demo.onvio.co.uk
- Thomson Reuters -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0b:1e:4b:84:5a:7f:5c:71:b6:0e:43:2e:47:89:f0:45 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Thomson Reuters
Organization:
Thomson Reuters
State / Province:
Minnesota
Locality: Eagan
Country: US
Locality: Eagan
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:1e:4b:84:5a:7f:5c:71:b6:0e:43:2e:47:89:f0:45Serial Number (int): 14778808526235466207301266002189873221
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 2b:93:8c:28:dd:ba:06:24:ff:d3:c6:d1:4d:00:17:41:bf:d1:cd:c9
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): f0:c0:7f:2c:3c:16:27:68:a4:ab:41:7b:bd:78:93:a8:3c:f7:66:1e
Fingerprint (sha256): 56:e8:ee:90:49:87:59:aa:d7:3a:6f:2a:31:6f:b4:2c:fe:1f:29:d4:99:16:36:e6:85:1b:e9:27:ff:b6:0d:bb
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate demo.onvio.co.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for demo.onvio.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
demo.onvio.co.uk
Other certificates including the domain name onvio.co.uk
(limited to 100 certificates)
onvio.co.uk
qed.onvio.us
qed.onvio.us
ci.onvio.us
demo.onvio.us
demo.onvio.us
ci.int.onvio.us
qed.api.onvio.us
demo.int.onvio.us
qed.onvio.us
demo.int.onvio.us
onvio.co.uk
qed.onvio.co.uk
demo.api.onvio.us
onvio.co.uk
qed.onvio.us
qed.onvio.us
demo.int.onvio.co.uk
qed.onvio.co.uk
ci.api.onvio.us
demo.onvio.co.uk
ci.onvio.us
ci.int.onvio.us
qed.onvio.us
demo.onvio.us
onvio.co.uk
qed.onvio.us
demo.onvio.us
demo.onvio.us
qed.onvio.co.uk
qed.onvio.us
demo.onvio.us
onvio.co.uk
api.onvio.us
ci.onvio.us
ci.onvio.us
qed.onvio.co.uk
onvio.co.uk
qed.onvio.co.uk
demo.int.onvio.us
ci.int.onvio.us
onvio.co.uk
ci.int.onvio.us
onvio.co.uk
demo.onvio.co.uk
ci.onvio.us
demo.onvio.us
onvio.co.uk
ci.int.onvio.us
onvio.co.uk
demo.int.onvio.co.uk
ci.onvio.us
ci.int.onvio.us
demo.onvio.us
demo.onvio.us
ci.onvio.us
www.onvio.co.uk
onvio.co.uk
qed.onvio.us
ci.onvio.us
demo.onvio.us
onvio.co.uk
qed.onvio.us
qed.onvio.co.uk
qed.onvio.us
qed.onvio.us
ci.onvio.us
demo.onvio.us
demo.onvio.us
ci.int.onvio.us
qed.api.onvio.us
demo.int.onvio.us
qed.onvio.us
demo.int.onvio.us
onvio.co.uk
qed.onvio.co.uk
demo.api.onvio.us
onvio.co.uk
qed.onvio.us
qed.onvio.us
demo.int.onvio.co.uk
qed.onvio.co.uk
ci.api.onvio.us
demo.onvio.co.uk
ci.onvio.us
ci.int.onvio.us
qed.onvio.us
demo.onvio.us
onvio.co.uk
qed.onvio.us
demo.onvio.us
demo.onvio.us
qed.onvio.co.uk
qed.onvio.us
demo.onvio.us
onvio.co.uk
api.onvio.us
ci.onvio.us
ci.onvio.us
qed.onvio.co.uk
onvio.co.uk
qed.onvio.co.uk
demo.int.onvio.us
ci.int.onvio.us
onvio.co.uk
ci.int.onvio.us
onvio.co.uk
demo.onvio.co.uk
ci.onvio.us
demo.onvio.us
onvio.co.uk
ci.int.onvio.us
onvio.co.uk
demo.int.onvio.co.uk
ci.onvio.us
ci.int.onvio.us
demo.onvio.us
demo.onvio.us
ci.onvio.us
www.onvio.co.uk
onvio.co.uk
qed.onvio.us
ci.onvio.us
demo.onvio.us
onvio.co.uk
qed.onvio.us
qed.onvio.co.uk
Certificate
The complete raw certificate details for demo.onvio.