bavli.genizah.org
- Friedberg Genizah Project, Inc. -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 0b:89:34:6c:f6:3e:eb:b9:7f:bb:b7:2b:00:f1:e1:55 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Friedberg Genizah Project, Inc.
Organization:
Friedberg Genizah Project, Inc.
State / Province:
New Jersey
Locality: Lakewood
Country: US
Locality: Lakewood
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:89:34:6c:f6:3e:eb:b9:7f:bb:b7:2b:00:f1:e1:55Serial Number (int): 15333915941403666409303334596809711957
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: a5:e3:f1:4b:23:dc:58:2e:f6:c7:fd:5b:14:9c:da:8f:1a:22:bb:d0
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): cd:9f:8a:3f:a3:47:9a:db:ad:bf:07:1a:6b:75:75:98:33:fe:75:73
Fingerprint (sha256): 4d:b7:eb:20:2f:34:2f:e4:07:00:72:88:8b:fd:a2:98:b1:db:a4:88:d7:97:6b:96:f9:1b:d2:2b:1b:e4:86:52
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate bavli.genizah.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bavli.genizah.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bavli.genizah.org
Other certificates including the domain name genizah.org
(limited to 100 certificates)
mail.genizah.org
manuscripts.genizah.org
vf.genizah.org
bavli.genizah.org
test.genizah.org
manuscriptstest.genizah.org
ssotest.genizah.org
bavlitest.genizah.org
genizah.org
test.genizah.org
ja.genizah.org
manuscriptstest.genizah.org
fgp.genizah.org
nachumsite.genizah.org
bavli.genizah.org
nachumsite.genizah.org
ssotest.genizah.org
mail.genizah.org
bavlitest.genizah.org
bavli.genizah.org
fgp.genizah.org
ja.genizah.org
fjms.genizah.org
bavli.genizah.org
*.genizah.org
fjms.genizah.org
vf.genizah.org
nachumsite.genizah.org
test.genizah.org
rambam.genizah.org
nachumsite.genizah.org
genizah.org
test.genizah.org
rambamtest.genizah.org
rambam.genizah.org
admin.genizah.org
bavli.genizah.org
manuscripts.genizah.org
fgp.genizah.org
manuscripts.genizah.org
ja.genizah.org
bavlitest.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
rambamtest.genizah.org
test.genizah.org
rambamtest.genizah.org
nachumsite.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
fjmstest.genizah.org
sso.genizah.org
rambam.genizah.org
fjmstest.genizah.org
admin.genizah.org
bavli.genizah.org
sso.genizah.org
fgp.genizah.org
genizah.org
bavli.genizah.org
mail.genizah.org
mail.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
rambamtest.genizah.org
elastic.genizah.org
bavli.genizah.org
fgp.genizah.org
manuscripts.genizah.org
vf.genizah.org
bavli.genizah.org
test.genizah.org
manuscriptstest.genizah.org
ssotest.genizah.org
bavlitest.genizah.org
genizah.org
test.genizah.org
ja.genizah.org
manuscriptstest.genizah.org
fgp.genizah.org
nachumsite.genizah.org
bavli.genizah.org
nachumsite.genizah.org
ssotest.genizah.org
mail.genizah.org
bavlitest.genizah.org
bavli.genizah.org
fgp.genizah.org
ja.genizah.org
fjms.genizah.org
bavli.genizah.org
*.genizah.org
fjms.genizah.org
vf.genizah.org
nachumsite.genizah.org
test.genizah.org
rambam.genizah.org
nachumsite.genizah.org
genizah.org
test.genizah.org
rambamtest.genizah.org
rambam.genizah.org
admin.genizah.org
bavli.genizah.org
manuscripts.genizah.org
fgp.genizah.org
manuscripts.genizah.org
ja.genizah.org
bavlitest.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
rambamtest.genizah.org
test.genizah.org
rambamtest.genizah.org
nachumsite.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
fjmstest.genizah.org
sso.genizah.org
rambam.genizah.org
fjmstest.genizah.org
admin.genizah.org
bavli.genizah.org
sso.genizah.org
fgp.genizah.org
genizah.org
bavli.genizah.org
mail.genizah.org
