*.diatem.net
Issued by GlobalSign GCC R3 DV TLS CA 2020
About this certificate
This digital certificate with serial number 75:be:c2:cb:91:9a:0a:a8:7c:c4:7e:a0 was issued on by GlobalSign nv-sa.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)
Certificate Subject
CN=*.diatem.net
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 75:be:c2:cb:91:9a:0a:a8:7c:c4:7e:a0Serial Number (int): 36440361949102586258881019552
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: 00:1c:5a:dc:a0:be:cf:5a:8d:e7:70:c0:2c:ab:c5:d4:0f:19:09:2f
AuthorityKeyId: 0d:98:c0:73:7f:ab:bd:bd:d9:47:4b:49:ad:0a:4a:0c:ac:3e:c7:7c
Fingerprint (sha1): bd:17:07:d3:e6:5d:d9:23:a4:d3:6d:0f:f1:26:79:12:4d:09:fa:85
Fingerprint (sha256): 62:5b:ad:2d:70:bf:b5:7c:f8:95:bc:13:80:12:fd:03:99:4a:92:36:bb:6c:9e:f1:fb:ce:15:91:73:db:d1:b5
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsgccr3dvtlsca2020CRL Distribution Point: http://crl.globalsign.com/gsgccr3dvtlsca2020.crl
Check the revocation status for certificate *.diatem.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.diatem.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.diatem.net
diatem.net
diatem.net
Other certificates including the domain name diatem.net
(limited to 100 certificates)
status.autospf.com
status.autospf.com
status.mediaconnect.no
status.autospf.com
*.diatem.net
status.waps.solutions
status.autospf.com
*.diatem.net
status.mediaconnect.no
status.autospf.com
jabber.diatem.net
status.waps.solutions
*.diatem.net
swing.diatem.net
status.warrantywise.co.uk
status.warrantywise.co.uk
status.waps.solutions
status.synccentral.eu
status.autospf.com
status.zoho.sa
status.virtual-developer.com
status.autospf.com
status.warrantywise.co.uk
status.justaftermidnight.io
status.diatem.net
status.skynetexpress.com
status.autospf.com
swing.diatem.net
status.autospf.com
exchange.diatem.net
status.limonadadigital.com
status.autospf.com
status.virtual-developer.com
status.warrantywise.co.uk
status.autospf.com
status.allgreenhosting.global
*.diatem.net
*.diatem.net
status.justaftermidnight.io
status.synccentral.eu
status.autospf.com
exchange.diatem.net
status.diatem.net
status.justaftermidnight.io
*.diatem.net
status.autospf.com
status.autospf.com
status.allgreenhosting.global
status.autospf.com
jabber.diatem.net
status.mycubes.nl
status.autospf.com
status.mycubes.nl
status.limonadadigital.com
status.autospf.com
status.autospf.com
jabber.diatem.net
status.waps.solutions
fr.status.oodrive.com
*.diatem.net
swing.diatem.net
status.autospf.com
status.mediaconnect.no
status.virtual-developer.com
jabber.diatem.net
status.autospf.com
status.limonadadigital.com
*.diatem.net
fr.status.oodrive.com
status.justaftermidnight.io
status.allgreenhosting.global
swing.diatem.net
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.mediaconnect.no
status.autospf.com
status.mycubes.nl
jabber.diatem.net
status.autospf.com
*.diatem.net
*.diatem.net
status.virtual-developer.com
jabber.diatem.net
status.autospf.com
status.allgreenhosting.global
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.mediaconnect.no
status.autospf.com
*.diatem.net
status.waps.solutions
status.autospf.com
*.diatem.net
status.mediaconnect.no
status.autospf.com
jabber.diatem.net
status.waps.solutions
*.diatem.net
swing.diatem.net
status.warrantywise.co.uk
status.warrantywise.co.uk
status.waps.solutions
