www.apl.com
- CMA CGM S.A. -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 09:b9:d5:bb:b0:f6:53:4b:f0:87:9e:05:3a:26:c2:eb was issued on by DigiCert Inc.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
CMA CGM S.A.
Organization:
CMA CGM S.A.
State / Province:
Provence-Alpes-Côte d'Azur
Locality: Marseille
Country: FR
Locality: Marseille
Country: FR
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:b9:d5:bb:b0:f6:53:4b:f0:87:9e:05:3a:26:c2:ebSerial Number (int): 12927961904572304778081646138226033387
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: b7:ff:28:68:3d:a3:40:79:7b:a2:62:2c:53:39:8a:64:84:8c:17:ae
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 10:a3:fb:99:1a:cf:f8:69:61:f5:b5:89:67:10:61:5d:50:97:67:d1
Fingerprint (sha256): 5a:96:72:f3:83:7b:cb:fe:3c:82:e2:78:25:64:a6:21:fa:48:83:19:22:e3:f1:60:89:0a:54:20:3c:50:a8:00
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate www.apl.com
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.apl.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.apl.com
apl.com
monitor-tata.apl.com
monitor-brazil1.apl.com
monitor-china1.apl.com
nol.com.sg
www-orig.apl.com
monitor-india1.apl.com
www-orig.apl.cma-cgm.com
monitor-akamai.apl.com
www.nol.com.sg
monitor-origin.apl.com
apl.com
monitor-tata.apl.com
monitor-brazil1.apl.com
monitor-china1.apl.com
nol.com.sg
www-orig.apl.com
monitor-india1.apl.com
www-orig.apl.cma-cgm.com
monitor-akamai.apl.com
www.nol.com.sg
monitor-origin.apl.com
Other certificates including the domain name apl.com
(limited to 100 certificates)
www.quantil.com
iap.apl.com
agentvpn.apl.com
*.apl.com
www.apl.com
gem.apl.com
webmail.apl.com
cma-cgm.com
survey.apl.com
www.quantil.com
www.quantil.com
usvpn.apl.com
sip-service.apl.com
survey.apl.com
lift.apl.com
sip-service.apl.com
officewebapps-external.apl.com
officewebapps-external.apl.com
lift.apl.com
tariff.apl.com
survey.apl.com
interchange-stg.apl.com
lyncpool01.d1.ad.apl.com
*.apl.com
sip-service.apl.com
homeport.apl.com
homeport.apl.com
aplinfo.apl.com
sgvpn2.apl.com
www.apl.com
voyage.apl.com
www.quantil.com
info.apl.com
homeport8.apl.com
snxncexpecl01.apac.apl.com
interchange-stg.apl.com
survey.apl.com
identity.apl.com
aplweb.apl.com
homeport.apl.com
mobile.apl.com
interchange-int.apl.com
www.apl.com
gem.apl.com
www.quantil.com
aplinfo.apl.com
www.quantil.com
apl.com
rbitgem.apl.com
apl.com
*.apl.com
interchange.apl.com
lift.apl.com
fson.apl.com
tariff.apl.com
voyage.apl.com
*.apl.com
webmail.apl.com
www.apl.com
homeport.apl.com
snxncexpecl01.apac.apl.com
*.apl.com
*.apl.com
www.apl.com
www.apl.com
lift.apl.com
ubusiness.apl.com
interchange.apl.com
homeport.apl.com
www.apl.com
homeport.apl.com
rbitgem.apl.com
www.apl.com
www.quantil.com
www.apl.com
www.apl.com
www.apl.com
officewebapps-external.apl.com
iap.apl.com
www.apl.com
officewebapps-internal.apl.com
webmail.apl.com
www.quantil.com
cma-cgm.com
www.apl.com
www.apl.com
cf-tariff.apl.com
sgvpn.apl.com
cma-cgm.com
aplinfo.apl.com
ocspool1.d1.ad.apl.com
homeport.apl.com
*.apl.com
fson.apl.com
homeport.apl.com
gccvat.apl.com
agentvpn.apl.com
webmail.apl.com
iam.apl.com
*.apl.com
iap.apl.com
agentvpn.apl.com
*.apl.com
www.apl.com
gem.apl.com
webmail.apl.com
