bike.ata.org

Issued by RapidSSL CA

About this certificate

This digital certificate with serial number 0a:f3:88 was issued on by GeoTrust, Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

SERIALNUMBER=SO7-LBl4Q1qeV7CxDm6Ty7JWQlPtuiva,CN=bike.ata.org,OU=GT49333735+OU=See www.rapidssl.com/resources/cps (c)13+OU=Domain Control Validated - RapidSSL(R)

GeoTrust, Inc.

Organization: GeoTrust, Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0a:f3:88
Serial Number (int): 717704
Serial Number lenght: 20 bits, 3 octets

SubjectKeyId: f7:06:9c:8b:7d:10:36:24:9f:a5:bf:d7:5e:99:21:75:80:d4:49:68
AuthorityKeyId: 6b:69:3d:6a:18:42:4a:dd:8f:02:65:39:fd:35:24:86:78:91:16:30

Fingerprint (sha1): 79:f5:0a:81:b0:cd:62:fe:de:e9:82:54:bd:47:7d:8d:64:fa:84:88
Fingerprint (sha256): 51:b3:4c:0c:ac:98:93:4c:02:48:58:46:4e:fc:87:a4:78:f1:aa:6b:ec:cd:06:33:81:37:3c:6e:a0:5f:35:18

Issuing Certificate URL: http://rapidssl-aia.geotrust.com/rapidssl.crt

Revocation information

OCSP Server: http://rapidssl-ocsp.geotrust.com
CRL Distribution Point: http://rapidssl-crl.geotrust.com/crls/rapidssl.crl

Check the revocation status for certificate bike.ata.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for bike.ata.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

bike.ata.org

Other certificates including the domain name ata.org

(limited to 100 certificates)
donations.ata.org
www.ata.org
ata.org
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
*.ata.org
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
ata.org
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
www.ata.org
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
donations.ata.org
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
secure.ata.org
5710358266249216-fe1.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5710358266249216-fe1.pantheonsite.io
5710358266249216-fe1.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
ata.org
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
ata.org
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5710358266249216-fe1.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
ringingears.ata.org
5716646702350336-fe3.pantheonsite.io
*.ata.org
secure.ata.org
5716646702350336-fe3.pantheonsite.io
ata.org
5716646702350336-fe3.pantheonsite.io
5710358266249216-fe1.pantheonsite.io
bike.ata.org
5710358266249216-fe1.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
walk.ata.org
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5710358266249216-fe1.pantheonsite.io
ata.org
5710358266249216-fe1.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
ata.org
5710358266249216-fe1.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
donations.ata.org
5716646702350336-fe3.pantheonsite.io
ringingears.ata.org
5710358266249216-fe1.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5710358266249216-fe1.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
donations.ata.org
5710358266249216-fe1.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
walk.ata.org
5710358266249216-fe1.pantheonsite.io
ata.org
5710358266249216-fe1.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5710358266249216-fe1.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io
5716646702350336-fe3.pantheonsite.io