status.synccentral.eu
status.autospf.com
status.zoho.sa
status.virtual-developer.com
status.autospf.com
status.warrantywise.co.uk
status.justaftermidnight.io
status.diatem.net
status.skynetexpress.com
status.autospf.com
swing.diatem.net
status.autospf.com
exchange.diatem.net
status.limonadadigital.com
status.autospf.com
status.virtual-developer.com
status.warrantywise.co.uk
status.autospf.com
status.allgreenhosting.global
*.diatem.net
*.diatem.net
status.justaftermidnight.io
status.synccentral.eu
status.autospf.com
exchange.diatem.net
status.diatem.net
status.justaftermidnight.io
*.diatem.net
status.autospf.com
status.autospf.com
status.allgreenhosting.global
status.autospf.com
jabber.diatem.net
status.mycubes.nl
status.autospf.com
status.mycubes.nl
status.limonadadigital.com
status.autospf.com
status.autospf.com
jabber.diatem.net
status.waps.solutions
fr.status.oodrive.com
*.diatem.net
swing.diatem.net
status.autospf.com
status.mediaconnect.no
status.virtual-developer.com
jabber.diatem.net
status.autospf.com
status.limonadadigital.com
*.diatem.net
fr.status.oodrive.com
status.justaftermidnight.io
status.allgreenhosting.global
swing.diatem.net
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.mediaconnect.no
status.autospf.com
status.mycubes.nl
jabber.diatem.net
status.autospf.com
*.diatem.net
*.diatem.net
status.virtual-developer.com
jabber.diatem.net
status.autospf.com
status.allgreenhosting.global
status.autospf.com
status.autospf.com
status.autospf.com
Certificate
The complete raw certificate details for *.diatem.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSDCCBTCgAwIBAgIMdb7Cy5GaCqh8xH6gMA0GCSqGSIb3DQEBCwUAMFMxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSkwJwYDVQQDEyBH bG9iYWxTaWduIEdDQyBSMyBEViBUTFMgQ0EgMjAyMDAeFw0yMjAxMTcxODQ0NTha Fw0yMzAyMTgxODQ0NThaMBcxFTATBgNVBAMMDCouZGlhdGVtLm5ldDCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAKl7L/mOwmiT+JpbS6h8v8iP2OoLpcKl 0MH7P8s2vC++zeQufLdPW0e9Nd1fMRyUPpLhL7CRqXUfLWVy1BVg3QAocE7+JzUC mshoTigcQ7gcOtqGITGXyo4dXX7QVHYjglcSI0wb9+TQUqeCHfJlf4JUYNmHzmu4 ZEYOybMc7wPRhVjX9x88MXHl9DooXwpJ5CQ9XZ+7ZWVNN1JOdFE8yJbj6Bx5Cbmt iYowVDJVIpDtx5W1hqNJFNR8wPhCes9PsLreHHLXaIzdVVOR+3F+i5VxmFXFBoQw gV4yUApWBvO8zG5c3KRqzpmRSwOm5vNJi1NFrTvMCojZ60yYcJoqLj0CAwEAAaOC A1YwggNSMA4GA1UdDwEB/wQEAwIFoDCBkwYIKwYBBQUHAQEEgYYwgYMwRgYIKwYB BQUHMAKGOmh0dHA6Ly9zZWN1cmUuZ2xvYmFsc2lnbi5jb20vY2FjZXJ0L2dzZ2Nj cjNkdnRsc2NhMjAyMC5jcnQwOQYIKwYBBQUHMAGGLWh0dHA6Ly9vY3NwLmdsb2Jh bHNpZ24uY29tL2dzZ2NjcjNkdnRsc2NhMjAyMDBWBgNVHSAETzBNMEEGCSsGAQQB oDIBCjA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9iYWxzaWduLmNvbS9y ZXBvc2l0b3J5LzAIBgZngQwBAgEwCQYDVR0TBAIwADBBBgNVHR8EOjA4MDagNKAy hjBodHRwOi8vY3JsLmdsb2JhbHNpZ24uY29tL2dzZ2NjcjNkdnRsc2NhMjAyMC5j cmwwIwYDVR0RBBwwGoIMKi5kaWF0ZW0ubmV0ggpkaWF0ZW0ubmV0MB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAfBgNVHSMEGDAWgBQNmMBzf6u9vdlHS0mt CkoMrD7HfDAdBgNVHQ4EFgQUABxa3KC+z1qN53DALKvF1A8ZCS8wggF+BgorBgEE AdZ5AgQCBIIBbgSCAWoBaAB1AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31t Br1uAAABfmlbWFwAAAQDAEYwRAIgO9uoqE4oQT9Eb35Fs+IbB/OKruoXksj+gu+R q5Neo9oCIEnLwrvVwby7CqeafgyLblt0twEiSLfYggdwGeT94L3UAHYAb1N2rDHw MRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAF+aVtXNwAABAMARzBFAiEAvpa7 LABaSlAX+GESgzyxYomyVBoHPaDqNubzKF9Se/0CIDmKVVcdjSYk1TKtT+GUOVsE dt8g886ApN6geJOYEMbHAHcAVYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT 