TUI AG
- TUI AG -
Issued by Entrust Verified Mark CA - VMC2
About this certificate
This digital certificate with serial number 1d:39:9e:5c:33:1f:02:8e:99:7b:bc:5e:02:5a:3e:61 was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
TUI AG
Company registration number:
HRB 321
Organization: TUI AG
Organization: TUI AG
Address:
Karl-Wiechert-Allee 4
Postal code: 30625
Locality: Hannover
Country: DE
Postal code: 30625
Locality: Hannover
Country: DE
Entrust, Inc.
Organization:
Entrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 1d:39:9e:5c:33:1f:02:8e:99:7b:bc:5e:02:5a:3e:61Serial Number (int): 38846784724228598041809601947959443041
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 65:7c:e9:3c:96:f2:1e:f5:17:4f:0d:35:95:aa:e3:ea:c3:0a:70:a1
AuthorityKeyId: ef:bc:3c:b4:af:3a:d0:45:5e:76:54:df:c7:64:78:e9:2d:1d:74:3f
Fingerprint (sha1): 8a:e9:a1:01:21:93:ae:5e:68:78:44:54:0b:42:f8:c8:7b:13:69:e9
Fingerprint (sha256): 48:a1:b0:e4:9e:87:7a:9c:73:54:39:84:66:14:f7:94:27:12:eb:3e:ab:43:26:c5:69:78:bc:42:56:72:fd:9e
Issuing Certificate URL: http://aia.entrust.net/vmc2-chain.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/vmc2.crl
Check the revocation status for certificate TUI AG
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for TUI AG
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA512 with RSA
Key Usage
Digital Signature
Extended Key Usages
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mi.firstchoice.co.uk
Other certificates including the domain name
(limited to 100 certificates)
Certificate
The complete raw certificate details for TUI AG in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIQgTCCDmmgAwIBAgIQHTmeXDMfAo6Ze7xeAlo+YTANBgkqhkiG9w0BAQ0FADBP MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNRW50cnVzdCwgSW5jLjEoMCYGA1UEAxMf RW50cnVzdCBWZXJpZmllZCBNYXJrIENBIC0gVk1DMjAeFw0yMTA4MjQyMTE0MjFa Fw0yMjA4MjQyMTE0MjFaMIIBEzEOMAwGA1UEERMFMzA2MjUxCzAJBgNVBAYTAkRF MREwDwYDVQQHEwhIYW5ub3ZlcjEeMBwGA1UECRMVS2FybC1XaWVjaGVydC1BbGxl ZSA0MRMwEQYLKwYBBAGCNzwCAQMTAkRFMQ8wDQYDVQQKEwZUVUkgQUcxHTAbBgNV BA8TFFByaXZhdGUgT3JnYW5pemF0aW9uMRAwDgYDVQQFEwdIUkIgMzIxMR0wGwYK KwYBBAGDnl8BBBMNVUswMDgwMTM1MTUyODESMBAGCisGAQQBg55fAQMTAkdCMSYw JAYKKwYBBAGDnl8BAhMWaHR0cHM6Ly93d3cuaXBvLmdvdi51azEPMA0GA1UEAxMG VFVJIEFHMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvniBcry+TDw1 kos8jwnpkLjyBB9RYXH57WSQyZ7jjVR+dkNsUA60qp/RanDVs81Y4SptKKFnwYqr qHvfjnor5ql75F/PMFd8V85NlOgzewDnX5R3iPfBhmxOyjwpD9LXxV0ca2Aryq7/ d/gNe2dDUjQ2PpN60pX2PnpzQmLKDj0YVsgI1olgRZs0sywdWGa2IuLGMHaVG6KX Ef4Kv7/Iqi3ufWC7E8oEP+4T61CgICtCwKSMfKN4xLPFTe+X6jhnkAMPoGr5o5vM TLphc4eAuYe90PnZHT3j9teALg4vTgUHbhHkvHqCD8rNmWIdWP4nj193ZC31bbTp 2ARiITv+dwIDAQABo4ILkTCCC40wDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUZXzp