csi-sts.bhr.bilfinger.net
- Bilfinger Berger SE -
Issued by Trusted Secure Certificate Authority 5
About this certificate
This digital certificate with serial number 95:7f:12:1f:ff:7c:73:8c:a3:fa:bb:58:c3:80:03:d4 was issued on by Corporation Service Company.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Bilfinger Berger SE
Organization:
Bilfinger Berger SE
Organization unit: IT
Organization unit: Enterprise SSL
Organization unit: IT
Organization unit: Enterprise SSL
Address:
Carl-Reiß-Platz 1-5
Postal code: 68165
State / Province: Baden-Wuerttemberg
Locality: Mannheim
Country: DE
Postal code: 68165
State / Province: Baden-Wuerttemberg
Locality: Mannheim
Country: DE
Corporation Service Company
Organization:
Corporation Service Company
State / Province:
DE
Locality: Wilmington
Country: US
Locality: Wilmington
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 95:7f:12:1f:ff:7c:73:8c:a3:fa:bb:58:c3:80:03:d4Serial Number (int): 198714760691501421816333590899258819540
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: e0:a2:4f:0a:d9:f7:20:3e:26:df:e8:aa:eb:c5:a8:98:c7:7c:52:45
AuthorityKeyId: f2:bb:55:ee:fc:8f:cf:d0:3f:14:68:1a:95:7e:79:0e:ab:17:30:f4
Fingerprint (sha1): 6b:7a:98:90:75:65:c1:f2:3d:10:45:be:9b:53:34:b6:1d:6f:f7:a7
Fingerprint (sha256): 60:f0:8d:09:6f:54:ae:5c:56:8d:13:9e:53:6f:7d:96:f2:5f:59:29:2a:39:af:cc:97:3a:67:d1:03:08:2a:24
Issuing Certificate URL: http://crt.usertrust.com/TrustedSecureCertificateAuthority5.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.usertrust.com/TrustedSecureCertificateAuthority5.crl
Check the revocation status for certificate csi-sts.bhr.bilfinger.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for csi-sts.bhr.bilfinger.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
csi-sts.bhr.bilfinger.net
www.csi-sts.bhr.bilfinger.net
www.csi-sts.bhr.bilfinger.net
Other certificates including the domain name bilfinger.net
(limited to 100 certificates)
mdm.bilfinger.net
proarc.bilfinger.net
auth.bilfinger.net
standards.bilfinger.net
wms.bilfinger.net
sd-is-usa.bilfinger.net
mdmemailqa.bilfinger.net
*.spa.bilfinger.net
iscloud.bilfinger.net
filebox2.bilfinger.net
auth.bilfinger.net
vpn.evry.com
q14-cc.sap.bilfinger.net
csi-sts.bbps.bilfinger.net
whl.bilfinger.net
medialibrary.bilfinger.net
envicloud.bilfinger.net
filebox.bilfinger.net
knowledgetest.bilfinger.net
asp.bilfinger.net
sharepoint.bilfinger.net
wdsc14.sap.bilfinger.net
mdmqa.bilfinger.net
fscloud.bilfinger.net
ssrs-proxy.auth.bilfinger.net
mycitrix.bilfinger.net
login.bilfinger.net
fscloud.bilfinger.net
oos.bilfinger.net
i-doit.bilfinger.net
lync.bilfinger.net
bea.bilfinger.net
vpn.evry.com
bld.bilfinger.net
templogin.bilfinger.net
betriebsvereinbarung-informationssysteme.bilfinger.net
login.bilfinger.net
wdsp14.sap.bilfinger.net
mdmemail.bilfinger.net
storefrontqa.bilfinger.net
academy-elearning-test.bilfinger.net
di1-cc.sap.bilfinger.net
*.bilfinger.com
teams.bilfinger.net
bi.bilfinger.net
ssc-service-reporting.bilfinger.net
wdsq14.sap.bilfinger.net
jabis.bilfinger.net
fscloud.bilfinger.net
mycitrixqa.bilfinger.net
autodiscover.bilfinger.net
mclug.bilfinger.net
