*.thron.com
- New Vision Spa -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 0d:06:17:cf:6c:9f:10:af:5c:88:25:10:69:29:b1:7b was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
New Vision Spa
Organization:
New Vision Spa
State / Province:
PD
Locality: Piazzola sul Brenta
Country: IT
Locality: Piazzola sul Brenta
Country: IT
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:06:17:cf:6c:9f:10:af:5c:88:25:10:69:29:b1:7bSerial Number (int): 17311600655622318813393859687282749819
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 82:b2:66:a0:33:e5:2b:f1:fd:e7:8f:df:68:b4:00:3b:8a:3b:28:56
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): 27:dc:38:9a:93:89:e2:6e:34:45:eb:62:a2:0e:0d:bb:bb:98:43:95
Fingerprint (sha256): 46:2e:cd:e5:4d:74:a7:a5:47:80:83:7f:54:41:66:11:3a:66:bf:21:a2:e9:7e:9d:dd:c6:e7:a6:a2:c0:25:79
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g3.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g3.crl
Check the revocation status for certificate *.thron.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.thron.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.thron.com
thron.com
thron.com
Other certificates including the domain name thron.com
(limited to 100 certificates)
prod.2.slot.cdn.salesforce-communities.com
prod.2.slot.cdn.salesforce-communities.com
*.thron.com
default.projects.thron.com
support.thron.com
*.thron.com
ferrari-f12019-internal.projects.thron.com
whirlpool-app-objectdetection.thron.com
prod.2.slot.cdn.salesforce-communities.com
thron.com
marketing.thron.com
marketing.thron.com
www.thron.com
academy.thron.com
www.thron.com
help.thron.com
lamborghini-app-duplicates.thron.com
wifi-thron-mobile.thron.com
eni-app-videochat.thron.com
support.thron.com
academy.thron.com
*.thron.com
moncler-photoshoot.projects.thron.com
*.thron.com
lamborghini-app-duplicates.thron.com
academy.thron.com
support.thron.com
*.thron.com
selleroyalgroup-app-pim.thron.com
whirlpool-app-objectdetection.thron.com
*.thron.com
hr.thron.com
help.thron.com
rtl-radiopoc-stream.thron.com
default.projects.thron.com
www.thron.asia
prod.2.slot.cdn.salesforce-communities.com
help.thron.com
thron.com
www.thron.com
testautomaticacmvalidation.thron.com
testautomaticacmvalidation.thron.com
*.thron.com
help.thron.com
default.projects.thron.com
coin-app-workflow.thron.com
thron.com
support.thron.com
default.projects.thron.com
*.thron.com
default.projects.thron.com
prod.2.slot.cdn.salesforce-communities.com
vpn.thron.com
default.projects.thron.com
community.thron.com
support.thron.com
webtest.services.thron.com
thron.com
ferrari-imagesarchive-staging.projects.thron.com
prod.2.slot.cdn.salesforce-communities.com
marketing.thron.com
community.thron.com
marketing.thron.com
whirlpool-app-objectdetection.thron.com
platum-app-pim.thron.com
*.thron.com
www.thron.com
help.thron.com
*.thron.com
thron.com
support.thron.com
support.thron.com
webtest.services.thron.com
whirlpool-app-objectdetection.thron.com
*.thron.com
default.projects.thron.com
lamborghini-app-duplicates.thron.com
whirlpool-app-objectdetection.thron.com
thron.com
testautomaticacmvalidation.thron.com
default.projects.thron.com
monclerdev-app-shooting.thron.com
