if.kindlustus.ee
- If P&C Insurance AS -
Issued by thawte SSL CA - G2
About this certificate
This digital certificate with serial number 12:07:b1:74:2f:97:40:b4:6d:4e:9f:b6:76:2d:45:b6 was issued on by thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
If P&C Insurance AS
Organization:
If P&C Insurance AS
Organization unit: IT
Organization unit: IT
State / Province:
Harjumaa
Locality: Tallinn
Country: EE
Locality: Tallinn
Country: EE
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 12:07:b1:74:2f:97:40:b4:6d:4e:9f:b6:76:2d:45:b6Serial Number (int): 23966049193833576326106712638718035382
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60
Fingerprint (sha1): e3:00:93:74:65:4c:30:13:2b:09:a8:9f:e0:6c:bb:e7:dd:f3:63:7f
Fingerprint (sha256): 60:ba:fb:16:be:c1:1b:bc:05:ea:56:dd:56:22:72:78:71:be:7e:fd:86:4f:50:3f:1c:7e:63:90:fc:56:9a:30
Issuing Certificate URL: http://tj.symcb.com/tj.crt
Revocation information
OCSP Server: http://tj.symcd.comCRL Distribution Point: http://tj.symcb.com/tj.crl
Check the revocation status for certificate if.kindlustus.ee
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for if.kindlustus.ee
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
if.kindlustus.ee
Other certificates including the domain name kindlustus.ee
(limited to 100 certificates)
partnertest.kindlustus.ee
www.kindlustus.ee
if.kindlustus.ee
partnertest.kindlustus.ee
wstest.kindlustus.ee
if.kindlustus.ee
wsprod.kindlustus.ee
spoint.kindlustus.ee
www.kindlustus.ee
if.kindlustus.ee
test.kindlustus.ee
if.kindlustus.ee
if.kindlustus.ee
if.kindlustus.ee
if.kindlustus.ee
wstest.kindlustus.ee
if.kindlustus.ee
wsprod.kindlustus.ee
www.kindlustus.ee
www.kindlustus.ee
www.kindlustus.ee
www.kindlustus.ee
wsprod.kindlustus.ee
www.kindlustus.ee
partnertest.kindlustus.ee
wsprod.kindlustus.ee
if.kindlustus.ee
www.kindlustus.ee
wsprod.kindlustus.ee
wstest.kindlustus.ee
wstest.kindlustus.ee
if.kindlustus.ee
www.kindlustus.ee
wsprod.kindlustus.ee
partnertest.kindlustus.ee
www.kindlustus.ee
if.kindlustus.ee
wsprod.kindlustus.ee
if.kindlustus.ee
www.kindlustus.ee
www.kindlustus.ee
if.kindlustus.ee
partnertest.kindlustus.ee
wstest.kindlustus.ee
if.kindlustus.ee
wsprod.kindlustus.ee
spoint.kindlustus.ee
www.kindlustus.ee
if.kindlustus.ee
test.kindlustus.ee
if.kindlustus.ee
if.kindlustus.ee
if.kindlustus.ee
if.kindlustus.ee
wstest.kindlustus.ee
if.kindlustus.ee
wsprod.kindlustus.ee
www.kindlustus.ee
www.kindlustus.ee
www.kindlustus.ee
www.kindlustus.ee
wsprod.kindlustus.ee
www.kindlustus.ee
partnertest.kindlustus.ee
wsprod.kindlustus.ee
if.kindlustus.ee
www.kindlustus.ee
wsprod.kindlustus.ee
wstest.kindlustus.ee
wstest.kindlustus.ee
if.kindlustus.ee
www.kindlustus.ee
wsprod.kindlustus.ee
partnertest.kindlustus.ee
www.kindlustus.ee
if.kindlustus.ee
wsprod.kindlustus.ee
if.kindlustus.ee
www.kindlustus.ee
Certificate
The complete raw certificate details for if.kindlustus.ee in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGNjCCBR6gAwIBAgIQEgexdC+XQLRtTp+2di1FtjANBgkqhkiG9w0BAQsFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMRswGQYDVQQDExJ0 aGF3dGUgU1NMIENBIC0gRzIwHhcNMTYwODI5MDAwMDAwWhcNMTgwOTA2MjM1OTU5 WjB4MQswCQYDVQQGEwJFRTERMA8GA1UECAwISGFyanVtYWExEDAOBgNVBAcMB1Rh bGxpbm4xHDAaBgNVBAoME0lmIFAmQyBJbnN1cmFuY2UgQVMxCzAJBgNVBAsMAklU MRkwFwYDVQQDDBBpZi5raW5kbHVzdHVzLmVlMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAtlG+tYMNCSaXJ1RlAsjKH2/kcXD8aFX4+KdApp+EqiaW9dG/ vWCmy+eZLfcj5Fjh6urJo6D8L9Tm6En3ERLL+gk/XHrVQ4p1AwyPlTmqEUrhvJYF