www.jfallen.com
- John F. Allen & Son, Incorporated -
Issued by GeoTrust RSA CA 2018
About this certificate
This digital certificate with serial number 02:49:37:85:4a:d7:4f:ac:32:6b:bb:e1:d2:a0:fb:26 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
John F. Allen & Son, Incorporated
Organization:
John F. Allen & Son, Incorporated
State / Province:
Rhode Island
Locality: Warwick
Country: US
Locality: Warwick
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:49:37:85:4a:d7:4f:ac:32:6b:bb:e1:d2:a0:fb:26Serial Number (int): 3038619755278875423142569233950505766
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 65:fb:ca:c9:0c:6c:d4:e7:a8:b2:9c:c0:e8:b7:e7:b9:f3:17:2f:02
AuthorityKeyId: 90:58:ff:b0:9c:75:a8:51:54:77:b1:ed:f2:a3:43:16:38:9e:6c:c5
Fingerprint (sha1): 9b:6c:a3:0f:96:ea:36:5b:10:1a:d2:9d:b4:f6:e5:91:26:75:cf:f8
Fingerprint (sha256): 49:bc:38:3a:f0:db:ff:7d:82:46:6a:39:ce:3e:4d:ce:6c:f7:e7:b5:b7:51:23:90:40:23:99:fb:a3:4a:ef:8e
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustRSACA2018.crl
Check the revocation status for certificate www.jfallen.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.jfallen.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.jfallen.com
jfallen.com
jfallen.com
Other certificates including the domain name jfallen.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.jfallen.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGJzCCBQ+gAwIBAgIQAkk3hUrXT6wya7vh0qD7JjANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRHZW9UcnVzdCBSU0EgQ0EgMjAxODAe Fw0xODA2MjgwMDAwMDBaFw0xODEyMjYxMjAwMDBaMHwxCzAJBgNVBAYTAlVTMRUw EwYDVQQIEwxSaG9kZSBJc2xhbmQxEDAOBgNVBAcTB1dhcndpY2sxKjAoBgNVBAoM IUpvaG4gRi4gQWxsZW4gJiBTb24sIEluY29ycG9yYXRlZDEYMBYGA1UEAxMPd3d3 LmpmYWxsZW4uY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2gK3 /jf+kzQ5TeYaJc/H1k1l7baJNnPSFJw/Wl6w6Is1BlwXYReTxMq1yAc/3ebwaKS7 b0MyLxDQcd1YkxyGH3qhn1thOuKArtaYYN8mlTI95sk5qnja7+gJ8WLQ/Fg7D0tJ //GSc4Sdw4pyUHlTY2elIKPesisfvrwDJdta6gk7c0dy+N9ot35MsxdNCvpmHlcG ZGVWEJKKKl17J30uYkFN84ixaAXe0OXtaoMV71ZwRd7GV4f6TCGda1Ob9/1QZHg2 O9xK1ezk6qn5MbF2VW+F+r+D3GI5TvIVa6/Yu91JpLBkxC9GzeOxk3vC6KtTm/Jl 4fQPhAvjzq1WUkmHXv5WpxyKw19NcA9IVSjZL0tojfU77nxqflbjyJL086egg6rs laeeQcSJrdV80BDageM9Z9ndE/YrJLCWkwbd1vQm+GTMfyhrSUnG2BQNQbFq89bi rsKXjA3WJ4g65+pcIM44Wdwls4rd0kaJGUWQ2fU2C3TbTpi32WvxcSY9Lu6bfnln KoLqNVS6oJCWtn3w+IvLmecvx/X6CNJ4OtLNuqYiqMBoSwyveX+uzD8JsgQ9Vm/m pzZvEI1patztMQj7mD+gB3ce5xWE2UB7xFH/ZUPlXlB+MsMWW+JaMYMiYvQW7WGh vqS9yRJMoE9if5fLzUcbeVxKU6Icm7xqd6li1CUCAwEAAaOCAcEwggG9MB8GA1Ud IwQYMBaAFJBY/7CcdahRVHex7fKjQxY4nmzFMB0GA1UdDgQWBBRl+8rJDGzU56iy nMDot+e58xcvAjAnBgNVHREEIDAegg93d3cuamZhbGxlbi5jb22CC2pmYWxsZW4u Y29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwPgYDVR0fBDcwNTAzoDGgL4YtaHR0cDovL2NkcC5nZW90cnVzdC5jb20vR2Vv VHJ1c3RSU0FDQTIwMTguY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYI KwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQIC MHUGCCsGAQUFBwEBBGkwZzAmBggrBgEFBQcwAYYaaHR0cDovL3N0YXR1cy5nZW90 cnVzdC5jb20wPQYIKwYBBQUHMAKGMWh0dHA6Ly9jYWNlcnRzLmdlb3RydXN0LmNv bS9HZW9UcnVzdFJTQUNBMjAxOC5jcnQwCQYDVR0TBAIwADATBgorBgEEAdZ5AgQD AQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmIKDkegGykLj2t0wGtgCIXZU75kD YQOkU38/KfuZZYhR82i8KOChI8YJ1NLWqO5mW6x4RNCxrqQuER9zSS1KnTyr/p2A 3BnMRHzrY+6GVc5ol3qkXCcT29XyRR/MZMLpiv2jnV5NVJf8FHPKWMGVCglkUJZk RnL1dWGCHM59MUbgVBu6RqpIcU6/GfUqgdN5paba58W012wCcsmpXv8sUkoE0I+S jR5D/Y4tJamWFdY/l/oKuYWI+uSoiUnIgch9e2P+a1O8XkMMiOt8Yg9Ema9Hg4wR