giropay.sparkasse-rhein-nahe.de
- Sparkasse Rhein-Nahe -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 06:71:8a:db:ac:b5:16:7d:73:44:dd:b7:24:06:ef:55 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Sparkasse Rhein-Nahe
Company registration number:
HRA 3085
Organization: Sparkasse Rhein-Nahe
Organization unit: Sparkasse Rhein-Nahe
Organization: Sparkasse Rhein-Nahe
Organization unit: Sparkasse Rhein-Nahe
State / Province:
Rheinland-Pfalz
Locality: Bad Kreuznach
Country: DE
Locality: Bad Kreuznach
Country: DE
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:71:8a:db:ac:b5:16:7d:73:44:dd:b7:24:06:ef:55Serial Number (int): 8564913896667168782688465592290570069
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: c0:29:60:3b:62:d9:d7:86:9f:7a:b2:cf:18:4a:cb:3f:77:b3:36:63
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 7e:dc:48:7e:bb:44:81:69:3d:12:95:13:2f:a1:8a:42:72:a8:98:d9
Fingerprint (sha256): 46:65:96:79:d7:08:fe:55:08:18:ae:33:d4:5f:05:c5:df:0c:e9:f5:03:39:65:b8:bb:d9:b9:67:41:7e:16:29
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate giropay.sparkasse-rhein-nahe.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for giropay.sparkasse-rhein-nahe.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
giropay.sparkasse-rhein-nahe.de
Other certificates including the domain name sparkasse-rhein-nahe.de
(limited to 100 certificates)
giropay.sparkasse-rhein-nahe.de
praktikum.sparkasse-rhein-nahe.de
module.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
blog.sparkasse-rhein-nahe.de
blog.sparkasse-rhein-nahe.de
news.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
praktikum.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
news.sparkasse-rhein-nahe.de
*.blog.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
news.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
news.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
module.sparkasse-rhein-nahe.de
sparkasse-rhein-nahe.de
blog.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
praktikum.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
blog.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
*.blog.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
digi-check.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
digi-check.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
module.sparkasse-rhein-nahe.de
psd2-xs2a.sparkasse-rhein-nahe.de
digi-check.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
digi-check.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
module.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
*.blog.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
blog.sparkasse-rhein-nahe.de
praktikum.sparkasse-rhein-nahe.de
module.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
blog.sparkasse-rhein-nahe.de
blog.sparkasse-rhein-nahe.de
news.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
praktikum.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
news.sparkasse-rhein-nahe.de
*.blog.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
news.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
news.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
module.sparkasse-rhein-nahe.de
sparkasse-rhein-nahe.de
blog.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
praktikum.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
blog.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
*.blog.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
digi-check.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
digi-check.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
module.sparkasse-rhein-nahe.de
psd2-xs2a.sparkasse-rhein-nahe.de
digi-check.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
digi-check.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
module.sparkasse-rhein-nahe.de
www.sparkasse-rhein-nahe.de
*.blog.sparkasse-rhein-nahe.de
giropay.sparkasse-rhein-nahe.de
bankingportal.sparkasse-rhein-nahe.de
blog.sparkasse-rhein-nahe.de
Certificate
