secgate.mnh.fr
- MUTUELLE NAT HOSPIT PROF SANTE SOCIAL -
Issued by Thawte TLS RSA CA G1
About this certificate
This digital certificate with serial number 02:a5:6b:54:fd:f7:ef:9c:dc:76:c4:8d:80:d2:3b:a4 was issued on by DigiCert Inc.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
MUTUELLE NAT HOSPIT PROF SANTE SOCIAL
Organization:
MUTUELLE NAT HOSPIT PROF SANTE SOCIAL
State / Province:
Centre-Val de Loire
Locality: Amilly
Country: FR
Locality: Amilly
Country: FR
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 02:a5:6b:54:fd:f7:ef:9c:dc:76:c4:8d:80:d2:3b:a4Serial Number (int): 3517361924820763932867564213506292644
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 34:49:5e:12:f7:28:a5:fa:92:d0:3d:5f:f0:c3:1a:c2:c1:20:ff:ec
AuthorityKeyId: a5:8c:fe:32:cc:eb:0f:2c:d4:19:c6:08:b8:00:24:88:5d:c3:c5:b7
Fingerprint (sha1): 0b:9c:5c:41:cd:cb:68:5f:f3:12:35:bb:23:ae:1d:23:8a:c1:8e:d8
Fingerprint (sha256): 45:97:46:15:e8:c5:c0:87:ff:ff:20:4b:15:3d:3c:e8:e7:32:b8:ed:5e:17:61:e5:64:ac:8b:34:4e:90:6c:50
Issuing Certificate URL: http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteTLSRSACAG1.crl
Check the revocation status for certificate secgate.mnh.fr
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for secgate.mnh.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
secgate.mnh.fr
Other certificates including the domain name mnh.fr
(limited to 100 certificates)
imperva.com
adhesion.mnh.fr
akamai-san109.exacttarget.com
incapsula.com
incapsula.com
imperva.com
imperva.com
akamai-san109.exacttarget.com
www.mnh.fr
incapsula.com
*.mnh.fr
akamai-san109.exacttarget.com
incapsula.com
www.mnh.fr
incapsula.com
incapsula.com
incapsula.com
incapsula.com
www.mnh.fr
*.mnh.fr
incapsula.com
adherent.mnh.fr
*.mnh.fr
www.mnh.fr
incapsula.com
incapsula.com
imperva.com
*.mnh.fr
akamai-san109.exacttarget.com
incapsula.com
adherent.mnh.fr
*.mnh.fr
akamai-san109.exacttarget.com
*.mnh.fr
incapsula.com
incapsula.com
*.mnh.fr
*.mnh.fr
incapsula.com
incapsula.com
*.mnh.fr
secgate.mnh.fr
www.mnh.fr
www.mnh.fr
incapsula.com
ppradherent.mnh.fr
*.mnh.fr
incapsula.com
adherent.mnh.fr
ppradherent.mnh.fr
secgate.mnh.fr
incapsula.com
incapsula.com
incapsula.com
secgate.mnh.fr
incapsula.com
incapsula.com
adherent.mnh.fr
adherent.mnh.fr
akamai-san109.exacttarget.com
*.mnh.fr
ppradherent.mnh.fr
incapsula.com
secgate.mnh.fr
sts.mnh.fr
*.mnh.fr
sts.mnh.fr
adherent.mnh.fr
sts.mnh.fr
imperva.com
incapsula.com
incapsula.com
incapsula.com
concours-mnh-bfm.mnh.fr
adherent.mnh.fr
incapsula.com
incapsula.com
incapsula.com
*.mnh.fr
incapsula.com
sts.mnh.fr
incapsula.com
imperva.com
sts.mnh.fr
ppradherent.mnh.fr
*.mnh.fr
sts.mnh.fr
akamai-san109.exacttarget.com
imperva.com
*.mnh.fr
certificat-mutualiste.mnh.fr
incapsula.com
akamai-san109.exacttarget.com
sts.mnh.fr
incapsula.com
secgate.mnh.fr
incapsula.com
www.mnh.fr
incapsula.com
sts.mnh.fr
adhesion.mnh.fr
akamai-san109.exacttarget.com
incapsula.com
incapsula.com
imperva.com
imperva.com
akamai-san109.exacttarget.com