FQJnIWQFb4EQY9bD+Sh5UQrwbVOdtmwt/x4tamaTFExbSf1cI0s5HxwIVQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2gK3/jf+kzQ5TeYaJc/H 1k1l7baJNnPSFJw/Wl6w6Is1BlwXYReTxMq1yAc/3ebwaKS7b0MyLxDQcd1YkxyG H3qhn1thOuKArtaYYN8mlTI95sk5qnja7+gJ8WLQ/Fg7D0tJ//GSc4Sdw4pyUHlT Y2elIKPesisfvrwDJdta6gk7c0dy+N9ot35MsxdNCvpmHlcGZGVWEJKKKl17J30u YkFN84ixaAXe0OXtaoMV71ZwRd7GV4f6TCGda1Ob9/1QZHg2O9xK1ezk6qn5MbF2 VW+F+r+D3GI5TvIVa6/Yu91JpLBkxC9GzeOxk3vC6KtTm/Jl4fQPhAvjzq1WUkmH Xv5WpxyKw19NcA9IVSjZL0tojfU77nxqflbjyJL086egg6rslaeeQcSJrdV80BDa geM9Z9ndE/YrJLCWkwbd1vQm+GTMfyhrSUnG2BQNQbFq89birsKXjA3WJ4g65+pc IM44Wdwls4rd0kaJGUWQ2fU2C3TbTpi32WvxcSY9Lu6bfnlnKoLqNVS6oJCWtn3w +IvLmecvx/X6CNJ4OtLNuqYiqMBoSwyveX+uzD8JsgQ9Vm/mpzZvEI1patztMQj7 mD+gB3ce5xWE2UB7xFH/ZUPlXlB+MsMWW+JaMYMiYvQW7WGhvqS9yRJMoE9if5fL zUcbeVxKU6Icm7xqd6li1CUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3038619755278875423142569233950505766 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-26 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rhode Island' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Warwick' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'John F. Allen & Son, Incorporated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.jfallen.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 889405732693329090834860266553991726490413827728743650945176878947356323627478622030493234277323451473376522333388277814991740283557244427887271483752892983915390587330545995200526099265461963165276110265951145795025948540336098928767470602411886778650127527667451330964994298542495960341015408069971529070140712538917453192189976712448342755275388003307697085776651849945783814354348433393784257338587193368940435107170970463851384407873353422822917890945532338208728410243546913205313910185167674686036995490368493844340218360674910633014205232268278879590083090807543931211324723412519211282701721574832304759653587070539446476867326791332309217577855887172544156186981282957326377659016532954821128828246873733139605376984343178737118350047599336369157923869024348061556704317545912993135464713201764197234992787667868591003719310770649472275124980132346029302235940809952439557652600418611461999890354637931453084526152258846109806675717311236113969249386172408186101296397942876065298602063482963850700397695518901829502922364190472875223871595736452316008570755971205378894684942525938033111071038423958942213306846800601420115355648338009031679053001360424494584638398226115385704718872342075273567529244392139201175848408101 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9058ffb09c75a8515477b1edf2a34316389e6cc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 65fbcac90c6cd4e7a8b29cc0e8b7e7b9f3172f02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jfallen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jfallen.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0098828391e806ca42e3dadd301ad802217654ef99036103a4537f3f29fb99658851f368bc28e0a123c609d4d2d6a8ee665bac7844d0b1aea42e111f73492d4a9d3cabfe9d80dc19cc447ceb63ee8655ce68977aa45c2713dbd5f2451fcc64c2e98afda39d5e4d5497fc1473ca58c1950a09645096644672f57561821cce7d3146e0541bba46aa48714ebf19f52a81d379a5a6dae7c5b4d76c0272c9a95eff2c524a04d08f928d1e43fd8e2d25a99615d63f97fa0ab98588fae4a88949c881c87d7b63fe6b53bc5e430c88eb7c620f4499af47838c111502672164056f811063d6c3f92879510af06d539db66c2dff1e2d6a6693144c5b49fd5c234b391f1c0855