access-pca.cga.fr

- Societe Generale -

Issued by DigiCert SHA2 Secure Server CA

About this certificate

This digital certificate with serial number 05:f1:8f:a9:9f:c6:c2:46:90:a4:00:f9:1b:7c:b4:ef was issued on by DigiCert Inc.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Societe Generale

Organization: Societe Generale
Organization unit: RESG
Locality: PARIS
Country: FR

DigiCert Inc

Organization: DigiCert Inc
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 05:f1:8f:a9:9f:c6:c2:46:90:a4:00:f9:1b:7c:b4:ef
Serial Number (int): 7900397345412661237208343564827538671
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: a7:af:f5:97:36:00:48:bb:67:16:5b:f9:30:43:ac:fe:e3:9e:4e:2d
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2

Fingerprint (sha1): 0e:9e:70:3e:d9:65:c7:91:94:cc:57:d7:de:1e:b1:1f:11:bf:2c:d6
Fingerprint (sha256): 60:90:f6:e7:2b:87:9f:1c:33:f9:9b:61:79:f0:06:d4:3b:d9:54:60:d8:ec:17:2a:5b:f5:bc:4f:49:dd:58:e3

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl

Check the revocation status for certificate access-pca.cga.fr

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for access-pca.cga.fr

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

access-pca.cga.fr

Other certificates including the domain name cga.fr

(limited to 100 certificates)
infact.factoring.societegenerale.fr
factoring.societegenerale.com
accessws-hom.cga.fr
edge.im.cga.fr
bypass.cga.fr
portail-pca.factoring.societegenerale.com
infact.factoring.societegenerale.fr
accessnewapc.cga.fr
portail.factoring.societegenerale.com
scf-solutions.cga.fr
infact-hom.societegenerale.cga.fr
infact.factoring.societegenerale.fr
infact.factoring.societegenerale.fr
access.cga.fr
infact.factoring.societegenerale.fr
access.cga.fr
infact.factoring.societegenerale.fr
CGA.FR
infact-hom.societegenerale.cga.fr
CGA.FR
infact-hom.societegenerale.cga.fr
infact-hom.societegenerale.cga.fr
infact-hom.factoring.societegenerale.fr
accessws.cga.fr
portail-pca.cga.fr
factoring.societegenerale.com
sso.cga.fr
portail-byod.factoring.societegenerale.com
infact-hom.societegenerale.cga.fr
access-pca.cga.fr
accesssa.cga.fr
accessws.cga.fr
infact-hom.societegenerale.cga.FR
edge.im.cga.fr
access-pca.cga.fr
infact.factoring.societegenerale.fr
accessnewapc.cga.fr
factoring.societegenerale.com
bypass-hom.cga.fr
accessmdm.cga.fr
portail.factoring.societegenerale.com
access-pca.cga.fr
infact.factoring.societegenerale.fr
portail-byod.cga.fr
infact-hom.societegenerale.cga.fr
edge.im.cga.fr
portail.cga.fr
infact-hom.societegenerale.cga.fr
infact.factoring.societegenerale.fr
accessws-hom.cga.fr
www.cga.fr
accessws.cga.fr
portail-crise.factoring.societegenerale.com
infact.factoring.societegenerale.fr
portail-byod.factoring.societegenerale.com
infact.factoring.societegenerale.fr
factoring.societegenerale.com
infact.factoring.societegenerale.fr
infact.factoring.societegenerale.fr
accesssa.cga.fr
portail-crise.cga.fr
infact-hom.factoring.societegenerale.fr
CGA.FR
infact-hom.societegenerale.cga.fr
accessnewmdm.cga.fr
accessmdm.cga.fr
www.cga.fr
accessmdm.cga.fr
infact.factoring.societegenerale.fr
infact-hom.societegenerale.cga.fr
scf-solutions.cga.fr
portail-crise.cga.fr
edge.im.factoring.societegenerale.com
edge.im.cga.fr
edge.im.factoring.societegenerale.com
portail-byod.cga.fr
accessmdm.cga.fr
infact.factoring.societegenerale.fr
portail.factoring.societegenerale.com
scf-solutions.cga.fr
accessws-hom.cga.fr
infact-hom.societegenerale.cga.fr
accessnewmdm.cga.fr
infact-hom.societegenerale.cga.fr
infact.factoring.societegenerale.fr
infact-hom.societegenerale.cga.fr
edge.im.cga.fr
scf-solutions.cga.fr
sso.cga.fr

