www-nds.iaea.org
- International Atomic Energy Agency -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 0d:bc:36:04:e0:6d:00:cc:76:2b:a4:cf:cf:ac:e1:b7 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
International Atomic Energy Agency
Organization:
International Atomic Energy Agency
State / Province:
Wien
Locality: Wien
Country: AT
Locality: Wien
Country: AT
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:bc:36:04:e0:6d:00:cc:76:2b:a4:cf:cf:ac:e1:b7Serial Number (int): 18257211391096120075143630363349017015
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: b8:45:3d:4a:81:b5:86:16:da:9d:b1:37:3a:1f:60:12:e0:08:f7:8a
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 46:a9:06:cb:38:65:52:6b:cc:f1:73:3b:c9:28:32:a6:a9:d6:2a:26
Fingerprint (sha256): 60:90:03:e9:3f:02:a9:b7:9a:23:25:88:8e:73:94:f0:21:48:cc:24:fb:57:97:01:f5:75:c3:d6:96:f2:95:80
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate www-nds.iaea.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www-nds.iaea.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www-nds.iaea.org
Other certificates including the domain name iaea.org
(limited to 100 certificates)
*.iaea.org
iaeachallenge.org
ssl6418.cloudflare.com
imgm.iaea.org
ssl440680.cloudflaressl.com
iaeachallenge.org
vc.iaea.org
www.iaea.org
ssl440681.cloudflaressl.com
cnmdm.nomad.iaea.org
countryfiles.iaea.org
*.iaea.org
imgm.iaea.org
plms-nkm.iaea.org
ivetnet.iaea.org
ssl320268.cloudflaressl.com
iaeachallenge.org
libenc.iaea.org
ssl6418.cloudflare.com
taleo.iaea.org
conferences.iaea.org
lync.iaea.org
www-nds.iaea.org
*.iaea.org
ssl6418.cloudflare.com
*.iaea.org
test.iaea.org
mdm.nomad.iaea.org
sni.cloudflaressl.com
*.iaea.org
auth.iaea.org
*.iaea.org
hybrid.iaea.org
challenge.iaea.org
cnmdm.nomad.iaea.org
ssl748010.cloudflaressl.com
vc.iaea.org
elearning.iaea.org
*.*.iaea.org
test.iaea.org
sbb.iaea.org
libcat.iaea.org
*.iaea.org
segmdm1.nomad.iaea.org
email.iaea.org
taleo.iaea.org
conferences.iaea.org
msg.iaea.org
cnmdm.nomad.iaea.org
ssl440680.cloudflaressl.com
atoms.iaea.org
ssl440681.cloudflaressl.com
auth.iaea.org
cnmdm.nomad.iaea.org
ssl440682.cloudflaressl.com
conferences.iaea.org
ssl440681.cloudflaressl.com
share.iaea.org
lync-web.iaea.org
www-amdis.iaea.org
www.iaea.org
libenc.iaea.org
mdm.nomad.iaea.org
msg.iaea.org
personnel.iaea.org
e501.iaea.org
*.iaea.org
iec-vcse.iaea.org
ssl440681.cloudflaressl.com
sgmdm.iaea.org
iaeachallenge.org
conferences.iaea.org
cnmdm.nomad.iaea.org
guest2.iaea.org
conferences.iaea.org
www-nds.iaea.org
libenc-ext.iaea.org
ssl6418.cloudflare.com
countryprofiles.iaea.org
hybrid.iaea.org
www-amdis.iaea.org
email.iaea.org
lync-web.iaea.org
usie-connect.iaea.org
test.iaea.org
imgm.iaea.org
data.iaea.org
iaeachallenge.org
www-nds.iaea.org
*.iaea.org
sni.cloudflaressl.com
www-nds.iaea.org
data.iaea.org
lync-web.iaea.org
*.iaea.org
sni.cloudflaressl.com
libenc.iaea.org
segmdm1.nomad.iaea.org