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIQCx5LhFp/XHG2DkMuR4nwRTANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwMjE0MDAwMDAwWhcN MTkwMTMxMTIwMDAwWjBmMQswCQYDVQQGEwJVUzESMBAGA1UECBMJTWlubmVzb3Rh MQ4wDAYDVQQHEwVFYWdhbjEYMBYGA1UEChMPVGhvbXNvbiBSZXV0ZXJzMRkwFwYD VQQDExBkZW1vLm9udmlvLmNvLnVrMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAwq6qP4N+mdsAugYPEkkdtU2s1q/Af7pXhF5Xh7TcgprFoogf2IAhmot2 gv1qCZwvX0hghkPOs0+jJxkWROaccAhiQ6454Z9EdSWM/rwHrtUCnTBCSXSHEnWB 43GpqVgZAv4Wzv80YionAzJH5C5Z8Qj2dE178mxuWV/BlwmZQcQxmANXi1sP61md 1YmdGfAF2q2rrvL2o5whdbZca2xiXzGH2IibtBaGvAnHofdcP3ki4dsnL9OYM5xs dJCQ1LeFdS1qxCc2GpdCxvTaYTKlG20huAiI7bVwfqs7WLXB+ThPP7vlxcFZ5+PN yOdldLmRew76kCPAuh93UStiv/j5MQIDAQABo4IB6TCCAeUwHwYDVR0jBBgwFoAU D4BhHIIxYdUvKOeNRji0LOHG2eIwHQYDVR0OBBYEFCuTjCjdugYk/9PG0U0AF0G/ 0c3JMBsGA1UdEQQUMBKCEGRlbW8ub252aW8uY28udWswDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBrBgNVHR8EZDBiMC+gLaAr hilodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc3NjYS1zaGEyLWc2LmNybDAvoC2g K4YpaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nNi5jcmwwTAYD VR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cu ZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwfAYIKwYBBQUHAQEEcDBuMCQGCCsG AQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wRgYIKwYBBQUHMAKGOmh0 dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJTZWN1cmVTZXJ2 ZXJDQS5jcnQwCQYDVR0TBAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAQZzWI3XpSNX0rgoKzJ1TN3XhOAA2YcLUrc/aEHp46DnwcW56 52jFDrjNMJwSLn0KPrTLa9BuMYYV4KT24tPSjdmGHZW79CXHrpbbgiCvdWoKcr/o nkA/y63M/+4oKFvYWek26qSi306bAj6Sdldry7nkPqPIf3wa6xKeDH+9dtP6kkQj h+d+c2deHxX/HmuvIeUJ/DNsq02xQrfhMqA31yMA1XbXtxEc6DqrQ83BizDUdyHs hxBM3POS1FS1HKKyylAHNn36sfI1O+lb7dsTb4zkofcNTb3WXuOFWXP6xmEb12fs k37n0Mp7ufLYBq/XFE22GNAPP8taXglBW+1fHQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwq6qP4N+mdsAugYPEkkd tU2s1q/Af7pXhF5Xh7TcgprFoogf2IAhmot2gv1qCZwvX0hghkPOs0+jJxkWROac cAhiQ6454Z9EdSWM/rwHrtUCnTBCSXSHEnWB43GpqVgZAv4Wzv80YionAzJH5C5Z 8Qj2dE178mxuWV/BlwmZQcQxmANXi1sP61md1YmdGfAF2q2rrvL2o5whdbZca2xi XzGH2IibtBaGvAnHofdcP3ki4dsnL9OYM5xsdJCQ1LeFdS1qxCc2GpdCxvTaYTKl G20huAiI7bVwfqs7WLXB+ThPP7vlxcFZ5+PNyOdldLmRew76kCPAuh93UStiv/j5 MQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14778808526235466207301266002189873221 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-31 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnesota' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Eagan' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thomson Reuters' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demo.onvio.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24576361700646829073264747190568928094432046835717308583035350287844402282543559342928525227194921350405075665825083268690903143199962069565613020366131750798191822631020088741067334326107668296528591251504257185777088897519417888855172495775502719320713089669843622895613894705606825365997477662982701233841386378284077752047850556389423551850991869379827550279962701211174130263068160363155876045374426503083204730088242760980564896847014000557810833318169667689551266366525503644607378207428085663633737707870884091329337903150991264907375805241369664526461294880728974733714139332294196434178697997213620573370673 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2b938c28ddba0624ffd3c6d14d001741bfd1cdc9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.onvio.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00419cd62375e948d5f4ae0a0acc9d533775e138003661c2d4adcfda107a78e839f0716e7ae768c50eb8cd309c122e7d0a3eb4cb6bd06e318615e0a4f6e2d3d28dd9861d95bbf425c7ae96db8220af756a0a72bfe89e403fcbadccffee28285bd859e936eaa4a2df4e9b023e9276576bcbb9e43ea3c87f7c1aeb129e0c7fbd76d3fa92442387e77e73675e1f15ff1e6baf21e509fc336cab4db142b7e132a037d72300d576d7b7111ce83aab43cdc18b30d47721ec87104cdcf392d454b51ca2b2ca5007367dfab1f2353be95beddb136f8ce4a1f70d4dbdd65ee3855973fac6611bd767ec937ee7d0ca7bb9f2d806afd7144db618d00f3fcb5a5e09415bed5f1d