*.shelter.org.uk
Issued by RapidSSL CA
About this certificate
This digital certificate with serial number 12:11:69 was issued on by GeoTrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
SERIALNUMBER=pUeQMTsK3ykrS9FQWeJvmK/Ro3iHGOVR,CN=*.shelter.org.uk,OU=GT61874782+OU=See www.rapidssl.com/resources/cps (c)13+OU=Domain Control Validated - RapidSSL(R)
GeoTrust, Inc.
Organization:
GeoTrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 12:11:69Serial Number (int): 1184105
Serial Number lenght: 21 bits, 3 octets
SubjectKeyId: ec:bc:7f:72:2d:10:b4:e8:6e:ad:9a:4b:c3:51:56:0a:61:b9:b6:28
AuthorityKeyId: 6b:69:3d:6a:18:42:4a:dd:8f:02:65:39:fd:35:24:86:78:91:16:30
Fingerprint (sha1): 42:87:43:0b:eb:5a:3d:45:b5:13:a9:b3:b6:ee:34:59:c4:34:0c:ba
Fingerprint (sha256): 49:ec:43:be:44:c7:12:21:91:26:c3:1e:de:cd:2d:e1:a4:6a:a7:00:48:f1:89:45:16:8a:51:2b:75:6d:63:14
Issuing Certificate URL: http://rapidssl-aia.geotrust.com/rapidssl.crt
Revocation information
OCSP Server: http://rapidssl-ocsp.geotrust.comCRL Distribution Point: http://rapidssl-crl.geotrust.com/crls/rapidssl.crl
Check the revocation status for certificate *.shelter.org.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.shelter.org.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.shelter.org.uk
shelter.org.uk
shelter.org.uk
Other certificates including the domain name shelter.org.uk
(limited to 100 certificates)
*.shelter.org.uk
learning.scotland.shelter.org.uk
england.shelter.org.uk
helptool.scotland.shelter.org.uk
api.shelter.org.uk
services.shelter.org.uk
learning.shelter.org.uk
learning.scotland.shelter.org.uk
campaigns.shelter.org.uk
access02.shelter.org.uk
helptool.scotland.shelter.org.uk
blog.scotland.shelter.org.uk
*.shelter.org.uk
services.shelter.org.uk
blog.scotland.shelter.org.uk
learning.scotland.shelter.org.uk
abilitynet.scotland.shelter.org.uk
blog.shelter.org.uk
homerun.shelter.org.uk
excas1.shelter.org.uk
blog.scotland.shelter.org.uk
shelter.org.uk
england.shelter.org.uk
blog.shelter.org.uk
blog.scotland.shelter.org.uk
learning.scotland.shelter.org.uk
helptool.scotland.shelter.org.uk
store.scotland.shelter.org.uk
learning.shelter.org.uk
learning.shelter.org.uk
helptool.scotland.shelter.org.uk
api.shelter.org.uk
Lyweb02.shelter.org.uk
learning.scotland.shelter.org.uk
donate.shelter.org.uk
api.shelter.org.uk
blog.scotland.shelter.org.uk
shop.shelter.org.uk
donate.shelter.org.uk
learning.scotland.shelter.org.uk
blog.shelter.org.uk
learning.scotland.shelter.org.uk
shelter.org.uk
shelter.org.uk
blog.scotland.shelter.org.uk
learning.scotland.shelter.org.uk
helptool.scotland.shelter.org.uk
learning.scotland.shelter.org.uk
learning.shelter.org.uk
learning.shelter.org.uk
donate.shelter.org.uk
secure.shelter.org.uk
LYWEB01.shelter.org.uk
api.shelter.org.uk
*.shelter.org.uk
learning.scotland.shelter.org.uk
helptool.scotland.shelter.org.uk
shelter.org.uk
services.shelter.org.uk
helptool.scotland.shelter.org.uk
access02.shelter.org.uk
learning.scotland.shelter.org.uk
england.shelter.org.uk
blog.shelter.org.uk
api.shelter.org.uk
*.shelter.org.uk
access01.shelter.org.uk
donate.shelter.org.uk
cardshop.shelter.org.uk
england.shelter.org.uk
access02.shelter.org.uk
learning.scotland.shelter.org.uk
learning.scotland.shelter.org.uk
*.shelter.org.uk
blog.scotland.shelter.org.uk
blog.scotland.shelter.org.uk
england.shelter.org.uk
england.shelter.org.uk
api.shelter.org.uk
donate.shelter.org.uk
cardshop.shelter.org.uk
england.shelter.org.uk
blog.shelter.org.uk
api.shelter.org.uk
scotland.shelter.org.uk
recipeforchange.shelter.org.uk
cardshop.shelter.org.uk
*.shelter.org.uk
donate.shelter.org.uk
*.shelter.org.uk
