ctagm.tchibo.de
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 0d:38:f3:03:89:73:da:87:37:d8:d3:82:fc:c3:60:a0 was issued on by DigiCert, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ctagm.tchibo.de
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:38:f3:03:89:73:da:87:37:d8:d3:82:fc:c3:60:a0Serial Number (int): 17575661475039536378661102671202836640
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: d1:55:a4:77:5a:22:0f:f4:c0:52:f0:a9:72:8a:60:51:1c:2d:4b:a0
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): 57:09:22:08:5b:fa:bf:c1:df:63:c8:72:fc:e2:45:15:93:cb:0c:0f
Fingerprint (sha256): 5d:d8:84:e8:1b:8f:a6:6d:74:5c:b7:3d:5d:76:0c:73:d9:6b:21:80:b5:60:23:5a:45:33:7b:b6:88:d1:4d:2c
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate ctagm.tchibo.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ctagm.tchibo.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ctagm.tchibo.de
Other certificates including the domain name tchibo.de
(limited to 100 certificates)
tschibo.de
news.tchibo.de
news2.tchibo.de
buchung-reisen.tchibo.de
news2.tchibo.de
www.tchibo.de
contractmanagement.tchibo.de
tschibo.de
news.tchibo.de
*.tchibo.de
gewinnen.tchibo.de
news.tchibo.de
news.tchibo.de
blumen.tchibo.de
ihreurlaubsbuchung.tchibo.de
images.tchibo.de
tracking.tchibo.de
news.tchibo.de
fitness.tchibo.de
*.tchibo.de
news.tchibo.de
tagm.tchibo.de
*.reisedeals.tchibo.de
news.tchibo.de
black-n-white.tchibo.de
tracking.tchibo.de
www.strom.tchibo.de
fitness.tchibo.de
gewinnen.tchibo.de
community.tchibo.de
www.tchibo.de
tagm.tchibo.de
blumen.tchibo.de
news.tchibo.de
news.tchibo.de
access.tchibo.com
tschibo.de
access.tchibo.com
news.tchibo.de
tschibo.de
service.tchibo.de
sip.tchibo.com
ltur.tchibo.de
www.tchibo.de
mobilfunk.tchibo.de
ctagm.tchibo.de
reisen.tchibo.de
foto.tchibo.de
fitness.tchibo.de
fitness.tchibo.de
order-reisen.tchibo.de
tschibo.de
70.tchibo.de
tschibo.de
gas.tchibo.de
www.tchibo.de
blumen.tchibo.de
fitness.tchibo.de
smartman-test.tchibo.de
www.tchibo.de
b2bt.tchibo.de
tschibo.de
fitness.tchibo.de
service.tchibo.de
news.tchibo.de
order-reisen.tchibo.de
tschibo.de
www.tchibo.de
www.tchibo.de
*.tchibo.de
tschibo.de
images.tchibo.de
service.tchibo.de
*.tchibo.de
ctagm.tchibo.de
*.tchibo.de
tschibo.de
service.tchibo.de
news.tchibo.de
community.tchibo.de
news.tchibo.de
fitness.tchibo.de
blumen.tchibo.de
www.tchibo.de
dsx.tchibo.de
reisen.tchibo.de
tschibo.de
tracking.tchibo.de
reisebuchung.tchibo.de
www.tchibo.de
reisebuchung.tchibo.de
community.tchibo.de
service.tchibo.de
www.tchibo.de
order-reisen.tchibo.de
news.tchibo.de
fitness.tchibo.de
tracking.tchibo.de
*.tchibo.de
fitness.tchibo.de
news.tchibo.de
news2.tchibo.de
buchung-reisen.tchibo.de
news2.tchibo.de
www.tchibo.de
contractmanagement.tchibo.de
tschibo.de
news.tchibo.de
*.tchibo.de
gewinnen.tchibo.de
news.tchibo.de
news.tchibo.de
blumen.tchibo.de
ihreurlaubsbuchung.tchibo.de
images.tchibo.de
tracking.tchibo.de
news.tchibo.de
fitness.tchibo.de
*.tchibo.de
news.tchibo.de
tagm.tchibo.de
*.reisedeals.tchibo.de
news.tchibo.de
black-n-white.tchibo.de
tracking.tchibo.de
www.strom.tchibo.de
fitness.tchibo.de
gewinnen.tchibo.de
community.tchibo.de