The complete raw certificate details for giropay.sparkasse-rhein-nahe.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGQTCCBSmgAwIBAgIQBnGK26y1Fn1zRN23JAbvVTANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE4MDcxMzAwMDAwMFoXDTE5MDQwMTEy MDAwMFowggEwMR0wGwYDVQQPDBRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysG AQQBgjc8AgEDEwJERTEgMB4GCysGAQQBgjc8AgECEw9SaGVpbmxhbmQtUGZhbHox HjAcBgsrBgEEAYI3PAIBARMNQmFkIEtyZXV6bmFjaDERMA8GA1UEBRMISFJBIDMw ODUxCzAJBgNVBAYTAkRFMRgwFgYDVQQIEw9SaGVpbmxhbmQtUGZhbHoxFjAUBgNV BAcTDUJhZCBLcmV1em5hY2gxHTAbBgNVBAoTFFNwYXJrYXNzZSBSaGVpbi1OYWhl MR0wGwYDVQQLExRTcGFya2Fzc2UgUmhlaW4tTmFoZTEoMCYGA1UEAxMfZ2lyb3Bh eS5zcGFya2Fzc2UtcmhlaW4tbmFoZS5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJeuBInuJnt90dPJXOdOkYtGGcV7I3FCHj/VsgMaLAkB1osnxvE2 TFZiuR44kIqyAjDc3VV5KLKWb0zREa0FJ5btozEbBE4NG0IgNqjqMVTbE3tej9Xs iZjk6i9wXZxZLE8WSqTGCVQisZIM82nILrYatzJKllO0l9EAdKaUVqTXSIKENR5i N9TCKaOiT62A++Ie1Mirxj4gPgR22JlR65h7HfEqkUpaAvsiO4ODRPMPqtzes7HS M29ThkQEdm6lLRqnKw6b55gAdjb2xgzi1H7U4+uNbevSsn6ctTZJm+w0Mbl9QDTd ACzP2dwnQv1moEdttOXGRY8BFgkZDvvXhFECAwEAAaOCAg4wggIKMB8GA1UdIwQY MBaAFD3TUKXWoK3u80pgCmXTIdT4+NYPMB0GA1UdDgQWBBTAKWA7YtnXhp96ss8Y Sss/d7M2YzAqBgNVHREEIzAhgh9naXJvcGF5LnNwYXJrYXNzZS1yaGVpbi1uYWhl LmRlMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwdQYDVR0fBG4wbDA0oDKgMIYuaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL3No YTItZXYtc2VydmVyLWcyLmNybDA0oDKgMIYuaHR0cDovL2NybDQuZGlnaWNlcnQu Y29tL3NoYTItZXYtc2VydmVyLWcyLmNybDBLBgNVHSAERDBCMDcGCWCGSAGG/WwC ATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAcG BWeBDAEBMIGIBggrBgEFBQcBAQR8MHowJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmRpZ2ljZXJ0LmNvbTBSBggrBgEFBQcwAoZGaHR0cDovL2NhY2VydHMuZGlnaWNl cnQuY29tL0RpZ2lDZXJ0U0hBMkV4dGVuZGVkVmFsaWRhdGlvblNlcnZlckNBLmNy dDAJBgNVHRMEAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBMNKJlgL3VhjJq/bC9oKX5pYMKEmYqcUMA6fP3x03PSZ/MqTfFobStWg/P PvF5LJefo1VdfRGV36feUZ//N0nsN9PlwMZ2PVatCQ0mgrR81QK8xDYiz23yKQAe qXv3oaWY5RU07+kdKpbPRugo7d3j8jUAnS8huN163p8lR7x6Ab48rgGC/IpLCNCC i2GNcSHKxiFYcXLbCo2f7kidLsRpb7YIfhdc325OilfA/tcvh+I9I2Ew8iqmhY2c Jpy0wLbX6sszEnTjQVikxjqP0jAb0IbFypDkbFEAXjgUE12RJ0lqT+Tb3ziIB+zY XKjUTFG6o6iaYfwP/dHHZgJzvTTI -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl64Eie4me33R08lc506R i0YZxXsjcUIeP9WyAxosCQHWiyfG8TZMVmK5HjiQirICMNzdVXkospZvTNERrQUn lu2jMRsETg0bQiA2qOoxVNsTe16P1eyJmOTqL3BdnFksTxZKpMYJVCKxkgzzacgu thq3MkqWU7SX0QB0ppRWpNdIgoQ1HmI31MIpo6JPrYD74h7UyKvGPiA+BHbYmVHr mHsd8SqRSloC+yI7g4NE8w+q3N6zsdIzb1OGRAR2bqUtGqcrDpvnmAB2NvbGDOLU ftTj641t69Kyfpy1Nkmb7DQxuX1ANN0ALM/Z3CdC/WagR2205cZFjwEWCRkO+9eE UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8564913896667168782688465592290570069 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-01 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rheinland-Pfalz' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.1 (jurisdictionOfIncorporationL) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bad Kreuznach' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HRA 3085' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rheinland-Pfalz' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bad Kreuznach' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sparkasse Rhein-Nahe' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sparkasse Rhein-Nahe' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'giropay.sparkasse-rhein-nahe.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19147795390597224715480123305476336074530703176079261931039013503909497290648289628701512377392456061273013473986387967042380482061401627690483330076940435713922069872445229793468792830361087785640732166297948350923781209811791510783644602178555020927571847039339822823906590221313937118926165623317866037640444518803497848938989183427947016264913281371505138329200826703147806430367526908294078431220463844888500765164796321973886570078087376903364513796121605736067904053596958695972526754919795921326983185211247695833609334769880969046386074734403142041273403694966824075035111150078979908193758357876203230561361 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c029603b62d9d7869f7ab2cf184acb3f77b33663 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (35 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giropay.sparkasse-rhein-nahe.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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