gbif.no
- Universitetet i Oslo -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 05:19:9f:12:99:60:90:0f:c0:ae:ea:04:b7:a1:47:7f was issued on by TERENA.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Universitetet i Oslo
Organization:
Universitetet i Oslo
Locality:
Oslo
Country: NO
Country: NO
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 05:19:9f:12:99:60:90:0f:c0:ae:ea:04:b7:a1:47:7fSerial Number (int): 6779173777089799620295568263806535551
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 82:50:9d:36:6d:3d:b7:51:a1:b0:9c:7d:21:04:18:17:45:d3:b3:c2
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): 7c:8a:20:4a:ef:24:be:e3:83:16:0f:83:bf:69:68:16:21:a2:a2:b4
Fingerprint (sha256): 67:74:11:48:8d:ad:7f:07:14:64:f6:db:4f:0a:58:75:4c:58:3c:21:8b:d1:74:e1:54:c8:85:2d:1f:ed:a6:40
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate gbif.no
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gbif.no
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gbif.no
www.gbif.no
www.gbif.no
Other certificates including the domain name gbif.no
(limited to 100 certificates)
www-adm.1700-tallet.no
ipt.gbif.no
www-adm.gbif.no
data.gbif.no
dugnad.gbif.no
gbif.no
data.gbif.no
data.gbif.no
www-adm.1700-tallet.no
dugnad.gbif.no
data.gbif.no
data.gbif.no
ipt.gbif.no
1700-tallet.no
www.uhit.no
data.gbif.no
1700-tallet.no
www-adm.1700-tallet.no
data.gbif.no
1700-tallet.no
data.gbif.no
data.gbif.no
ipt.gbif.no
dugnad.gbif.no
dugnad.gbif.no
1700-tallet.no
data.gbif.no
gbif.no
data.gbif.no
www-adm.gbif.no
gbif.no
www-adm.1700-tallet.no
gbif.no
www-adm.gbif.no
ipt-biodata.gbif.no
www-adm.gbif.no
ipt-test.gbif.no
dugnad.gbif.no
www-adm.1700-tallet.no
www.1700-tallet.no
ipt-test.gbif.no
ipt-biodata.gbif.no
data.gbif.no
www-adm.1700-tallet.no
www.fsat.no
dugnad.gbif.no
www-adm.1700-tallet.no
www-adm.1700-tallet.no
dugnad.gbif.no
ipt-biodata.gbif.no
ipt-test.gbif.no
1700-tallet.no
1700-tallet.no
www.fsat.no
resolver.gbif.no
www-adm.1700-tallet.no
www-adm.1700-tallet.no
data.gbif.no
data.gbif.no
data.gbif.no
1700-tallet.no
data.gbif.no
1700-tallet.no
data.gbif.no
www-dav.gbif.no
1700-tallet.no
data.gbif.no
ipt.gbif.no
dugnad.gbif.no
data.gbif.no
www-dav.sensorportalen.uio.no
www-dav.gbif.no
data.gbif.no
data.gbif.no
ipt.gbif.no
www-adm.gbif.no
data.gbif.no
dugnad.gbif.no
gbif.no
data.gbif.no
data.gbif.no
www-adm.1700-tallet.no
dugnad.gbif.no
data.gbif.no
data.gbif.no
ipt.gbif.no
1700-tallet.no
www.uhit.no
data.gbif.no
1700-tallet.no
www-adm.1700-tallet.no
data.gbif.no
1700-tallet.no
data.gbif.no
data.gbif.no
ipt.gbif.no
dugnad.gbif.no
dugnad.gbif.no
1700-tallet.no
data.gbif.no
gbif.no
data.gbif.no
www-adm.gbif.no
gbif.no
www-adm.1700-tallet.no
gbif.no
www-adm.gbif.no
ipt-biodata.gbif.no
www-adm.gbif.no
ipt-test.gbif.no
dugnad.gbif.no
www-adm.1700-tallet.no
www.1700-tallet.no
ipt-test.gbif.no
ipt-biodata.gbif.no
data.gbif.no
www-adm.1700-tallet.no
www.fsat.no
dugnad.gbif.no
www-adm.1700-tallet.no
www-adm.1700-tallet.no
dugnad.gbif.no
ipt-biodata.gbif.no
ipt-test.gbif.no
1700-tallet.no
