about.heel.com
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 07:71:dd:b4:93:40:90:8e:8e:76:02:52:4c:81:a8:56 was issued on by DigiCert, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=about.heel.com
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:71:dd:b4:93:40:90:8e:8e:76:02:52:4c:81:a8:56Serial Number (int): 9895822234672856565764702706132428886
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: f6:bf:d5:20:09:d4:cb:bd:7c:6f:9b:29:3f:54:7a:e3:59:b1:72:0b
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): 12:c4:c1:da:b4:dc:77:11:8f:f6:47:fb:92:17:85:b0:06:5a:ad:db
Fingerprint (sha256): 55:0b:c1:0d:54:ed:4f:4f:4b:b4:65:ae:6f:13:e4:ec:15:e1:ed:f9:cf:78:a2:a1:cb:a5:50:2b:2d:fc:9d:70
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate about.heel.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for about.heel.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
about.heel.com
Other certificates including the domain name heel.com
(limited to 100 certificates)
*.staffbase.cloud
events.heel.com
heel.com
heel.com
*.heel.com
events.heel.com
about.heel.com
heel.com
heel.com
*.staffbase.cloud
www.learningzone.heel.com
heel.com
heel-com.prod.heel.com
h-guest.heel.com
heel-russia-ru.prod.heel.com
heel.com
firstspirit.heel.com
*.heel.com
about.heel.com
intranet.heel.com
heel.com
*.heel.com
extranet.heel.com
heel-russia-ru.prod.heel.com
intranet.heel.com
heel-russia-ru.prod.heel.com
sip.heel.com
heel.com
heel.com
csdbp.heel.com
www.heel.com
heel-be.prod.heel.com
*.heel.com
heel.com
*.heel.com
*.heel.com
www.heel.de
firstspirit.heel.com
h-guest.heel.com
intranet.heel.com
www.learningzone.heel.com
*.staffbase.cloud
lsac.heel.com
heel.com
heel-russia-ru.prod.heel.com
heel.com
events.heel.com
heel.com
heel-com.prod.heel.com
heel.com
heel.com
traumeel-com.prod.heel.com
about.heel.com
heel.com
heel-com.prod.heel.com
intranet.heel.com
*.heel.com
heel.com
events.heel.com
heel.com
intranet.heel.com
www.learningzone.heel.com
intranet.heel.com
events.heel.com
heel.com
heel.com
*.heel.com
events.heel.com
about.heel.com
heel.com
heel.com
*.staffbase.cloud
www.learningzone.heel.com
heel.com
heel-com.prod.heel.com
h-guest.heel.com
heel-russia-ru.prod.heel.com
heel.com
firstspirit.heel.com
*.heel.com
about.heel.com
intranet.heel.com
heel.com
*.heel.com
extranet.heel.com
heel-russia-ru.prod.heel.com
intranet.heel.com
heel-russia-ru.prod.heel.com
sip.heel.com
heel.com
heel.com
csdbp.heel.com
www.heel.com
heel-be.prod.heel.com
*.heel.com
heel.com
*.heel.com
*.heel.com
www.heel.de
firstspirit.heel.com
h-guest.heel.com
intranet.heel.com
www.learningzone.heel.com
*.staffbase.cloud
lsac.heel.com
heel.com
heel-russia-ru.prod.heel.com
heel.com
events.heel.com
heel.com
heel-com.prod.heel.com
heel.com
heel.com
traumeel-com.prod.heel.com
about.heel.com
heel.com
heel-com.prod.heel.com
intranet.heel.com
*.heel.com
heel.com
events.heel.com
heel.com
intranet.heel.com
www.learningzone.heel.com
intranet.heel.com
Certificate
The complete raw certificate details for about.heel.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHijCCBXKgAwIBAgIQB3HdtJNAkI6OdgJSTIGoVjANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjQwMzMxMDAwMDAwWhcNMjQwOTMwMjM1OTU5WjAZMRcwFQYDVQQDEw5hYm91dC5o ZWVsLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKr6yOqLXRcC fYs+QABdyoQKFT59idhMgSzb6Zj+kdNPVLSgR5ohVxpMoLeKpTQknf6MkLRU0U7e mnzMVC59JpmNj7XK6+IEvMPrBrStrFrLmpx3s6478S6LnnNip1XDnoQk6R+s6qYi /gQvqy3Q8m+YaxCCHc9/ZpYH1x3y9qwexI6ExoS8yxYXHbkf+PpdtFP9L1NlE5IX Thod232QWdEH4RDvDQry/pMMpY70RHSibwAxArg4Vu2sFkEY9KOy0P/V0i4e1vli Hi3BpOolcKlT7ytZF6BX6HsU/h0ptHUGNQFY43OcVm9ebTjEXDZ2qYD4duwezFm2 