PJbyHvUXTw01larj6sMKcKEwHwYDVR0jBBgwFoAU77w8tK860EVedlTfx2R46S0d dD8wZgYIKwYBBQUHAQEEWjBYMCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5lbnRy dXN0Lm5ldDAxBggrBgEFBQcwAoYlaHR0cDovL2FpYS5lbnRydXN0Lm5ldC92bWMy LWNoYWluLmNlcjAwBgNVHR8EKTAnMCWgI6Ahhh9odHRwOi8vY3JsLmVudHJ1c3Qu bmV0L3ZtYzIuY3JsMIIJ9AYIKwYBBQUHAQwEggnmMIIJ4qKCCd6gggnaMIIJ1jCC CdIwggnOFg1pbWFnZS9zdmcreG1sMDMwMTANBglghkgBZQMEAgEFAAQg/f9GEZRd etkwdJEIDlm77KkYd5iP95BtOC1jeVxjomEwggmGFoIJgmRhdGE6aW1hZ2Uvc3Zn K3htbDtiYXNlNjQsSDRzSUFBQUFBQUFBQUcxWFhZL2JOaEI4VG9IK0IxVjlLa0RL SkVWSzR1R2NJRG0wUWRBRUNOQWtyOEZGNS9pTStPeURwZnRJZm4xM1ppVTdoL2FD V0RJbExuZG5aMmZYNXk4ZWI3YkYvZW93YlBhN1pla3JWeGFyWGIrLzJ1eld5L0p1 L0dxNzhzWHpYMzg1LzgzYTR2VnF0enBjanZ2RFdmSHlhdjlsVmJ6WmJ1K0drVXRG U0ZXb2FsUDg4K2wxOGVmajdmNHdGdSszZDJ2N1psZFVYUHlraDV3VlRlVmM4ZXB1 czcwcTNCOUZZUzNzRC9mcm45MElaZkhsY2xpOVAreS9icmFyWlRsdWR0L3Q3VkFX NHU1dU9IdmNibmJmbHVYMU9ONmVMUllQRHcvVlExM3REK3VGenprditMUXM3amVy aDFmN3gyWHBDbGVFcnF1eWZrNUcvbTk3Y000dHhKVlNYQ3FLODNFemJsZlBQM3g4 VTN6OHUzaTd1ZG1NcTZ2emhhNkt6K3RpYzdVc1ArRHI4UG5sWWZ5eXZ6eGNZZXY1 WW4xNnZ0bEpYS1B0Yjc1Lys4K3oyNXZoN3ZqazJmbGgxWStGQkx4ZGxyLy9LYTUw cVN3ZU5sZmo5YktjUEw5ZWJkYlg0L0hyZ3R0ZzhObXo4OXZMOFpwV3Y5NXR0Mi8z Ni8zbjVuTTVtL3VMZjJVaGo5K0Z1cTJpOFcyc210NktIZHRVd1FaZmRkWUw4clp1 cXRyNnVzcTlqZkxWNlhxMFh0NzBXWjZGUXY1Nkc2ckdKbG1YSjA1VzVTS3ZiNTF4 dmJOaXZrcXdiWFM1YjJXenE3enhxZkppS1JpMTFNdkRKSlphRTFxNWFhdk9uSTRQ dUtrYUUrV1FXcmpWeU5iRXMvWGR4bVFZUzdJcHlrMlE5d2JyQTl6ME1GNkw5eDFp REJLdUUyK2orT081TlJvNXM3ZVpXeHNiNUttUk0ydGJPL0ZOTEtVNVJuRkl6TFJ5 ZktlR0kyS1F2WWtSTVhoWnIxckVLZnVyaGhESVRiUkJrTTN5WXFzSXlVZlQxOFE3 U3pBSlVUWUd5UGkyYW5sZ3hCZDV4YlJXQUdrWmN0MVZzWmVqQXJ5UmEwdlVFYUhB QlJlem1wL0JRSkwwVHRDUTFKcUVvN0tDMzhHU29FMEwzaVRZRVJjNkRkY0JJRW00 OFJNS2NNRFFBUVFlZ2JPKzBPTE5GamdnTTNFS1N0Q21MM2puaElOQkdpSnhCRVp5 MCtoeFVUWjFscHNDZkNUTGtpWW1UVWwwL0VCZW1PRkdlUWVlZ2pjZXViVE1wWGQ2 WjMwbnpqdW1IdzROOUZDQUlFc1FWZVRwa2pLRC96VlRIQmxwNmp1bVJvTDNRQUV3 Z0krR2ZJeXdxOHZnZHlhSFRSQ2VOb0l4NEdIc2Nqa1dBdWd2S0lJNnVxeUJBejJu U2ZMQTJrNldnRThDTlpIOWhMelkwL0VXK3VwSlk0QlpXL1hZNnB1Tm5UTnNuNFNK dzRYYkFlNGkxek1zUFNqZ1dGMlpQczVBWmxwb0RHb0NYSlI4a1h2aVdROENZcitV QTR2N21ERTlpbEVSaFV4bzUyd1RDeExCZ0NVSmoyYVdnQ0dBSEFSS0NMU3hKMjZ4 WUZFeDFJZld6bXprY2F4VVNRZjRuSmdSTXJrUFN1TGF6SUNZSS9rSDFJT1VUekxI R3VsUlVJSGJSVjNNWEZaT3E2b2oweEM3blV0Uk0rZ3BmSkFkdmpVWGNZKzh4Q2tn QWo4WC9veUJCZnFSS002QzBZTjgzWnluWkk0aXc2TXlsbG1QVHYzTzVpaFNwQjZl Z1RUZXpMcUdVc0NOMFZJd3N4SU84QTZWWUdlOXhBa1hJWkxzTFhBUGRlWTlhK0RV SjM0VTczeUdaOGhZUnRLOVlXbUtQM0pVdGtFeTBRTkNQZHBUWldyQUkySU54ZThN QW5GS0dzbWlLdXlBQU5oK3ByaFZucEFUY05Lek9jQmc2S25CRU4zZzVFMWJSNjBM S2xEREhTMHdSVEZSemZXQUM1OUpTUXFoejhUTGc0ckhjQ1MwampGTC9ocFdZTEJh Z1piMUY3VWR0VlJIcTU2MXpIL2cvNEJXSU5TUmJWRkE3dXdzWll3dldsSVR5RWpJ dlRjZ0ptU2tBVHJHaStDby9QZ3B6NTJnYVlpbUJzNEd4WkpwNU5wVjZTSzMyT2l4 TWRlRXJVTjNPc2J3QXdjWDczTE5NcEpua0ZQNFFESEZRZUwyZEFhYmdBcW5KNGJx bE9VUkVvczR4YkRuQUFhcUw4bnhVNVNzSVVjOVRjemJqQXgwQXFvZ0FpNkVPVUZa MDJ3cmhBMDZERkJyRUZ1SGdGcHdOMVA0V2hUcktSVHdzQmFvVFd3bkxYVTBNUWNS cGlCRWxDMVVRY1drMCt2UWtGcGFhZks5Snh3R1pjVjk2RkE5M01kb3d0WEE5czBl a09hNkQrQ3VWZDUyVUhXSDFRVGsyS0RSMkRFVlhNQlJPVWZZV3RlUXFBWkpPRHFQ U0JMV1VYMGtWekNuK2dsVC9jeWpsa0hUMTFsaGNuNlFnMW9PWjFOME1DSHd3bkhM N1lTQnJxRzVjRGxRZlRuaUNSZHh3MlFob3gxYWxaczZZeUk1UVQ2SU1tSzhnTFBD WE5MT3AwUjVvR3llZ2tCSURRVGVSMmdUeGoyZHVLS2hhZ0h0Q05LbEtVOWVKZHhy MjV1SExoRksvT080aUJZNjNlbG41VG1Wa242dDltcVNrMElMS1FqVU5zaHZxNE1y RmJwK2F2VWFsMmtHd1h3aDNNblU0bzZ1V0VvcmRiem1ZSVVyQjludUhqdjVBYnk5 MWU2SjdkbFNYUkZnbXZMbmRXano1bWgwOHNMUWkxTzArTWFCQUhiakpJZXRUdWJt RkFPYUJwbzdNRzUxRUprQ2YyTDNxVTB6aHdyQkRNeEZ6YUZuQmgzMGl1cSswVEE0 cW5TZm1NYTNQNlZVRWh6cWprTEt1ZHBQN0ltR0UrbWs2ejFKV0pPRURjdGlncnJq OUJEUk14cThMVkk1Tlk1SlNqbDRjRjRXclpQWEU0Y0dWS25XN1N6cytOVVFqUDVx SUJDblp1QTRnK2hrNTFsS0xLZXB6N0g5Wks1cG44c3k1NXdpK2pIL290TGZhTk9u L0I1OC9pK20zenIvS0E4QUFBPT0wHwYDVR0RBBgwFoIUbWkuZmlyc3RjaG9pY2Uu Y28udWswDgYDVR0PAQH/BAQDAgeAMBMGA1UdJQQMMAoGCCsGAQUFBwMfMFAGA1Ud IARJMEcwNwYKYIZIAYb6bAoBCzApMCcGCCsGAQUFBwIBFhtodHRwczovL3d3dy5l bnRydXN0Lm5ldC9ycGEwDAYKKwYBBAGDnl8BATATBgorBgEEAdZ5AgQDAQH/BAIF ADANBgkqhkiG9w0BAQ0FAAOCAgEAJaMiLzzEtAukLAwEDS/qAs73ZVzb2DK8mJyL XEsZ4NPv5X8luV+hRBkdKbuTssTnc19+ylIawimICELy2MVz2UwHSVVI0I/kXZAn J2bcmj4jHyYyOIPaNjGXd47fxsX0aqcDydSZi7dpibfghnwl/+BtoGBz5tehKaLC 7Ax3LagDsbwq6mv2xjfT0DWRHq2Q4eW56tMmGf9UaigIHBnCoyWy3ViqZX19AZ8g qSYWiVc8b5dSAFhgrFDUl3i/caUc+MaxKM/GAhtfLHgZm29DFBwiHFR09BfrVrZe q9BrH99C1hSJR2JLZ//GEhw3fxaknuwmoCdglFMw+pYS8EP4+PYqlQF6PsR8msbb AHnQBmJXNW8+pCo9bxz6CxoCEaO6jdASKsRC7eVhgcETtEt+O/81UnI6PcxbZ2dy y0dFc0tOpU6POy5waX+INxXvcqTYwBbAewO11rudlFC2IZ5H8TF0k+KmA095/8i5 HPKeUUdouMhP/8hlLtHMTHwCR06BI/A/yPw0l0/Pmu7owFwDCoYFBksvQ/wjdc+w 2DOm6rZfnz03hrcyqExuEfErQinLjo/5wftzMSXxvqcqdrsUm958PZutoI5GXc5w c/MBszNwXAjTf7XE9OPJhJvciMKtQ9YbJddmcZCtos4IV8L+NRmBZAj1n/q63ZBa XW5Yu/A= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvniBcry+TDw1kos8jwnp kLjyBB9RYXH57WSQyZ7jjVR+dkNsUA60qp/RanDVs81Y4SptKKFnwYqrqHvfjnor 5ql75F/PMFd8V85NlOgzewDnX5R3iPfBhmxOyjwpD9LXxV0ca2Aryq7/d/gNe2dD UjQ2PpN60pX2PnpzQmLKDj0YVsgI1olgRZs0sywdWGa2IuLGMHaVG6KXEf4Kv7/I qi3ufWC7E8oEP+4T61CgICtCwKSMfKN4xLPFTe+X6jhnkAMPoGr5o5vMTLphc4eA uYe90PnZHT3j9teALg4vTgUHbhHkvHqCD8rNmWIdWP4nj193ZC31bbTp2ARiITv+ dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 38846784724228598041809601947959443041 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Verified Mark CA - VMC2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-24 21:14:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-08-24 