gerfin.fr.to
Issued by SSL.com RSA SSL subCA
About this certificate
This digital certificate with serial number 49:4a:7f:6a:60:96:2b:8c:da:8e:2d:fd:bf:c7:83:e6 was issued on by SSL Corporation.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=gerfin.fr.to
SSL Corporation
Organization:
SSL Corporation
State / Province:
Texas
Locality: Houston
Country: US
Locality: Houston
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 49:4a:7f:6a:60:96:2b:8c:da:8e:2d:fd:bf:c7:83:e6Serial Number (int): 97420457953927431716495628548094526438
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 26:14:7e:e0:dc:d7:a6:f7:e2:d4:04:27:df:61:f1:c2:ec:e7:32:ca
Fingerprint (sha1): d9:a2:3c:b6:a7:68:1e:05:fb:d5:71:ec:a2:2d:a0:b0:4a:46:2c:da
Fingerprint (sha256): 47:b5:81:c6:4a:f0:6b:54:37:24:f7:42:d7:fa:37:4f:fa:a7:bb:f5:44:e4:25:49:ab:25:3f:27:d3:d0:de:59
Issuing Certificate URL: http://cert.ssl.com/SSLcom-SubCA-SSL-RSA-4096-R1.cer
Revocation information
OCSP Server: http://ocsps.ssl.comCRL Distribution Point: http://crls.ssl.com/SSLcom-SubCA-SSL-RSA-4096-R1.crl
Check the revocation status for certificate gerfin.fr.to
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gerfin.fr.to
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gerfin.fr.to
Other certificates including the domain name fr.to
(limited to 100 certificates)
theo.fr.to
doudz.fr.to
my.fr.to
gennessa.fr.to
lihsa.fr.to
personal.fr.to
pret.paste.fr.to
neoapp.fr.to
aggielist.fr.to
cartes3d.changeip.net
etflow.cf
icifab.fr.to
lilith.snag.fr.to
tsx2.fr.to
link.fr.to
canada-post.fr.to
mickvangelderen.nl
vt.fr.to
brunelli.synology.me
cyber.fr.to
soft.fr.to
sport.fr.to
newspaper.fr.to
paris-cdr.fr.to
wiki.fr.to
www.amzn.fr.to
theo.fr.to
pavan.fr.to
dedibox.fr.to
olly.fr.to
brunelli.synology.me
wiki.fr.to
security.cf.fr.to
long.fr.to
reangd.fr.to
ici.fr.to
aaxlss.dev
neoapp.fr.to
aggielist.fr.to
personal.fr.to
tsx2.fr.to
freeyt.fr.to
bvcuixp.fr.to
my.fr.to
delhaye.fr.to
oi.fr.to
paste.fr.to
olly.fr.to
bcuirew.fr.to
myswan.net
yurrinna.fr.to
dedibox.fr.to
algerieinfo.news80.org
service-aide-client.fr.to
pavan.fr.to
cartes3d.changeip.net
tsx2.fr.to
ist-rbt.fr.to
doublerobux.xyz
amzn.fr.to
bvcioutrw.fr.to
barrinna.fr.to
paste.fr.to
tsx2.fr.to
forest.fr.to
kanap.fr.to
gerfin.fr.to
mcloud.fr.to
git.theo.fr.to
ca.fr.to
nbciotw.fr.to
bels.fr.to
shyked.fr
hwywh.dyndns-server.com
management.tr.fr.to
lily.fr.to
harry.fr.to
neoapp.fr.to
bvcioper.fr.to
sec.adhara.fr.to
paste.fr.to
ro07.fr.to
ziko-trading-bot.fr.to
unklow.cf.fr.to
ist-rbt.fr.to
bvcuixp.fr.to
ca.fr.to
ist-rbt.fr.to
seb.fr.to
www.personal.fr.to
mintaka.fr.to
mathexplain.fr.to
smail.fr.to
takkyserver.fr.to
service-aide-client.fr.to
service-aide-client.fr.to
domyros.fr.to
uladera.fr.to
doudz.fr.to
harry.fr.to
doudz.fr.to
my.fr.to
gennessa.fr.to
lihsa.fr.to
personal.fr.to
pret.paste.fr.to
neoapp.fr.to
aggielist.fr.to
cartes3d.changeip.net
etflow.cf
icifab.fr.to
lilith.snag.fr.to
tsx2.fr.to
link.fr.to
canada-post.fr.to
mickvangelderen.nl
vt.fr.to
brunelli.synology.me
cyber.fr.to
soft.fr.to
sport.fr.to
newspaper.fr.to
paris-cdr.fr.to
wiki.fr.to
www.amzn.fr.to
theo.fr.to
pavan.fr.to
dedibox.fr.to
olly.fr.to