www.mnh.fr
incapsula.com
*.mnh.fr
akamai-san109.exacttarget.com
incapsula.com
www.mnh.fr
incapsula.com
incapsula.com
incapsula.com
incapsula.com
www.mnh.fr
*.mnh.fr
incapsula.com
adherent.mnh.fr
*.mnh.fr
www.mnh.fr
incapsula.com
incapsula.com
imperva.com
*.mnh.fr
akamai-san109.exacttarget.com
incapsula.com
adherent.mnh.fr
*.mnh.fr
akamai-san109.exacttarget.com
*.mnh.fr
incapsula.com
incapsula.com
*.mnh.fr
*.mnh.fr
incapsula.com
incapsula.com
*.mnh.fr
secgate.mnh.fr
www.mnh.fr
www.mnh.fr
incapsula.com
ppradherent.mnh.fr
*.mnh.fr
incapsula.com
adherent.mnh.fr
ppradherent.mnh.fr
secgate.mnh.fr
incapsula.com
incapsula.com
incapsula.com
secgate.mnh.fr
incapsula.com
incapsula.com
adherent.mnh.fr
adherent.mnh.fr
akamai-san109.exacttarget.com
*.mnh.fr
ppradherent.mnh.fr
incapsula.com
secgate.mnh.fr
sts.mnh.fr
*.mnh.fr
sts.mnh.fr
adherent.mnh.fr
sts.mnh.fr
imperva.com
incapsula.com
incapsula.com
incapsula.com
concours-mnh-bfm.mnh.fr
adherent.mnh.fr
incapsula.com
incapsula.com
incapsula.com
*.mnh.fr
incapsula.com
sts.mnh.fr
incapsula.com
imperva.com
sts.mnh.fr
ppradherent.mnh.fr
*.mnh.fr
sts.mnh.fr
akamai-san109.exacttarget.com
imperva.com
*.mnh.fr
certificat-mutualiste.mnh.fr
incapsula.com
akamai-san109.exacttarget.com
sts.mnh.fr
incapsula.com
secgate.mnh.fr
incapsula.com
www.mnh.fr
incapsula.com
sts.mnh.fr
Certificate
The complete raw certificate details for secgate.mnh.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGezCCBWOgAwIBAgIQAqVrVP3375zcdsSNgNI7pDANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRUaGF3dGUgVExTIFJTQSBDQSBHMTAe Fw0yMzA2MjEwMDAwMDBaFw0yNDA3MDMyMzU5NTlaMIGFMQswCQYDVQQGEwJGUjEc MBoGA1UECBMTQ2VudHJlLVZhbCBkZSBMb2lyZTEPMA0GA1UEBxMGQW1pbGx5MS4w LAYDVQQKEyVNVVRVRUxMRSBOQVQgSE9TUElUIFBST0YgU0FOVEUgU09DSUFMMRcw FQYDVQQDEw5zZWNnYXRlLm1uaC5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAPrIqeZmWMzH7LOX/PS3+p7A9zX594zURTRZjj3pBx/tWd7W52ICVokX A90EEZ7+XG6IrGfjDsgxF3IFss3xy4qD7RMdEHsTSn+fbMujGA8fltF6l58h16YZ R8gx6LjQM/kRc5P+rEaBSm+pacUBUSoK/7aS0K1lETA7yDhphcbanVuNDQ6wqaDe LhiyzMAAfE71HSEqncmX8u+m5zYrskN2oRmORx90v+bdw4+OesPEmKgHe8pp6VtA O1hICVUXKFRBKG2W9e0K0GYfPtLT15V0U9csuZN2Z/5BHQV/5dOK3izJCHDrCh5N bQIiM/2+Rlw1k+MP5sE6vGMfj5l1Vf8CAwEAAaOCAwswggMHMB8GA1UdIwQYMBaA FKWM/jLM6w8s1BnGCLgAJIhdw8W3MB0GA1UdDgQWBBQ0SV4S9yil+pLQPV/wwxrC wSD/7DAZBgNVHREEEjAQgg5zZWNnYXRlLm1uaC5mcjAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyG Kmh0dHA6Ly9jZHAudGhhd3RlLmNvbS9UaGF3dGVUTFNSU0FDQUcxLmNybDA+BgNV HSAENzA1MDMGBmeBDAECAjApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2lj ZXJ0LmNvbS9DUFMwcAYIKwYBBQUHAQEEZDBiMCQGCCsGAQUFBzABhhhodHRwOi8v c3RhdHVzLnRoYXd0ZS5jb20wOgYIKwYBBQUHMAKGLmh0dHA6Ly9jYWNlcnRzLnRo YXd0ZS5jb20vVGhhd3RlVExTUlNBQ0FHMS5jcnQwCQYDVR0TBAIwADCCAX8GCisG AQQB1nkCBAIEggFvBIIBawFpAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZ RnEftZsAAAGI3fD2YwAABAMARzBFAiAfJ9hopvGHSwYeiILEBGjnEizsjZWLIpGE LLJF+9igGQIhAIXJkjycifDOcsWiEk5qDgj9uZN18UZ8XmB8Ptr4+ThqAHcASLDj