mail.kingdom.net
- Kingdom Holding Company -
Issued by GeoTrust RSA CA 2018
About this certificate
This digital certificate with serial number 0f:29:a8:0e:83:93:52:fb:38:d5:e3:66:78:fb:e6:36 was issued on by DigiCert Inc.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Kingdom Holding Company
Organization:
Kingdom Holding Company
Organization unit: IT
Organization unit: IT
Locality:
Riyadh
Country: SA
Country: SA
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:29:a8:0e:83:93:52:fb:38:d5:e3:66:78:fb:e6:36Serial Number (int): 20154712702701994957018147470586930742
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c2:ed:23:f3:63:7f:18:f4:59:3d:59:b1:56:e6:dd:dc:93:9b:27:41
AuthorityKeyId: 90:58:ff:b0:9c:75:a8:51:54:77:b1:ed:f2:a3:43:16:38:9e:6c:c5
Fingerprint (sha1): 17:b3:68:15:a7:19:b2:4d:08:d7:2a:2c:06:bf:b4:cf:04:ef:d1:d7
Fingerprint (sha256): 4c:01:16:62:62:d6:4d:78:90:cb:8a:f7:ae:9b:a3:9e:17:f2:d0:a6:38:1f:b6:98:67:e6:03:28:1a:68:77:45
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustRSACA2018.crl
Check the revocation status for certificate mail.kingdom.net
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mail.kingdom.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mail.kingdom.net
MAIL.ALWALEEDPHILANTHROPIES.ORG
autodiscover.alwaleedphilanthropies.org
autodiscover.kingdom.com.sa
autodiscover.kingdom.net
khc-mail01.kingdom.net
khc-mail02.kingdom.net
mail.kingdom.com.sa
outlook.kingdom.net
MAIL.ALWALEEDPHILANTHROPIES.ORG
autodiscover.alwaleedphilanthropies.org
autodiscover.kingdom.com.sa
autodiscover.kingdom.net
khc-mail01.kingdom.net
khc-mail02.kingdom.net
mail.kingdom.com.sa
outlook.kingdom.net
Other certificates including the domain name kingdom.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for mail.kingdom.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHVDCCBjygAwIBAgIQDymoDoOTUvs41eNmePvmNjANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRHZW9UcnVzdCBSU0EgQ0EgMjAxODAe Fw0xODA3MTIwMDAwMDBaFw0yMDA3MTYxMjAwMDBaMGgxCzAJBgNVBAYTAlNBMQ8w DQYDVQQHEwZSaXlhZGgxIDAeBgNVBAoTF0tpbmdkb20gSG9sZGluZyBDb21wYW55 MQswCQYDVQQLEwJJVDEZMBcGA1UEAxMQbWFpbC5raW5nZG9tLm5ldDCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAKrcQ1dgyH0We4wh+9cSnJPyXzufQ9Rt Vp4dFfWLRDqd3TAWkupNd5IcYTEGsTYSuRzomYy+mpePA833FPmhjvxeKHfSyojq U62y8Ir8uyQ/qbiNZxJQGvud9oXpgeq9Ui+z9brhgwwpXubVePIKO8oxJjnWdJkh aL9ZfPcJmRIlVIy9EtPZDgOalyDmHEPAVS4rT23Eh18TAJ7ljZwxEa4aRTcJ1x9o PhV161xn5PUHDlXW8LysVHlPBHoceAiQUtOhRTSInlKS3fmy2dEXoAX9MRfO95Gc s3/OLwWXelAkgEJN2jgt+Ow7XFb/1Q182xlhKAQiajTBgyrseTAgDEkCAwEAAaOC BAIwggP+MB8GA1UdIwQYMBaAFJBY/7CcdahRVHex7fKjQxY4nmzFMB0GA1UdDgQW BBTC7SPzY38Y9Fk9WbFW5t3ck5snQTCB+AYDVR0RBIHwMIHtghBtYWlsLmtpbmdk b20ubmV0gh9NQUlMLkFMV0FMRUVEUEhJTEFOVEhST1BJRVMuT1JHgidhdXRvZGlz Y292ZXIuYWx3YWxlZWRwaGlsYW50aHJvcGllcy5vcmeCG2F1dG9kaXNjb3Zlci5r aW5nZG9tLmNvbS5zYYIYYXV0b2Rpc2NvdmVyLmtpbmdkb20ubmV0ghZraGMtbWFp bDAxLmtpbmdkb20ubmV0ghZraGMtbWFpbDAyLmtpbmdkb20ubmV0ghNtYWlsLmtp bmdkb20uY29tLnNhghNvdXRsb29rLmtpbmdkb20ubmV0MA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPgYDVR0fBDcwNTAzoDGg L4YtaHR0cDovL2NkcC5nZW90cnVzdC5jb20vR2VvVHJ1c3RSU0FDQTIwMTguY3Js MEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8v d3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMHUGCCsGAQUFBwEBBGkwZzAm BggrBgEFBQcwAYYaaHR0cDovL3N0YXR1cy5nZW90cnVzdC5jb20wPQYIKwYBBQUH