*.shield.bilfinger.net
mdm.bilfinger.net
di3-cc.sap.bilfinger.net
academy.bilfinger.net
edge.bilfinger.net
pmo.bilfinger.net
bsfm-ftp.bilfinger.net
csi-sts.bbps.bilfinger.net
*.bilfinger.com
medialibrary.bilfinger.net
*.cloudapps.bilfinger.net
applications.bilfinger.net
webapps.bilfinger.net
my.bilfinger.net
mdm.bilfinger.net
mdmqa.bilfinger.net
webapps.bilfinger.net
p14-cc.sap.bilfinger.net
academy-elearning.bilfinger.net
csi-sts.bb.bilfinger.net
academy.bilfinger.net
filebox2.bilfinger.net
*.nav.bilfinger.net
mycitrix.bilfinger.net
teams.bilfinger.net
find.bilfinger.net
csi-sts.bb.bilfinger.net
siem.bilfinger.net
mclut.bilfinger.net
*.cloudappsqa.bilfinger.net
academy-test.bilfinger.net
www.identify-fs.bilfinger.com
login.bilfinger.net
iscloud.bilfinger.net
csi-sts.bhr.bilfinger.net
envicloud.bilfinger.net
gtc.bilfinger.net
filebox2.bilfinger.net
gcp-apps.bilfinger.net
q17-cc.sap.bilfinger.net
puma.bilfinger.net
academy.bilfinger.net
nsg.bilfinger.net
i-doit-test.bilfinger.net
vpn.evry.com
filebox.bilfinger.net
*.gcp-apps.bilfinger.net
bmcloud.bilfinger.net
proarc.bilfinger.net
auth.bilfinger.net
standards.bilfinger.net
wms.bilfinger.net
sd-is-usa.bilfinger.net
mdmemailqa.bilfinger.net
*.spa.bilfinger.net
iscloud.bilfinger.net
filebox2.bilfinger.net
auth.bilfinger.net
vpn.evry.com
q14-cc.sap.bilfinger.net
csi-sts.bbps.bilfinger.net
whl.bilfinger.net
medialibrary.bilfinger.net
envicloud.bilfinger.net
filebox.bilfinger.net
knowledgetest.bilfinger.net
asp.bilfinger.net
sharepoint.bilfinger.net
wdsc14.sap.bilfinger.net
mdmqa.bilfinger.net
fscloud.bilfinger.net
ssrs-proxy.auth.bilfinger.net
mycitrix.bilfinger.net
login.bilfinger.net
fscloud.bilfinger.net
oos.bilfinger.net
i-doit.bilfinger.net
lync.bilfinger.net
bea.bilfinger.net
vpn.evry.com
bld.bilfinger.net
templogin.bilfinger.net
betriebsvereinbarung-informationssysteme.bilfinger.net
login.bilfinger.net
wdsp14.sap.bilfinger.net
mdmemail.bilfinger.net
storefrontqa.bilfinger.net
academy-elearning-test.bilfinger.net
di1-cc.sap.bilfinger.net
*.bilfinger.com
teams.bilfinger.net
bi.bilfinger.net
ssc-service-reporting.bilfinger.net
wdsq14.sap.bilfinger.net
jabis.bilfinger.net
fscloud.bilfinger.net
mycitrixqa.bilfinger.net
autodiscover.bilfinger.net
mclug.bilfinger.net
*.shield.bilfinger.net
mdm.bilfinger.net
di3-cc.sap.bilfinger.net
academy.bilfinger.net
edge.bilfinger.net
pmo.bilfinger.net
bsfm-ftp.bilfinger.net
csi-sts.bbps.bilfinger.net
*.bilfinger.com
medialibrary.bilfinger.net
*.cloudapps.bilfinger.net
applications.bilfinger.net
webapps.bilfinger.net
my.bilfinger.net
mdm.bilfinger.net
mdmqa.bilfinger.net
webapps.bilfinger.net
p14-cc.sap.bilfinger.net
academy-elearning.bilfinger.net
csi-sts.bb.bilfinger.net
academy.bilfinger.net
filebox2.bilfinger.net
*.nav.bilfinger.net
mycitrix.bilfinger.net
teams.bilfinger.net
find.bilfinger.net
csi-sts.bb.bilfinger.net
siem.bilfinger.net
mclut.bilfinger.net
*.cloudappsqa.bilfinger.net
academy-test.bilfinger.net
www.identify-fs.bilfinger.com
login.bilfinger.net
iscloud.bilfinger.net
csi-sts.bhr.bilfinger.net
envicloud.bilfinger.net
gtc.bilfinger.net
filebox2.bilfinger.net
gcp-apps.bilfinger.net
