www.blackcircles.ca
- Manufacture Francaise des Pneumatiques Michelin SAS -
Issued by GeoTrust TLS RSA CA G1
About this certificate
This digital certificate with serial number 0c:7e:37:d5:9c:60:7f:5a:ae:55:86:0d:5f:34:51:35 was issued on by DigiCert Inc.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Manufacture Francaise des Pneumatiques Michelin SAS
Organization:
Manufacture Francaise des Pneumatiques Michelin SAS
Locality:
Clermont-Ferrand
Country: FR
Country: FR
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0c:7e:37:d5:9c:60:7f:5a:ae:55:86:0d:5f:34:51:35Serial Number (int): 16606097810117514960342972112777269557
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 65:bb:11:78:36:65:4e:ae:d1:98:a1:d0:4f:d0:84:5c:77:dd:56:ab
AuthorityKeyId: 94:4f:d4:5d:8b:e4:a4:e2:a6:80:fe:fd:d8:f9:00:ef:a3:be:02:57
Fingerprint (sha1): d1:d8:42:1c:9f:53:41:2c:9c:32:87:71:de:9d:15:04:6d:2d:aa:9c
Fingerprint (sha256): 52:b2:85:27:31:85:96:4c:05:96:ff:1f:c7:87:27:81:a1:ed:6f:ba:b5:aa:f9:5c:8f:c0:b0:ca:d2:7c:e0:2c
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
Check the revocation status for certificate www.blackcircles.ca
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.blackcircles.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.blackcircles.ca
www.tireland.ca
www.icipneu.ca
tireland.ca
icipneu.ca
blackcircles.ca
blog.blackcircles.ca
www.tireland.ca
www.icipneu.ca
tireland.ca
icipneu.ca
blackcircles.ca
blog.blackcircles.ca
Other certificates including the domain name blackcircles.ca
(limited to 100 certificates)
cc.us.tyredating.com
www.blackcircles.ca
www.blackcircles.ca
blog-blackcircles-ca.mon.world
blog.blackcircles.ca
www.tyreplus.co.th
www.blackcircles.ca
www.blackcircles.ca
www.tyreplus.co.th
cc.us.tyredating.com
www.blackcircles.ca
www.blackcircles.ca
cc.us.tyredating.com
blog.blackcircles.ca
www.blackcircles.ca
blog.blackcircles.ca
blog.blackcircles.ca
www.blackcircles.ca
blog.blackcircles.ca
blog.blackcircles.ca
www.blackcircles.ca
www.tyreplus.co.th
www.blackcircles.ca
www.tyreplus.co.th
www.blackcircles.ca
www.blackcircles.ca
www.blackcircles.ca
blog-blackcircles-ca.mon.world
blog.blackcircles.ca
www.tyreplus.co.th
www.blackcircles.ca
www.blackcircles.ca
www.tyreplus.co.th
cc.us.tyredating.com
www.blackcircles.ca
www.blackcircles.ca
cc.us.tyredating.com
blog.blackcircles.ca
www.blackcircles.ca
blog.blackcircles.ca
blog.blackcircles.ca
www.blackcircles.ca
blog.blackcircles.ca
blog.blackcircles.ca
www.blackcircles.ca
www.tyreplus.co.th
www.blackcircles.ca
www.tyreplus.co.th
www.blackcircles.ca
Certificate
The complete raw certificate details for www.blackcircles.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG6TCCBdGgAwIBAgIQDH431Zxgf1quVYYNXzRRNTANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZHZW9UcnVzdCBUTFMgUlNBIENBIEcx MB4XDTIzMDYxNjAwMDAwMFoXDTI0MDcxNjIzNTk1OVowgYQxCzAJBgNVBAYTAkZS MRkwFwYDVQQHExBDbGVybW9udC1GZXJyYW5kMTwwOgYDVQQKEzNNYW51ZmFjdHVy ZSBGcmFuY2Fpc2UgZGVzIFBuZXVtYXRpcXVlcyBNaWNoZWxpbiBTQVMxHDAaBgNV BAMTE3d3dy5ibGFja2NpcmNsZXMuY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDwEvlWn7RlPnERYXqOW8ZfZoZGcRidtZruESQzbaiHdndY0wyjGO4v mJWbYIab/VaFmAshKwpS9kj0q7GD2L5oaYOQ2SZ69ac5Aef+L3RNonAUghmHXrCf wVyVMY9l4E2TqOiuhwY/ESVPSOIivBaj63yHzYpt+0X8MC30ALxNFNIkkxluCdyx NAaTzRFeCc3QgUfcOqlW3Km4lheEyvIo5xjkYn9aYA+HVZM5RNa4SKncxwu6jVUf ozZAwUIvPXdQVrXoo7f4AoJ3+dIdH9J1lK5Nei/NcLmFcADcGpeyTU8MiqxlZ1GH AculQjMVsiiA9UOCJzfsS+tAbuih6WB/AgMBAAGjggN4MIIDdDAfBgNVHSMEGDAW gBSUT9Rdi+Sk4qaA/v3Y+QDvo74CVzAdBgNVHQ4EFgQUZbsReDZlTq7RmKHQT9CE XHfdVqswfwYDVR0RBHgwdoITd3d3LmJsYWNrY2lyY2xlcy5jYYIPd3d3LnRpcmVs YW5kLmNhgg53d3cuaWNpcG5ldS5jYYILdGlyZWxhbmQuY2GCCmljaXBuZXUuY2GC D2JsYWNrY2lyY2xlcy5jYYIUYmxvZy5ibGFja2NpcmNsZXMuY2EwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA/BgNVHR8EODA2 MDSgMqAwhi5odHRwOi8vY2RwLmdlb3RydXN0LmNvbS9HZW9UcnVzdFRMU1JTQUNB RzEuY3JsMD4GA1UdIAQ3MDUwMwYGZ4EMAQICMCkwJwYIKwYBBQUHAgEWG2h0dHA6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzB2BggrBgEFBQcBAQRqMGgwJgYIKwYBBQUH