Certificate

The complete raw certificate details for bike.ata.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgIDCvOIMA0GCSqGSIb3DQEBBQUAMDwxCzAJBgNVBAYTAlVT
MRcwFQYDVQQKEw5HZW9UcnVzdCwgSW5jLjEUMBIGA1UEAxMLUmFwaWRTU0wgQ0Ew
HhcNMTMwMzA3MDMwMjI3WhcNMTQwNTA4MjEzMTA0WjCBuzEpMCcGA1UEBRMgU083
LUxCbDRRMXFlVjdDeERtNlR5N0pXUWxQdHVpdmExEzARBgNVBAsTCkdUNDkzMzM3
MzUxMTAvBgNVBAsTKFNlZSB3d3cucmFwaWRzc2wuY29tL3Jlc291cmNlcy9jcHMg
KGMpMTMxLzAtBgNVBAsTJkRvbWFpbiBDb250cm9sIFZhbGlkYXRlZCAtIFJhcGlk
U1NMKFIpMRUwEwYDVQQDEwxiaWtlLmF0YS5vcmcwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDoqObmdY5oG053SZ/rPKYqGc1kqZQELhcwh0+69JtFNdQu
grxNRfd98/tdmHYuuRzih/O9Viu96gJbIYjcV8SfuFbaIwqqrpvitIjHv6YEl/5y
i5bh89ZvdTy4/XKNxlRyvWVug4Xa7KFArafPVXHwE7coVmaE6NiK9hpL+FTuvZMA
EfKnvzoCKC1cgKoOPKeCQEbTTcOTb2BtH04iVOdt70Y+Mp/rPfXcgRStnfqyvqLs
+mwy1GLsbnlsThPMG4eVkYZocVdWpzeQ2cO6zErIsEldXn+8nIvM9MBJAE3WWDTE
Ba3QM4DM99agjhdovhox6kGe75SHiB6IiaJhjdZnAgMBAAGjggGnMIIBozAfBgNV
HSMEGDAWgBRraT1qGEJK3Y8CZTn9NSSGeJEWMDAOBgNVHQ8BAf8EBAMCBaAwHQYD
VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBcGA1UdEQQQMA6CDGJpa2UuYXRh
Lm9yZzBDBgNVHR8EPDA6MDigNqA0hjJodHRwOi8vcmFwaWRzc2wtY3JsLmdlb3Ry
dXN0LmNvbS9jcmxzL3JhcGlkc3NsLmNybDAdBgNVHQ4EFgQU9waci30QNiSfpb/X
XpkhdYDUSWgwDAYDVR0TAQH/BAIwADB4BggrBgEFBQcBAQRsMGowLQYIKwYBBQUH
MAGGIWh0dHA6Ly9yYXBpZHNzbC1vY3NwLmdlb3RydXN0LmNvbTA5BggrBgEFBQcw
AoYtaHR0cDovL3JhcGlkc3NsLWFpYS5nZW90cnVzdC5jb20vcmFwaWRzc2wuY3J0
MEwGA1UdIARFMEMwQQYKYIZIAYb4RQEHNjAzMDEGCCsGAQUFBwIBFiVodHRwOi8v
d3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJjZXMvY3BzMA0GCSqGSIb3DQEBBQUAA4IB
AQBt5yNXZVW591cwppS9U/+SAPGI353/yYnw2jAbAJoX8NPokWhRtUkko5WMGvfV
cTxUF0wMe3SV2+Janh4S3ABioz7YYK839W9sjK91yGOwBxYFUMi/3iMthnmaP049
96QdN78Go53ePwGgCjAFWrj0Fsmj/p74lbie5tOSOSD+NJghd7LV500Za0IEL3xq
MHxksbqPrK03ZtX2yU3liaPtfShMxR8GYg0ePzLhGDUYr0YuebjYmc7eAoKumRh7
M9TIzXppXVmmub9YFFVhC9lPcdlXuI30YCz1WFFamQpwS0zItsSfzXYpYuLvMyxR
NVYCxNA941dyCLngaxu5ZiU9
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Kjm5nWOaBtOd0mf6zym
KhnNZKmUBC4XMIdPuvSbRTXULoK8TUX3ffP7XZh2Lrkc4ofzvVYrveoCWyGI3FfE
n7hW2iMKqq6b4rSIx7+mBJf+couW4fPWb3U8uP1yjcZUcr1lboOF2uyhQK2nz1Vx
8BO3KFZmhOjYivYaS/hU7r2TABHyp786AigtXICqDjyngkBG003Dk29gbR9OIlTn
be9GPjKf6z313IEUrZ36sr6i7PpsMtRi7G55bE4TzBuHlZGGaHFXVqc3kNnDusxK
yLBJXV5/vJyLzPTASQBN1lg0xAWt0DOAzPfWoI4XaL4aMepBnu+Uh4geiImiYY3W
ZwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 717704
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-03-07 03:02:27 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-05-08 21:31:04 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SO7-LBl4Q1qeV7CxDm6Ty7JWQlPtuiva'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT49333735'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)13'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bike.ata.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29370575409867781654484383730772441061327081690960159039102737474870484395139354475210784371406818754081653803959220374079225965479553719064843947347101886029103724160011561776088435966603516808192750298482981382664604799436309642436246303368181380960400978168771933743404733775425521207756474505923198128310382631660218545331337936065024427480716818622792553543878147445109235994610099181283495183317187787742977932224521569540947573595508838673715341525059261320506025940685119099939170408417946676167303691085710941070219720624899163831448595546922522899942831442305697078316665577725965998496649580217054482257511
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b693d6a18424add8f026539fd35248678911630
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bike.ata.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-crl.geotrust.com/crls/rapidssl.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							f7069c8b7d1036249fa5bfd75e99217580d44968
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-ocsp.geotrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-aia.geotrust.com/rapidssl.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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