wqtpd2JtnNejpX+XuzoYWnZBKTz5hy45O5BOrbQb90yAJu35brNy2YwlLEZWcEUb KyVQq3f9M8E5bAm451fMdNdLCrEEIzy0yiKlR60rnM662NJ8JfG7PR4WCIGod4+d d5WJ2acAgXiiW1yRfKre5WAmCUnqE/vt+Rw8y5MfZbVuLPvwlk8g5RxZ1N3nvs6+ FRDe2G0/UBnmrnyQ7AT5//aY9kn/2ZhDNejahwIDAQABo4IC8TCCAu0wGwYDVR0R BBQwEoIQaWYua2luZGx1c3R1cy5lZTAJBgNVHRMEAjAAMG4GA1UdIARnMGUwYwYG Z4EMAQICMFkwJgYIKwYBBQUHAgEWGmh0dHBzOi8vd3d3LnRoYXd0ZS5jb20vY3Bz MC8GCCsGAQUFBwICMCMMIWh0dHBzOi8vd3d3LnRoYXd0ZS5jb20vcmVwb3NpdG9y eTAOBgNVHQ8BAf8EBAMCBaAwHwYDVR0jBBgwFoAUwk9IV/zRT5rAXTh9DgXb2S61 UmAwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL3RqLnN5bWNiLmNvbS90ai5jcmww HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEBBEswSTAf BggrBgEFBQcwAYYTaHR0cDovL3RqLnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0 cDovL3RqLnN5bWNiLmNvbS90ai5jcnQwggF7BgorBgEEAdZ5AgQCBIIBawSCAWcB ZQB1AN3rHSt6DU+mIIuBrYFocH4ujp0B1VyIjT0RxM227L7MAAABVtWZM20AAAQD AEYwRAIgEStHOyo0ngQyvwz3YtRonpsi+mtPEP3feLGIV3jU2AMCICVesJvgSsxT 7nIBDgWU0LpWT0GXzVRdi0imT9PQjR2eAHUApLkJkLQYWBSHuxOizGdwCjw1mAT5 G9+443fNDsgN3BAAAAFW1Zk01wAABAMARjBEAiAbMfXeksFXX/DXiBqxr6xHJuSA t41bmHz7TCxk10PZagIgV7Monbgf4Mkkdg+KjQKAoogYtsItBj8cl9JCEwMMoXYA dQBo9pj4H2SCvjqM7rkoHUz8cVFdZ5PURNEKZ6y7T0/7xAAAAVbVmTTcAAAEAwBG MEQCIEwZdL3+HhGLfi6ZOTDjQqwiLi1ro4ORO1Hl9/vw0CJRAiBxkpUgtpEQYerz bp5UeVchXuHVzvQMtvb5dsigw3YNkDANBgkqhkiG9w0BAQsFAAOCAQEAnEE9exPS QpKSxv/koNIvtiV8SLGUjf0VYeHVR9wW/stxqMpYY+Ku7Sq0HhvkJHnKUjoZnd6C RmLHLrcp1hahpLkQxU8ZfyNXq+3aS9phBDmKYF6X6/w4Rm2T3kyU++KXLWX4AzgN JjeEIMaWVCl9LSwTALOL20ehAs4ERC92ADmNHHThNV2XrMIH+S+ZOv8KuTKjE9UQ ObcmxP066z5t/CgEfdYZCXjpiY5NaTVGXDunDDoD8Xrug8FVJFzAyRZCaNmERoGi hBgE9+yESttxQw1zmYqk8YWtM3i71VlA5vrphpj/zeMXZSvdpq2259yP/CeIsjRg 0c8aVpStfDrUlQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlG+tYMNCSaXJ1RlAsjK H2/kcXD8aFX4+KdApp+EqiaW9dG/vWCmy+eZLfcj5Fjh6urJo6D8L9Tm6En3ERLL +gk/XHrVQ4p1AwyPlTmqEUrhvJYFwqtpd2JtnNejpX+XuzoYWnZBKTz5hy45O5BO rbQb90yAJu35brNy2YwlLEZWcEUbKyVQq3f9M8E5bAm451fMdNdLCrEEIzy0yiKl R60rnM662NJ8JfG7PR4WCIGod4+dd5WJ2acAgXiiW1yRfKre5WAmCUnqE/vt+Rw8 y5MfZbVuLPvwlk8g5RxZ1N3nvs6+FRDe2G0/UBnmrnyQ7AT5//aY9kn/2ZhDNeja hwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 23966049193833576326106712638718035382 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-29 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'EE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Harjumaa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Tallinn' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'If P&C Insurance AS' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'if.kindlustus.ee' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23015681444566417836417198392577629738413944953763117603848242783064054224120265246767094407668772762386434085511235537248039853142135798803098487162176091579927343320163656780632544261019372599397645456485636733956515493503406213604871851658930906989244480861850146021741860045594959629565103003902200951004147474500115767758059287249383197098428374208648081489680146911207446041026290860249893603499798464583906374175764806473228472209920228183913898294010729214073275503112650991341719260718792350147842892903040227726949411801482749871650145996973660977034669005925767947292194356680663716611966532718306070682247 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'if.kindlustus.ee' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (359 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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