*.kpmg.se
- KPMG AB -
Issued by GlobalSign RSA OV SSL CA 2018
About this certificate
This digital certificate with serial number 79:fe:17:96:0d:69:b4:22:32:81:1b:81 was issued on by GlobalSign nv-sa.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)
KPMG AB
Organization:
KPMG AB
Organization unit: IT
Organization unit: IT
State / Province:
Stockholm
Locality: Stockholm
Country: SE
Locality: Stockholm
Country: SE
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 79:fe:17:96:0d:69:b4:22:32:81:1b:81Serial Number (int): 37754864728972087838363425665
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: d6:1b:b7:b1:6b:e8:03:cb:4a:d9:48:a8:ca:6b:5f:18:53:f2:b2:87
AuthorityKeyId: f8:ef:7f:f2:cd:78:67:a8:de:6f:8f:24:8d:88:f1:87:03:02:b3:eb
Fingerprint (sha1): f9:01:c3:80:b4:d4:36:58:0b:7b:35:fa:35:6f:36:b0:24:9e:f1:2d
Fingerprint (sha256): 5b:81:1c:99:33:08:72:23:78:28:7d:c5:f0:ee:30:01:d5:5d:1a:50:bb:48:00:9d:1d:69:54:46:62:9e:79:89
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsrsaovsslca2018CRL Distribution Point: http://crl.globalsign.com/gsrsaovsslca2018.crl
Check the revocation status for certificate *.kpmg.se
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.kpmg.se
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.kpmg.se
kpmg.se
kpmg.se
Other certificates including the domain name kpmg.se
(limited to 100 certificates)
*.kpmg.se
ka.kpmg.se
access.lync.omvideo.se
sipfed.kpmg.com
mi.kpmg.se
sentry.kpmg.se
sft.kpmg.se
ef.kpmg.se
sipfed.kpmg.com
Sip.kpmg.com
sip-ema.kpmg.com
ka.kpmg.se
sipfed.kpmg.com
*.kpmg.se
*.kpmg.se
indecon.kpmg.se
cdpapp1.kpmg.se
access.lync.omvideo.se
sipfed.kpmg.com
sft.kpmg.se
*.kpmg.se
info.kpmg.se
sipfed-ema2.kpmg.com
apimgmt.kpmg.se
access.lync.omvideo.se
video.kpmg.se
ef.kpmg.se
ka2.kpmg.se
sipfed-ema2.kpmg.com
*.kpmg.se
sipfed-ema2.kpmg.com
access.lync.omvideo.se
*.kpmg.se
sentry.kpmg.se
sip-amr.kpmg.com
access.lync.omvideo.se
*.kpmg.se
gp.kpmg.se
*.kpmg.se
mi.kpmg.se
*.kpmg.se
sft.kpmg.se
access.lync.omvideo.se
dialogue.kpmg.se
sip-ema2.kpmg.com
*.kpmg.se
info.kpmg.se
Sip.kpmg.com
access.lync.omvideo.se
sip-ema3.kpmg.com
xmpp.vm.omvideo.se
sipfed.kpmg.com
access.lync.omvideo.se
info.kpmg.se
info.kpmg.se
sft.kpmg.se
ka.kpmg.se
access.lync.omvideo.se
sipfed.kpmg.com
mi.kpmg.se
sentry.kpmg.se
sft.kpmg.se
ef.kpmg.se
sipfed.kpmg.com
Sip.kpmg.com
sip-ema.kpmg.com
ka.kpmg.se
sipfed.kpmg.com
*.kpmg.se
*.kpmg.se
indecon.kpmg.se
cdpapp1.kpmg.se
access.lync.omvideo.se
sipfed.kpmg.com
sft.kpmg.se
*.kpmg.se
info.kpmg.se
sipfed-ema2.kpmg.com
apimgmt.kpmg.se
access.lync.omvideo.se
video.kpmg.se
ef.kpmg.se
ka2.kpmg.se
sipfed-ema2.kpmg.com
*.kpmg.se
sipfed-ema2.kpmg.com
access.lync.omvideo.se
*.kpmg.se
sentry.kpmg.se
sip-amr.kpmg.com
access.lync.omvideo.se
*.kpmg.se
gp.kpmg.se
*.kpmg.se
mi.kpmg.se
*.kpmg.se
sft.kpmg.se
access.lync.omvideo.se
dialogue.kpmg.se
sip-ema2.kpmg.com
*.kpmg.se
info.kpmg.se
Sip.kpmg.com
access.lync.omvideo.se
sip-ema3.kpmg.com
xmpp.vm.omvideo.se
sipfed.kpmg.com
access.lync.omvideo.se
info.kpmg.se
info.kpmg.se
sft.kpmg.se
Certificate
The complete raw certificate details for *.kpmg.se in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGiDCCBXCgAwIBAgIMef4Xlg1ptCIygRuBMA0GCSqGSIb3DQEBCwUAMFAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSYwJAYDVQQDEx1H bG9iYWxTaWduIFJTQSBPViBTU0wgQ0EgMjAxODAeFw0yMTExMTYxNjAxMDdaFw0y MjEyMTgxNjAxMDdaMGgxCzAJBgNVBAYTAlNFMRIwEAYDVQQIEwlTdG9ja2hvbG0x EjAQBgNVBAcTCVN0b2NraG9sbTELMAkGA1UECxMCSVQxEDAOBgNVBAoTB0tQTUcg QUIxEjAQBgNVBAMMCSoua3BtZy5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAOMgbcKFP8tFrH2XzdI8g49+rtFR16i/BMAtbDDPSMI8SoqhQYIl0Maw Zqm5AB+uU0Xk/yGr78As4vHDAHjHMdg1Nyjro9wIgOWF4Tgjyn7JgicXTwRVACYg ye3Gv5Pioh3hCiVKeGK19bVlLIDofxb/Hh2J6cFqc1t6Ko8cJpeHq1mX8hWKMyfU CzLMP9+mz77y+EhRRp0wuNM+c6+jv9if6Rze2SBe18Q4qerp4PUSffGBAXaezn7X