cma-cgm.com
survey.apl.com
www.quantil.com
www.quantil.com
usvpn.apl.com
sip-service.apl.com
survey.apl.com
lift.apl.com
sip-service.apl.com
officewebapps-external.apl.com
officewebapps-external.apl.com
lift.apl.com
tariff.apl.com
survey.apl.com
interchange-stg.apl.com
lyncpool01.d1.ad.apl.com
*.apl.com
sip-service.apl.com
homeport.apl.com
homeport.apl.com
aplinfo.apl.com
sgvpn2.apl.com
www.apl.com
voyage.apl.com
www.quantil.com
info.apl.com
homeport8.apl.com
snxncexpecl01.apac.apl.com
interchange-stg.apl.com
survey.apl.com
identity.apl.com
aplweb.apl.com
homeport.apl.com
mobile.apl.com
interchange-int.apl.com
www.apl.com
gem.apl.com
www.quantil.com
aplinfo.apl.com
www.quantil.com
apl.com
rbitgem.apl.com
apl.com
*.apl.com
interchange.apl.com
lift.apl.com
fson.apl.com
tariff.apl.com
voyage.apl.com
*.apl.com
webmail.apl.com
www.apl.com
homeport.apl.com
snxncexpecl01.apac.apl.com
*.apl.com
*.apl.com
www.apl.com
www.apl.com
lift.apl.com
ubusiness.apl.com
interchange.apl.com
homeport.apl.com
www.apl.com
homeport.apl.com
rbitgem.apl.com
www.apl.com
www.quantil.com
www.apl.com
www.apl.com
www.apl.com
officewebapps-external.apl.com
iap.apl.com
www.apl.com
officewebapps-internal.apl.com
webmail.apl.com
www.quantil.com
cma-cgm.com
www.apl.com
www.apl.com
cf-tariff.apl.com
sgvpn.apl.com
cma-cgm.com
aplinfo.apl.com
ocspool1.d1.ad.apl.com
homeport.apl.com
*.apl.com
fson.apl.com
homeport.apl.com
gccvat.apl.com
agentvpn.apl.com
webmail.apl.com
iam.apl.com
*.apl.com
Certificate
The complete raw certificate details for www.apl.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHRjCCBi6gAwIBAgIQCbnVu7D2U0vwh54FOibC6zANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MjEwOTE2MDAwMDAwWhcNMjIxMDA1MjM1OTU5WjB0MQswCQYDVQQGEwJGUjEkMCIG A1UECAwbUHJvdmVuY2UtQWxwZXMtQ8O0dGUgZCdBenVyMRIwEAYDVQQHEwlNYXJz ZWlsbGUxFTATBgNVBAoTDENNQSBDR00gUy5BLjEUMBIGA1UEAxMLd3d3LmFwbC5j b20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC89cyvpTMEInnQlYvQ Vk5OH+Ms+P210PiPr5W8Fg8LfnlM1CNPS2i3XwYy2jqlwmnc/N+fM8c9mz4EIbIm OkKZjyfC6F30WXDj2d5K7hqg26LjIU4GQRKhJ1C/bPR1K+efydI/ktq3+654Fego FUuNVPqVTeAAQKilWFda0AUw5dAJDwIpeeQRHZSBPP8MHdcGhccmjxwe+OLJwGGq r1crZFnhzKGM1iVj/E0mMlPF766YqE73dqvmGBVxNWoccAn11ArUJyyAUV5S69bH hkqp4z/N+HQfs6Yao0Wzv8YgB8RdNe/ikh0kOfDIYXkKxW0jtcu5ihc1HnlCIEl7 HrWxAgMBAAGjggPqMIID5jAfBgNVHSMEGDAWgBSjyF5lVOUweMEF6gcKalnMuf7e WjAdBgNVHQ4EFgQUt/8oaD2jQHl7omIsUzmKZISMF64wgfgGA1UdEQSB8DCB7YIL d3d3LmFwbC5jb22CB2FwbC5jb22CFG1vbml0b3ItdGF0YS5hcGwuY29tghdtb25p dG9yLWJyYXppbDEuYXBsLmNvbYIWbW9uaXRvci1jaGluYTEuYXBsLmNvbYIKbm9s LmNvbS5zZ4IQd3d3LW9yaWcuYXBsLmNvbYIWbW9uaXRvci1pbmRpYTEuYXBsLmNv bYIYd3d3LW9yaWcuYXBsLmNtYS1jZ20uY29tghZtb25pdG9yLWFrYW1haS5hcGwu Y29tgg53d3cubm9sLmNvbS5zZ4IWbW9uaXRvci1vcmlnaW4uYXBsLmNvbTAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDoGA1Ud HwQzMDEwL6AtoCuGKWh0dHA6Ly9jZHAudGhhd3RlLmNvbS9UaGF3dGVSU0FDQTIw MTguY3JsMD4GA1UdIAQ3MDUwMwYGZ4EMAQICMCkwJwYIKwYBBQUHAgEWG2h0dHA6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzBvBggrBgEFBQcBAQRjMGEwJAYIKwYBBQUH MAGGGGh0dHA6Ly9zdGF0dXMudGhhd3RlLmNvbTA5BggrBgEFBQcwAoYtaHR0cDov L2NhY2VydHMudGhhd3RlLmNvbS9UaGF3dGVSU0FDQTIwMTguY3J0MAwGA1UdEwEB /wQCMAAwggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB1ACl5vvCeOTkh8FZzn2Ol