*.ui-portal.de
- 1&1 Mail & Media GmbH -
Issued by GeoTrust TLS RSA CA G1
About this certificate
This digital certificate with serial number 09:c9:28:75:be:75:c9:b1:63:a6:95:e1:d2:b7:22:a8 was issued on by DigiCert Inc.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
1&1 Mail & Media GmbH
Organization:
1&1 Mail & Media GmbH
State / Province:
Rheinland-Pfalz
Locality: Montabaur
Country: DE
Locality: Montabaur
Country: DE
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 09:c9:28:75:be:75:c9:b1:63:a6:95:e1:d2:b7:22:a8Serial Number (int): 13007524255653452100081173608841814696
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: f2:d9:fb:bd:ad:8d:3a:e7:ac:e1:8d:dc:82:48:93:85:70:67:3d:00
AuthorityKeyId: 94:4f:d4:5d:8b:e4:a4:e2:a6:80:fe:fd:d8:f9:00:ef:a3:be:02:57
Fingerprint (sha1): c9:75:bf:ac:77:fe:e7:e1:4c:d8:ce:7d:98:cd:d4:36:21:c3:1e:8f
Fingerprint (sha256): 43:7f:7d:b6:72:20:c6:c4:66:71:5b:60:cf:c8:60:97:7c:98:23:ce:2f:89:95:b2:64:02:b6:ad:a8:e3:4c:57
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
Check the revocation status for certificate *.ui-portal.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.ui-portal.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.ui-portal.de
Other certificates including the domain name ui-portal.de
(limited to 100 certificates)
img.ui-portal.de
img.ui-portal.de
px.wa.ui-portal.de
wa.ui-portal.de
contract-qs.ui-portal.de
img.ui-portal.de
login.ui-portal.de
js.ui-portal.de
img.ui-portal.de
img.ui-portal.de
login.ui-portal.de
wa.ui-portal.de
afb.ui-portal.de
img.ui-portal.de
wa.ui-portal.de
contract-qs.ui-portal.de
www2.webbaukasten.ui-portal.de
px.wa.ui-portal.de
img.ui-portal.de
*.ui-portal.de
img-pool.ui-portal.de
img.ui-portal.de
img.ui-portal.de
*.ui-portal.de
www1.webbaukasten.ui-portal.de
img.ui-portal.de
*.ui-portal.de
www2.webbaukasten-demo.ui-portal.de
www3.webbaukasten.ui-portal.de
img.ui-portal.de
img.ui-portal.de
wa.ui-portal.de
r.ui-portal.de
*.ui-portal.de
img.ui-portal.de
px.wa.ui-portal.de
*.ui-portal.de
px.wa.ui-portal.de
px.wa.ui-portal.de
*.ui-portal.de
img.ui-portal.de
px.wa.ui-portal.de
img.ui-portal.de
webbaukasten.ui-portal.de
img.ui-portal.de
img.ui-portal.de
px.wa.ui-portal.de
*.ui-portal.de
px.wa.ui-portal.de
img.ui-portal.de
img.ui-portal.de
*.ui-portal.de
contract-pre.ui-portal.de
px.wa.ui-portal.de
img-eue.ui-portal.de
img-eue.ui-portal.de
img.ui-portal.de
*.ui-portal.de
img.ui-portal.de
contract.ui-portal.de
www1.webbaukasten.ui-portal.de
img.ui-portal.de
px.wa.ui-portal.de
px.wa.ui-portal.de
img.ui-portal.de
contract.ui-portal.de
img.ui-portal.de
www1.webbaukasten-demo.ui-portal.de
sms-alert.ui-portal.de
images.ui-portal.de
www3.webbaukasten.ui-portal.de
img.ui-portal.de
img.ui-portal.de
www2.webbaukasten.ui-portal.de
r.ui-portal.de
px.wa.ui-portal.de
img.ui-portal.de
r.ui-portal.de
img.ui-portal.de
img.ui-portal.de
img.ui-portal.de
px.wa.ui-portal.de
wa.ui-portal.de
contract-qs.ui-portal.de
img.ui-portal.de
login.ui-portal.de
js.ui-portal.de
img.ui-portal.de
img.ui-portal.de
login.ui-portal.de
wa.ui-portal.de
afb.ui-portal.de
img.ui-portal.de
wa.ui-portal.de
contract-qs.ui-portal.de
www2.webbaukasten.ui-portal.de
px.wa.ui-portal.de
img.ui-portal.de
*.ui-portal.de
img-pool.ui-portal.de
img.ui-portal.de
img.ui-portal.de
*.ui-portal.de
www1.webbaukasten.ui-portal.de
img.ui-portal.de
*.ui-portal.de
www2.webbaukasten-demo.ui-portal.de
www3.webbaukasten.ui-portal.de
img.ui-portal.de
img.ui-portal.de
wa.ui-portal.de
r.ui-portal.de
*.ui-portal.de
img.ui-portal.de
px.wa.ui-portal.de
*.ui-portal.de
px.wa.ui-portal.de
px.wa.ui-portal.de
*.ui-portal.de
img.ui-portal.de
px.wa.ui-portal.de
img.ui-portal.de
webbaukasten.ui-portal.de
img.ui-portal.de
img.ui-portal.de
px.wa.ui-portal.de
*.ui-portal.de
px.wa.ui-portal.de
img.ui-portal.de
img.ui-portal.de
*.ui-portal.de
contract-pre.ui-portal.de
px.wa.ui-portal.de
img-eue.ui-portal.de
img-eue.ui-portal.de
img.ui-portal.de
*.ui-portal.de
img.ui-portal.de
contract.ui-portal.de
www1.webbaukasten.ui-portal.de
img.ui-portal.de
px.wa.ui-portal.de
px.wa.ui-portal.de
img.ui-portal.de
contract.ui-portal.de
img.ui-portal.de
www1.webbaukasten-demo.ui-portal.de
sms-alert.ui-portal.de
images.ui-portal.de
www3.webbaukasten.ui-portal.de
img.ui-portal.de
img.ui-portal.de
www2.webbaukasten.ui-portal.de
r.ui-portal.de
px.wa.ui-portal.de
img.ui-portal.de
r.ui-portal.de
img.ui-portal.de
img.ui-portal.de
Certificate
The complete raw certificate details for *.ui-portal.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGdjCCBV6gAwIBAgIQCckodb51ybFjppXh0rciqDANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZHZW9UcnVzdCBUTFMgUlNBIENBIEcx MB4XDTI0MDQxNTAwMDAwMFoXDTI1MDUxNjIzNTk1OVowdDELMAkGA1UEBhMCREUx GDAWBgNVBAgTD1JoZWlubGFuZC1QZmFsejESMBAGA1UEBxMJTW9udGFiYXVyMR4w HAYDVQQKDBUxJjEgTWFpbCAmIE1lZGlhIEdtYkgxFzAVBgNVBAMMDioudWktcG9y dGFsLmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4AisSwd28rr ar6uB5MdYfDUU1cmDUxLNFELAtTTgb8GNGDSIy+npjZ3JrKeHnw+tV9TTtA1dLPF AEb/NNgoke3Qy47hnXIBoIBxWpDDFdCYJwUQhmM431svxiTI6xRlxMRUQvq8yR5m kGRJfIJoQlEyEj1PI5bqDi6lTdN3/EhC5LLBAKA92A0S5CRuZvTyHgW6G9OOCCzl 3XaOPNW5NELQ/D4GIjTJ8Z76Fo6oyz4hkbWXmx6pcKiIrDXjKWiedJT/iGNe9tYf O+cpftv9CFvKpC3Yk+0wPysrPl3cDxGfcNQ4qhvwhblGjISBLV6sKNXJJ+B9jNp1 iWPw3rasVwIDAQABo4IDFjCCAxIwHwYDVR0jBBgwFoAUlE/UXYvkpOKmgP792PkA 76O+AlcwHQYDVR0OBBYEFPLZ+72tjTrnrOGN3IJIk4VwZz0AMBkGA1UdEQQSMBCC DioudWktcG9ydGFsLmRlMD4GA1UdIAQ3MDUwMwYGZ4EMAQICMCkwJwYIKwYBBQUH AgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMD8GA1UdHwQ4MDYwNKAyoDCG Lmh0dHA6Ly9jZHAuZ2VvdHJ1c3QuY29tL0dlb1RydXN0VExTUlNBQ0FHMS5jcmww dgYIKwYBBQUHAQEEajBoMCYGCCsGAQUFBzABhhpodHRwOi8vc3RhdHVzLmdlb3Ry