if.kindlustus.ee

- If P&C Insurance AS -

Issued by thawte SSL CA - G2

About this certificate

This digital certificate with serial number 12:07:b1:74:2f:97:40:b4:6d:4e:9f:b6:76:2d:45:b6 was issued on by thawte, Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

If P&C Insurance AS

Organization: If P&C Insurance AS
Organization unit: IT
State / Province: Harjumaa
Locality: Tallinn
Country: EE

thawte, Inc.

Organization: thawte, Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 12:07:b1:74:2f:97:40:b4:6d:4e:9f:b6:76:2d:45:b6
Serial Number (int): 23966049193833576326106712638718035382
Serial Number lenght: 125 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60

Fingerprint (sha1): e3:00:93:74:65:4c:30:13:2b:09:a8:9f:e0:6c:bb:e7:dd:f3:63:7f
Fingerprint (sha256): 60:ba:fb:16:be:c1:1b:bc:05:ea:56:dd:56:22:72:78:71:be:7e:fd:86:4f:50:3f:1c:7e:63:90:fc:56:9a:30

Issuing Certificate URL: http://tj.symcb.com/tj.crt

Revocation information

OCSP Server: http://tj.symcd.com
CRL Distribution Point: http://tj.symcb.com/tj.crl

Check the revocation status for certificate if.kindlustus.ee

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for if.kindlustus.ee

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

if.kindlustus.ee

Other certificates including the domain name kindlustus.ee

(limited to 100 certificates)
partnertest.kindlustus.ee
www.kindlustus.ee
if.kindlustus.ee
partnertest.kindlustus.ee
wstest.kindlustus.ee
if.kindlustus.ee
wsprod.kindlustus.ee
spoint.kindlustus.ee
www.kindlustus.ee
if.kindlustus.ee
test.kindlustus.ee
if.kindlustus.ee
if.kindlustus.ee
if.kindlustus.ee
if.kindlustus.ee
wstest.kindlustus.ee
if.kindlustus.ee
wsprod.kindlustus.ee
www.kindlustus.ee
www.kindlustus.ee
www.kindlustus.ee
www.kindlustus.ee
wsprod.kindlustus.ee
www.kindlustus.ee
partnertest.kindlustus.ee
wsprod.kindlustus.ee
if.kindlustus.ee
www.kindlustus.ee
wsprod.kindlustus.ee
wstest.kindlustus.ee
wstest.kindlustus.ee
if.kindlustus.ee
www.kindlustus.ee
wsprod.kindlustus.ee
partnertest.kindlustus.ee
www.kindlustus.ee
if.kindlustus.ee
wsprod.kindlustus.ee
if.kindlustus.ee
www.kindlustus.ee

