news.yves-rocher.at
- Yves Rocher GmbH -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number dd:1d:2e:d5:9a:82:3d:8a:00:00:00:00:50:db:4e:8f was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Yves Rocher GmbH
Organization:
Yves Rocher GmbH
Locality:
Stuttgart
Country: DE
Country: DE
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): dd:1d:2e:d5:9a:82:3d:8a:00:00:00:00:50:db:4e:8fSerial Number (int): 293910913591622443907155333311884906127
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 56:30:4f:8a:e7:b0:97:a7:43:08:cc:9b:05:bc:7f:c2:88:03:4d:ba
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): d3:3e:6c:76:14:ea:66:1e:32:e7:0a:4d:78:3b:7e:b2:cd:5c:90:96
Fingerprint (sha256): 44:a5:f0:0f:67:ee:96:f0:1f:e2:dc:97:76:32:c9:44:25:17:84:28:d9:bd:90:12:9f:08:e1:eb:5a:02:e9:24
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate news.yves-rocher.at
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for news.yves-rocher.at
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
news.yves-rocher.at
Other certificates including the domain name yves-rocher.at
(limited to 100 certificates)
www.yves-rocher.fr
search.yves-rocher.at
www.yves-rocher.fr
www.yves-rocher.fr
t-www.yves-rocher.at
search.yves-rocher.at
www.yves-rocher.fr
www.yves-rocher.fr
www.yves-rocher.de
news.yves-rocher.at
news.yves-rocher.at
secureorder.yves-rocher.at
san-17-s50.tlsprovisioning.exacttarget.com
t-www.yves-rocher.at
secureorder.yves-rocher.at
t-www.yves-rocher.at
search.yves-rocher.at
san-17-s50.tlsprovisioning.exacttarget.com
news.yves-rocher.at
news.yves-rocher.at
www.yves-rocher.fr
nl.yves-rocher.at
news.yves-rocher.at
www.yves-rocher.fr
secureorder.m.yves-rocher.fr
search.yves-rocher.at
secureorder.m.yvesrocher.com.tr
san-17-s50.tlsprovisioning.exacttarget.com
san-17-s50.tlsprovisioning.exacttarget.com
secureorder.m.yves-rocher.fr
san-17-s50.tlsprovisioning.exacttarget.com
www.yves-rocher.fr
nl.yves-rocher.at
nl.yves-rocher.at
www.yves-rocher.fr
www.yves-rocher.de
www.yves-rocher.fr
san-17-s50.tlsprovisioning.exacttarget.com
www.yves-rocher.fr
secureorder.yves-rocher.at
www.yves-rocher.de
nocdn-w.yves-rocher.at
secureorder.yves-rocher.at
search.yves-rocher.at
news.yves-rocher.at
www.yves-rocher.fr
secureorder.yves-rocher.at
secureorder.yves-rocher.at
www.yves-rocher.fr
san-17-s50.tlsprovisioning.exacttarget.com
secureorder.yves-rocher.at
san-17-s50.tlsprovisioning.exacttarget.com
nl.yves-rocher.be
news.yves-rocher.at
www.yves-rocher.fr
news.yves-rocher.at
secureorder.yves-rocher.at
www.yves-rocher.fr
prod.yves-rocher.de
search.yves-rocher.at
nl.yves-rocher.be
www.yves-rocher.fr
www.yves-rocher.fr
secureorder.m.yvesrocher.com.tr
secureorder.yves-rocher.at
www.yves-rocher.fr
nl.yves-rocher.be
search.yves-rocher.at
www.yves-rocher.fr
www.yves-rocher.fr
t-www.yves-rocher.at
search.yves-rocher.at
www.yves-rocher.fr
www.yves-rocher.fr
www.yves-rocher.de
news.yves-rocher.at
news.yves-rocher.at
secureorder.yves-rocher.at
san-17-s50.tlsprovisioning.exacttarget.com
t-www.yves-rocher.at
secureorder.yves-rocher.at
t-www.yves-rocher.at
search.yves-rocher.at
san-17-s50.tlsprovisioning.exacttarget.com
news.yves-rocher.at
news.yves-rocher.at
www.yves-rocher.fr
nl.yves-rocher.at
news.yves-rocher.at
www.yves-rocher.fr
secureorder.m.yves-rocher.fr
search.yves-rocher.at
secureorder.m.yvesrocher.com.tr
san-17-s50.tlsprovisioning.exacttarget.com
san-17-s50.tlsprovisioning.exacttarget.com
secureorder.m.yves-rocher.fr
san-17-s50.tlsprovisioning.exacttarget.com
www.yves-rocher.fr
nl.yves-rocher.at
nl.yves-rocher.at
www.yves-rocher.fr
www.yves-rocher.de
www.yves-rocher.fr
san-17-s50.tlsprovisioning.exacttarget.com
www.yves-rocher.fr
secureorder.yves-rocher.at
www.yves-rocher.de
nocdn-w.yves-rocher.at
secureorder.yves-rocher.at
search.yves-rocher.at
news.yves-rocher.at
www.yves-rocher.fr
secureorder.yves-rocher.at
secureorder.yves-rocher.at
www.yves-rocher.fr
san-17-s50.tlsprovisioning.exacttarget.com
secureorder.yves-rocher.at
san-17-s50.tlsprovisioning.exacttarget.com
nl.yves-rocher.be