dXN0LmNvbTA+BggrBgEFBQcwAoYyaHR0cDovL2NhY2VydHMuZ2VvdHJ1c3QuY29t L0dlb1RydXN0VExTUlNBQ0FHMS5jcnQwDAYDVR0TAQH/BAIwADCCAX0GCisGAQQB 1nkCBAIEggFtBIIBaQFnAHYATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKa Od8AAAGO4VCggwAABAMARzBFAiBLiEAWPGPX8bDyJdzQ3IXn3LTs7AcyRK6vtjlB 805o0AIhALKtVKvouwe/ftdmwvISR0PcqGLEduj2b7+xJ/x45LfJAHUAfVkeEuF4 KnscYWd8Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGO4VCgvgAABAMARjBEAiBxOMZx 7OuLy7GMibDffTqb6v4zO6sQ3+hLX5JopKXf+AIgTBSQo+WYiTrEUnZTwez+FOdC AOfKZIvpRvUKizz0yNAAdgDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeO UAAAAY7hUKDRAAAEAwBHMEUCIQD/h8ksjeUrEYGUjHcmLUWY9WexkaJms5/uRx0r iFMfYQIgMHRw6CTL9s8HXDkMl6deO3Xji2Cw6kfrBFH+WMXwOKYwDQYJKoZIhvcN AQELBQADggEBAH8J9obayQTpKL26qcIHgpgzks0zh4M/kzdXjK2jsUkgC8eN8uJc ycun8Ycci6AVNEfRle1pEhj6FRkinakyeZ6bH5uyHfjvLqW5o+5hTsHALUbPZlT2 gOO1Oe1UvuEJe+j/i5+AJijo6YZOgMXgi259yWPyjQ/1bC6B1xvd+X5UFkW5+SuM VppQ1tEVtn3/2OtIG+YctQukRuOa0EN/EZiZOB25FaF+1zQnw7m3ShYthM2XYxzr WfMN6mEx9TOxS9oDRvppk17e1VjcVcA7kjwEVwOavnbnRg1OO+cZZrQLDKHa1eDA Y4IAzQc0e8m28V4FodsL6VwKHlBKTaU6z/0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4AisSwd28rrar6uB5Md YfDUU1cmDUxLNFELAtTTgb8GNGDSIy+npjZ3JrKeHnw+tV9TTtA1dLPFAEb/NNgo ke3Qy47hnXIBoIBxWpDDFdCYJwUQhmM431svxiTI6xRlxMRUQvq8yR5mkGRJfIJo QlEyEj1PI5bqDi6lTdN3/EhC5LLBAKA92A0S5CRuZvTyHgW6G9OOCCzl3XaOPNW5 NELQ/D4GIjTJ8Z76Fo6oyz4hkbWXmx6pcKiIrDXjKWiedJT/iGNe9tYfO+cpftv9 CFvKpC3Yk+0wPysrPl3cDxGfcNQ4qhvwhblGjISBLV6sKNXJJ+B9jNp1iWPw3ras VwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13007524255653452100081173608841814696 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rheinland-Pfalz' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montabaur' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '1&1 Mail & Media GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.ui-portal.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22154889346941562099586976865638633293049453126412788786196263826544088541149015007764138890447200698989009769884315541570422092290297806010246025670689621568044174023896038507516437294395529243610422069068743787925182416346471637757200261262533061246295854192044525215058114405894703084820882474642067533601876737480090184074637524557075467302872921238014577533807759833600979703649569710034394583633670816270652199419065614619679798398718701842067053260393740584742613804388893178601539162099900666039253805752481570201683781880856171968737926715760813038198232794005245892974695706890902571472043090266516966779991 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 944fd45d8be4a4e2a680fefdd8f900efa3be0257 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f2d9fbbdad8d3ae7ace18ddc8248938570673d00 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ui-portal.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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