*.crl.edu
- The Center For Research Libraries -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 09:bd:df:be:63:0f:6f:60:4d:38:5e:c3:9e:ec:03:c8 was issued on by DigiCert Inc.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
The Center For Research Libraries
Organization:
The Center For Research Libraries
State / Province:
Illinois
Locality: Chicago
Country: US
Locality: Chicago
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 09:bd:df:be:63:0f:6f:60:4d:38:5e:c3:9e:ec:03:c8Serial Number (int): 12948934129677493129393922741136786376
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 66:3e:4d:dd:a7:ac:82:b4:5a:3b:d7:69:64:10:25:88:d0:86:a5:e6
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): 8e:40:ce:b3:c9:72:63:bd:97:53:4b:1c:18:2f:0b:37:10:39:5a:73
Fingerprint (sha256): 49:9d:85:49:50:a8:d8:4c:21:66:ef:c9:31:c1:8a:b6:93:69:fd:08:8d:0c:4c:a1:c1:8b:02:dc:69:97:e0:5d
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate *.crl.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.crl.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.crl.edu
Other certificates including the domain name crl.edu
(limited to 100 certificates)
streetfilms.org
mail.crl.edu
gcollections.crl.edu
streetfilms.org
mylogin.crl.edu
www.crl.edu
mail.crl.edu
trailguides.crl.edu
edesiderata.crl.edu
trailguides.crl.edu
dds.crl.edu
trailguides.crl.edu
mail.crl.edu
streetfilms.org
streetfilms.org
mylogin.crl.edu
streetfilms.org
liblicense.crl.edu
trailguides.crl.edu
trailguides.crl.edu
liblicense.crl.edu
*.crl.edu
www-apps.crl.edu
www.crl.edu
illiad.crl.edu
workspace.crl.edu
crl.edu
*.crl.edu
afrinul.crl.edu
*.crl.edu
*.crl.edu
trailguides.crl.edu
mail.crl.edu
crl.edu
mail.crl.edu
edesiderata.crl.edu
trailguides.crl.edu
gcollections.crl.edu
trailguides.crl.edu
workspace.crl.edu
crl.edu
edesiderata.crl.edu
gcollections.crl.edu
crl.edu
streetfilms.org
streetfilms.org
mail.crl.edu
*.crl.edu
streetfilms.org
crl.edu
www.crl.edu
edesiderata.crl.edu
crl.edu
edesiderata.crl.edu
crl.edu
www-apps.crl.edu
dds.crl.edu
dds.crl.edu
adat.crl.edu
trailguides.crl.edu
www.crl.edu
dds.crl.edu
trailguides.crl.edu
mail.crl.edu
*.crl.edu
crl.edu
illiad.crl.edu
dds.crl.edu
*.crl.edu
edesiderata.crl.edu
trailguides.crl.edu
www.crl.edu
crl.edu
mail.crl.edu
edesiderata.crl.edu
trailguides.crl.edu
streetfilms.org
trailguides.crl.edu
edesiderata.crl.edu
edesiderata.crl.edu
*.crl.edu
liblicense.crl.edu
mail.crl.edu
gcollections.crl.edu
streetfilms.org
mylogin.crl.edu
www.crl.edu
mail.crl.edu
trailguides.crl.edu
edesiderata.crl.edu
trailguides.crl.edu
dds.crl.edu
trailguides.crl.edu
mail.crl.edu
streetfilms.org
streetfilms.org
mylogin.crl.edu
streetfilms.org
liblicense.crl.edu
trailguides.crl.edu
trailguides.crl.edu
liblicense.crl.edu
*.crl.edu
www-apps.crl.edu
www.crl.edu
illiad.crl.edu
workspace.crl.edu
crl.edu
*.crl.edu
afrinul.crl.edu
*.crl.edu
*.crl.edu
trailguides.crl.edu
mail.crl.edu
crl.edu
mail.crl.edu
edesiderata.crl.edu
trailguides.crl.edu
gcollections.crl.edu
trailguides.crl.edu
workspace.crl.edu
crl.edu
edesiderata.crl.edu
gcollections.crl.edu
crl.edu
streetfilms.org
streetfilms.org
mail.crl.edu
*.crl.edu
streetfilms.org
crl.edu
www.crl.edu
edesiderata.crl.edu
crl.edu
edesiderata.crl.edu
crl.edu
www-apps.crl.edu
dds.crl.edu
dds.crl.edu
adat.crl.edu
trailguides.crl.edu
www.crl.edu
dds.crl.edu
trailguides.crl.edu
mail.crl.edu
*.crl.edu
crl.edu
illiad.crl.edu
dds.crl.edu
*.crl.edu
edesiderata.crl.edu
trailguides.crl.edu
www.crl.edu
crl.edu
mail.crl.edu
edesiderata.crl.edu
trailguides.crl.edu
streetfilms.org
trailguides.crl.edu
edesiderata.crl.edu
edesiderata.crl.edu
*.crl.edu
liblicense.crl.edu
Certificate