learning.shelter.org.uk
shelter.org.uk
learning.shelter.org.uk
donate.shelter.org.uk
learning.scotland.shelter.org.uk
learning.shelter.org.uk
m.england.shelter.org.uk
learning.scotland.shelter.org.uk
excas1.shelter.org.uk
donate.shelter.org.uk
learning.scotland.shelter.org.uk
england.shelter.org.uk
helptool.scotland.shelter.org.uk
api.shelter.org.uk
services.shelter.org.uk
learning.shelter.org.uk
learning.scotland.shelter.org.uk
campaigns.shelter.org.uk
access02.shelter.org.uk
helptool.scotland.shelter.org.uk
blog.scotland.shelter.org.uk
*.shelter.org.uk
services.shelter.org.uk
blog.scotland.shelter.org.uk
learning.scotland.shelter.org.uk
abilitynet.scotland.shelter.org.uk
blog.shelter.org.uk
homerun.shelter.org.uk
excas1.shelter.org.uk
blog.scotland.shelter.org.uk
shelter.org.uk
england.shelter.org.uk
blog.shelter.org.uk
blog.scotland.shelter.org.uk
learning.scotland.shelter.org.uk
helptool.scotland.shelter.org.uk
store.scotland.shelter.org.uk
learning.shelter.org.uk
learning.shelter.org.uk
helptool.scotland.shelter.org.uk
api.shelter.org.uk
Lyweb02.shelter.org.uk
learning.scotland.shelter.org.uk
donate.shelter.org.uk
api.shelter.org.uk
blog.scotland.shelter.org.uk
shop.shelter.org.uk
donate.shelter.org.uk
learning.scotland.shelter.org.uk
blog.shelter.org.uk
learning.scotland.shelter.org.uk
shelter.org.uk
shelter.org.uk
blog.scotland.shelter.org.uk
learning.scotland.shelter.org.uk
helptool.scotland.shelter.org.uk
learning.scotland.shelter.org.uk
learning.shelter.org.uk
learning.shelter.org.uk
donate.shelter.org.uk
secure.shelter.org.uk
LYWEB01.shelter.org.uk
api.shelter.org.uk
*.shelter.org.uk
learning.scotland.shelter.org.uk
helptool.scotland.shelter.org.uk
shelter.org.uk
services.shelter.org.uk
helptool.scotland.shelter.org.uk
access02.shelter.org.uk
learning.scotland.shelter.org.uk
england.shelter.org.uk
blog.shelter.org.uk
api.shelter.org.uk
*.shelter.org.uk
access01.shelter.org.uk
donate.shelter.org.uk
cardshop.shelter.org.uk
england.shelter.org.uk
access02.shelter.org.uk
learning.scotland.shelter.org.uk
learning.scotland.shelter.org.uk
*.shelter.org.uk
blog.scotland.shelter.org.uk
blog.scotland.shelter.org.uk
england.shelter.org.uk
england.shelter.org.uk
api.shelter.org.uk
donate.shelter.org.uk
cardshop.shelter.org.uk
england.shelter.org.uk
blog.shelter.org.uk
api.shelter.org.uk
scotland.shelter.org.uk
recipeforchange.shelter.org.uk
cardshop.shelter.org.uk
*.shelter.org.uk
donate.shelter.org.uk
*.shelter.org.uk
learning.shelter.org.uk
shelter.org.uk
learning.shelter.org.uk
donate.shelter.org.uk
learning.scotland.shelter.org.uk
learning.shelter.org.uk
m.england.shelter.org.uk
learning.scotland.shelter.org.uk
excas1.shelter.org.uk
donate.shelter.org.uk
Certificate
The complete raw certificate details for *.shelter.org.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgIDEhFpMA0GCSqGSIb3DQEBBQUAMDwxCzAJBgNVBAYTAlVT MRcwFQYDVQQKEw5HZW9UcnVzdCwgSW5jLjEUMBIGA1UEAxMLUmFwaWRTU0wgQ0Ew HhcNMTQwNDEzMDQzMzQxWhcNMTYwNzExMTQyNzU4WjCBvzEpMCcGA1UEBRMgcFVl UU1Uc0szeWtyUzlGUVdlSnZtSy9SbzNpSEdPVlIxEzARBgNVBAsTCkdUNjE4NzQ3 ODIxMTAvBgNVBAsTKFNlZSB3d3cucmFwaWRzc2wuY29tL3Jlc291cmNlcy9jcHMg KGMpMTMxLzAtBgNVBAsTJkRvbWFpbiBDb250cm9sIFZhbGlkYXRlZCAtIFJhcGlk U1NMKFIpMRkwFwYDVQQDDBAqLnNoZWx0ZXIub3JnLnVrMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAvgNoC9J0XhLi49Fcg6qgEIlTp+PhqSkJTuo56shV FBGg5AE7BqM1dP8t+LbQ6Dh1tv9cMvU7n/s1Fs/MyW+7SaAlfpaoWG/iaTy5kykb TO24Y3YGI4pHT7OtKSPQ9OulmhHRT/MZ4wUfWFxyreFQb6qcWdT2jdVHN9/PnF82 x5X7bHcESySIERv1lll5/ixAo+4YKavKjb6TiVvUOLdX7SSZIwUa3vqxK1MRGz0a fHta00r5uNuVdQRElKxXqMKDeI3LOQ6bmldoNmK0dq8gKqsqtAlfSgJ7a5ILBsPO y1UePOG6vITltxTcz/7ALRLBQavGrj2kYzKOkwfogQl2FwIDAQABo4IBuzCCAbcw