www.sh.se
- Södertörns högskola -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 03:42:76:61:6c:0e:1c:ad:4a:50:e4:8f:8f:e0:f0:39 was issued on by TERENA.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Södertörns högskola
Organization:
Södertörns högskola
Locality:
Huddinge
Country: SE
Country: SE
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 03:42:76:61:6c:0e:1c:ad:4a:50:e4:8f:8f:e0:f0:39Serial Number (int): 4332776622924482468028354882714005561
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 8d:4f:9c:3c:b9:f2:9e:fe:d2:f7:73:28:76:48:65:17:5b:59:2c:b6
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): 37:89:f9:57:f2:e0:31:36:16:64:8e:63:a7:3c:fe:c9:dc:1c:49:70
Fingerprint (sha256): 66:5a:9e:72:54:fb:73:13:de:36:8e:55:62:99:90:0f:74:b1:5b:de:ff:8c:55:9b:18:52:14:4a:aa:f9:c4:88
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate www.sh.se
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.sh.se
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.sh.se
sh.se
sh.se
Other certificates including the domain name sh.se
(limited to 100 certificates)
www.sh.se
ssd04.web.sh.se
graduateland.com
webappl.web.sh.se
*.till.biblextern.sh.se
bibl.sh.se
usersync.errai.sh.se
earkiv.sh.se
graduateland.com
rad1.eduroam.sh.se
*.bibl.sh.se
api.bibl.sh.se
graduateland.com
careergate.sh.se
careerland.dk
careergate.sh.se
play.sh.se
graduateland.com
webappo.web.sh.se
dubhe.suni.se
support.mi.sh.se
primula.sh.se
graduateland.com
graduateland.com
graduateland.com
graduateland.com
mob01.web.sh.se
av.sh.se
spk03.web.sh.se
graduateland.com
*.bibl.sh.se
kvalitet.sh.se
ssd02.web.sh.se
career.cphbusiness.dk
graduateland.com
career.cphbusiness.dk
primula.sh.se
career.cphbusiness.dk
*.till.biblextern.sh.se
api.sh.se
blogg.sh.se
career.cphbusiness.dk
graduateland.com
terebellum.suni.se
www.sh.se
career.cphbusiness.dk
careerland.dk
graduateland.com
primula.sh.se
*.bibl.sh.se
blogg.sh.se
career.cphbusiness.dk
bibl.sh.se
api.sh.se
careerland.dk
dubhe.suni.se
primula.sh.se
career.cphbusiness.dk
career.cphbusiness.dk
info.web.sh.se
apputv.sh.se
www.sh.se
itsl.bibl.sh.se
bibl.sh.se
api.sh.se
kronox-test.sh.se
student.web.sh.se
bibl-app.sh.se
*.till.biblextern.sh.se
graduateland.com
app.sh.se
rad2.eduroam.sh.se
careerland.dk
career.cphbusiness.dk
webappl.web.sh.se
apptest.sh.se
*.bibl.sh.se
www.sh.se
*.mi.sh.se
faktaassistenten.sh.se
faktaassistenten.sh.se
careergate.sh.se
www.sh.se
dubhe.suni.se
blogg.sh.se
itsl.bibl.sh.se
sim01.web.sh.se
apptest.sh.se
career.cphbusiness.dk
career.cphbusiness.dk
www.sh.se
graduateland.com
blogg.sh.se
*.web.sh.se
www.sh.se
bibl.sh.se
bibl.sh.se
api.sh.se
faktaassistenten.sh.se
student.mi.sh.se
ssd04.web.sh.se
graduateland.com
webappl.web.sh.se
*.till.biblextern.sh.se
bibl.sh.se
usersync.errai.sh.se
earkiv.sh.se
graduateland.com
rad1.eduroam.sh.se
*.bibl.sh.se
api.bibl.sh.se
graduateland.com
careergate.sh.se
careerland.dk
careergate.sh.se
play.sh.se
graduateland.com
webappo.web.sh.se
dubhe.suni.se
support.mi.sh.se
primula.sh.se
graduateland.com
graduateland.com
graduateland.com
graduateland.com
mob01.web.sh.se
av.sh.se
spk03.web.sh.se
graduateland.com
*.bibl.sh.se
kvalitet.sh.se
ssd02.web.sh.se
career.cphbusiness.dk
graduateland.com
career.cphbusiness.dk
primula.sh.se
career.cphbusiness.dk
*.till.biblextern.sh.se
api.sh.se
blogg.sh.se
career.cphbusiness.dk
graduateland.com
terebellum.suni.se
www.sh.se
career.cphbusiness.dk
careerland.dk
graduateland.com
primula.sh.se
*.bibl.sh.se
blogg.sh.se
career.cphbusiness.dk
bibl.sh.se
api.sh.se
careerland.dk
dubhe.suni.se
primula.sh.se
career.cphbusiness.dk
career.cphbusiness.dk
info.web.sh.se
apputv.sh.se
www.sh.se
itsl.bibl.sh.se
bibl.sh.se
api.sh.se
kronox-test.sh.se
student.web.sh.se
bibl-app.sh.se
*.till.biblextern.sh.se
graduateland.com
app.sh.se
rad2.eduroam.sh.se
careerland.dk
career.cphbusiness.dk
webappl.web.sh.se
apptest.sh.se
*.bibl.sh.se
www.sh.se
*.mi.sh.se
faktaassistenten.sh.se
faktaassistenten.sh.se
careergate.sh.se
www.sh.se
dubhe.suni.se
blogg.sh.se
itsl.bibl.sh.se
sim01.web.sh.se
apptest.sh.se
career.cphbusiness.dk
career.cphbusiness.dk
www.sh.se
graduateland.com
blogg.sh.se
*.web.sh.se
www.sh.se