The complete raw certificate details for *.crl.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG2jCCBcKgAwIBAgIQCb3fvmMPb2BNOF7DnuwDyDANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjQw MTIyMDAwMDAwWhcNMjUwMTE3MjM1OTU5WjByMQswCQYDVQQGEwJVUzERMA8GA1UE CBMISWxsaW5vaXMxEDAOBgNVBAcTB0NoaWNhZ28xKjAoBgNVBAoTIVRoZSBDZW50 ZXIgRm9yIFJlc2VhcmNoIExpYnJhcmllczESMBAGA1UEAwwJKi5jcmwuZWR1MIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZ8ZPN699Oh6oKWDfPL+Ec0W UI0esG9iCPjabSiqf06cs6aQvt5+8BJ4BHxQGyZ9Xh9qNaegn6jVFShsJubiVbeN QLsd9iJMCjAMUdg5XvnXpocUCa4NT4xxtybPR8q/E8JaQJmWJLQZzHo/ks8XQPk2 il8babqrXpYsGA18pfiPtDa0UKxrqAqkDEsJoY4lWeUAzVRkIV6oApihvGOcPuyG a9hAzyVLXyYAYcc29fF0DRP9NoarXC77V+O2y4mwjBs4adLXeNunNj8pfLLSJppd yDPfeTI1MwESrMdlcSttf3SzMSajvO8hUu1UYcPO+14GrhzloYGIVMHsph4rxwID AQABo4IDgzCCA38wHwYDVR0jBBgwFoAUdIWAwGbH3zfez70pN6oDHb7tzRcwHQYD VR0OBBYEFGY+Td2nrIK0WjvXaWQQJYjQhqXmMBQGA1UdEQQNMAuCCSouY3JsLmVk dTA+BgNVHSAENzA1MDMGBmeBDAECAjApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3 LmRpZ2ljZXJ0LmNvbS9DUFMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjCBnwYDVR0fBIGXMIGUMEigRqBEhkJodHRwOi8vY3Js My5kaWdpY2VydC5jb20vRGlnaUNlcnRHbG9iYWxHMlRMU1JTQVNIQTI1NjIwMjBD QTEtMS5jcmwwSKBGoESGQmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdpQ2Vy dEdsb2JhbEcyVExTUlNBU0hBMjU2MjAyMENBMS0xLmNybDCBhwYIKwYBBQUHAQEE ezB5MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wUQYIKwYB BQUHMAKGRWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2Jh bEcyVExTUlNBU0hBMjU2MjAyMENBMS0xLmNydDAMBgNVHRMBAf8EAjAAMIIBfAYK KwYBBAHWeQIEAgSCAWwEggFoAWYAdgBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx +mSxYpo53wAAAY0zN6oWAAAEAwBHMEUCIQCCFA6QpFujb0KW0ytbBQgGN1TeJGwn wcYmEDiMUh6sUwIgP1CHcSZ+AUnCVwjsdjzYmF1TFCdHIjQnIkD/2r5JcwsAdQA/ F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAY0zN6oIAAAEAwBGMEQC IGigh8neVtvXVIBDAI1B9tVjKoDI7svChBv5g7Gho99/AiBBB6qNawux23T2GRKv i2y+5TGPUysJkxZdnRIr8q5rfAB1AH1ZHhLheCp7HGFnfF79+NCHXBSgTpWeuQMv 2Q6MLnm4AAABjTM3qgAAAAQDAEYwRAIgJEbfw98ZOYrtymUzGMjL16gXvWIn4PG7 njgPK4ecLN0CIBhYRsLowbOuzVVP2B7OqlEY6v/eGUQYK+e135FHaeYwMA0GCSqG SIb3DQEBCwUAA4IBAQA2m4ivE/a+4XUSeZIcBUNAxl8iDkglGNiZaWfLWjvHhd6V pVwP0bCfTVpHiyoscHc9q6E7kAx+50Zb7ERqaKX5cKZ19RNfr6jSHdaOnmtc2j8z 2dPvEujlDGp7ODrRkEpxPohYi9Fguq27GXWohDrcNJ4jTPUju1p1fzCBENjE0Mq0 gC4InApIUYwfo9jT88DcZf1rJrsnmXyadq8CNT73meeWbQj+d2BUI+OQ68HJplZr zjkK/FyXDCpnkifEXVUFJ1J2WpDywB9Gy/niX91ZownXmONIaDk83JHkNukT1vb4 mxEMHZK2vlP75ZyxiNNZLRDk/dFHHddW3Sii6VeB -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZ8ZPN699Oh6oKWDfPL+ Ec0WUI0esG9iCPjabSiqf06cs6aQvt5+8BJ4BHxQGyZ9Xh9qNaegn6jVFShsJubi VbeNQLsd9iJMCjAMUdg5XvnXpocUCa4NT4xxtybPR8q/E8JaQJmWJLQZzHo/ks8X QPk2il8babqrXpYsGA18pfiPtDa0UKxrqAqkDEsJoY4lWeUAzVRkIV6oApihvGOc PuyGa9hAzyVLXyYAYcc29fF0DRP9NoarXC77V+O2y4mwjBs4adLXeNunNj8pfLLS JppdyDPfeTI1MwESrMdlcSttf3SzMSajvO8hUu1UYcPO+14GrhzloYGIVMHsph4r xwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12948934129677493129393922741136786376 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chicago' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Center For Research Libraries' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.crl.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21917681195455057089702656582733169811574134432569587835466245742159314135990252699874401731369656360537134883956907433332971506104150947209640202999899421363083924972943475813013107452403464796113181711827325631460263567359011607615363904604946883178890327119541523485160603461490352120908412891093558659330901732502628217547807792550978932859656774947063829954196247511759835379807739700602391230116666131892184598309246415573784980857960255003454953644161659705791346739914407240091832934818083569013529162151352489746637439990292690399848754471596500465928267479600183279981373776845082914333776123514421579230151 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 663e4ddda7ac82b45a3bd76964102588d086a5e6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.crl.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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