HwYDVR0jBBgwFoAUa2k9ahhCSt2PAmU5/TUkhniRFjAwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjArBgNVHREEJDAighAqLnNo ZWx0ZXIub3JnLnVrgg5zaGVsdGVyLm9yZy51azBDBgNVHR8EPDA6MDigNqA0hjJo dHRwOi8vcmFwaWRzc2wtY3JsLmdlb3RydXN0LmNvbS9jcmxzL3JhcGlkc3NsLmNy bDAdBgNVHQ4EFgQU7Lx/ci0QtOhurZpLw1FWCmG5tigwDAYDVR0TAQH/BAIwADB4 BggrBgEFBQcBAQRsMGowLQYIKwYBBQUHMAGGIWh0dHA6Ly9yYXBpZHNzbC1vY3Nw Lmdlb3RydXN0LmNvbTA5BggrBgEFBQcwAoYtaHR0cDovL3JhcGlkc3NsLWFpYS5n ZW90cnVzdC5jb20vcmFwaWRzc2wuY3J0MEwGA1UdIARFMEMwQQYKYIZIAYb4RQEH NjAzMDEGCCsGAQUFBwIBFiVodHRwOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJj ZXMvY3BzMA0GCSqGSIb3DQEBBQUAA4IBAQB2g6lGHArd1277UZ8rytHsUuglUxg7 qTUKWmgMQV/jLPm8SUWO3njooK4WwrSjuTDoTQZDRqgf3wBANwLShaDnCtjBxC8a IcJ5yBJyFAKXh5kai7khV/YQfCt3grs9GQDvPQet8gy9ebotTaWef+YxXXrH3fxq /pvVyWFnBamEjEQGVi0mlNGoQNk8SRIwW0RJel6RE+s7IQGUh3DsWJUhmDnjsvpw 4lOSATwQGPzTbSb7HVdlZXlwhhUWfQop3BjRB//NxsMnV+6qJ1y8oiFrSgq0cLnm f1B6yN3F3Tqt247wwsbBWPTPPk0Oymrcsrdkx2/h5xx/12LBZtIcxQIj -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgNoC9J0XhLi49Fcg6qg EIlTp+PhqSkJTuo56shVFBGg5AE7BqM1dP8t+LbQ6Dh1tv9cMvU7n/s1Fs/MyW+7 SaAlfpaoWG/iaTy5kykbTO24Y3YGI4pHT7OtKSPQ9OulmhHRT/MZ4wUfWFxyreFQ b6qcWdT2jdVHN9/PnF82x5X7bHcESySIERv1lll5/ixAo+4YKavKjb6TiVvUOLdX 7SSZIwUa3vqxK1MRGz0afHta00r5uNuVdQRElKxXqMKDeI3LOQ6bmldoNmK0dq8g KqsqtAlfSgJ7a5ILBsPOy1UePOG6vITltxTcz/7ALRLBQavGrj2kYzKOkwfogQl2 FwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1184105 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-04-13 04:33:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-07-11 14:27:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pUeQMTsK3ykrS9FQWeJvmK/Ro3iHGOVR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT61874782' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)13' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.shelter.org.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23986957716982829727405395454155150922767549399183739222588078636232192845895999858826392034063397599911010905179838060884974141110184578432878668621398744938112637828401776393250138155445927814612990580698098484736890864305401323833668406280548047894149734169478574488603735297023485296234026433802459388264980191455894867375747310277273276905590250980639084960226936377687869743006378424737309909872229137054582894142173542228576727064618953822992328092548695963433140012223594981569861959924112040899915677544924399681694929665672692778073054237385887972010808837022701958016414673026028682702742817548382279136791 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b693d6a18424add8f026539fd35248678911630 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.shelter.org.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shelter.org.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-crl.geotrust.com/crls/rapidssl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ecbc7f722d10b4e86ead9a4bc351560a61b9b628 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-ocsp.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-aia.geotrust.com/rapidssl.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007683a9461c0addd76efb519f2bcad1ec52e82553183ba9350a5a680c415fe32cf9bc49458ede78e8a0ae16c2b4a3b930e84d064346a81fdf00403702d285a0e70ad8c1c42f1a21c279c8127214029787991a8bb92157f6107c2b7782bb3d1900ef3d07adf20cbd79ba2d4da59e7fe6315d7ac7ddfc6afe9bd5c9616705a9848c4406562d2694d1a840d93c4912305b44497a5e9113eb3b2101948770ec5895219839e3b2fa70e25392013c1018fcd36d26fb1d57656579708615167d0a29dc18d107ffcdc6c32757eeaa275cbca2216b4a0ab470b9e67f507ac8ddc5dd3aaddb8ef0c2c6c158f4cf3e4d0eca6adcb2b764c76fe1e71c7fd762c166d21cc50223