geantsrv500.ct1.garrservices.it
- Consortium GARR -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 06:8c:c3:ad:ba:5c:a6:09:dd:d7:2d:2e:d2:cd:7e:c4 was issued on by TERENA.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Consortium GARR
Organization:
Consortium GARR
Locality:
Rome
Country: IT
Country: IT
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 06:8c:c3:ad:ba:5c:a6:09:dd:d7:2d:2e:d2:cd:7e:c4Serial Number (int): 8706258368925415245897062017754037956
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 23:9c:09:96:29:8d:c9:7f:b1:73:a4:ba:cc:2e:c7:7f:65:01:27:4d
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): 91:b5:17:30:14:56:69:e5:41:e5:83:8a:9f:43:aa:0a:0b:61:00:4f
Fingerprint (sha256): 4c:c9:be:3f:08:55:1b:54:57:3c:6d:b1:a9:a4:db:04:27:d6:21:26:45:55:66:66:36:d9:6d:58:3c:1f:4d:a4
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate geantsrv500.ct1.garrservices.it
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for geantsrv500.ct1.garrservices.it
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA512 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
geantsrv500.ct1.garrservices.it
Other certificates including the domain name garrservices.it
(limited to 100 certificates)
aarc-tut-sp.pa1.garrservices.it
aarc-tut-1.pa1.garrservices.it
geantsrv44.ct1.garrservices.it
geantsrv25.ct1.garrservices.it
geantsrv800.ct1.garrservices.it
git.garr.it
comanage.idem.garrservices.it
cloud.garr.it
demo-idp.ct1.garrservices.it
ba1-r2-idrac02.ba1.garrservices.it
wiki.idem.garr.it
speedtest.ba1.garrservices.it
aarc-tut-5.pa1.garrservices.it
git.garr.it
comanage.idem.garrservices.it
cidp-api-server.pa1.garrservices.it
ip-90-147-189-62.pa1.garrservices.it
geantsrv100.ct1.garrservices.it
geantsrv13.ct1.garrservices.it
ip-90-147-167-221.ct1.garrservices.it
geantsrv14.ct1.garrservices.it
www.support.garr.it
aarc-tut-12.pa1.garrservices.it
vpn.ba1.garrservices.it
idgw1.pa1.garrservices.it
filesender-ng.cs.garrservices.it
ba1-r1-idrac05.ba1.garrservices.it
liferay-decide.global.garrservices.it
geantsrv8.ct1.garrservices.it
nagios.cloud.garr.it
cs-r1-idrac14.cs.garrservices.it
aarc-tut-10.pa1.garrservices.it
www.cloud.garrservices.it
portal-eiscat-aarc.pa1.garrservices.it
keystone.cloud.garr.it
dashboard.cloud.garrservices.it
wiki.idem.garr.it
aarc-tut-7.pa1.garrservices.it
aarc-tut-idp.pa1.garrservices.it
cloud.garr.it
e3d-mp-ds.pa1.garrservices.it
geantsrv39.ct1.garrservices.it
wiki.idem.garrservices.it
ba1-r1-idrac10.ba1.garrservices.it
geantsvr12.ct1.garrservices.it
gitlab.global.garrservices.it
ip-90-147-167-221.ct1.garrservices.it
geantsrv42.ct1.garrservices.it
geantsrv32.ct1.garrservices.it
ip-90-147-189-68.pa1.garrservices.it
piwik.global.garrservices.it
ip-90-147-167-134.ct1.garrservices.it
aarc-tut-6.pa1.garrservices.it
git.garr.it
filesender2.cs.garrservices.it
geantsrv45.ct1.garrservices.it
openstack.cs.garrservices.it
ba1-r3-idrac12.ba1.garrservices.it
geantsrv43.ct1.garrservices.it
ba1-r1-idrac02.ba1.garrservices.it
geantsrv14.ct1.garrservices.it
