segmdm1.nomad.iaea.org
- IAEA -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 04:54:97:d4:e3:7d:22:94:6e:11:65:22:91:01:92:7e was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
IAEA
Organization:
IAEA
Organization unit: MTIT
Organization unit: MTIT
Locality:
Wien
Country: AT
Country: AT
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:54:97:d4:e3:7d:22:94:6e:11:65:22:91:01:92:7eSerial Number (int): 5756144429881569694092307141264249470
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 08:f1:05:fc:b5:8a:35:f2:39:c2:ae:a5:26:b2:d6:eb:ba:bf:d5:a8
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 20:94:e5:f4:af:d2:5b:d5:ac:71:cd:eb:be:37:1c:45:78:3f:1a:bb
Fingerprint (sha256): 60:08:73:b8:ae:e6:95:ae:8a:4a:df:85:3c:d4:99:0a:6c:8e:7f:d8:2b:e2:34:1b:68:f6:4e:e0:39:3b:62:fd
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate segmdm1.nomad.iaea.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for segmdm1.nomad.iaea.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
segmdm1.nomad.iaea.org
Other certificates including the domain name iaea.org
(limited to 100 certificates)
*.iaea.org
iaeachallenge.org
ssl6418.cloudflare.com
imgm.iaea.org
ssl440680.cloudflaressl.com
iaeachallenge.org
vc.iaea.org
www.iaea.org
ssl440681.cloudflaressl.com
cnmdm.nomad.iaea.org
countryfiles.iaea.org
*.iaea.org
imgm.iaea.org
plms-nkm.iaea.org
ivetnet.iaea.org
ssl320268.cloudflaressl.com
iaeachallenge.org
libenc.iaea.org
ssl6418.cloudflare.com
taleo.iaea.org
conferences.iaea.org
lync.iaea.org
www-nds.iaea.org
*.iaea.org
ssl6418.cloudflare.com
*.iaea.org
test.iaea.org
mdm.nomad.iaea.org
sni.cloudflaressl.com
*.iaea.org
auth.iaea.org
*.iaea.org
hybrid.iaea.org
challenge.iaea.org
cnmdm.nomad.iaea.org
ssl748010.cloudflaressl.com
vc.iaea.org
elearning.iaea.org
*.*.iaea.org
test.iaea.org
sbb.iaea.org
libcat.iaea.org
*.iaea.org
segmdm1.nomad.iaea.org
email.iaea.org
taleo.iaea.org
conferences.iaea.org
msg.iaea.org
cnmdm.nomad.iaea.org
ssl440680.cloudflaressl.com
atoms.iaea.org
ssl440681.cloudflaressl.com
auth.iaea.org
cnmdm.nomad.iaea.org
ssl440682.cloudflaressl.com
conferences.iaea.org
ssl440681.cloudflaressl.com
share.iaea.org
lync-web.iaea.org
www-amdis.iaea.org
www.iaea.org
libenc.iaea.org
mdm.nomad.iaea.org
msg.iaea.org
personnel.iaea.org
e501.iaea.org
*.iaea.org
iec-vcse.iaea.org
ssl440681.cloudflaressl.com
sgmdm.iaea.org
iaeachallenge.org
conferences.iaea.org
cnmdm.nomad.iaea.org
guest2.iaea.org
conferences.iaea.org
www-nds.iaea.org
libenc-ext.iaea.org
ssl6418.cloudflare.com
countryprofiles.iaea.org
hybrid.iaea.org
www-amdis.iaea.org
email.iaea.org
lync-web.iaea.org
usie-connect.iaea.org
test.iaea.org
imgm.iaea.org
data.iaea.org
iaeachallenge.org
www-nds.iaea.org
*.iaea.org
sni.cloudflaressl.com
www-nds.iaea.org
data.iaea.org
lync-web.iaea.org
*.iaea.org
sni.cloudflaressl.com
libenc.iaea.org
segmdm1.nomad.iaea.org
ssl320270.cloudflaressl.com