mail.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
rambamtest.genizah.org
elastic.genizah.org
bavli.genizah.org
fgp.genizah.org
Certificate
The complete raw certificate details for bavli.genizah.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgIQC4k0bPY+67l/u7crAPHhVTANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTgxMDE2MDAwMDAwWhcNMTkxMjE5MTIwMDAwWjB7MQswCQYDVQQGEwJVUzETMBEG A1UECBMKTmV3IEplcnNleTERMA8GA1UEBxMITGFrZXdvb2QxKDAmBgNVBAoTH0Zy aWVkYmVyZyBHZW5pemFoIFByb2plY3QsIEluYy4xGjAYBgNVBAMTEWJhdmxpLmdl bml6YWgub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZu1qIlp pjPHhfQR9hRuNJDM45OeYOJpD6F1c5po1of1VW7AIxHiRCev7HQyJFpIJA5Kpj93 6HjZJXbgZDALniyVb4Umgk1m2bURKcPjGdzcw036o++/plKUTd4mGd9WahaFr0Eu bNlkWEICoX1wgP+qOmHNioaOfR9snaI7RDqRPVMjfFjM8PzmtIvPTUF5TS98SgwI Ymn/yZEh0asg3SuN30vlGODIharsS+g1Z4DLYxECeThgqkoBNXYjVsGAIh/jAIaJ bnuxyOrG9PkPz5S5Mqh0f8jPkMTEpDWHW318E/mbSuY9DH410Gt3FgHX92AFoQoD Dcfw+g/Le+OuMQIDAQABo4IBrDCCAagwHwYDVR0jBBgwFoAUo8heZVTlMHjBBeoH CmpZzLn+3lowHQYDVR0OBBYEFKXj8Usj3Fgu9sf9WxSc2o8aIrvQMBwGA1UdEQQV MBOCEWJhdmxpLmdlbml6YWgub3JnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2Nk cC50aGF3dGUuY29tL1RoYXd0ZVJTQUNBMjAxOC5jcmwwTAYDVR0gBEUwQzA3Bglg hkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29t L0NQUzAIBgZngQwBAgIwbwYIKwYBBQUHAQEEYzBhMCQGCCsGAQUFBzABhhhodHRw Oi8vc3RhdHVzLnRoYXd0ZS5jb20wOQYIKwYBBQUHMAKGLWh0dHA6Ly9jYWNlcnRz LnRoYXd0ZS5jb20vVGhhd3RlUlNBQ0EyMDE4LmNydDAJBgNVHRMEAjAAMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCB9ncN8sICqa3bN75e DES7BhDe1e5n5tS64rO98Rgkq3YLJeQMcB1ovdtWPdCV83SJh+W58tYmH45oMhzu ewy8s8HV/0viYG+7CtdXKDAWwp2+5KcYincDnNYZdnKUw156U16Jco7gNdyHd9o6 Wsxs3XLDc5JwOJ1FnfhmgPQLt89g3mqzKCbkD1EB71PmP3gmWl9hhevqxCX/0at8 GR2DAwlkmRvpUtm2vpcO4A9ffixXs1zpxZ83edgh5NjzDiduotkbTQJwXbY93cLU DwJmkczccyxyngOwYfuGvNcDX7xavkotg7hFUBzRR2MtHmsQ5k8QMr9B9SQ379ve eK5P -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZu1qIlppjPHhfQR9hRu NJDM45OeYOJpD6F1c5po1of1VW7AIxHiRCev7HQyJFpIJA5Kpj936HjZJXbgZDAL niyVb4Umgk1m2bURKcPjGdzcw036o++/plKUTd4mGd9WahaFr0EubNlkWEICoX1w gP+qOmHNioaOfR9snaI7RDqRPVMjfFjM8PzmtIvPTUF5TS98SgwIYmn/yZEh0asg 3SuN30vlGODIharsS+g1Z4DLYxECeThgqkoBNXYjVsGAIh/jAIaJbnuxyOrG9PkP z5S5Mqh0f8jPkMTEpDWHW318E/mbSuY9DH410Gt3FgHX92AFoQoDDcfw+g/Le+Ou MQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15333915941403666409303334596809711957 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-19 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Jersey' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Lakewood' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Friedberg Genizah Project, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bavli.genizah.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24440776125399235134014260887073689544315876001910649798024512638318748491329145963362944895921525590700054365616731409293014272786976433278063639225385089686012135768012143473735726896093583916539227839560399534522027814369616073188260814483244260180012353816582576591360753990468714244043556103999428658191397184978485110744610487156120959210593325262521902915579039870687527351346847112151791486132321631389199921494837234885165770582160041805870213982632441750520426202683203337825075679778958940377552491308252210483216998008865107560496052910869731445377250105272787585336156448320764849743771870621386938756657 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a5e3f14b23dc582ef6c7fd5b149cda8f1a22bbd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bavli.genizah.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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