mon.ba1.garrservices.it
geantsrv500.ct1.garrservices.it
aarc-tut-17.pa1.garrservices.it
glance.cloud.garr.it
aarc-tut-4.pa1.garrservices.it
keystone-devel.cloud.garr.it
www.support.garr.it
ba1-r2-idrac12.ba1.garrservices.it
geantsvr15.ct1.garrservices.it
ba1-r3-idrac02.ba1.garrservices.it
idp-csd.pa1.garrservices.it
filesender-ng.cs.garrservices.it
filesender2.cs.garrservices.it
daas-playground.cloud.garr.it
geantsrv15.ct1.garrservices.it
dashboard-devel.cloud.garr.it
ip-90-147-167-221.ct1.garrservices.it
aarc-tut-13.pa1.garrservices.it
speedtest.ct1.garrservices.it
ba1-r3-idrac16.ba1.garrservices.it
ba1-r3-idrac01.ba1.garrservices.it
signup-dev.cloud.garr.it
aarc-tut-9.pa1.garrservices.it
geantsrv36.ct1.garrservices.it
keystone-devel.cloud.garr.it
liferay-decide.global.garrservices.it
dashboard.cloud.garr.it
keystone.cloud.garrservices.it
ba1-r2-idrac04.ba1.garrservices.it
ip-90-147-166-216.ct1.garrservices.it
ip-90-147-167-221.ct1.garrservices.it
ip-90-147-189-61.pa1.garrservices.it
git.garr.it
aarc-tut-13.pa1.garrservices.it
aarc-tut-8.pa1.garrservices.it
www.support.garr.it
geantsrv30.ct1.garrservices.it
geantsrv9.ct1.garrservices.it
ip-90-147-188-207.pa1.garrservices.it
aarc-tut-1.pa1.garrservices.it
geantsrv44.ct1.garrservices.it
geantsrv25.ct1.garrservices.it
geantsrv800.ct1.garrservices.it
git.garr.it
comanage.idem.garrservices.it
cloud.garr.it
demo-idp.ct1.garrservices.it
ba1-r2-idrac02.ba1.garrservices.it
wiki.idem.garr.it
speedtest.ba1.garrservices.it
aarc-tut-5.pa1.garrservices.it
git.garr.it
comanage.idem.garrservices.it
cidp-api-server.pa1.garrservices.it
ip-90-147-189-62.pa1.garrservices.it
geantsrv100.ct1.garrservices.it
geantsrv13.ct1.garrservices.it
ip-90-147-167-221.ct1.garrservices.it
geantsrv14.ct1.garrservices.it
www.support.garr.it
aarc-tut-12.pa1.garrservices.it
vpn.ba1.garrservices.it
idgw1.pa1.garrservices.it
filesender-ng.cs.garrservices.it
ba1-r1-idrac05.ba1.garrservices.it
liferay-decide.global.garrservices.it
geantsrv8.ct1.garrservices.it
nagios.cloud.garr.it
cs-r1-idrac14.cs.garrservices.it
aarc-tut-10.pa1.garrservices.it
www.cloud.garrservices.it
portal-eiscat-aarc.pa1.garrservices.it
keystone.cloud.garr.it
dashboard.cloud.garrservices.it
wiki.idem.garr.it
aarc-tut-7.pa1.garrservices.it
aarc-tut-idp.pa1.garrservices.it
cloud.garr.it
e3d-mp-ds.pa1.garrservices.it
geantsrv39.ct1.garrservices.it
wiki.idem.garrservices.it
ba1-r1-idrac10.ba1.garrservices.it
geantsvr12.ct1.garrservices.it
gitlab.global.garrservices.it
ip-90-147-167-221.ct1.garrservices.it
geantsrv42.ct1.garrservices.it
geantsrv32.ct1.garrservices.it
ip-90-147-189-68.pa1.garrservices.it
piwik.global.garrservices.it
ip-90-147-167-134.ct1.garrservices.it
aarc-tut-6.pa1.garrservices.it
git.garr.it
filesender2.cs.garrservices.it
geantsrv45.ct1.garrservices.it
openstack.cs.garrservices.it
ba1-r3-idrac12.ba1.garrservices.it
geantsrv43.ct1.garrservices.it
ba1-r1-idrac02.ba1.garrservices.it
geantsrv14.ct1.garrservices.it
mon.ba1.garrservices.it
geantsrv500.ct1.garrservices.it
aarc-tut-17.pa1.garrservices.it