libcat.iaea.org
iaeachallenge.org
ssl6418.cloudflare.com
imgm.iaea.org
ssl440680.cloudflaressl.com
iaeachallenge.org
vc.iaea.org
www.iaea.org
ssl440681.cloudflaressl.com
cnmdm.nomad.iaea.org
countryfiles.iaea.org
*.iaea.org
imgm.iaea.org
plms-nkm.iaea.org
ivetnet.iaea.org
ssl320268.cloudflaressl.com
iaeachallenge.org
libenc.iaea.org
ssl6418.cloudflare.com
taleo.iaea.org
conferences.iaea.org
lync.iaea.org
www-nds.iaea.org
*.iaea.org
ssl6418.cloudflare.com
*.iaea.org
test.iaea.org
mdm.nomad.iaea.org
sni.cloudflaressl.com
*.iaea.org
auth.iaea.org
*.iaea.org
hybrid.iaea.org
challenge.iaea.org
cnmdm.nomad.iaea.org
ssl748010.cloudflaressl.com
vc.iaea.org
elearning.iaea.org
*.*.iaea.org
test.iaea.org
sbb.iaea.org
libcat.iaea.org
*.iaea.org
segmdm1.nomad.iaea.org
email.iaea.org
taleo.iaea.org
conferences.iaea.org
msg.iaea.org
cnmdm.nomad.iaea.org
ssl440680.cloudflaressl.com
atoms.iaea.org
ssl440681.cloudflaressl.com
auth.iaea.org
cnmdm.nomad.iaea.org
ssl440682.cloudflaressl.com
conferences.iaea.org
ssl440681.cloudflaressl.com
share.iaea.org
lync-web.iaea.org
www-amdis.iaea.org
www.iaea.org
libenc.iaea.org
mdm.nomad.iaea.org
msg.iaea.org
personnel.iaea.org
e501.iaea.org
*.iaea.org
iec-vcse.iaea.org
ssl440681.cloudflaressl.com
sgmdm.iaea.org
iaeachallenge.org
conferences.iaea.org
cnmdm.nomad.iaea.org
guest2.iaea.org
conferences.iaea.org
www-nds.iaea.org
libenc-ext.iaea.org
ssl6418.cloudflare.com
countryprofiles.iaea.org
hybrid.iaea.org
www-amdis.iaea.org
email.iaea.org
lync-web.iaea.org
usie-connect.iaea.org
test.iaea.org
imgm.iaea.org
data.iaea.org
iaeachallenge.org
www-nds.iaea.org
*.iaea.org
sni.cloudflaressl.com
www-nds.iaea.org
data.iaea.org
lync-web.iaea.org
*.iaea.org
sni.cloudflaressl.com
libenc.iaea.org
segmdm1.nomad.iaea.org
ssl320270.cloudflaressl.com
libcat.iaea.org
Certificate
The complete raw certificate details for segmdm1.nomad.iaea.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgIQBFSX1ON9IpRuEWUikQGSfjANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTkwNDEwMDAwMDAwWhcNMjEwNDA5MTIwMDAwWjBbMQswCQYDVQQGEwJBVDENMAsG A1UEBxMEV2llbjENMAsGA1UEChMESUFFQTENMAsGA1UECxMETVRJVDEfMB0GA1UE AxMWc2VnbWRtMS5ub21hZC5pYWVhLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAON2/+SFO9LHR2SRUue9tRmNWYJ9aeJuUvcwr34xVAK986J6pxly tREtvtg/PcjxQUJrLnBP2Gh1foWSmhr3jL1DyZKvb9rwMvLOlw0Qsup7xD5mEqBr VQm4Qd7V7SzVHYL/zbTXqvRwt8gqS8FSQUY+oEz9xhjFw1+DhuwIZYYJz1iZvGNH t/IkX+ZzU3GzNmgGO2div6X/OXimtL92XsY1J6BZLs6Z1Mo0GGRHuKXemW0S7HDi 7TtFd8fZ8XeSBrUzwsdLOhLWATbQbEp4+OTV0lgSfamCW9vXMNRAgnlnh0eXcH0T 2xBRyR7v4ito4a7lA0RaJh4kDFNlGPrFkJ0CAwEAAaOCAx4wggMaMB8GA1UdIwQY MBaAFKPIXmVU5TB4wQXqBwpqWcy5/t5aMB0GA1UdDgQWBBQI8QX8tYo18jnCrqUm stbrur/VqDAhBgNVHREEGjAYghZzZWdtZG0xLm5vbWFkLmlhZWEub3JnMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOgYDVR0f BDMwMTAvoC2gK4YpaHR0cDovL2NkcC50aGF3dGUuY29tL1RoYXd0ZVJTQUNBMjAx OC5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0 cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwbwYIKwYBBQUHAQEE YzBhMCQGCCsGAQUFBzABhhhodHRwOi8vc3RhdHVzLnRoYXd0ZS5jb20wOQYIKwYB BQUHMAKGLWh0dHA6Ly9jYWNlcnRzLnRoYXd0ZS5jb20vVGhhd3RlUlNBQ0EyMDE4 LmNydDAJBgNVHRMEAjAAMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdQCkuQmQ tBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAAAWoHtnCoAAAEAwBGMEQCIA9f chzOWf3O1mF2U/plVQ/bbBtCMefcDAdE+asEJxmmAiAWB68aHZ64a6fXn3Vu0JJx kY6sPKC/i9oHJblCHoZhjQB3AId1v+dZfPiMQ5lfvfNu/1aNR1Y2/0q1YMG06v9e oIMPAAABage2cbsAAAQDAEgwRgIhAMyzhHrU/8sF9Fd5swxrWN4GqlGiM3QO1oQZ TopVu1kbAiEAjUzIILubHFKfHkpibnv1waag43KzNuVtfLNGy/u9FfYAdgBElGUu sO7Or8RAB9io/ijA2uaCvtjLMbU/0zOWtbaBqAAAAWoHtlxdAAAEAwBHMEUCIQCD 2UnbbA24tEGLZYYN5qK6/PHU1l29zyfDxMex53hEPQIgVPOfHebU0sY0d+kbHBrK 0HH85Pmq1Zsmnv8l3EeZDyEwDQYJKoZIhvcNAQELBQADggEBAIeD3L6AufMEiXzQ PmsdmFA+DYV1eh+HMuS1KddLGgs1GP2S8nG5mrsAQ0GQVjMlamfJlMPOmNVVdPK2 UFjkbhNcFmxggTSTXG2gXwPGCJnp/wGq8vR3TjBKu2szAs9aQfGSNF+gz6atOyh6 YU7Hd/GrqbfxeS84Nu5PapZL1RnSm7kB8HxS8GCvyySLacRmWl5tdnqXn2Vs4J9M h9XgIyLIXMfhyh+3D5kHgNhGJEiTFenzz1nob3rR65zx948tOv7L1rAUjbsMJzwJ SzL9+QUfv6OEPmMGErInCfv53vmvN0gbCpcMJt4rrlXzeQt8FDLaMe0d43YBkUxy 81hvpTg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43b/5IU70sdHZJFS5721 GY1Zgn1p4m5S9zCvfjFUAr3zonqnGXK1ES2+2D89yPFBQmsucE/YaHV+hZKaGveM vUPJkq9v2vAy8s6XDRCy6nvEPmYSoGtVCbhB3tXtLNUdgv/NtNeq9HC3yCpLwVJB Rj6gTP3GGMXDX4OG7AhlhgnPWJm8Y0e38iRf5nNTcbM2aAY7Z2K/pf85eKa0v3Ze xjUnoFkuzpnUyjQYZEe4pd6ZbRLscOLtO0V3x9nxd5IGtTPCx0s6EtYBNtBsSnj4 5NXSWBJ9qYJb29cw1ECCeWeHR5dwfRPbEFHJHu/iK2jhruUDRFomHiQMU2UY+sWQ nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5756144429881569694092307141264249470 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-09 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wien' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IAEA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MTIT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'segmdm1.nomad.iaea.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28714776107602496374330268997606355494280962798246053733869842698606016113863803105311580677133902076440028760082975009742667012829011972347878537295108117285863831005021414629147290980648625002516696324049303049875669280784962788507623336845206744840219268586771668263817620963344125410022125974317343343324751603009051937568549455803607078913171185412438704833832550592184358113470031006710454052303474994789375975980949948901821870612194708603557206114337530625511986190485605994309894726864104340815110497449165568904410467631542702116609288266718578386280285656982129048816870889467657818944298792970305359155357 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 08f105fcb58a35f239c2aea526b2d6ebbabfd5a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'segmdm1.nomad.iaea.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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