q17-cc.sap.bilfinger.net
puma.bilfinger.net
academy.bilfinger.net
nsg.bilfinger.net
i-doit-test.bilfinger.net
vpn.evry.com
filebox.bilfinger.net
*.gcp-apps.bilfinger.net
bmcloud.bilfinger.net
Certificate
The complete raw certificate details for csi-sts.bhr.bilfinger.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHVTCCBj2gAwIBAgIRAJV/Eh//fHOMo/q7WMOAA9QwDQYJKoZIhvcNAQELBQAw gYYxCzAJBgNVBAYTAlVTMQswCQYDVQQIEwJERTETMBEGA1UEBxMKV2lsbWluZ3Rv bjEkMCIGA1UEChMbQ29ycG9yYXRpb24gU2VydmljZSBDb21wYW55MS8wLQYDVQQD EyZUcnVzdGVkIFNlY3VyZSBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkgNTAeFw0xODA0 MjUwMDAwMDBaFw0yMDA0MjQyMzU5NTlaMIHUMQswCQYDVQQGEwJERTEOMAwGA1UE ERMFNjgxNjUxGzAZBgNVBAgTEkJhZGVuLVd1ZXJ0dGVtYmVyZzERMA8GA1UEBxMI TWFubmhlaW0xHTAbBgNVBAkMFENhcmwtUmVpw58tUGxhdHogMS01MRwwGgYDVQQK ExNCaWxmaW5nZXIgQmVyZ2VyIFNFMQswCQYDVQQLEwJJVDEXMBUGA1UECxMORW50 ZXJwcmlzZSBTU0wxIjAgBgNVBAMTGWNzaS1zdHMuYmhyLmJpbGZpbmdlci5uZXQw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuMT/sRjuYBpHnxeBCBsGW P6OuR/paTNhpR3gHlrNzzjGMW7ZG32LPMpoEfVuuvIw9Vnah2kd0jW5tBOqDPzzg cfuXnTqW8nBLefKBP48CaSJ0HuCQRLiP7l3jhkljkOvV4r9JW4uGql7swbto0PfS eJrLCYt6f3Cn9g8HfnzDtb8fNn1Rk6nu8bEtRYXP6O7uMEY8JCzvVSIh9MHHjJze eaOQEoCTa2XhR/N9hRgVUnvEr6iPYR4SF9vsln7gHWjjdBbBwggLqZTOmk7bxUUa AFleis/FkB3Za7Mn0lOos2nJsibKn4v4uevuB/4NDWKlHVzdtLZKmRz0i365C+rb AgMBAAGjggNsMIIDaDAfBgNVHSMEGDAWgBTyu1Xu/I/P0D8UaBqVfnkOqxcw9DAd BgNVHQ4EFgQU4KJPCtn3ID4m3+iq68WomMd8UkUwDgYDVR0PAQH/BAQDAgWgMAwG A1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEsGA1Ud IAREMEIwNgYLKwYBBAGyMQECAggwJzAlBggrBgEFBQcCARYZaHR0cHM6Ly9jcHMu dXNlcnRydXN0LmNvbTAIBgZngQwBAgIwUAYDVR0fBEkwRzBFoEOgQYY/aHR0cDov L2NybC51c2VydHJ1c3QuY29tL1RydXN0ZWRTZWN1cmVDZXJ0aWZpY2F0ZUF1dGhv cml0eTUuY3JsMIGCBggrBgEFBQcBAQR2MHQwSwYIKwYBBQUHMAKGP2h0dHA6Ly9j cnQudXNlcnRydXN0LmNvbS9UcnVzdGVkU2VjdXJlQ2VydGlmaWNhdGVBdXRob3Jp dHk1LmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTBD BgNVHREEPDA6ghljc2ktc3RzLmJoci5iaWxmaW5nZXIubmV0gh13d3cuY3NpLXN0 cy5iaHIuYmlsZmluZ2VyLm5ldDCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHcA 7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo/csAAAFi+/TR/gAABAMASDBG AiEA4ETGvsSBc521aU+rsJ2inddcAiwnY0UQoDZ3tyKRQXsCIQCiR0WvxLHhbmn4 VYbqD0WS7mRkgrWRrDklaMF8onASkwB1AF6nc/nfVsDntTZIfdBJ4DJ6kZoMhKES EoQYdZaBcUVYAAABYvv0w3gAAAQDAEYwRAIgdiqqeuJ8ZbPZrXGPBZxljoGmoUXp 2uzoN93n8ajnaD0CIGhQUNJdd963PO7KheUEqQ7QJtducuzcKuS40vbnshclAHYA VYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAFi+/TDoQAABAMARzBF AiEAoK7jLuViL4A5SOj3g8vMlc1RbKRVvVAuasIkEqSwJ7gCICTDfYVBjzB8olU8 ity7acTPNDV02Xy5ikQgtCD6uGewMA0GCSqGSIb3DQEBCwUAA4IBAQB6716Swa+/ xgu1BsySB3jCD4SXIqtHZ7cVR/yEWzcd/tjFj2v3z85vILnwCLrDtlckzSlj/mCO GhxeAcknbR320Ja/kARhKUHdqfU4rEdT+2RdYM8ZMAaDZzXGv5r+HN6ExFOO5PE1 OgkzNiDnqgQI9S96i/oDtnWMOKH0Rhtv3VXkwd5T41KXeHL9dD6rCFfIZPUmAoJF BnzTShzKhRGg8pgmISO1d81seplybYoQuNY/LxsDVu601z0jFelildNsgX2G3NJk /PHHLC+iMzgvvf/9LE4PY64SL91waj3i9rqg/hOiZZUbJUExPzy4w6oI2dw1r5eu lxjg5bcLlMZT -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjE/7EY7mAaR58XgQgbB lj+jrkf6WkzYaUd4B5azc84xjFu2Rt9izzKaBH1brryMPVZ2odpHdI1ubQTqgz88 4HH7l506lvJwS3nygT+PAmkidB7gkES4j+5d44ZJY5Dr1eK/SVuLhqpe7MG7aND3 