ged.lalive.ch
Issued by RapidSSL CA
About this certificate
This digital certificate with serial number 0c:6f:21 was issued on by GeoTrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
SERIALNUMBER=oOb6TLra7OBok6amXBOTPOTSzwiUI1Fq,CN=ged.lalive.ch,OU=GT78804547+OU=See www.rapidssl.com/resources/cps (c)13+OU=Domain Control Validated - RapidSSL(R)
GeoTrust, Inc.
Organization:
GeoTrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:6f:21Serial Number (int): 814881
Serial Number lenght: 20 bits, 3 octets
SubjectKeyId: 5d:40:aa:3c:fd:45:a0:d2:de:d9:3f:7b:17:2a:9a:18:87:10:8f:cd
AuthorityKeyId: 6b:69:3d:6a:18:42:4a:dd:8f:02:65:39:fd:35:24:86:78:91:16:30
Fingerprint (sha1): 21:9d:03:e5:fd:e7:e1:3a:7c:4b:35:8d:08:97:e2:75:07:22:d2:0d
Fingerprint (sha256): 5c:79:b7:af:cc:99:e4:94:a6:3f:06:62:9b:45:6d:8a:ea:1a:27:d7:13:31:f2:2e:1b:f4:e7:ed:09:66:47:b9
Issuing Certificate URL: http://rapidssl-aia.geotrust.com/rapidssl.crt
Revocation information
OCSP Server: http://rapidssl-ocsp.geotrust.comCRL Distribution Point: http://rapidssl-crl.geotrust.com/crls/rapidssl.crl
Check the revocation status for certificate ged.lalive.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ged.lalive.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ged.lalive.ch
Other certificates including the domain name lalive.ch
(limited to 100 certificates)
www.lalive.law
www.lalive.law
webmail.lalive.ch
archive.lalive.ch
www.lalive.law
*.lalive.ch
webmail.lalive.ch
webmail.lalive.ch
www.lalive.law
archive.lalive.ch
ged.lalive.ch
www.lalive.law
*.lalive.law
*.lalive.law
outlook.lalive.ch
www.lalive.law
*.lalive.law
www.lalive.law
www.lalive.law
lalive.ch
*.lalive.law
www.lalive.law
*.lalive.law
staging2024.lalive.law
*.lalive.law
archivesp.lalive.ch
www.lalive.law
www.lalive.law
webmail.lalive.ch
archive.lalive.ch
www.lalive.law
*.lalive.ch
webmail.lalive.ch
webmail.lalive.ch
www.lalive.law
archive.lalive.ch
ged.lalive.ch
www.lalive.law
*.lalive.law
*.lalive.law
outlook.lalive.ch
www.lalive.law
*.lalive.law
www.lalive.law
www.lalive.law
lalive.ch
*.lalive.law
www.lalive.law
*.lalive.law
staging2024.lalive.law
*.lalive.law
archivesp.lalive.ch
www.lalive.law
Certificate
The complete raw certificate details for ged.lalive.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGIDCCBQigAwIBAgIDDG8hMA0GCSqGSIb3DQEBCwUAMDwxCzAJBgNVBAYTAlVT MRcwFQYDVQQKEw5HZW9UcnVzdCwgSW5jLjEUMBIGA1UEAxMLUmFwaWRTU0wgQ0Ew HhcNMTMwNjA0MjIxNjQ0WhcNMTYwOTA2MTQwMjM5WjCBvDEpMCcGA1UEBRMgb09i NlRMcmE3T0JvazZhbVhCT1RQT1RTendpVUkxRnExEzARBgNVBAsTCkdUNzg4MDQ1 NDcxMTAvBgNVBAsTKFNlZSB3d3cucmFwaWRzc2wuY29tL3Jlc291cmNlcy9jcHMg KGMpMTMxLzAtBgNVBAsTJkRvbWFpbiBDb250cm9sIFZhbGlkYXRlZCAtIFJhcGlk U1NMKFIpMRYwFAYDVQQDEw1nZWQubGFsaXZlLmNoMIICIjANBgkqhkiG9w0BAQEF AAOCAg8AMIICCgKCAgEA8la4v7+F+r8keDYZjscRooTLLvjUPGO8NGMGYody41vB gd7wtInPW+VTrZprKH8st6uXXqy6wmPtl8fAe2EFn+hkpLEOlS7bULI79hhSyZNL tylaQ2kobobMjcvyKYszpvDYv/Qdm4VSRz+0thlZQyLhdVHXEinQY9LPi8UlqpfS kmJOyTWdQp3Tys0oB2lWnLWbcInDEq30mJbck31DvGm+XR5uAdmAbmXZ5IERIb6d /U3ECdVYJZ5qxS2xRtw009a6RNRi8LUsebTXI764KQFg23MC3mMnDqBcJWad6AVv tczTHgS3KsaF5p9v2fNUy1VM3U72scv+jX7rxvy+8Nc4S9TIDjMAltCyy4iBBJvY mnUttJmw17yGzCd6RxFvfSvi5bNQqDR7A8gMLyPPaYGJlimfBihqpuLrIRHeZWrn zjsdhpioH7J7IqUS2CxqDoMHqomLwG+nT3SGQkeHOai3Wkf2W5QxYrjPm7NAgpc7 B996Vpjx0EFMdtGJeRJuYfgXvV67rgloZ7vMORN0L8sAKMcbAOzGMibkH5gti94d cvQOizG7ubDx4MpbAu6LOFbbecrYp8CNSj36yfv+T0ctscv3LftXbjFv/Zg03OQq jwVT7WBXGHo5tVg0Zw3z5DUvf9c3AMY9+VtGfmrzkpMh557T0k3Ssu7VndNReoUC AwEAAaOCAagwggGkMB8GA1UdIwQYMBaAFGtpPWoYQkrdjwJlOf01JIZ4kRYwMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwGAYD VR0RBBEwD4INZ2VkLmxhbGl2ZS5jaDBDBgNVHR8EPDA6MDigNqA0hjJodHRwOi8v cmFwaWRzc2wtY3JsLmdlb3RydXN0LmNvbS9jcmxzL3JhcGlkc3NsLmNybDAdBgNV HQ4EFgQUXUCqPP1FoNLe2T97FyqaGIcQj80wDAYDVR0TAQH/BAIwADB4BggrBgEF