brunelli.synology.me
wiki.fr.to
security.cf.fr.to
long.fr.to
reangd.fr.to
ici.fr.to
aaxlss.dev
neoapp.fr.to
aggielist.fr.to
personal.fr.to
tsx2.fr.to
freeyt.fr.to
bvcuixp.fr.to
my.fr.to
delhaye.fr.to
oi.fr.to
paste.fr.to
olly.fr.to
bcuirew.fr.to
myswan.net
yurrinna.fr.to
dedibox.fr.to
algerieinfo.news80.org
service-aide-client.fr.to
pavan.fr.to
cartes3d.changeip.net
tsx2.fr.to
ist-rbt.fr.to
doublerobux.xyz
amzn.fr.to
bvcioutrw.fr.to
barrinna.fr.to
paste.fr.to
tsx2.fr.to
forest.fr.to
kanap.fr.to
gerfin.fr.to
mcloud.fr.to
git.theo.fr.to
ca.fr.to
nbciotw.fr.to
bels.fr.to
shyked.fr
hwywh.dyndns-server.com
management.tr.fr.to
lily.fr.to
harry.fr.to
neoapp.fr.to
bvcioper.fr.to
sec.adhara.fr.to
paste.fr.to
ro07.fr.to
ziko-trading-bot.fr.to
unklow.cf.fr.to
ist-rbt.fr.to
bvcuixp.fr.to
ca.fr.to
ist-rbt.fr.to
seb.fr.to
www.personal.fr.to
mintaka.fr.to
mathexplain.fr.to
smail.fr.to
takkyserver.fr.to
service-aide-client.fr.to
service-aide-client.fr.to
domyros.fr.to
uladera.fr.to
doudz.fr.to
harry.fr.to
Certificate
The complete raw certificate details for gerfin.fr.to in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFfDCCA2SgAwIBAgIQSUp/amCWK4zaji39v8eD5jANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJVUzEOMAwGA1UECAwFVGV4YXMxEDAOBgNVBAcMB0hvdXN0b24x GDAWBgNVBAoMD1NTTCBDb3Jwb3JhdGlvbjEeMBwGA1UEAwwVU1NMLmNvbSBSU0Eg U1NMIHN1YkNBMB4XDTIzMTEwMzA3MDI0M1oXDTI0MDIxNTA3MDIzNFowFzEVMBMG A1UEAwwMZ2VyZmluLmZyLnRvMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsnJv0GYXRbT1NsefazBfU/05cQTgj8vjd07xmXipLWirm5mNKjR7v1OF9CC3 SYjKXLymDQ+cVUTAmMYRXIKA9f1vaLDIcODZn2FrkeCv2M3aGgIeVq/axaiefd4D LPx2eLJkNlJKOHLdsp/Cg/nuKcxvZps3UJRFALAoZxw4RbC/BUGek6uj0b/4nHrn hGxo02oCVTvwLE/yc2/3/nIGEW8O6hO1z2u2Rx8Ho2XtsEoUfl/I5sNxqGqBd/Qw WKO14mn8Soyd2gxR9f6XWp8Q8IwGY/aDe81W9c+f5bjhRmgv3iaWpD23EoI+1yc4 /6Fsf9hN4kP48qNS0a9EqNvI1QIDAQABo4IBcDCCAWwwDAYDVR0TAQH/BAIwADAf BgNVHSMEGDAWgBQmFH7g3Nem9+LUBCffYfHC7OcyyjByBggrBgEFBQcBAQRmMGQw QAYIKwYBBQUHMAKGNGh0dHA6Ly9jZXJ0LnNzbC5jb20vU1NMY29tLVN1YkNBLVNT TC1SU0EtNDA5Ni1SMS5jZXIwIAYIKwYBBQUHMAGGFGh0dHA6Ly9vY3Nwcy5zc2wu Y29tMBcGA1UdEQQQMA6CDGdlcmZpbi5mci50bzAjBgNVHSAEHDAaMAgGBmeBDAEC ATAOBgwrBgEEAYKpMAEDAQEwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMB MEUGA1UdHwQ+MDwwOqA4oDaGNGh0dHA6Ly9jcmxzLnNzbC5jb20vU1NMY29tLVN1 YkNBLVNTTC1SU0EtNDA5Ni1SMS5jcmwwDgYDVR0PAQH/BAQDAgWgMBMGCisGAQQB 1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4ICAQB1s08cm/H3TrhhSMCC2CYX PxJP/5ntvumRy5+YwkonA2Kilen/SNsA8sBnpUb7GTYQnVPzeAcvREptqC9dQn48 TPEIYPaNA5CPlzybCFm8m/uOmTCCTjnozxLwFsD80BEQid0FjYU+0YTwZqOqFV+T ZDOtIO8E1ncDzLQ77RTUamy8/MQw2W+xJwPdTT5Y4wMwX3Syu7KlWmnwsZGBv8Oi kAWNq2XPstzAnw7IRvnNC9T9o0Ztq6Leca2geYgLmSSdz38FyWI8+7FnKuQDxZLi 3iOw/NeDnbFHH9Nko5xM/ceQtiZ+wgZ8NEiB5zJtQg9Cgctrwev9ian7hAumZ5ov RN/6sYlAQRQ8pLNkz+SJT7Ed6wRO0modLEPhGJlJ2tnm9PLGG4ML+uS40xi3lgc7 1GOM6a6xaB5KgpF4J5uxxOyc9YjeXStP4WaV92T2H7QIZ7+zSpye6Ffny3zVRUNO FWA8FB3EcSbh07PHGA7J4KMDlPAqFhdC6474Vfi5/NczLy+MIB+xFoA+RBfCvsuR 7dxrqbR2sZ9hjtWQE01q7Q1+HNDwfrfVWVVeWCXSTw3AdyRsFwAy0Jq4WMOnMv/q 7/BgiG0nFAShFYverk7MyRfT/i9iWkoLbV+49HPDBY/+G1Im0EJawjgXj/P/US4/ 3fiJ0ufghKTa1ZCY9DVO4w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsnJv0GYXRbT1NsefazBf