V5yJiPDKOQkCAwEAAaOCA4kwggOFMB8GA1UdIwQYMBaAFKW01us2xOdrpt/EZAsB KiAEuGYjMB0GA1UdDgQWBBT2v9UgCdTLvXxvmyk/VHrjWbFyCzAZBgNVHREEEjAQ gg5hYm91dC5oZWVsLmNvbTA+BgNVHSAENzA1MDMGBmeBDAECATApMCcGCCsGAQUF BwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBnwYDVR0fBIGXMIGUMEig RqBEhkJodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vR2VvVHJ1c3RHbG9iYWxUTFNS U0E0MDk2U0hBMjU2MjAyMkNBMS5jcmwwSKBGoESGQmh0dHA6Ly9jcmw0LmRpZ2lj ZXJ0LmNvbS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNy bDCBhwYIKwYBBQUHAQEEezB5MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdp Y2VydC5jb20wUQYIKwYBBQUHMAKGRWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNv bS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNydDAMBgNV HRMBAf8EAjAAMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdQDuzdBk1dsazsVc t520zROiModGfLzs3sNRSFlGcR+1mwAAAY6VKxLQAAAEAwBGMEQCIC691IFk0e9S kNno6bPcuLmckhpM/fWgN7rAFpEMTcAhAiBgfcKVkdpr+4KVVzC1iW1i2CmLL62v a3m3Sm2VOGwtpQB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAAB jpUrEwIAAAQDAEcwRQIhAJhWWWbbV1dsjcRihAuWET/Ggup3KC3Veof4giUUGDHW AiASTiU4HEyimqUm6tV8R2mzLhfAd8oYjDis9zBhlQchygB2ANq2v2s/tbYin5vC u1xr6HCRcWy7UYSFNL2kPTBI1/urAAABjpUrEtYAAAQDAEcwRQIgYIiXW5LvMU3m wBcJZSTgDhi4pGTDSVgNg/KdOTuxZ1cCIQD/Xn5xa2nzLeDi68/RlAfEbJ+fGHZE c4deiVYy9+itpjANBgkqhkiG9w0BAQsFAAOCAgEAeJvuN/WQBz6w3zm62O+ghBlJ NswhJqxgiGPfbi3jFi4fIwCvJHfDGPN2pk0h/GC/QlQfZf3NJUOXjACgYBTDpbp3 zqomkm9/pkoe+0hNwMgC+cqBtxrmbPLcvj2CP0wRGvzEtfZKIpLH/T0o6J0fZnLt KC5hca2kmqTFL7trqaVJqxD4DiEA4px+yoZ2ySzEXAbL/j7qYgvhaZfWY1G5yQia R+lsYINUquv1lNNiot3xmaoC1b5fFZUeJL+A9Asiy7bdcmMwjk6jrdcmWUSa8lAN DmJcnXcIZTdvZ2Aov4eCwgGkYbKl4diOrzkqAYrkTGTQQiOg/Lg6kcaOgjpbw0gm LSBAqFDj35qzssBsnlLoerQxdp+3pZ6dZqdDdKnMIHhLMorBBjMJWTesLwcAkJt5 eFvWSs3X7ZGYu7o2S5ZLDeqiqbVJGmCqPyCRG3mKpdugnZgbb3m2d1vGqYTZBYDM y2ctQNClbLVytV0w6PknR4eLZqCTIXjH9aXxg3if3QLmDgGxrLAeBozC6coSnHMz 3esy13QsAusMYs7UGNVd5MufYVJsHIUdXM6mp0wv65kFN2jnpw1ATS/8f7zUlChS Yktpyy4AFETB0ZiND56G6btGNbQcYYV0Enso9cODAd5jlaNN4LfU82oBrFw8umoN lpJJBiN2X8jv+dGmM2Q= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvrI6otdFwJ9iz5AAF3K hAoVPn2J2EyBLNvpmP6R009UtKBHmiFXGkygt4qlNCSd/oyQtFTRTt6afMxULn0m mY2Ptcrr4gS8w+sGtK2sWsuanHezrjvxLouec2KnVcOehCTpH6zqpiL+BC+rLdDy b5hrEIIdz39mlgfXHfL2rB7EjoTGhLzLFhcduR/4+l20U/0vU2UTkhdOGh3bfZBZ 0QfhEO8NCvL+kwyljvREdKJvADECuDhW7awWQRj0o7LQ/9XSLh7W+WIeLcGk6iVw qVPvK1kXoFfoexT+HSm0dQY1AVjjc5xWb15tOMRcNnapgPh27B7MWbZXnImI8Mo5 CQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9895822234672856565764702706132428886 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-31 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-30 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'about.heel.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21584178452460097481566392501986353385202457172069782134232795803521418505404447233038724553555837735264011083939459074142702500720821096975044937426263463371467163865253849750012251887681192949933991594104653521314156891878951636921500471190268791181413418894020474197639549085034016229656767650106715710449187998860281761740827680368456182526585543931327502987929595092951406311773069085769156850871897679300581878241412769002800298207008192278522830770678653110093702392406809221796604969271699421071580598600117285540999821749221974152908488674443869773080576617157925699898465109344572810068283581524355414898953 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f6bfd52009d4cbbd7c6f9b293f547ae359b1720b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'about.heel.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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