21:14:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '30625' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hannover' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Karl-Wiechert-Allee 4' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TUI AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HRB 321' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.53087.1.4 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'UK00801351528' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.53087.1.3 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.53087.1.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'https://www.ipo.gov.uk' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TUI AG' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24044701497764987210732688483118163276785231029359485529806592803475452427938854278225498430610914614245650298180610963761085597746251623359876818612130770972239473454294964025508542489204852423869076861993307405151443282334763087185812221232845509566526207176560989936338610234010709641777005256219698955275083517800277079020625976534459072617724700107257829364211499707909635000639879769652636475626703185052215081082770826581592608347509041748058747408031622482467973388887713460694453675081785610219711997383968543738180897064894266774445002593977115303114899109953447571070402511232372593438101992450682173259383 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 657ce93c96f21ef5174f0d3595aae3eac30a70a1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName efbc3cb4af3ad0455e7654dfc76478e92d1d743f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/vmc2-chain.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (41 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/vmc2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.12 (logoType) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2534 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|true] IA5String . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'image/svg+xml' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.101.3.4.2.1 (sha-256) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) fdff4611945d7ad9307491080e59bbeca91877988ff7906d382d63795c63a261 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'data:image/svg+xml;base64,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' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mi.firstchoice.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits) 0780 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.31 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.11 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.53087.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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