www.tchibo.de
tagm.tchibo.de
blumen.tchibo.de
news.tchibo.de
news.tchibo.de
access.tchibo.com
tschibo.de
access.tchibo.com
news.tchibo.de
tschibo.de
service.tchibo.de
sip.tchibo.com
ltur.tchibo.de
www.tchibo.de
mobilfunk.tchibo.de
ctagm.tchibo.de
reisen.tchibo.de
foto.tchibo.de
fitness.tchibo.de
fitness.tchibo.de
order-reisen.tchibo.de
tschibo.de
70.tchibo.de
tschibo.de
gas.tchibo.de
www.tchibo.de
blumen.tchibo.de
fitness.tchibo.de
smartman-test.tchibo.de
www.tchibo.de
b2bt.tchibo.de
tschibo.de
fitness.tchibo.de
service.tchibo.de
news.tchibo.de
order-reisen.tchibo.de
tschibo.de
www.tchibo.de
www.tchibo.de
*.tchibo.de
tschibo.de
images.tchibo.de
service.tchibo.de
*.tchibo.de
ctagm.tchibo.de
*.tchibo.de
tschibo.de
service.tchibo.de
news.tchibo.de
community.tchibo.de
news.tchibo.de
fitness.tchibo.de
blumen.tchibo.de
www.tchibo.de
dsx.tchibo.de
reisen.tchibo.de
tschibo.de
tracking.tchibo.de
reisebuchung.tchibo.de
www.tchibo.de
reisebuchung.tchibo.de
community.tchibo.de
service.tchibo.de
www.tchibo.de
order-reisen.tchibo.de
news.tchibo.de
fitness.tchibo.de
tracking.tchibo.de
*.tchibo.de
fitness.tchibo.de
Certificate
The complete raw certificate details for ctagm.tchibo.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHiTCCBXGgAwIBAgIQDTjzA4lz2oc32NOC/MNgoDANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjIxMjA1MDAwMDAwWhcNMjMxMjA1MjM1OTU5WjAaMRgwFgYDVQQDEw9jdGFnbS50 Y2hpYm8uZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyyPg20HMo 3tFIeljEdZKB0Uj/2X5/wZs39TRBDDYL8Mn/dNu3Uq/1DfSpYSONQUasId2T5fWm xdT1zEnq7b5WCJndRQ3i59HpkASe8aL43r3OChdc16H01xvESQS9/MSdHwIsm+Za ms2OZlCYd5SRw/QtB0iGxt9r1k5lDZ0XRAYn/z4tsY4+2tLq6YVJd5/Xkzx+zBcT YM+HXC6V5SEpbNZNNRJpaxiCi/tQda6Wo06Yko1MWcjJHPfIOALVLscjExZEQUUF FO3Kfgepejhj0pWIqe8AUFQq9ZcQRVjlVkwY8OReXP3fnQzTEfBgzXQP/6adPQw1 HMq7pfp8DtQTAgMBAAGjggOHMIIDgzAfBgNVHSMEGDAWgBSltNbrNsTna6bfxGQL ASogBLhmIzAdBgNVHQ4EFgQU0VWkd1oiD/TAUvCpcopgURwtS6AwGgYDVR0RBBMw EYIPY3RhZ20udGNoaWJvLmRlMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwgZ8GA1UdHwSBlzCBlDBIoEagRIZCaHR0cDovL2Ny bDMuZGlnaWNlcnQuY29tL0dlb1RydXN0R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIw MjJDQTEuY3JsMEigRqBEhkJodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vR2VvVHJ1 c3RHbG9iYWxUTFNSU0E0MDk2U0hBMjU2MjAyMkNBMS5jcmwwPgYDVR0gBDcwNTAz BgZngQwBAgEwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20v Q1BTMIGHBggrBgEFBQcBAQR7MHkwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRp Z2ljZXJ0LmNvbTBRBggrBgEFBQcwAoZFaHR0cDovL2NhY2VydHMuZGlnaWNlcnQu Y29tL0dlb1RydXN0R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEuY3J0MAkG A1UdEwQCMAAwggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB2AK33vvp8/xDIi509 nB4+GGq0Zyldz7EMJMqFhjTr3IKKAAABhODVynwAAAQDAEcwRQIhALbCGuvLv+G0 0HmUeLaCQJD7tJ8/5m0ROdmvkQgEFWAQAiAmbTRFfoRogpZ7Ad5+Cki4wmUnQ4tt 9Cs4PxCe3qGOwwB1ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwLh9zwAw55NqWaAAAB hODVypQAAAQDAEYwRAIgdCerJZ18YEOTW6NyWx6m+fFoVvCE8c6eK0zQLpysdUIC IAk/cwCUXmtPyqh5L+bFq1eM5HHRiia2PK9+OG6Yji1BAHYAtz77JN+cTbp18jnF ulj0bF38Qs96nzXEnh0JgSXttJkAAAGE4NXKRwAABAMARzBFAiARGGh7nDqFNT2l FmRZadP1Vcma6Mg32xxdrL8w4ipVWgIhAPVHC30q2xg6oNBrS6XHPyaZXiCCgaw4 