a9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGI3fD2nQAABAMASDBGAiEA 8p2gU3DCKU4mpmWJF5wtvkoBeju4JDkFAMl6iGpBMAACIQDlwuNgYw/7aJqaZOIz IeoIG+b62NbKHRfiBhu3PMjmCwB2ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2k PTBI1/urAAABiN3w9rQAAAQDAEcwRQIhAPVYL2y6doGFAtIEcMe3dXC9PhypX/AN vSgJ/aQZpQjXAiA386qfzQtBs1mUHFK09Mx98F7x8DbLMD3e1unzNzImrjANBgkq hkiG9w0BAQsFAAOCAQEAgzi41bUY1grlHrSGLdrz7LCApqaKQQ+LRCzjFBhAnW8i EDl+u8/Bs2efH/zvBoW5+UbA1RH0AJhMysKAwjjaE9VI6/88wLVf+70bHRb8N55/ W/WSyCkBkfssPfJo6orT/MTlep+o1EMkcpnTmxM6zuF9d5WpOGE6E0/mvlnbqzj/ ogCTwbMxLh2URwjiczjSAn8TarcZ6Jjco7bDpQTfy+lMDWBsrku/SkZbVXePXIYX le4LmVVjiLIlv28Ew4GcUuMDYMImqcgaUsSnUHQkZphKF/W4Ql978RzNxMXjpeOQ 9F15JIyu2aYdvQw2yJ2P+8kkcbM11kB+xyKWmzCvHw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+sip5mZYzMfss5f89Lf6 nsD3Nfn3jNRFNFmOPekHH+1Z3tbnYgJWiRcD3QQRnv5cboisZ+MOyDEXcgWyzfHL ioPtEx0QexNKf59sy6MYDx+W0XqXnyHXphlHyDHouNAz+RFzk/6sRoFKb6lpxQFR Kgr/tpLQrWURMDvIOGmFxtqdW40NDrCpoN4uGLLMwAB8TvUdISqdyZfy76bnNiuy Q3ahGY5HH3S/5t3Dj456w8SYqAd7ymnpW0A7WEgJVRcoVEEobZb17QrQZh8+0tPX lXRT1yy5k3Zn/kEdBX/l04reLMkIcOsKHk1tAiIz/b5GXDWT4w/mwTq8Yx+PmXVV /wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3517361924820763932867564213506292644 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Centre-Val de Loire' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amilly' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MUTUELLE NAT HOSPIT PROF SANTE SOCIAL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'secgate.mnh.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31658527186066865078906963245456270074623116991853562735199176205598546827880911731240734259244163229437565232319835388865076460129787593434502181125740484885729220593058509154333478549414011950056031400648933730253618963488491787329812480898964495964665884013530306007891713330656102949911960394807767424801607445883742759739187389325999687653844069321729129271060765052589888466499384812160189328901267337551548309242426325349077990681890741588689138087837646572684441597115569917002888803921877597702822050704982712571125402797185195215221410441906621078675355674232712039830247390555804909905243608504874705442303 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a58cfe32cceb0f2cd419c608b80024885dc3c5b7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 34495e12f728a5fa92d03d5ff0c31ac2c120ffec . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secgate.mnh.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 008338b8d5b518d60ae51eb4862ddaf3ecb080a6a68a410f8b442ce31418409d6f2210397ebbcfc1b3679f1ffcef0685b9f946c0d511f400984ccac280c238da13d548ebff3cc0b55ffbbd1b1d16fc379e7f5bf592c8290191fb2c3df268ea8ad3fcc4e57a9fa8d443247299d39b133acee17d7795a938613a134fe6be59dbab38ffa20093c1b3312e1d944708e27338d2027f136ab719e898dca3b6c3a504dfcbe94c0d606cae4bbf4a465b55778f5c861795ee0b99556388b225bf6f04c3819c52e30360c226a9c81a52c4a750742466984a17f5b8425f7bf11ccdc4c5e3a5e390f45d79248caed9a61dbd0c36c89d8ffbc92471b335d6407ec722969b30af1f