0wwAAAF+aVtYTgAABAMASDBGAiEA7MSfXYptgv/KO0Mz2xZfxb2WG2IlQAJjq2SO 6Cmb6kwCIQCAWWncN06MRCz7RLMrzdV0Ap4CcR5heoCKYZ7u0LL5hTANBgkqhkiG 9w0BAQsFAAOCAQEAZzi8GyFm1ruUHakAgRbq+hiJ9eKr4D62bM9NaPwbipPp0WTz XGtipffwMo1LjSrRpNzSoiEVUlGZupRb5SU8ApEzhaRCfp2NexKKKLRvnqD0yXKr y8va93/a3DnqyWkLSvnqlRNyWniAjXhG4fWannkJd+Xh88pBoZxLjG5dY+Ud4nNT WI7zC7GV8Z9iax2+015xnYQoJuiOab8f67wrZ0yuHTwe4qPBohGHGjj8BCmhpaSt 61vQKqRBN9M+IGREJmcw3ySstiINBJ8Lxrii7BCIv4fDJPvRAY+dnAlS/fU3hkQ0 p681J5+VERm3YVgT/A5HAQkUH2JymwvFyiQQ7A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXsv+Y7CaJP4mltLqHy/ yI/Y6gulwqXQwfs/yza8L77N5C58t09bR7013V8xHJQ+kuEvsJGpdR8tZXLUFWDd AChwTv4nNQKayGhOKBxDuBw62oYhMZfKjh1dftBUdiOCVxIjTBv35NBSp4Id8mV/ glRg2YfOa7hkRg7JsxzvA9GFWNf3HzwxceX0OihfCknkJD1dn7tlZU03Uk50UTzI luPoHHkJua2JijBUMlUikO3HlbWGo0kU1HzA+EJ6z0+wut4cctdojN1VU5H7cX6L lXGYVcUGhDCBXjJQClYG87zMblzcpGrOmZFLA6bm80mLU0WtO8wKiNnrTJhwmiou PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 36440361949102586258881019552 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign GCC R3 DV TLS CA 2020' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-17 18:44:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-18 18:44:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.diatem.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21395019511074368273643194465431919171930064447763104845859350499300818593171477750950188861215247297373671003110003640735205825195946511560230274928165426438750579338967049395247720828407420661455625429278858972124344094308024000965888522394787244832854292575599148209473356143581908272408915269729163792382640813675135491537900445691913063488552735083022629323837783423565478161632079419544704144673835002174750705198768676140103284893644729918373671399773063898172844681617141102488364879414668577930056084787756123587117734527532969702381192081273809249551953994323376390997831226546009455099439142426860705164861 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (134 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsgccr3dvtlsca2020' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10 (globalsignDVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsgccr3dvtlsca2020.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.diatem.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'diatem.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0d98c0737fabbdbdd9474b49ad0a4a0cac3ec77c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 001c5adca0becf5a8de770c02cabc5d40f19092f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 0168007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000017e695b585c000004030046304402203bdba8a84e28413f446f7e45b3e21b07f38aaeea1792c8fe82ef91ab935ea3da022049cbc2bbd5c1bcbb0aa79a7e0c8b6e5b74b7012248b7d882077019e4fde0bdd40076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000017e695b57370000040300473045022100be96bb2c005a4a5017f86112833cb16289b2541a073da0ea36e6f3285f527bfd0220398a55571d8d2624d532ad4fe194395b0476df20f3ce80a4dea078939810c6c70077005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c0000017e695b584e0000040300483046022100ecc49f5d8a6d82ffca3b4333db165fc5bd961b6225400263ab648ee8299bea4c022100805969dc374e8c442cfb44b32bcdd574029e02711e617a808a619eeed0b2f985 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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