0niaywmLen9wp/YPB358w7W/HzZ9UZOp7vGxLUWFz+ju7jBGPCQs71UiIfTBx4yc 3nmjkBKAk2tl4UfzfYUYFVJ7xK+oj2EeEhfb7JZ+4B1o43QWwcIIC6mUzppO28VF GgBZXorPxZAd2WuzJ9JTqLNpybImyp+L+Lnr7gf+DQ1ipR1c3bS2Spkc9It+uQvq 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 198714760691501421816333590899258819540 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wilmington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Corporation Service Company' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trusted Secure Certificate Authority 5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '68165' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Baden-Wuerttemberg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Mannheim' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Carl-Reiß-Platz 1-5' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bilfinger Berger SE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Enterprise SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'csi-sts.bhr.bilfinger.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21989750995825309217312979237750184701279055045731274333372675865230312199480904767571421929608911183532499425986695306073495138165064130392769628025602140254801923060604181613873907046543389503870197906022957365387825287946490981528781694238428081506031447747057089192315415253605521926666058574581065142151729058759692815362295514188311117719576928705835914411452705713017447835173361700639016297871731639722256092712294718580507683137331385830485819039288287322009811495018981175408650718672272861205758573316191232852548648045236877774810738909262478434491033490349872967874149234299704799093367252769870441081563 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f2bb55eefc8fcfd03f14681a957e790eab1730f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e0a24f0ad9f7203e26dfe8aaebc5a898c77c5245 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.8 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/TrustedSecureCertificateAuthority5.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/TrustedSecureCertificateAuthority5.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'csi-sts.bhr.bilfinger.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.csi-sts.bhr.bilfinger.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 0168007700ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb00000162fbf4d1fe0000040300483046022100e044c6bec481739db5694fabb09da29dd75c022c27634510a03677b72291417b022100a24745afc4b1e16e69f85586ea0f4592ee646482b591ac392568c17ca27012930075005ea773f9df56c0e7b536487dd049e0327a919a0c84a11212841875968171455800000162fbf4c37800000403004630440220762aaa7ae27c65b3d9ad718f059c658e81a6a145e9daece837dde7f1a8e7683d0220685050d25d77deb73ceeca85e504a90ed026d76e72ecdc2ae4b8d2f6e7b217250076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c00000162fbf4c3a10000040300473045022100a0aee32ee5622f803948e8f783cbcc95cd516ca455bd502e6ac22412a4b027b8022024c37d85418f307ca2553c8adcbb69c4cf343574d97cb98a4420b420fab867b0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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