news.yves-rocher.at
www.yves-rocher.fr
news.yves-rocher.at
secureorder.yves-rocher.at
www.yves-rocher.fr
prod.yves-rocher.de
search.yves-rocher.at
nl.yves-rocher.be
www.yves-rocher.fr
www.yves-rocher.fr
secureorder.m.yvesrocher.com.tr
secureorder.yves-rocher.at
www.yves-rocher.fr
nl.yves-rocher.be
Certificate
The complete raw certificate details for news.yves-rocher.at in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIRAN0dLtWagj2KAAAAAFDbTo8wDQYJKoZIhvcNAQELBQAw gboxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1FbnRydXN0LCBJbmMuMSgwJgYDVQQL Ex9TZWUgd3d3LmVudHJ1c3QubmV0L2xlZ2FsLXRlcm1zMTkwNwYDVQQLEzAoYykg MjAxMiBFbnRydXN0LCBJbmMuIC0gZm9yIGF1dGhvcml6ZWQgdXNlIG9ubHkxLjAs BgNVBAMTJUVudHJ1c3QgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgLSBMMUswHhcN MTcwMjAxMTU1NzAwWhcNMTgwMzA5MTYyNjU4WjBaMQswCQYDVQQGEwJERTESMBAG A1UEBxMJU3R1dHRnYXJ0MRkwFwYDVQQKExBZdmVzIFJvY2hlciBHbWJIMRwwGgYD VQQDExNuZXdzLnl2ZXMtcm9jaGVyLmF0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA6OuKrxPv9YLoWH9SLB8jIFG1Ixleov1fx6lUAOyQhuqb7w0VtLFC x8M/5198+AkPWEZ3LEqSKpehpzLDR+1ABr2zOGy5ib6JE/SyHeYJMdD/BR7PVDgW 54gZlyVQequZCsS8weUKG+WS87kvMXrzJ+n3sgwEOhJnOcG9SZPoqrLUWn+cV/6B Hu+22FbLyqV/4ih8y3Dq97FXp9+sCnHVOQqe5gZvpMnpU2GnnIbRYPqsNiELF41K sPn+IiVCb6UcXQEivnLl8+c5MiZSL0QvfEpedcLYvI9k/+Uzu7hwx7l/3kmgKxP2 0H/qapBuAQehiaQKnmLyOfalcXtQlkfXXQIDAQABo4IBijCCAYYwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAzBgNVHR8ELDAq MCigJqAkhiJodHRwOi8vY3JsLmVudHJ1c3QubmV0L2xldmVsMWsuY3JsMEsGA1Ud IAREMEIwNgYKYIZIAYb6bAoBBTAoMCYGCCsGAQUFBwIBFhpodHRwOi8vd3d3LmVu dHJ1c3QubmV0L3JwYTAIBgZngQwBAgIwaAYIKwYBBQUHAQEEXDBaMCMGCCsGAQUF BzABhhdodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAzBggrBgEFBQcwAoYnaHR0cDov L2FpYS5lbnRydXN0Lm5ldC9sMWstY2hhaW4yNTYuY2VyMB4GA1UdEQQXMBWCE25l d3MueXZlcy1yb2NoZXIuYXQwHwYDVR0jBBgwFoAUgqJwdN28Uz/Pe9T3zX+nYMYK TL8wHQYDVR0OBBYEFFYwT4rnsJenQwjMmwW8f8KIA026MAkGA1UdEwQCMAAwDQYJ KoZIhvcNAQELBQADggEBAJCZnaqb6keFXo0po1zVJTgx+u5rsJWD4dRShC69PiZ6 o9u7BymzqyWksux0ZiQ8ww+uSBXlXLrsmjaxWHj3/mq7hj4M55CL/Wxm3Yptkbap qKILJ5iBoArhOGFSfdTlD5cDYqIrHWBRgXzAEQeDEZhdKK65BOOEeIPl+BCqxu3c lPXjiDTn9no9SHB3iw4qYQEsSWSS6HkfwENmh1TKJ/bx2LYwraTQPd2j/T/gCTj0 N/SVv0L9hx66Mj+53IwpBhO2H3fzqJojeWpc7HOl/x4dT4sGX+e69JRKWWUaN4wV ml+iW1OGciY6RD4Y59shUNvDxSSwInyTjD8cDPPUwX8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6OuKrxPv9YLoWH9SLB8j IFG1Ixleov1fx6lUAOyQhuqb7w0VtLFCx8M/5198+AkPWEZ3LEqSKpehpzLDR+1A Br2zOGy5ib6JE/SyHeYJMdD/BR7PVDgW54gZlyVQequZCsS8weUKG+WS87kvMXrz J+n3sgwEOhJnOcG9SZPoqrLUWn+cV/6BHu+22FbLyqV/4ih8y3Dq97FXp9+sCnHV OQqe5gZvpMnpU2GnnIbRYPqsNiELF41KsPn+IiVCb6UcXQEivnLl8+c5MiZSL0Qv fEpedcLYvI9k/+Uzu7hwx7l/3kmgKxP20H/qapBuAQehiaQKnmLyOfalcXtQlkfX XQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 293910913591622443907155333311884906127 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-01 15:57:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-09 16:26:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Stuttgart' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Yves Rocher GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'news.yves-rocher.at' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29403436710117602670746381350469433156598760521312530222338145264354788125665649483386577643052465906205510098392847797282150352129786985815499845573087185410480278483750509073063054765900383473888168559958811764229317590459643890900091503455107325593117896074774492349415481908272394084707397339536700538701710965299477737839287109295151386172879466016821116716251901837619324956501449053347459858013297909609431802081987029754242688747527194567039948954786588018673591957452745607770600949242925768010556795306528526517045030158895127371543359579702457055496282653894000826470986622651928503186100736628888997189469 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'news.yves-rocher.at' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 56304f8ae7b097a74308cc9b05bc7fc288034dba . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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