MAKGMWh0dHA6Ly9jYWNlcnRzLmdlb3RydXN0LmNvbS9HZW9UcnVzdFJTQUNBMjAx OC5jcnQwCQYDVR0TBAIwADCCAYAGCisGAQQB1nkCBAIEggFwBIIBbAFqAHcApLkJ kLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFkjgHuUQAABAMASDBGAiEA rij+CBSeFJxdPW/AJuLD9WVB4bBxBowiVrsQ7fcKVBgCIQDjk0y3Wm44odfKVzpJ ZVJFCIF8Wi8UiRT9oItNMvwnwwB3AId1v+dZfPiMQ5lfvfNu/1aNR1Y2/0q1YMG0 6v9eoIMPAAABZI4B7okAAAQDAEgwRgIhAPc7Nkgq1cidp1v1J1F7ymoqYXbZ9+mQ i9vzEzrDcfsHAiEAiwJJqdyprmXti0XiJh5M+CNpffNUHLenlCpBlRONttUAdgC7 2d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQlmQ2jh7RhQAAAWSOAe8iAAAEAwBHMEUC IQCUGZL5ExsOEF3Q3X7+2DYwKxKdBBQIrio9g2VgDJsm+AIgOBNKI3tKR79l2JZ6 DCn9Y+duyBIas1rURG2F0fTzF6IwDQYJKoZIhvcNAQELBQADggEBAAKfK5aDLXcD 8MrCjgbUoYoxvl2DqKmRZgrSZSHk+laANoQyuZhaPXPg8eZMXaNGZPUGESXp8EET xkZfj6oQmc/Tv8OsdsZN1qsh/Bzhc9gbnKo6+PgSLI+kPHGsVZhXuOnBy/5hE1lg LOK4bQPyvScL27U3eLpC9sXfGLeisUBl3IPwjZnEw6g1OTguChC5oqRP4QCOkbM1 kzZ/VDww9lX2ekLFppvV9ZspJuZFD9jZE6woyRtr2LSjB0tWIAo0KuhMZlRiqDwq dMei8J+CM9p6AYKR3wG2qagmCC5cTHvabsj/DD9GWyJQu/+oG6bLEoy7ZQx3VcyK h371MlqcRGI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtxDV2DIfRZ7jCH71xKc k/JfO59D1G1Wnh0V9YtEOp3dMBaS6k13khxhMQaxNhK5HOiZjL6al48DzfcU+aGO /F4od9LKiOpTrbLwivy7JD+puI1nElAa+532hemB6r1SL7P1uuGDDCle5tV48go7 yjEmOdZ0mSFov1l89wmZEiVUjL0S09kOA5qXIOYcQ8BVLitPbcSHXxMAnuWNnDER rhpFNwnXH2g+FXXrXGfk9QcOVdbwvKxUeU8Eehx4CJBS06FFNIieUpLd+bLZ0Reg Bf0xF873kZyzf84vBZd6UCSAQk3aOC347DtcVv/VDXzbGWEoBCJqNMGDKux5MCAM SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20154712702701994957018147470586930742 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-16 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Riyadh' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Kingdom Holding Company' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mail.kingdom.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21569127603352403031532324320661604251612946700699526304344314660591667750590902325908327663607238576083834279816109835304167658672010994226964611101550427067557642824555341870266368232390477233928485930596184697519079925202990830429286018168253074105693985221742094986196365422132088023803444920263517414470773459073040580172117823645102639224130265213304014018571446498950986160893255306082659350525948969288576957445303675329963562830299963961728826508812612096355877839644632797225998097774872800360373815116319936706114054109709617328243184690829383804624203738797201514119626853357050742700190565890953758903369 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9058ffb09c75a8515477b1edf2a34316389e6cc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c2ed23f3637f18f4593d59b156e6dddc939b2741 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.kingdom.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'MAIL.ALWALEEDPHILANTHROPIES.ORG' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.alwaleedphilanthropies.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.kingdom.com.sa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.kingdom.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'khc-mail01.kingdom.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'khc-mail02.kingdom.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.kingdom.com.sa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'outlook.kingdom.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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