MAGGGmh0dHA6Ly9zdGF0dXMuZ2VvdHJ1c3QuY29tMD4GCCsGAQUFBzAChjJodHRw Oi8vY2FjZXJ0cy5nZW90cnVzdC5jb20vR2VvVHJ1c3RUTFNSU0FDQUcxLmNydDAJ BgNVHRMEAjAAMIIBfAYKKwYBBAHWeQIEAgSCAWwEggFoAWYAdQDuzdBk1dsazsVc t520zROiModGfLzs3sNRSFlGcR+1mwAAAYjDDtqTAAAEAwBGMEQCICT6lB3n8gEX 25Ko0YlR+NvnrTyCgC3d7MX8qrlEbkuKAiBcOWzKAFvU6Wpma69yP+OlA+Co5/+1 Ga6QI/vz5LAskwB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAAB iMMO2kAAAAQDAEcwRQIhAOwGduJZbBNnqbywldGDl+NjWx5rSaliljVsFf5eMFvn AiAkOaV/f6LcXi1UOG3elGN2rOrO4wRTtirzFIMNEAWYIwB1ANq2v2s/tbYin5vC u1xr6HCRcWy7UYSFNL2kPTBI1/urAAABiMMO2hcAAAQDAEYwRAIgQ4gWRTG1t6Ah 0/Q0Ys6DHLOWMh0OAGW9unasLNpck2gCIBpIymvkdjyWSGkOLvoamnUI2jFlvNRe zDAf+NUwJ2BfMA0GCSqGSIb3DQEBCwUAA4IBAQBzfHeXaVFPjEm/OY/7kEqFv0mM XIB+FKKWKJZeTy8rpuvpcr7rtOMVe7lX1IxpbvVMM2JVOTSBrcnz3kkDXHfDf06e L8IIlyFz4H0N59hXQW22vapq8fybLp5sWd5TxJM8jS6Yfb4tppTd4ojKJEkVyghj MSzyW03r2y1vTjHSKHORJ996ph8iyAYqYkO3etycbNif1ezVkN1NmaL0kN6vfnbM JkBXHF5KjlAUnl9xtMP5NwaB+xL8wWbEIEox/M1OwXphQBFmWENTb2uePoelT0X8 VtuGjonNKv5aIEnZWrwsNjrlt9nQepaFKaOBY3bGR+M2lnWJp1xG4LuS+YFq -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8BL5Vp+0ZT5xEWF6jlvG X2aGRnEYnbWa7hEkM22oh3Z3WNMMoxjuL5iVm2CGm/1WhZgLISsKUvZI9Kuxg9i+ aGmDkNkmevWnOQHn/i90TaJwFIIZh16wn8FclTGPZeBNk6jorocGPxElT0jiIrwW o+t8h82KbftF/DAt9AC8TRTSJJMZbgncsTQGk80RXgnN0IFH3DqpVtypuJYXhMry KOcY5GJ/WmAPh1WTOUTWuEip3McLuo1VH6M2QMFCLz13UFa16KO3+AKCd/nSHR/S dZSuTXovzXC5hXAA3BqXsk1PDIqsZWdRhwHLpUIzFbIogPVDgic37EvrQG7ooelg fwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16606097810117514960342972112777269557 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Clermont-Ferrand' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manufacture Francaise des Pneumatiques Michelin SAS' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.blackcircles.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30306549609136644267888177809593243523165761791141110359026832217050547432879377676643482170695859035765109016573023428681105771373239299321958923516657285628637186885716453210255580104129509386625358040207464664432630435132958475952383826764361385895120786067197256303348470360924584767393424032335318250636750641206756050012199166833590309906776409941671517806201097287265503841529615122033417780109065314701699958528063264252419096756844697064309687036935887227355550872368017685418422630883497559862089470733130198257533373727298290127817464134196737631357438679170579739545002932098222363070958562237505839128703 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 944fd45d8be4a4e2a680fefdd8f900efa3be0257 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 65bb117836654eaed198a1d04fd0845c77dd56ab . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.blackcircles.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tireland.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.icipneu.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tireland.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'icipneu.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blackcircles.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.blackcircles.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 0166007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b00000188c30eda930000040300463044022024fa941de7f20117db92a8d18951f8dbe7ad3c82802dddecc5fcaab9446e4b8a02205c396cca005bd4e96a666baf723fe3a503e0a8e7ffb519ae9023fbf3e4b02c9300760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d8847300000188c30eda400000040300473045022100ec0676e2596c1367a9bcb095d18397e3635b1e6b49a96296356c15fe5e305be702202439a57f7fa2dc5e2d54386dde946376aceacee30453b62af314830d10059823007500dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab00000188c30eda17000004030046304402204388164531b5b7a021d3f43462ce831cb396321d0e0065bdba76ac2cda5c936802201a48ca6be4763c9648690e2efa1a9a7508da3165bcd45ecc301ff8d53027605f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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