BQcBAQRsMGowLQYIKwYBBQUHMAGGIWh0dHA6Ly9yYXBpZHNzbC1vY3NwLmdlb3Ry dXN0LmNvbTA5BggrBgEFBQcwAoYtaHR0cDovL3JhcGlkc3NsLWFpYS5nZW90cnVz dC5jb20vcmFwaWRzc2wuY3J0MEwGA1UdIARFMEMwQQYKYIZIAYb4RQEHNjAzMDEG CCsGAQUFBwIBFiVodHRwOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJjZXMvY3Bz MA0GCSqGSIb3DQEBCwUAA4IBAQAdAMko/70dI6ht/3NkF9MVNu/TuRFiacN/in65 bJ9c259xvGMnmEqDemZANbpXhpEs5HDhbX9Egj3iYH3V9eviigg6rK3jAo9zwzIj HiIWuEaOZKaW7Kfxdwy3oScix13wlnVJghLoelXv1J0B2YfuIUCrryNn3z6vWY4J /O/lRP8EclGwqXYL3P4+g98r+xaM/5fHk+Qlftg8ScQZQwoDbXel6M6aCgMz7DSO pcNqXIev7JaiAGVX0XqBX6x0quxSQmnJ+hNToY87u+EiiJVV4buomk6rplR4exhm Pvnts6k+0rhe4XzmC0bikNriTubSu8LCFaRZX8Ff834hUui1 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA8la4v7+F+r8keDYZjscR ooTLLvjUPGO8NGMGYody41vBgd7wtInPW+VTrZprKH8st6uXXqy6wmPtl8fAe2EF n+hkpLEOlS7bULI79hhSyZNLtylaQ2kobobMjcvyKYszpvDYv/Qdm4VSRz+0thlZ QyLhdVHXEinQY9LPi8UlqpfSkmJOyTWdQp3Tys0oB2lWnLWbcInDEq30mJbck31D vGm+XR5uAdmAbmXZ5IERIb6d/U3ECdVYJZ5qxS2xRtw009a6RNRi8LUsebTXI764 KQFg23MC3mMnDqBcJWad6AVvtczTHgS3KsaF5p9v2fNUy1VM3U72scv+jX7rxvy+ 8Nc4S9TIDjMAltCyy4iBBJvYmnUttJmw17yGzCd6RxFvfSvi5bNQqDR7A8gMLyPP aYGJlimfBihqpuLrIRHeZWrnzjsdhpioH7J7IqUS2CxqDoMHqomLwG+nT3SGQkeH Oai3Wkf2W5QxYrjPm7NAgpc7B996Vpjx0EFMdtGJeRJuYfgXvV67rgloZ7vMORN0 L8sAKMcbAOzGMibkH5gti94dcvQOizG7ubDx4MpbAu6LOFbbecrYp8CNSj36yfv+ T0ctscv3LftXbjFv/Zg03OQqjwVT7WBXGHo5tVg0Zw3z5DUvf9c3AMY9+VtGfmrz kpMh557T0k3Ssu7VndNReoUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 814881 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-06-04 22:16:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-06 14:02:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'oOb6TLra7OBok6amXBOTPOTSzwiUI1Fq' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT78804547' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)13' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ged.lalive.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 988655870595352528514377351555320488471302537390184950781905301094223085866315013181479472668092215491996429578070996877139369888515279852926254020779789375281397779066184775691883327195892575489284576854609699468243823502516590962870502646598562044788545688129699930046107520673793679508385371036762056834846851909885545949784899832312591654267082859871870960659766258143315056451236379857559982667881755548605889497678524306268088827900441000990023355468958767837999629248349237938155783227798939619006913812604598559662981203947962398625152775904509941039304280257774189159733480161494581988689182403008354485957946717601732541372297644157279223265783056535313132249603518144203269447177530304444708866978579579065290322000154855119299632440328444962167019919362519122080534094940081223224796439439033359358462575921528457418320216542155070748108866646486605048284652063810983933020481932868398069569308468900593154189051807365492761079599054765112992473031079628465420548460057255497397164488546326953736183578622426394493405169761315811467000049584142235655544948021910555580032018995087133091081075901959471648515106894620167533618467540090585063902040509241469353426591749752181496773718693102294956170013991423515986551208581 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b693d6a18424add8f026539fd35248678911630 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ged.lalive.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-crl.geotrust.com/crls/rapidssl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5d40aa3cfd45a0d2ded93f7b172a9a1887108fcd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-ocsp.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-aia.geotrust.com/rapidssl.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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