Certificate

The complete raw certificate details for if.kindlustus.ee in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGNjCCBR6gAwIBAgIQEgexdC+XQLRtTp+2di1FtjANBgkqhkiG9w0BAQsFADBB
MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMRswGQYDVQQDExJ0
aGF3dGUgU1NMIENBIC0gRzIwHhcNMTYwODI5MDAwMDAwWhcNMTgwOTA2MjM1OTU5
WjB4MQswCQYDVQQGEwJFRTERMA8GA1UECAwISGFyanVtYWExEDAOBgNVBAcMB1Rh
bGxpbm4xHDAaBgNVBAoME0lmIFAmQyBJbnN1cmFuY2UgQVMxCzAJBgNVBAsMAklU
MRkwFwYDVQQDDBBpZi5raW5kbHVzdHVzLmVlMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtlG+tYMNCSaXJ1RlAsjKH2/kcXD8aFX4+KdApp+EqiaW9dG/
vWCmy+eZLfcj5Fjh6urJo6D8L9Tm6En3ERLL+gk/XHrVQ4p1AwyPlTmqEUrhvJYF
wqtpd2JtnNejpX+XuzoYWnZBKTz5hy45O5BOrbQb90yAJu35brNy2YwlLEZWcEUb
KyVQq3f9M8E5bAm451fMdNdLCrEEIzy0yiKlR60rnM662NJ8JfG7PR4WCIGod4+d
d5WJ2acAgXiiW1yRfKre5WAmCUnqE/vt+Rw8y5MfZbVuLPvwlk8g5RxZ1N3nvs6+
FRDe2G0/UBnmrnyQ7AT5//aY9kn/2ZhDNejahwIDAQABo4IC8TCCAu0wGwYDVR0R
BBQwEoIQaWYua2luZGx1c3R1cy5lZTAJBgNVHRMEAjAAMG4GA1UdIARnMGUwYwYG
Z4EMAQICMFkwJgYIKwYBBQUHAgEWGmh0dHBzOi8vd3d3LnRoYXd0ZS5jb20vY3Bz
MC8GCCsGAQUFBwICMCMMIWh0dHBzOi8vd3d3LnRoYXd0ZS5jb20vcmVwb3NpdG9y
eTAOBgNVHQ8BAf8EBAMCBaAwHwYDVR0jBBgwFoAUwk9IV/zRT5rAXTh9DgXb2S61
UmAwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL3RqLnN5bWNiLmNvbS90ai5jcmww
HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEBBEswSTAf
BggrBgEFBQcwAYYTaHR0cDovL3RqLnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0
cDovL3RqLnN5bWNiLmNvbS90ai5jcnQwggF7BgorBgEEAdZ5AgQCBIIBawSCAWcB
ZQB1AN3rHSt6DU+mIIuBrYFocH4ujp0B1VyIjT0RxM227L7MAAABVtWZM20AAAQD
AEYwRAIgEStHOyo0ngQyvwz3YtRonpsi+mtPEP3feLGIV3jU2AMCICVesJvgSsxT
7nIBDgWU0LpWT0GXzVRdi0imT9PQjR2eAHUApLkJkLQYWBSHuxOizGdwCjw1mAT5
G9+443fNDsgN3BAAAAFW1Zk01wAABAMARjBEAiAbMfXeksFXX/DXiBqxr6xHJuSA
t41bmHz7TCxk10PZagIgV7Monbgf4Mkkdg+KjQKAoogYtsItBj8cl9JCEwMMoXYA
dQBo9pj4H2SCvjqM7rkoHUz8cVFdZ5PURNEKZ6y7T0/7xAAAAVbVmTTcAAAEAwBG
MEQCIEwZdL3+HhGLfi6ZOTDjQqwiLi1ro4ORO1Hl9/vw0CJRAiBxkpUgtpEQYerz
bp5UeVchXuHVzvQMtvb5dsigw3YNkDANBgkqhkiG9w0BAQsFAAOCAQEAnEE9exPS
QpKSxv/koNIvtiV8SLGUjf0VYeHVR9wW/stxqMpYY+Ku7Sq0HhvkJHnKUjoZnd6C
RmLHLrcp1hahpLkQxU8ZfyNXq+3aS9phBDmKYF6X6/w4Rm2T3kyU++KXLWX4AzgN
JjeEIMaWVCl9LSwTALOL20ehAs4ERC92ADmNHHThNV2XrMIH+S+ZOv8KuTKjE9UQ
ObcmxP066z5t/CgEfdYZCXjpiY5NaTVGXDunDDoD8Xrug8FVJFzAyRZCaNmERoGi
hBgE9+yESttxQw1zmYqk8YWtM3i71VlA5vrphpj/zeMXZSvdpq2259yP/CeIsjRg
0c8aVpStfDrUlQ==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlG+tYMNCSaXJ1RlAsjK
H2/kcXD8aFX4+KdApp+EqiaW9dG/vWCmy+eZLfcj5Fjh6urJo6D8L9Tm6En3ERLL
+gk/XHrVQ4p1AwyPlTmqEUrhvJYFwqtpd2JtnNejpX+XuzoYWnZBKTz5hy45O5BO
rbQb90yAJu35brNy2YwlLEZWcEUbKyVQq3f9M8E5bAm451fMdNdLCrEEIzy0yiKl
R60rnM662NJ8JfG7PR4WCIGod4+dd5WJ2acAgXiiW1yRfKre5WAmCUnqE/vt+Rw8
y5MfZbVuLPvwlk8g5RxZ1N3nvs6+FRDe2G0/UBnmrnyQ7AT5//aY9kn/2ZhDNeja
hwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 23966049193833576326106712638718035382
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-29 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-06 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'EE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Harjumaa'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Tallinn'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'If P&C Insurance AS'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'if.kindlustus.ee'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23015681444566417836417198392577629738413944953763117603848242783064054224120265246767094407668772762386434085511235537248039853142135798803098487162176091579927343320163656780632544261019372599397645456485636733956515493503406213604871851658930906989244480861850146021741860045594959629565103003902200951004147474500115767758059287249383197098428374208648081489680146911207446041026290860249893603499798464583906374175764806473228472209920228183913898294010729214073275503112650991341719260718792350147842892903040227726949411801482749871650145996973660977034669005925767947292194356680663716611966532718306070682247
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'if.kindlustus.ee'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (359 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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