support.thron.com
www.thron.asia
webtest.services.thron.com
testautomaticacmvalidation.thron.com
marketing.thron.com
community.thron.com
lamborghinidev-app-duplicates.thron.com
tesla.thron.com
*.thron.com
live.singleseater.ferrari.com
thron.com
tesla-app-contenthub.thron.com
furladev-app-intelligencepim.thron.com
qaxdevferrariusato-app-gestioneautousate.thron.com
*.thron.com
support.thron.com
webtest.services.thron.com
default.projects.thron.com
prod.2.slot.cdn.salesforce-communities.com
*.thron.com
default.projects.thron.com
support.thron.com
*.thron.com
ferrari-f12019-internal.projects.thron.com
whirlpool-app-objectdetection.thron.com
prod.2.slot.cdn.salesforce-communities.com
thron.com
marketing.thron.com
marketing.thron.com
www.thron.com
academy.thron.com
www.thron.com
help.thron.com
lamborghini-app-duplicates.thron.com
wifi-thron-mobile.thron.com
eni-app-videochat.thron.com
support.thron.com
academy.thron.com
*.thron.com
moncler-photoshoot.projects.thron.com
*.thron.com
lamborghini-app-duplicates.thron.com
academy.thron.com
support.thron.com
*.thron.com
selleroyalgroup-app-pim.thron.com
whirlpool-app-objectdetection.thron.com
*.thron.com
hr.thron.com
help.thron.com
rtl-radiopoc-stream.thron.com
default.projects.thron.com
www.thron.asia
prod.2.slot.cdn.salesforce-communities.com
help.thron.com
thron.com
www.thron.com
testautomaticacmvalidation.thron.com
testautomaticacmvalidation.thron.com
*.thron.com
help.thron.com
default.projects.thron.com
coin-app-workflow.thron.com
thron.com
support.thron.com
default.projects.thron.com
*.thron.com
default.projects.thron.com
prod.2.slot.cdn.salesforce-communities.com
vpn.thron.com
default.projects.thron.com
community.thron.com
support.thron.com
webtest.services.thron.com
thron.com
ferrari-imagesarchive-staging.projects.thron.com
prod.2.slot.cdn.salesforce-communities.com
marketing.thron.com
community.thron.com
marketing.thron.com
whirlpool-app-objectdetection.thron.com
platum-app-pim.thron.com
*.thron.com
www.thron.com
help.thron.com
*.thron.com
thron.com
support.thron.com
support.thron.com
webtest.services.thron.com
whirlpool-app-objectdetection.thron.com
*.thron.com
default.projects.thron.com
lamborghini-app-duplicates.thron.com
whirlpool-app-objectdetection.thron.com
thron.com
testautomaticacmvalidation.thron.com
default.projects.thron.com
monclerdev-app-shooting.thron.com
support.thron.com
www.thron.asia
webtest.services.thron.com
testautomaticacmvalidation.thron.com
marketing.thron.com
community.thron.com
lamborghinidev-app-duplicates.thron.com
tesla.thron.com
*.thron.com
live.singleseater.ferrari.com
thron.com
tesla-app-contenthub.thron.com
furladev-app-intelligencepim.thron.com
qaxdevferrariusato-app-gestioneautousate.thron.com
*.thron.com
support.thron.com
webtest.services.thron.com
default.projects.thron.com
Certificate
