa.com
bpmcpa.com
www.bpmcpa.com
helpdesk.waterfordbankna.com
ajghelpdesk.ajgaustralia.com.au
311help.seminolecountyfl.gov
www.bpmcpa.com
help.enmu-roswell.edu
311help.seminolecountyfl.gov
it.servicedesk.ucity.co.th
citrixbackup.bpmcpa.com
duo.bpmcpa.com
sdp.rikkyo.ac.jp
servicedesk.1solar.com
311help.seminolecountyfl.gov
311help.seminolecountyfl.gov
www.bpmcpa.com
support.bpmcpa.com
vpn.bpmcpa.com
citrix.bpmcpa.com
bpmskype.bpmcpa.com
turn.bpmcpa.com
311help.seminolecountyfl.gov
support.bpmcpa.com
helpdesk.jicjo.com
mobilityrouter.bpmcpa.com
311help.seminolecountyfl.gov
rast.bpmcpa.com
www.bpmcpa.com
support.bpmcpa.com
gp.bpmcpa.com
311help.seminolecountyfl.gov
www.bpmcpa.com
bpmcpa.com
citrixbackup.bpmcpa.com
it-support.perimeter81.com
helpdesk.jicjo.com
webmailbackup.bpmcpa.com
helpdesk.jicjo.com
sdp.rikkyo.ac.jp
helpdesk.johnhcarter.com
helpdesk.johnhcarter.com
vpn.bpmcpa.com
ithelpdesk.magpul.com
emfserver.bpmcpa.com
servicedesk.1solar.com
webmail.bpmcpa.com
citrixbackup.bpmcpa.com
helpdesk.jicjo.com
servicedesk.6dca.flcourts.gov
it-support.perimeter81.com
citrix.bpmcpa.com
Certificate
The complete raw certificate details for connect.bpmcpa.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIQN7I9T9VS3B3pwCGlnUi6yzANBgkqhkiG9w0BAQsFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMRswGQYDVQQDExJ0 aGF3dGUgU1NMIENBIC0gRzIwHhcNMTcxMDAzMDAwMDAwWhcNMTgxMDAzMjM1OTU5 WjCBhjELMAkGA1UEBhMCVVMxEzARBgNVBAgMCkNhbGlmb3JuaWExFjAUBgNVBAcM DVNhbiBGcmFuY2lzY28xIDAeBgNVBAoMF0J1cnIgUGlsZ2VyIE1heWVyLCBJbmMu MQswCQYDVQQLDAJJVDEbMBkGA1UEAwwSY29ubmVjdC5icG1jcGEuY29tMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8Zdg/Vp4ASxrSBI0vpPMEfUSTDK Nkp5KSrXv+h/Bnd22hR7iEnbL4GE834SglUXpMDSs9CJn+J6kCeXHastLdKFuIDj LAV/NhNoJdvVxT9AR+/MM2GlO1IJBHx0LTHNPa1mIcPm9btKburd/tA3G2uW7p0a Bl2SfV2975boEB6K3XqcwWVadzW+vrcRB1cJ4y4XGwt8OGzumb4YGBJMB5q/YlKE qLffKr67FbhkndA8W4h6+Or8Au7hmEW5xOPxqeQRxqFctLaIRDpBMYs83KtZ1LP8 Mm6xQLeVPhT5x1sFK1VLQgK8JtTxqAnxNL6YFth7IpLtj2UvlVL4T9yK9wIDAQAB o4IBiTCCAYUwHQYDVR0RBBYwFIISY29ubmVjdC5icG1jcGEuY29tMAkGA1UdEwQC MAAwbgYDVR0gBGcwZTBjBgZngQwBAgIwWTAmBggrBgEFBQcCARYaaHR0cHM6Ly93 d3cudGhhd3RlLmNvbS9jcHMwLwYIKwYBBQUHAgIwIwwhaHR0cHM6Ly93d3cudGhh d3RlLmNvbS9yZXBvc2l0b3J5MA4GA1UdDwEB/wQEAwIFoDAfBgNVHSMEGDAWgBTC T0hX/NFPmsBdOH0OBdvZLrVSYDArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vdGou c3ltY2IuY29tL3RqLmNybDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw VwYIKwYBBQUHAQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8vdGouc3ltY2QuY29t MCYGCCsGAQUFBzAChhpodHRwOi8vdGouc3ltY2IuY29tL3RqLmNydDATBgorBgEE AdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXwllOjCUYrLMtCOhg/zQ iBmZg5UPDqgu5XAenKNlnkUCFno5WkBRFl3GbseI/N9uZdnIvMZBZyLT8++4jn/b TTHLgp+55BxeYoiIPKEduyjsFA50eb5JaGsbkgUsU23kwkBR3+atVzVA0eUgRI+B uFiqzHGGx9ujUpps9NORNynEhdkaz9RWrVfDioK+OoNhon+J/qYl76BQsCXZCrU0 SAlejZc/NreTz2RRIk39aj5ixvCPUTbZbjfUpz28CvndoFWpeDvzfAj2zuR/oUu9 QFbatMLKsH6CD6QgVpwDWd923duiSiil55Qs/mhXCTd3VL0o/cmQ2DLC1coNJY/q WA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8Zdg/Vp4ASxrSBI0vpP MEfUSTDKNkp5KSrXv+h/Bnd22hR7iEnbL4GE834SglUXpMDSs9CJn+J6kCeXHast LdKFuIDjLAV/NhNoJdvVxT9AR+/MM2GlO1IJBHx0LTHNPa1mIcPm9btKburd/tA3 G2uW7p0aBl2SfV2975boEB6K3XqcwWVadzW+vrcRB1cJ4y4XGwt8OGzumb4YGBJM B5q/YlKEqLffKr67FbhkndA8W4h6+Or8Au7hmEW5xOPxqeQRxqFctLaIRDpBMYs8 3KtZ1LP8Mm6xQLeVPhT5x1sFK1VLQgK8JtTxqAnxNL6YFth7IpLtj2UvlVL4T9yK 9wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 74033012161020712187946555626106698443 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'San Francisco' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Burr Pilger Mayer, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'connect.bpmcpa.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25724193480676358235865540483767168474710532419511396839744422576234375673115393801068951334025344009721443955739609768793400189127168090134964745253073445482249902313971724299180158542966224315374180472288917994562136394681786101045733710729754437227841963090847467471323312434991641613760628490249356240625276377063637330397233623066178385609409695091795594664656924199465267171026998355668199914150111003384583549784203550264217227578784075463838888192617683120656684886739031475640235318681794009180046174359917130364325272565727813984421800227840974826569977961251058149889558696446138739357672821527570976377591 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'connect.bpmcpa.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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