U/05cQTgj8vjd07xmXipLWirm5mNKjR7v1OF9CC3SYjKXLymDQ+cVUTAmMYRXIKA 9f1vaLDIcODZn2FrkeCv2M3aGgIeVq/axaiefd4DLPx2eLJkNlJKOHLdsp/Cg/nu KcxvZps3UJRFALAoZxw4RbC/BUGek6uj0b/4nHrnhGxo02oCVTvwLE/yc2/3/nIG EW8O6hO1z2u2Rx8Ho2XtsEoUfl/I5sNxqGqBd/QwWKO14mn8Soyd2gxR9f6XWp8Q 8IwGY/aDe81W9c+f5bjhRmgv3iaWpD23EoI+1yc4/6Fsf9hN4kP48qNS0a9EqNvI 1QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 97420457953927431716495628548094526438 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Texas' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Houston' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SSL Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SSL.com RSA SSL subCA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-03 07:02:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-15 07:02:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'gerfin.fr.to' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22526849160259329479560013959500964889653292758874416789032085375064105766745212507565081097619018961237835592207093545747810506992749751744820468017283186685833737443454615919572756963930097916692206891314339821378695880514303168594319725610005904022559856837649201954893742389335651765054248121940760559956741091249315603894970865124265738395078285367583281389342949213366128184962385047467096983694232611731135750306232165882022209115164094964136276102421070746235882418034096955573340130696143962043206293229725663892210454949487059418402827419311547653213687967763076681448644200424614345449343663905081749391573 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 26147ee0dcd7a6f7e2d40427df61f1c2ece732ca . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (102 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.ssl.com/SSLcom-SubCA-SSL-RSA-4096-R1.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsps.ssl.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gerfin.fr.to' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.38064.1.3.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.ssl.com/SSLcom-SubCA-SSL-RSA-4096-R1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 0075b34f1c9bf1f74eb86148c082d826173f124fff99edbee991cb9f98c24a270362a295e9ff48db00f2c067a546fb1936109d53f378072f444a6da82f5d427e3c4cf10860f68d03908f973c9b0859bc9bfb8e9930824e39e8cf12f016c0fcd0111089dd058d853ed184f066a3aa155f936433ad20ef04d67703ccb43bed14d46a6cbcfcc430d96fb12703dd4d3e58e303305f74b2bbb2a55a69f0b19181bfc3a290058dab65cfb2dcc09f0ec846f9cd0bd4fda3466daba2de71ada079880b99249dcf7f05c9623cfbb1672ae403c592e2de23b0fcd7839db1471fd364a39c4cfdc790b6267ec2067c344881e7326d420f4281cb6bc1ebfd89a9fb840ba6679a2f44dffab1894041143ca4b364cfe4894fb11deb044ed26a1d2c43e1189949dad9e6f4f2c61b830bfae4b8d318b796073bd4638ce9aeb1681e4a829178279bb1c4ec9cf588de5d2b4fe16695f764f61fb40867bfb34a9c9ee857e7cb7cd545434e15603c141dc47126e1d3b3c7180ec9e0a30394f02a161742eb8ef855f8b9fcd7332f2f8c201fb116803e4417c2becb91eddc6ba9b476b19f618ed590134d6aed0d7e1cd0f07eb7d559555e5825d24f0dc077246c170032d09ab858c3a732ffeaeff060886d271404a1158bdeae4eccc917d3fe2f625a4a0b6d5fb8f473c3058ffe1b5226d0425ac238178ff3ff512e3fddf889d2e7e084a4dad59098f4354ee3