glance.cloud.garr.it
aarc-tut-4.pa1.garrservices.it
keystone-devel.cloud.garr.it
www.support.garr.it
ba1-r2-idrac12.ba1.garrservices.it
geantsvr15.ct1.garrservices.it
ba1-r3-idrac02.ba1.garrservices.it
idp-csd.pa1.garrservices.it
filesender-ng.cs.garrservices.it
filesender2.cs.garrservices.it
daas-playground.cloud.garr.it
geantsrv15.ct1.garrservices.it
dashboard-devel.cloud.garr.it
ip-90-147-167-221.ct1.garrservices.it
aarc-tut-13.pa1.garrservices.it
speedtest.ct1.garrservices.it
ba1-r3-idrac16.ba1.garrservices.it
ba1-r3-idrac01.ba1.garrservices.it
signup-dev.cloud.garr.it
aarc-tut-9.pa1.garrservices.it
geantsrv36.ct1.garrservices.it
keystone-devel.cloud.garr.it
liferay-decide.global.garrservices.it
dashboard.cloud.garr.it
keystone.cloud.garrservices.it
ba1-r2-idrac04.ba1.garrservices.it
ip-90-147-166-216.ct1.garrservices.it
ip-90-147-167-221.ct1.garrservices.it
ip-90-147-189-61.pa1.garrservices.it
git.garr.it
aarc-tut-13.pa1.garrservices.it
aarc-tut-8.pa1.garrservices.it
www.support.garr.it
geantsrv30.ct1.garrservices.it
geantsrv9.ct1.garrservices.it
ip-90-147-188-207.pa1.garrservices.it
Certificate
The complete raw certificate details for geantsrv500.ct1.garrservices.it in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGPTCCBSWgAwIBAgIQBozDrbpcpgnd1y0u0s1+xDANBgkqhkiG9w0BAQ0FADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xODExMDcwMDAwMDBaFw0yMDExMTMxMjAwMDBaMGAxCzAJBgNVBAYT AklUMQ0wCwYDVQQHEwRSb21lMRgwFgYDVQQKEw9Db25zb3J0aXVtIEdBUlIxKDAm BgNVBAMTH2dlYW50c3J2NTAwLmN0MS5nYXJyc2VydmljZXMuaXQwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQC7cbRVB9T79PYDT5VbcWrrdBOAnHe1lYhh fR2Nq9PxWnYgKEHb9g40bYiA1ZcgSfxoX/ppkKFwCo5g/cNYskVLs0Z5vxUKYTbG 8opehgchblzPPNmwt1Hkx5zBPY3K0XR58uN6abFJ0tLLBFN+ewGMXCLB1neJ8lp4 K/8fkEAze3hQUrt3bck0LqVKD7k7eS1ahkmZtCeS+sJvLZBlf70ueS7qSTHVOmzi Zwtz8kXkzu/S9Afr4VyZHXmN4vLTgafljXimuDUSKfrSnj12tsAOI/kalEtx1m++ yusX6BC+3W0ZdNlThNUP88ryuSzf6DdyI3JsT17H2AopwZlgyjIf9lZJ6tY17Llf jYjPNbN3L7N+4Y1zYYbQUpjMZg58b+Dkv3cC3U7aefxoG0C6Kise7x7/2GkhGDgw wiurKwkC+3rG2chEdxpgL2WnknS6fAqf2P+meHvZXehEWFVaZDAZ04w/a1xpD4H/ VNLvd7QdgqrOxUFAzulwqN4qd/lo0P1j6moYH5bs1CDex2WGem+sxZDLuvqtqv5g Y534BcCCOFzLQNgkMgrTX4S+V8/andvbVHnp8LLKDFqJKYPS0e8xKEFNUsxIUUOY musDx0T3KXSU+0UyKw28/+gb2d6lYADXuF1SKSl43RoI3s4TDxFYdQQbcQ4xfZ7S A3aZy22alwIDAQABo4IB7TCCAekwHwYDVR0jBBgwFoAUZ/2IIBQnmMcJ0iUZu+lR EWN1UGIwHQYDVR0OBBYEFCOcCZYpjcl/sXOkuswux39lASdNMCoGA1UdEQQjMCGC H2dlYW50c3J2NTAwLmN0MS5nYXJyc2VydmljZXMuaXQwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBrBgNVHR8EZDBiMC+gLaAr hilodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vVEVSRU5BU1NMQ0EzLmNybDAvoC2g K4YpaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL1RFUkVOQVNTTENBMy5jcmwwTAYD VR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cu ZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwbgYIKwYBBQUHAQEEYjBgMCQGCCsG AQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wOAYIKwYBBQUHMAKGLGh0 dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9URVJFTkFTU0xDQTMuY3J0MAwGA1Ud EwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQENBQADggEB AACexCttK1q9V9rNux+YNkDpwd2lGxUU3lBKCFKc2RgmSIx8KDFHRSCMpN/Qmn7I Y5kDgxkdLArc6lnYvyDtAJ6Q8BAutfO6JSeIzHWaIY/DoLD446a37PYJbnELAPyo 2k/28lyQytCwHapW3rBvg8F941EZZT1mrw8m0lCT5WJyLXXGS/glzi016aC/0vsQ qbkIE4qC60I2gy+F1BNutdPWglvgeE+ugfU+2LuQrYLaDxje68V2Oqh28IzwnstU XmA+0i2yGX7XKgNAjHiGlvNouzo71YCWdoxWl2vrlEiJELsfzwzYoC/ZfmEiERL9 XbyypziqkYQdervKbeF0LgE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAu3G0VQfU+/T2A0+VW3Fq 63QTgJx3tZWIYX0djavT8Vp2IChB2/YONG2IgNWXIEn8aF/6aZChcAqOYP3DWLJF S7NGeb8VCmE2xvKKXoYHIW5czzzZsLdR5MecwT2NytF0efLjemmxSdLSywRTfnsB jFwiwdZ3ifJaeCv/H5BAM3t4UFK7d23JNC6lSg+5O3ktWoZJmbQnkvrCby2QZX+9 Lnku6kkx1Tps4mcLc/JF5M7v0vQH6+FcmR15jeLy04Gn5Y14prg1Ein60p49drbA DiP5GpRLcdZvvsrrF+gQvt1tGXTZU4TVD/PK8rks3+g3ciNybE9ex9gKKcGZYMoy H/ZWSerWNey5X42IzzWzdy+zfuGNc2GG0FKYzGYOfG/g5L93At1O2nn8aBtAuior Hu8e/9hpIRg4MMIrqysJAvt6xtnIRHcaYC9lp5J0unwKn9j/pnh72V3oRFhVWmQw GdOMP2tcaQ+B/1TS73e0HYKqzsVBQM7pcKjeKnf5aND9Y+pqGB+W7NQg3sdlhnpv rMWQy7r6rar+YGOd+AXAgjhcy0DYJDIK01+EvlfP2p3b21R56fCyygxaiSmD0tHv MShBTVLMSFFDmJrrA8dE9yl0lPtFMisNvP/oG9nepWAA17hdUikpeN0aCN7OEw8R WHUEG3EOMX2e0gN2mcttmpcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8706258368925415245897062017754037956 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rome' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Consortium GARR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'geantsrv500.ct1.garrservices.it' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 764705446862781213004913924339517572436580628502242611127985320623684376486117235897793390300994558424393472361897416289757411792010449522206453932736047867927623982307081629956286885195708329438272749566413250274170779413145470446570352906378755536488724617567918273945293933364536873359323115339109485995950448646687292623425070595384633389443988226324456761501957611503806761406583701280733456548701194435161471675177154108069690505100552644384210235911325370685270184520088332632011278636700560533509247028100464246632052025154559282947758407644947927702705372874545373386926399215746753533765480918521131632165834606802675209775115924033021061465893470860262938477452415136536973070936015243240735840880710298835107115439533501885262502168389897253922486065635251206821682368145738148315323857397788437506007316487088219004003276689948422170922820093007208389954991977281732546540032489342994553019519601429694907114563353758762928497255336727732129360556579228574306426538677885040759393723186679502965348531063178088448230716947148886385608670338774829610442063337147734893953294249135770113485982212880403101363838885629656670945464229696769881064143090605391478216381329654874268315617983667010246867205751028226296428468887 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 239c0996298dc97fb173a4bacc2ec77f6501274d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (35 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geantsrv500.ct1.garrservices.it' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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