DOr8w5M+KKNxZm7YB/tlBVgUuJWfN+QsiPC3KY8vU00PkgGkRcVpyYQxnZmnVd+Q SbFzpC/a07D6Wj89cumnOIxBXXmFnvkCAwEAAaOCA0gwggNEMA4GA1UdDwEB/wQE AwIFoDCBjgYIKwYBBQUHAQEEgYEwfzBEBggrBgEFBQcwAoY4aHR0cDovL3NlY3Vy ZS5nbG9iYWxzaWduLmNvbS9jYWNlcnQvZ3Nyc2FvdnNzbGNhMjAxOC5jcnQwNwYI KwYBBQUHMAGGK2h0dHA6Ly9vY3NwLmdsb2JhbHNpZ24uY29tL2dzcnNhb3Zzc2xj YTIwMTgwVgYDVR0gBE8wTTBBBgkrBgEEAaAyARQwNDAyBggrBgEFBQcCARYmaHR0 cHM6Ly93d3cuZ2xvYmFsc2lnbi5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQICMAkG A1UdEwQCMAAwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL2NybC5nbG9iYWxzaWdu LmNvbS9nc3JzYW92c3NsY2EyMDE4LmNybDAdBgNVHREEFjAUggkqLmtwbWcuc2WC B2twbWcuc2UwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8GA1UdIwQY MBaAFPjvf/LNeGeo3m+PJI2I8YcDArPrMB0GA1UdDgQWBBTWG7exa+gDy0rZSKjK a18YU/KyhzCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYAb1N2rDHwMRnYmQCk URX/dxUcEdkCwQApBo2yCJo32RMAAAF9KXsJNAAABAMARzBFAiBxXbTaRYNdc8m1 ltHfc+oPP+py2N028r6zvMZeuc5V0wIhANsxzn9l0KE3B8soQ07E9E+4la24EkM8 uK0wrMZRPkhoAHYAKXm+8J45OSHwVnOfY6V35b5XfZxgCvj5TV0mXCVdx4QAAAF9 KXsKUwAABAMARzBFAiBV/DmXltd63gY8uqJIEkwyzXxjtHXactl2QEo89uLLaAIh AKtKK7Xd0Kl1bvbLsIP7Ub+L1un51yk4yTyu5oevnckxAHUAUaOw9f0BeZxWbbg3 eI8MpHrMGyfL956IQpoN/tSLBeUAAAF9KXsKiAAABAMARjBEAiBuzxDTp1OkiHU/ n+vm/reSfkb89gBz4NzM6V+HrX3hfAIgWpY6PCSC4bnHxXmxSqIAxSVkcgYWigdK RCoebHxFdrkwDQYJKoZIhvcNAQELBQADggEBADN778jF9IMhXbyrrZ5lu2FUIfTU R7DJHnk8zTUrZPPSr2hffbrEuFDKXQEpHr0YM6b/ZN/6ZVrInwXhS9BhplayBM2T 637svVK/UtDW4Ec30RMiO8W6UB1hj0r7tT4qIep9wM37j75MRtPYzLfkMBWWLa6Z 5kTzEgxVVbhAF4gkOKNVrxtH/utdGRTpcmvylwb10yYgU/WDADL7C3pcX0eiBaQw dRnoiaiB9Wmn/OtoXTqGIXnxgXv3EWsPLIPv0gsS1E8eJR/rW0HJ+5gPBI7gs8Jz //y7znDJiP3pkzwcuTrhE+finGqvDiuixzZa1l3E5fjWRuo0Gjb4KqQAnrA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4yBtwoU/y0WsfZfN0jyD j36u0VHXqL8EwC1sMM9IwjxKiqFBgiXQxrBmqbkAH65TReT/IavvwCzi8cMAeMcx 2DU3KOuj3AiA5YXhOCPKfsmCJxdPBFUAJiDJ7ca/k+KiHeEKJUp4YrX1tWUsgOh/ Fv8eHYnpwWpzW3oqjxwml4erWZfyFYozJ9QLMsw/36bPvvL4SFFGnTC40z5zr6O/ 2J/pHN7ZIF7XxDip6ung9RJ98YEBdp7OftcM6vzDkz4oo3FmbtgH+2UFWBS4lZ83 5CyI8Lcpjy9TTQ+SAaRFxWnJhDGdmadV35BJsXOkL9rTsPpaPz1y6ac4jEFdeYWe +QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 37754864728972087838363425665 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign RSA OV SSL CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-11-16 16:01:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-18 16:01:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Stockholm' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Stockholm' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'KPMG AB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.kpmg.se' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28672086439623785550363995700897985567169325793398988676939360165272468318796872865048522148955835879916985050377875084609531592549256924466978505640473460937078901948637153335445082427055005941292365620521862705098708069269941238814887166066685707746582379870123502330553172381755410467729419248546136068996501481254757736798900511175686394300550722467831977516033658728825266748417986980996703166907094536888712091430783597027753202911450639619167626795975658538596903739355557040365781376880159210615305288590887881245407090975234532194015798870122291359042554403695783082697770259757773454006483785274520844476153 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsrsaovsslca2018' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsrsaovsslca2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kpmg.se' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kpmg.se' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f8ef7ff2cd7867a8de6f8f248d88f1870302b3eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d61bb7b16be803cb4ad948a8ca6b5f1853f2b287 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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