*.hess-gruppe.de
Issued by Sectigo RSA Domain Validation Secure Server CA
About this certificate
This digital certificate with serial number 08:ae:7a:43:07:0e:5b:27:5a:6e:1d:16:2c:a9:09:bb was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.hess-gruppe.de
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 08:ae:7a:43:07:0e:5b:27:5a:6e:1d:16:2c:a9:09:bbSerial Number (int): 11539763384106671441610261169462380987
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: e1:4d:ad:69:a7:3c:19:f0:82:a0:95:8f:a5:0d:7f:66:d1:d4:49:87
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1
Fingerprint (sha1): c5:f3:1a:0c:8d:01:c2:03:0f:b9:6f:2a:ae:b2:05:92:5d:48:c5:2b
Fingerprint (sha256): 50:16:ea:2f:d3:5a:8f:ae:9d:f6:63:c0:0d:98:61:b9:fc:5e:b3:51:e3:12:82:d7:67:9e:9f:fd:7c:6f:ef:2b
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCheck the revocation status for certificate *.hess-gruppe.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.hess-gruppe.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.hess-gruppe.de
hess-gruppe.de
hess-gruppe.de
Other certificates including the domain name hess-gruppe.de
(limited to 100 certificates)
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
mailrz.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
ssgd.hess-gruppe.de
*.hess-gruppe.de
www.hess-gruppe.de
mailrz.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
*.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
vpn.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
mailrz.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
ssgd.hess-gruppe.de
*.hess-gruppe.de
www.hess-gruppe.de
mailrz.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
*.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
vpn.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
Certificate
The complete raw certificate details for *.hess-gruppe.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHsjCCBpqgAwIBAgIQCK56QwcOWydabh0WLKkJuzANBgkqhkiG9w0BAQsFADCB jzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTcwNQYDVQQD Ey5TZWN0aWdvIFJTQSBEb21haW4gVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVyIENB MB4XDTIwMDIxMDAwMDAwMFoXDTIyMDUxNDAwMDAwMFowGzEZMBcGA1UEAwwQKi5o ZXNzLWdydXBwZS5kZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMrK KEfi9u5P8yeBP4ef//6+gn8heHSsTjRTN7Xxzbicf2bFh18O5aQx9PcT3BrxbvDJ H6EtMfLfAuzXKaGRFd8/Wl3QMBdQI25ENAaYsfVFsD4lwfyLvZ7fqnbRW7KNx5vO oYsFtak9B/5Pl7sEtoIhR4yvufcPwbYF1+Ch8XS3wQ7JLB+EnF94cVSeNXW9AngB i2W4R7vm0up0yO4XjoBfPe+BGAeM4WaVwXmT/1JI4QT8A4JS1X7rCBulcpeNqL6v HbYMdRXSuudmA3Nke71pelEXQ3LWQBX5MkwVyeXGqWui3kLbKL8/p6cTiPEkVju9 wITKwIF2Gf99wRlfT1l8VXOqrmXWJud13ndXhqCdHOpnhKjgjXDm5fHLBPt+bMtQ 7hVFkFY0M3iz/pxyrXB9cH/S7nUeAYZA1tVulXL51ej4b56M2otKmGzY5tJX0ttI xGQlblAJe5g79lQuTzF8iLPFmqJ7O75ciOeyEqTAL1rqsGBOEDNsRZ2kK9LdGYja HvKN6f55I61Pv0E0G51s2x+8U/EMU8XZDtWFLiHtV0zMGx0tTG7LIE8SmOwgsJpR DokEiexZSuxNZceDu9CmniPIHyzci62kut+z1Dp/Fd9gMkrdEDXQY8clDknIYDvX v4MMXKhjtXPs6IzIZ56rGWJ1kdbcAhuZ0cszI4vZAgMBAAGjggN7MIIDdzAfBgNV HSMEGDAWgBSNjF7EVK2K4Xfpm/mbBeG4AY1h4TAdBgNVHQ4EFgQU4U2taac8GfCC oJWPpQ1/ZtHUSYcwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGyMQEC AgcwJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EM AQIBMIGEBggrBgEFBQcBAQR4MHYwTwYIKwYBBQUHMAKGQ2h0dHA6Ly9jcnQuc2Vj dGlnby5jb20vU2VjdGlnb1JTQURvbWFpblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJD QS5jcnQwIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLnNlY3RpZ28uY29tMCsGA1Ud EQQkMCKCECouaGVzcy1ncnVwcGUuZGWCDmhlc3MtZ3J1cHBlLmRlMIIB9wYKKwYB BAHWeQIEAgSCAecEggHjAeEAdgBGpVXrdfqRIDC1oolp9PN9ESxBdL79SbiFq/L8 cP5tRwAAAXAusqBoAAAEAwBHMEUCICzvpzyBHLkH+4Mzawuoe/nqd6j+G5zZ+f5M E4exh8DMAiEAlX5IgJJy1UWogvfk8R8/KbVwA1RWpBnnSnSrqodLB1EAdgDfpV6r aIJPH2yt7rhfTj5a6s2iEqRqXo47EsAgRFwqcwAAAXAusqBpAAAEAwBHMEUCIQD1 NnK8WGtUpfK4Wd2DhVk10kgXM0UjIda5oPwKi6k5FAIgVNV5HJEzHwr7lcbLxEud