d+W+V32cYAr4+U1dJlwlXceEAAABe+3qzVQAAAQDAEYwRAIgNOwgswExjxhZrOuH g/nMeG8fmF39JY0UZdSHThazr7YCIBcBubKCDjER0IGfzcLj7tCEM3tReDnRe37Y 9Pa99yh9AHUAUaOw9f0BeZxWbbg3eI8MpHrMGyfL956IQpoN/tSLBeUAAAF77erN qAAABAMARjBEAiAVg1kriDMfS1UmX0OIILNy2udHENW8AOL1uZEfbxsY6wIgRlo0 KVffAidZoONKp/W2efKAEMaeCItGiv0Avf1eAHcAdwBByMqx3yJGShDGoToJQode TjGLGwPr60vHaPCQYpYG9gAAAXvt6s0nAAAEAwBIMEYCIQCjG+xvGmSmqkMCBmrX ubhzXvxfzO9sT5AMo/gaNHU5AQIhANIGWPy9ze1+PnpYdCC1ivCfPLv2zJ/eD4i0 W06VfQ4ZMA0GCSqGSIb3DQEBCwUAA4IBAQBfRFuPhzHI1xQEgbujKePHXgGqI8AY eoe2EEcFeVVY65PYopvebgrljkrM1IZngzIsXVT8GxIVqhF8jnziO6A7vyfM3vQK tjOz0Z6mHsi06JPYL3Zh2tu2TPMAXm6KemJ8G7fcLsL1X8+A00CKLJrpcEIoHGrD OOpCnL936fRQUe1AOWGb0zMDefF8j1AiC6V6jSRiM2kMrip7gwirKXY6UEYzNn2Z DlLAgkxfCeubZ6spkF/DByXU1eBRmBbsKY6cptLwv2gy/yy0cr2ZMFYsslxQxgRx Dywz05UavVr/PMpEluBSNxA/1YfOTojzSGdo9oDootTUSlyz8wfT1Z4T -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPXMr6UzBCJ50JWL0FZO Th/jLPj9tdD4j6+VvBYPC355TNQjT0tot18GMto6pcJp3PzfnzPHPZs+BCGyJjpC mY8nwuhd9Flw49neSu4aoNui4yFOBkESoSdQv2z0dSvnn8nSP5Lat/uueBXoKBVL jVT6lU3gAECopVhXWtAFMOXQCQ8CKXnkER2UgTz/DB3XBoXHJo8cHvjiycBhqq9X K2RZ4cyhjNYlY/xNJjJTxe+umKhO93ar5hgVcTVqHHAJ9dQK1CcsgFFeUuvWx4ZK qeM/zfh0H7OmGqNFs7/GIAfEXTXv4pIdJDnwyGF5CsVtI7XLuYoXNR55QiBJex61 sQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12927961904572304778081646138226033387 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Provence-Alpes-Côte d'Azur' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Marseille' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CMA CGM S.A.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.apl.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23854009611750347716666208615676247457472995586144228459413994344830967837055491093226598908161120788790965120641539850741497080477552342727824177440091508280424521523760873150269724163316779267945253155396490335652520679456490653289228503692800432106690562096818827121790978250474165118502605905452014752988919527299463028230242660895967706647979063656583498737901487522291028367033707022514727689592776982604233024550193095403499812467545071845958710783252466741087086337010978580499784376201753789718778574591928242610898739916770090659059842533769449050314585702641766509955141967376764486538346939436596169979313 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b7ff28683da340797ba2622c53398a64848c17ae . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.apl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'monitor-tata.apl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'monitor-brazil1.apl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'monitor-china1.apl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nol.com.sg' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-orig.apl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'monitor-india1.apl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-orig.apl.cma-cgm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'monitor-akamai.apl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nol.com.sg' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'monitor-origin.apl.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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