2SIj5xk/9w+eMA0GCSqGSIb3DQEBCwUAA4ICAQC5rmDJ3czoWKC4EOoI7yv3f0lV /kAWhp0tRiyqwvHXOjYRwpzgtkSxAaxY/StETKiwN7N1yhpXpBVDFS54ZciXS6RA Y+uBVFlH7O+VSK+m5ozyE1RhlPX49W84NxRTvXePrSQj9450VsnAdJuzoVOJUhB4 AYFkyEbri249rSOlDxSK+m4XGs19MRSMabFTB2Yu3j09Nr3J+yBaZEOD1rFuM7jm LjWUH4DuDy7sd01DglsyJfKlBxsayENb1OjAIO0OFylbZ0ZjCudFlbFrsaXpyyWz 9PjoTNbHR7Ae7VG50FfhhMOdYi/4FEgd5UMyj4ZxZEqOpVuvm7416R4IVPjemJ3Q lmwQHmCIuwbTYLS8dUw8Y/AMrArwl11iEHFznQS/l877mpcipBn316lZx/WItOFs lxFLE00D7nvjDl4x9rYsZj7G7MzFuxT1wMTx6YlCvih4fgant9e203aIQVZhynns xpMIHyhOEqAREtoocaLE0cPct/NrmlQ7fWgclUYs86uyN4vhbMG2pCaOsqiEGZpR PgIAt/0tHHfHP47T8UvkBEEX/gqr673GEd2ETmhheFlwiYUrkjUzW7gjsN/t1dp/ 0IufakluiVSUq2KcZTTA+6fG4K3xABAS1C5BD9oj0sP2WbuPGMu4UuFn+3VppC4O FZVgYy3gA5EeLeSZSA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssj4NtBzKN7RSHpYxHWS gdFI/9l+f8GbN/U0QQw2C/DJ/3Tbt1Kv9Q30qWEjjUFGrCHdk+X1psXU9cxJ6u2+ VgiZ3UUN4ufR6ZAEnvGi+N69zgoXXNeh9NcbxEkEvfzEnR8CLJvmWprNjmZQmHeU kcP0LQdIhsbfa9ZOZQ2dF0QGJ/8+LbGOPtrS6umFSXef15M8fswXE2DPh1wuleUh KWzWTTUSaWsYgov7UHWulqNOmJKNTFnIyRz3yDgC1S7HIxMWREFFBRTtyn4HqXo4 Y9KViKnvAFBUKvWXEEVY5VZMGPDkXlz9350M0xHwYM10D/+mnT0MNRzKu6X6fA7U EwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17575661475039536378661102671202836640 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ctagm.tchibo.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22569520080586416736595967990499650214056534798143850776993800496421076799451753106817825420449701693119358945102144414124259962625632336148224786006352571258464943968110453409051892527664958493687089301711003254630099548376284557659973621157968977271886916717571451767004175354001278305277824757960885541562061011082669651728632795543383591817452545015191610807754338602113327614636569936057638359657197819729722677755498902822229832980699498292234835085748414429975116658408555853904455961877941096262536699283372812810474316834558974390228830879158925507776130750381623303445353327691400453757031815509787634750483 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d155a4775a220ff4c052f0a9728a60511c2d4ba0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ctagm.tchibo.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 00b9ae60c9ddcce858a0b810ea08ef2bf77f4955fe4016869d2d462caac2f1d73a3611c29ce0b644b101ac58fd2b444ca8b037b375ca1a57a41543152e7865c8974ba44063eb81545947ecef9548afa6e68cf213546194f5f8f56f38371453bd778fad2423f78e7456c9c0749bb3a15389521078018164c846eb8b6e3dad23a50f148afa6e171acd7d31148c69b15307662ede3d3d36bdc9fb205a644383d6b16e33b8e62e35941f80ee0f2eec774d43825b3225f2a5071b1ac8435bd4e8c020ed0e17295b6746630ae74595b16bb1a5e9cb25b3f4f8e84cd6c747b01eed51b9d057e184c39d622ff814481de543328f8671644a8ea55baf9bbe35e91e0854f8de989dd0966c101e6088bb06d360b4bc754c3c63f00cac0af0975d621071739d04bf97cefb9a9722a419f7d7a959c7f588b4e16c97114b134d03ee7be30e5e31f6b62c663ec6ecccc5bb14f5c0c4f1e98942be28787e06a7b7d7b6d37688415661ca79ecc693081f284e12a01112da2871a2c4d1c3dcb7f36b9a543b7d681c95462cf3abb2378be16cc1b6a4268eb2a884199a513e0200b7fd2d1c77c73f8ed3f14be4044117fe0aabebbdc611dd844e686178597089852b9235335bb823b0dfedd5da7fd08b9f6a496e895494ab629c6534c0fba7c6e0adf1001012d42e410fda23d2c3f659bb8f18cbb852e167fb7569a42e0e159560632de003911e2de49948