ssl320270.cloudflaressl.com
libcat.iaea.org
iaeachallenge.org
ssl6418.cloudflare.com
imgm.iaea.org
ssl440680.cloudflaressl.com
iaeachallenge.org
vc.iaea.org
www.iaea.org
ssl440681.cloudflaressl.com
cnmdm.nomad.iaea.org
countryfiles.iaea.org
*.iaea.org
imgm.iaea.org
plms-nkm.iaea.org
ivetnet.iaea.org
ssl320268.cloudflaressl.com
iaeachallenge.org
libenc.iaea.org
ssl6418.cloudflare.com
taleo.iaea.org
conferences.iaea.org
lync.iaea.org
www-nds.iaea.org
*.iaea.org
ssl6418.cloudflare.com
*.iaea.org
test.iaea.org
mdm.nomad.iaea.org
sni.cloudflaressl.com
*.iaea.org
auth.iaea.org
*.iaea.org
hybrid.iaea.org
challenge.iaea.org
cnmdm.nomad.iaea.org
ssl748010.cloudflaressl.com
vc.iaea.org
elearning.iaea.org
*.*.iaea.org
test.iaea.org
sbb.iaea.org
libcat.iaea.org
*.iaea.org
segmdm1.nomad.iaea.org
email.iaea.org
taleo.iaea.org
conferences.iaea.org
msg.iaea.org
cnmdm.nomad.iaea.org
ssl440680.cloudflaressl.com
atoms.iaea.org
ssl440681.cloudflaressl.com
auth.iaea.org
cnmdm.nomad.iaea.org
ssl440682.cloudflaressl.com
conferences.iaea.org
ssl440681.cloudflaressl.com
share.iaea.org
lync-web.iaea.org
www-amdis.iaea.org
www.iaea.org
libenc.iaea.org
mdm.nomad.iaea.org
msg.iaea.org
personnel.iaea.org
e501.iaea.org
*.iaea.org
iec-vcse.iaea.org
ssl440681.cloudflaressl.com
sgmdm.iaea.org
iaeachallenge.org
conferences.iaea.org
cnmdm.nomad.iaea.org
guest2.iaea.org
conferences.iaea.org
www-nds.iaea.org
libenc-ext.iaea.org
ssl6418.cloudflare.com
countryprofiles.iaea.org
hybrid.iaea.org
www-amdis.iaea.org
email.iaea.org
lync-web.iaea.org
usie-connect.iaea.org
test.iaea.org
imgm.iaea.org
data.iaea.org
iaeachallenge.org
www-nds.iaea.org
*.iaea.org
sni.cloudflaressl.com
www-nds.iaea.org
data.iaea.org
lync-web.iaea.org
*.iaea.org
sni.cloudflaressl.com
libenc.iaea.org
segmdm1.nomad.iaea.org
ssl320270.cloudflaressl.com
libcat.iaea.org
Certificate
The complete raw certificate details for www-nds.iaea.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGcjCCBVqgAwIBAgIQDbw2BOBtAMx2K6TPz6zhtzANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTgwNjIxMDAwMDAwWhcNMTkxMDA3MTIwMDAwWjBzMQswCQYDVQQGEwJBVDENMAsG A1UECBMEV2llbjENMAsGA1UEBxMEV2llbjErMCkGA1UEChMiSW50ZXJuYXRpb25h bCBBdG9taWMgRW5lcmd5IEFnZW5jeTEZMBcGA1UEAxMQd3d3LW5kcy5pYWVhLm9y ZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM6MQGZ41KRJVi8InPMV DHaE1tnxIj4i3F5SOkg8y7WX60SUgeTJMPGVMDRCCh+yDtXxPjiktIeIOcKWEjaM m666UDB3ah+pUsEXK5rmDXVjX0MwW4cBzurJOHzc0OjaT4PUumW9HZfglIEMOCWu LIe5IqC0K90oGJEA1l0VG9ycFKhfQsIGEA8Ot6krog2xqlnOGRuP5t4HOm+Ht6/M 03UD8KUHI2fvitoq9Q8ejz7z5YP9fGmB1Cz0nfsBlcBz+Bx2RkcCjV1ig2xtksvR gJNJ/nxSH56Dr+kd+WPVT0ZJofJDm6gyho2r0bUkr86vxZBVOZoOGZiG2nSXT/Al R5ECAwEAAaOCAxcwggMTMB8GA1UdIwQYMBaAFKPIXmVU5TB4wQXqBwpqWcy5/t5a MB0GA1UdDgQWBBS4RT1KgbWGFtqdsTc6H2AS4Aj3ijAbBgNVHREEFDASghB3d3ct bmRzLmlhZWEub3JnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NkcC50aGF3dGUu Y29tL1RoYXd0ZVJTQUNBMjAxOC5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEw KjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZn gQwBAgIwbwYIKwYBBQUHAQEEYzBhMCQGCCsGAQUFBzABhhhodHRwOi8vc3RhdHVz LnRoYXd0ZS5jb20wOQYIKwYBBQUHMAKGLWh0dHA6Ly9jYWNlcnRzLnRoYXd0ZS5j b20vVGhhd3RlUlNBQ0EyMDE4LmNydDAJBgNVHRMEAjAAMIIBfQYKKwYBBAHWeQIE AgSCAW0EggFpAWcAdgDuS723dc5guuFCaR+r4Z5mow9+X7By2IMAxHuJeqj9ywAA AWQjFkhiAAAEAwBHMEUCIF7AAvaLUVcr/x00Hspv5f4DgQUSYWOy3R7BXMwtyQX9 AiEAyRN4XN27fSx8MfSk/SILfHRA3BTfD5VBRWUvMjNlFvEAdgCHdb/nWXz4jEOZ X73zbv9WjUdWNv9KtWDBtOr/XqCDDwAAAWQjFkhTAAAEAwBHMEUCIQCpHYRA7Ong 2yqxqJnfS2UtgilyJbLMdzRQwZ4dPAqIzgIgfBDc2EphXsqIcykTUPQEi+QbtUoE A9DWXIzybOdWfdQAdQC72d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQlmQ2jh7RhQAA AWQjFkeLAAAEAwBGMEQCIGLkaW5Sdo7uZiUAv79sAQ29H4UEmLiK+2/57m2RwTyZ AiAUJVHSJKOXx3x1GwXLW2ncL/jhNOz4k0YsJ5oE7FPh9TANBgkqhkiG9w0BAQsF AAOCAQEAYWVLQb+O0YYv5f13ImnT5UB4M5ZvZ3LJVcl2UcM+GBkuAzLRivaPCX+Q 9YJCL4TURP0mvSSahftxWsW5cyAtWvmXxkMAD2y59jvx6mkGdBV8t4+FHkariEFN KOOs6SBBMzTh9QPffFejJdfy53kGtZmD5WE2QdRWGoJusYcJOZksRPsD1+1LJK7R 2TGOELJGOTeGT4Mq5KgmoY+fvXxgFX3FY6cArWzaLsA6sPKoCY6yuGZr2W6vVtME y2Xne10jGTr69zotT5fiBfL4BzsR0Kb4ocwQ5z3fXTaRoO1/dpOFhOdjF+SrHSbK 3SzJRbJXbufYEEIWeykniwvRttl5zg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzoxAZnjUpElWLwic8xUM doTW2fEiPiLcXlI6SDzLtZfrRJSB5Mkw8ZUwNEIKH7IO1fE+OKS0h4g5wpYSNoyb rrpQMHdqH6lSwRcrmuYNdWNfQzBbhwHO6sk4fNzQ6NpPg9S6Zb0dl+CUgQw4Ja4s h7kioLQr3SgYkQDWXRUb3JwUqF9CwgYQDw63qSuiDbGqWc4ZG4/m3gc6b4e3r8zT dQPwpQcjZ++K2ir1Dx6PPvPlg/18aYHULPSd+wGVwHP4HHZGRwKNXWKDbG2Sy9GA k0n+fFIfnoOv6R35Y9VPRkmh8kObqDKGjavRtSSvzq/FkFU5mg4ZmIbadJdP8CVH kQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18257211391096120075143630363349017015 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-07 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wien' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wien' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'International Atomic Energy Agency' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www-nds.iaea.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26074251446670265564228599083621837093137069025362250628805173159197863742289487321406906983787323714680076924066887433923466659920578605044624568304213976384294998176282020351177947012185152871752562036244909641853278440012227244860884997403611357760008795976767187863051604348937148833300917008675257428296099171845539240391113208766972424844490753829591536353623068128282992565303801257437601025962218361391251901257405046473234367943454384155598327489573799344712191376915442944757195813799829905909998930121985377158927003926346403966916795724297490451049220423975266746909943613451885799689750278902287366965137 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b8453d4a81b58616da9db1373a1f6012e008f78a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-nds.iaea.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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