The complete raw certificate details for *.thron.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgIQDQYXz2yfEK9ciCUQaSmxezANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xNDEyMDkwMDAwMDBaFw0xNzEyMTMxMjAwMDBa MGcxCzAJBgNVBAYTAklUMQswCQYDVQQIEwJQRDEcMBoGA1UEBxMTUGlhenpvbGEg c3VsIEJyZW50YTEXMBUGA1UEChMOTmV3IFZpc2lvbiBTcGExFDASBgNVBAMMCyou dGhyb24uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtoT7pvCS bNediJ8bhRvU8/C72sJsNvZZYeyOcaynIMcIrlszFbYmQVvbcAh14x6tpM1Bci1K +Bt3+kQ4qEfD2rZ1ezkHmeaz59KHxTvF2OqvfzJZ9d+bPGI5wm4HZbadw9ToQV/F /yOo7NQsE/JzAIBa84cUTrQS0wmYnxrlhK7WAAhbno1XqsZUGrOJm2jA4Iuxx7wY JqNaxfI+LwEPmIT5N3vjuWHvefxFzZVR0H0s7w5VE8Dxy7pgT2Z8pZu/LIq0Mc2J 6tKsR+40rISevMzhUSIAFxTlGdZOStMY5dJxyIUUlXy2YUxwZs2kVcmFPbHECBxR NqsACRt0fkEUvwIDAQABo4IB5TCCAeEwHwYDVR0jBBgwFoAUUWj/kK8CB3U8zNll ZGKiErhZcjswHQYDVR0OBBYEFIKyZqAz5Svx/eeP32i0ADuKOyhWMCEGA1UdEQQa MBiCCyoudGhyb24uY29tggl0aHJvbi5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjB1BgNVHR8EbjBsMDSgMqAwhi5odHRw Oi8vY3JsMy5kaWdpY2VydC5jb20vc2hhMi1oYS1zZXJ2ZXItZzMuY3JsMDSgMqAw hi5odHRwOi8vY3JsNC5kaWdpY2VydC5jb20vc2hhMi1oYS1zZXJ2ZXItZzMuY3Js MEIGA1UdIAQ7MDkwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8v d3d3LmRpZ2ljZXJ0LmNvbS9DUFMwgYMGCCsGAQUFBwEBBHcwdTAkBggrBgEFBQcw AYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tME0GCCsGAQUFBzAChkFodHRwOi8v Y2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRTSEEySGlnaEFzc3VyYW5jZVNl cnZlckNBLmNydDAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQAtggPk TXcCBI1AG4xhudWYfHJGWlSEO3W2iWrnwEX+/cMMIB5UptYQPJcKLHXYqPRnF4FS +3J2BthO+iX1ZkY27kSV6po/Sa4dc5CDg/3fihQ3lnyLsW9xXnJ4HIdDr+SYTOBY dFkxY9EBs1+dIVcu29/e0Gd8/dIBbbtwVnCh6eZj+sCJgrROWn9rQLrcKtW68Zzj 48chTWkWUsAySumPafXPmZU2BVN5Nb6duHpWWlQ3LEVBdhHJhv9KjAhyQVL/Gjdq iwHOeddrnn4qdsXIuV6BiMyjlvppuxbpPU4iWeIdMXezQwzp5q/YLC/vLk5lysfd XuK1q5JT4m2FmS/R -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtoT7pvCSbNediJ8bhRvU 8/C72sJsNvZZYeyOcaynIMcIrlszFbYmQVvbcAh14x6tpM1Bci1K+Bt3+kQ4qEfD 2rZ1ezkHmeaz59KHxTvF2OqvfzJZ9d+bPGI5wm4HZbadw9ToQV/F/yOo7NQsE/Jz AIBa84cUTrQS0wmYnxrlhK7WAAhbno1XqsZUGrOJm2jA4Iuxx7wYJqNaxfI+LwEP mIT5N3vjuWHvefxFzZVR0H0s7w5VE8Dxy7pgT2Z8pZu/LIq0Mc2J6tKsR+40rISe vMzhUSIAFxTlGdZOStMY5dJxyIUUlXy2YUxwZs2kVcmFPbHECBxRNqsACRt0fkEU vwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17311600655622318813393859687282749819 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-12-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Piazzola sul Brenta' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Vision Spa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.thron.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23040947873100785862889617696476916841652195605420884981150500006152312947206740982673498881747259742403341739106445303127058415962543188726509501485552428880530971667932481260779282122712027233947356129857343636547360026168903228933857917039983677135395308538217699405564227880120003447870468188894781944400151286459053139359221888316655983192376410808283272844859040372883895199912035268697326858734930156366917639458499733950936724787635657957567222058168991179820754520436106904906048138121218123525075813700922033305244008574527527657026998085393598860558950889039011609466083719369360339725956877942379086156991 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 82b266a033e52bf1fde78fdf68b4003b8a3b2856 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.thron.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thron.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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