bibl.sh.se
bibl.sh.se
api.sh.se
faktaassistenten.sh.se
student.mi.sh.se
Certificate
The complete raw certificate details for www.sh.se in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGjzCCBXegAwIBAgIQA0J2YWwOHK1KUOSPj+DwOTANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xODExMTkwMDAwMDBaFw0yMDExMjMxMjAwMDBaMFUxCzAJBgNVBAYT AlNFMREwDwYDVQQHEwhIdWRkaW5nZTEfMB0GA1UECgwWU8O2ZGVydMO2cm5zIGjD tmdza29sYTESMBAGA1UEAxMJd3d3LnNoLnNlMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAyQ5y41T/XPTVzyutcp1mdSMduq3qZBGr/cU9C5JaPfRCdDsX vnPAugPXgYY4DTosMY7sYZxUB7EINrzv++FIkc6r7UwFjFaZVUNX8sQDSG+mR36a v3yLHUfX44HW1lC8hg//Ip7OPdHZbdIZbhD5azCxqc7JG/qHR0Z/E+DU7jaKO9yU pmaZU7IXN4zJv4gjZcTaoOac7TEWW0xbCtn/dOXAfDX8SNdsfOSjUYvxiPKKsF6D l30oYguE42SdATNeC5bqZMf4qSHojxyYVEzN4IjKnNNExLqkpg8qK6VMgOdcvavI LIdVZfaFtwxz9zJhJlnwcudK3XivnRwNG2FrwQIDAQABo4IDSjCCA0YwHwYDVR0j BBgwFoAUZ/2IIBQnmMcJ0iUZu+lREWN1UGIwHQYDVR0OBBYEFI1PnDy58p7+0vdz KHZIZRdbWSy2MBsGA1UdEQQUMBKCCXd3dy5zaC5zZYIFc2guc2UwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBrBgNVHR8EZDBi MC+gLaArhilodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vVEVSRU5BU1NMQ0EzLmNy bDAvoC2gK4YpaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL1RFUkVOQVNTTENBMy5j cmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwbgYIKwYBBQUHAQEEYjBg MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wOAYIKwYBBQUH MAKGLGh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9URVJFTkFTU0xDQTMuY3J0 MAwGA1UdEwEB/wQCMAAwggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB2AKS5CZC0 GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABZyw5t84AAAQDAEcwRQIgD5YD 8r3bEqkeQ9r7JnozWxMmTF1dD4gaIR8vz4HZAfECIQDTDLRx6Wjg39RhY2zjbwP8 xNYqwJfUgBhTL5m37bCQOgB1AId1v+dZfPiMQ5lfvfNu/1aNR1Y2/0q1YMG06v9e oIMPAAABZyw5uK0AAAQDAEYwRAIgCo97RtOszcGdhNKPoYrTf33uaQOZRZzXpNYO jukgxJoCIF7+iKqoV/18aViFy1i8PwE51QgShTfQF+Fd+xMUU8JiAHYAu9nfvB+K cbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFnLDm43wAABAMARzBFAiAcn7mq RETOjjYWvqAcLQC5Eh587EFq4sYiF4qqJffQAQIhAJTCqb9vYP1M5VRheTWss1Y1 rOB92mZJd0qCh6RbG10RMA0GCSqGSIb3DQEBCwUAA4IBAQChgvFfbrcA4JKsccYY 6cilnxTfJNeogiRwQ+UvBbFk47iBp3ncOTHt3dX6bF+8MAFM9uHdQmkspAQlP+eZ HdF0r8dQBQXOoD7thFNb0hrTdaCBZtjRqpCXzb/tpWK9ArFUO8nLZRITEGpLjVz7 4aJWiuFmUwG6T0eJ+aP1tyj9h8MYhVqvJKR367JDZ2hlzxiDVkdyDfRywny1Rv6G wJANst2QxQ9Kf5qvRhXPNNG0DE6S4IlI6PZn1oNMUu+kyRY9JL8CQAKnonFKOII7 8bqSoFF28uPnTV6g5Y2PI00CS2JjANhP0MHPymNPtAAXNqG5WDmuFaxjxkj+C5pT YUFa -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQ5y41T/XPTVzyutcp1m dSMduq3qZBGr/cU9C5JaPfRCdDsXvnPAugPXgYY4DTosMY7sYZxUB7EINrzv++FI kc6r7UwFjFaZVUNX8sQDSG+mR36av3yLHUfX44HW1lC8hg//Ip7OPdHZbdIZbhD5 azCxqc7JG/qHR0Z/E+DU7jaKO9yUpmaZU7IXN4zJv4gjZcTaoOac7TEWW0xbCtn/ dOXAfDX8SNdsfOSjUYvxiPKKsF6Dl30oYguE42SdATNeC5bqZMf4qSHojxyYVEzN 4IjKnNNExLqkpg8qK6VMgOdcvavILIdVZfaFtwxz9zJhJlnwcudK3XivnRwNG2Fr wQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4332776622924482468028354882714005561 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-23 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Huddinge' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Södertörns högskola' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.sh.se' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25381024257793297997643892686844709373836133481010944677151495303975196159073522462133081125647334032572810905456640017740222771990130873357455844197454101197587323550113978857436390862645459150069510410166941788052172014919070149378628384086491610355612900144992027899959327681271259772339971889053696446015608911663851964689712662535740457049154081881823327503312206490067602796657389051832341320221193958648856228389888842697131668218106922067876008632804406309323252671947488644840488125754906440354261645533739640941312461697144007585217541875777323668199274952067286957485572637239342755200788950334788186762177 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8d4f9c3cb9f29efed2f77328764865175b592cb6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sh.se' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sh.se' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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