eIl+VGT6x9iHZc+zWs6Na8YAdgBByMqx3yJGShDGoToJQodeTjGLGwPr60vHaPCQ YpYG9gAAAXAusqBdAAAEAwBHMEUCIAUz0PscdOeKJiG/e0EqrLcl5Sutop+tHuTz F/rpazj8AiEAzWF4SVWUabekFa7wT4+v/c2hHDL4n8xqkyPQbKwPg6kAdwBvU3as MfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAXAusqFQAAAEAwBIMEYCIQD8 FOgDedAOyNGrwXBfOVFHbPBNpl3IoMm9hiN79iMk9gIhAObredYS8zgU51BV1QuX OAodxufmc8XuXysFpgJYJkAAMA0GCSqGSIb3DQEBCwUAA4IBAQCSe+xEZD7mTr6g QW9wq7yluSJieV5HySBxci6o/jZ8zsB6FpbbJNsvGqnB80kG0XL/xGN9H2CSxDic PpROWQRBlm7G8/A9f7O9PRaYPpu2UlQ7mPGoYTd05Tf/1tJbU86zmdSzcVpP7qAO CZMo1/XYH4ag/up8031E+sjEjelBiKLsDN39Kdy+S7AELhTS18bkqNFDGaZskoFW ZYqu/O5K4hc5OxvzSkiIHTVEv65IeATpYuX/VKXzxDRwBO0pN4x9VjCFN1rPsZ/R mo18wfEy6hqzyzKY1EBe4HO9/hJspDWuS5tgjtshN2IrBVzUfOs02fsF5hgKEBEd c7wMolrz -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAysooR+L27k/zJ4E/h5// /r6CfyF4dKxONFM3tfHNuJx/ZsWHXw7lpDH09xPcGvFu8MkfoS0x8t8C7NcpoZEV 3z9aXdAwF1AjbkQ0Bpix9UWwPiXB/Iu9nt+qdtFbso3Hm86hiwW1qT0H/k+XuwS2 giFHjK+59w/BtgXX4KHxdLfBDsksH4ScX3hxVJ41db0CeAGLZbhHu+bS6nTI7heO gF8974EYB4zhZpXBeZP/UkjhBPwDglLVfusIG6Vyl42ovq8dtgx1FdK652YDc2R7 vWl6URdDctZAFfkyTBXJ5capa6LeQtsovz+npxOI8SRWO73AhMrAgXYZ/33BGV9P WXxVc6quZdYm53Xed1eGoJ0c6meEqOCNcObl8csE+35sy1DuFUWQVjQzeLP+nHKt cH1wf9LudR4BhkDW1W6VcvnV6Phvnozai0qYbNjm0lfS20jEZCVuUAl7mDv2VC5P MXyIs8Waons7vlyI57ISpMAvWuqwYE4QM2xFnaQr0t0ZiNoe8o3p/nkjrU+/QTQb nWzbH7xT8QxTxdkO1YUuIe1XTMwbHS1MbssgTxKY7CCwmlEOiQSJ7FlK7E1lx4O7 0KaeI8gfLNyLraS637PUOn8V32AySt0QNdBjxyUOSchgO9e/gwxcqGO1c+zojMhn nqsZYnWR1twCG5nRyzMji9kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11539763384106671441610261169462380987 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-14 00:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.hess-gruppe.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 827309703384972327504523184545480512914211028370018374034588890849822832343525831672584662914617326422379115515733474240353562380101177309044986623565160850541135705944311840256266642241504467233129900963272178372337515647750764686592031959384646230779123579460844736665436619621308363687023808587166599476844952282218617827371839283427912816264014575825800726134545028450919445678041075408167532430842439085318517848525602167759928627597413166929208602133526556728387526146865904459596266643200460708080992484419593963032825512121484060139633279450560179188719625776482340475961704567464934689828344648316319887446767519404965393734958032910461077916759551721069598262244230595906424158092490457264033245517971992055027918247264532748215588457419337447289137341354099913891641911075868656193925853795887290008603978214538025923815022175459640682561088306940712940841604389028438215998779204986735218826486541016314415139566973065800586422363634576382682024260815638917304996435859874008895077414693677640383793045468070501582129979179980846384401376396295641838976157448421914035056198064367262930211357875103342860110774937823153432385516845615251974745228156955675662536759770186188809372565355706059553756822842596280533646543833 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e14dad69a73c19f082a0958fa50d7f66d1d44987 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hess-gruppe.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hess-gruppe.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00927bec44643ee64ebea0416f70abbca5b92262795e47c92071722ea8fe367ccec07a1696db24db2f1aa9c1f34906d172ffc4637d1f6092c4389c3e944e590441966ec6f3f03d7fb3bd3d16983e9bb652543b98f1a8613774e537ffd6d25b53ceb399d4b3715a4feea00e099328d7f5d81f86a0feea7cd37d44fac8c48de94188a2ec0cddfd29dcbe4bb0042e14d2d7c6e4a8d14319a66c928156658aaefcee4ae217393b1bf34a48881d3544bfae487804e962e5ff54a5f3c4347004ed29378c7d563085375acfb19fd19a8d7cc1f132ea1ab3cb3298d4405ee073bdfe126ca435ae4b9b608edb2137622b055cd47ceb34d9fb05e6180a10111d73bc0ca25af3