Certificate

The complete raw certificate details for access-pca.cga.fr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIQBfGPqZ/GwkaQpAD5G3y07zANBgkqhkiG9w0BAQsFADBN
MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E
aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwNjE5MDAwMDAwWhcN
MTkxMDE3MTIwMDAwWjBjMQswCQYDVQQGEwJGUjEOMAwGA1UEBxMFUEFSSVMxGTAX
BgNVBAoTEFNvY2lldGUgR2VuZXJhbGUxDTALBgNVBAsTBFJFU0cxGjAYBgNVBAMT
EWFjY2Vzcy1wY2EuY2dhLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnBRtEF+lM26tTp8mlAYcUgW3GxUSBnE4MFTC1kTVfiaSwkubhVUrjyqPbSVr
IejlzLQhv2WCclGmjJXSDjnsXDchEQawDUCIQVb8yday41dEtPw/ZMdjNpf3+YTf
kO87EqYHq7a5jzKSgj7mLHFiEiVygJ3Z70FcGuI1aLjkRJkWT3GpPQiTDRMmGQXQ
0kJnxxyYv58nz76ewb10b7pFCIQemZ4zSy71iQAptbz3Yr/QnI7EsDejvjFpkXfB
mZQevVzgRD32o3AOdcRfqJ3PflDqUb/CsKntWhiwHX4wjIm2ctH9yn1FGCpV+yif
iQTrDgFz3Ms/vRLWr9yo57foNwIDAQABo4IB6jCCAeYwHwYDVR0jBBgwFoAUD4Bh
HIIxYdUvKOeNRji0LOHG2eIwHQYDVR0OBBYEFKev9Zc2AEi7ZxZb+TBDrP7jnk4t
MBwGA1UdEQQVMBOCEWFjY2Vzcy1wY2EuY2dhLmZyMA4GA1UdDwEB/wQEAwIFoDAd
BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwawYDVR0fBGQwYjAvoC2gK4Yp
aHR0cDovL2NybDMuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nNi5jcmwwL6AtoCuG
KWh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3JsMEwGA1Ud
IARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRp
Z2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMHwGCCsGAQUFBwEBBHAwbjAkBggrBgEF
BQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMEYGCCsGAQUFBzAChjpodHRw
Oi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRTSEEyU2VjdXJlU2VydmVy
Q0EuY3J0MAkGA1UdEwQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcN
AQELBQADggEBABldiCFg2lcOqtycJZiVp4nAJcUWks8vDzqUQuXp5BX2UFUp6jRo
zC84FvvSXx+r9WeWb3zX2Klh04CAZZNGPCyfkZMA1VomvCcAx7Cu4QGLPZmpNk88
IYY7UTwoqgxa+0HPE1nnFVbLl7wJ177uj73h2eOpddxVTz6zv1HHmlaWzIWbENVV
R0QiJ1u/9ugRAc/E8rZoNXbukRcg9F6FuY69xaIrLFjoaDq5M9ujf+yBU3ATRIC8
gRuFmSpE67L7TLZf9YFHf2DsK1OFGZjzlOFb6cRPvuxrKPcVrs3lbAGBHtbyjs+0
LcxK1NzQFMxxO+R+JU4CYIVsJJ+Sd50AGEw=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnBRtEF+lM26tTp8mlAYc
UgW3GxUSBnE4MFTC1kTVfiaSwkubhVUrjyqPbSVrIejlzLQhv2WCclGmjJXSDjns
XDchEQawDUCIQVb8yday41dEtPw/ZMdjNpf3+YTfkO87EqYHq7a5jzKSgj7mLHFi
EiVygJ3Z70FcGuI1aLjkRJkWT3GpPQiTDRMmGQXQ0kJnxxyYv58nz76ewb10b7pF
CIQemZ4zSy71iQAptbz3Yr/QnI7EsDejvjFpkXfBmZQevVzgRD32o3AOdcRfqJ3P
flDqUb/CsKntWhiwHX4wjIm2ctH9yn1FGCpV+yifiQTrDgFz3Ms/vRLWr9yo57fo
NwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 7900397345412661237208343564827538671
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-19 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-17 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PARIS'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Societe Generale'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RESG'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'access-pca.cga.fr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19703248026041780895905233179853796109460518190198494046945010026034182519618767151554459608301531996058265528191653484930614719127729682423366060219445189592724401053510872213552383122697758514180700020592793856553806072148979990747918537505127628172998727839107068922314342365817583005873509743958891763131211080332542006950173026249814681466888413998091568568594008317790288261025592202071576165239044054004571158448844550344099090876915805820766682814435846176618757728062046988061245952757606303311511524701194129434201014023591413431693037566224897023099199091328541752102328024370387643891542162163328118941751
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a7aff597360048bb67165bf93043acfee39e4e2d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'access-pca.cga.fr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00195d882160da570eaadc9c259895a789c025c51692cf2f0f3a9442e5e9e415f6505529ea3468cc2f3816fbd25f1fabf567966f7cd7d8a961d380806593463c2c9f919300d55a26bc2700c7b0aee1018b3d99a9364f3c21863b513c28aa0c5afb41cf1359e71556cb97bc09d7beee8fbde1d9e3a975dc554f3eb3bf51c79a5696cc859b10d555474422275bbff6e81101cfc4f2b6683576ee911720f45e85b98ebdc5a22b2c58e8683ab933dba37fec815370134480bc811b85992a44ebb2fb4cb65ff581477f60ec2b53851998f394e15be9c44fbeec6b28f715aecde56c01811ed6f28ecfb42dcc4ad4dcd014cc713be47e254e0260856c249f92779d00184c