1700-tallet.no
www.fsat.no
resolver.gbif.no
www-adm.1700-tallet.no
www-adm.1700-tallet.no
data.gbif.no
data.gbif.no
data.gbif.no
1700-tallet.no
data.gbif.no
1700-tallet.no
data.gbif.no
www-dav.gbif.no
1700-tallet.no
data.gbif.no
ipt.gbif.no
dugnad.gbif.no
data.gbif.no
www-dav.sensorportalen.uio.no
www-dav.gbif.no
data.gbif.no
data.gbif.no
Certificate
The complete raw certificate details for gbif.no in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGizCCBXOgAwIBAgIQBRmfEplgkA/AruoEt6FHfzANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xOTA2MTgwMDAwMDBaFw0yMTA2MjIxMjAwMDBaME0xCzAJBgNVBAYT Ak5PMQ0wCwYDVQQHEwRPc2xvMR0wGwYDVQQKExRVbml2ZXJzaXRldGV0IGkgT3Ns bzEQMA4GA1UEAxMHZ2JpZi5ubzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL7IC9584iyb9b2Gm3wvOZ9SrEvzZVv/tySIWNrkulyMO6rP+2IuPV7kSOdu XdThX1p3YWt5fpiyzK/sJdJLj79O47Zdi3luAj/iVLwYBgEir7V4lqyxL+18iXzz 4S4vlt+AUoQ4oGYTwUHELdWajwItxgzL14SEX8ZEQQpII29l96lzDNyKnFNcFWUM gVZ/+iTW2h1NtrQbBdakmSE092KrnkwSScOGBWbxvw14JTH1UHE1aOa3lJK92X/r Incieuo/SD37NyO5CgoaNMwxOJGhE/kZGWvswP4NrsDDIk8i7HQtoi+cI2hlaB2A 8a7QCya6qJ1FM5+DxuYTPOFmcosCAwEAAaOCA04wggNKMB8GA1UdIwQYMBaAFGf9 iCAUJ5jHCdIlGbvpURFjdVBiMB0GA1UdDgQWBBSCUJ02bT23UaGwnH0hBBgXRdOz wjAfBgNVHREEGDAWggdnYmlmLm5vggt3d3cuZ2JpZi5ubzAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGsGA1UdHwRkMGIwL6At oCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9URVJFTkFTU0xDQTMuY3JsMC+g LaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vVEVSRU5BU1NMQ0EzLmNybDBM BgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3 dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjBuBggrBgEFBQcBAQRiMGAwJAYI KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTA4BggrBgEFBQcwAoYs aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL1RFUkVOQVNTTENBMy5jcnQwDAYD VR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHUA7ku9t3XOYLrh Qmkfq+GeZqMPfl+wctiDAMR7iXqo/csAAAFraWn0rwAABAMARjBEAiEAvkcVfEOg CvMLsP3vHE0LCnlZXXINyXEyKtzCMEtrk8ECH217C0PKQYTjgVkHB9B+GWLMgu3D 6FCRXwXLI2iYRBEAdgCHdb/nWXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/XqCDDwAA AWtpafDgAAAEAwBHMEUCIQDCos3I2yhydCEKQQVIVSvst+JCZ4cjvS/hISUBF3jb 2AIgDMP/pwzha4bxugYFHCsAI9GDMcUZ1E4LOVC5hc3wBmEAdgBElGUusO7Or8RA B9io/ijA2uaCvtjLMbU/0zOWtbaBqAAAAWtpafAMAAAEAwBHMEUCIAK5QyFkkJWx MzN12KRMXJxno9q+owqqAEM3Z7l9tAMiAiEA2oYX2mmHIW1sPNa7WUzWi57S74Zn oc/1wOhysgWRv9gwDQYJKoZIhvcNAQELBQADggEBADGvLDiE28rUhBLAWg7W4Agc U/bUQqvLaF7zaQYiiY//TQjHHnAoIkYbFf+aNTkBjyIQmGcYOvqOikkCG/heEXor 66G+5N355IV9+7H294F+kiNbbQjjpwpkhSr3jWBD0lmw5ThN6HFh26arm+z5ENPy hezZrZWxshqjY4pMinVaq1uFgW0mjnWI1hfasfTT4XD2Gkps3eK0grJIj16ziZUC 1GkW9m4NDUmyaqtx5gn1QGwniq/4GdKZLMKp3oM8K4AUeCIdezqxJdlQpg95MiWs mZVxfpPVQlFQyGasDJ8DxCDyDinv1xthUdZssaEFeLJ343eBfVk3tkb+Jax4EZQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvsgL3nziLJv1vYabfC85 n1KsS/NlW/+3JIhY2uS6XIw7qs/7Yi49XuRI525d1OFfWndha3l+mLLMr+wl0kuP v07jtl2LeW4CP+JUvBgGASKvtXiWrLEv7XyJfPPhLi+W34BShDigZhPBQcQt1ZqP Ai3GDMvXhIRfxkRBCkgjb2X3qXMM3IqcU1wVZQyBVn/6JNbaHU22tBsF1qSZITT3 YqueTBJJw4YFZvG/DXglMfVQcTVo5reUkr3Zf+sidyJ66j9IPfs3I7kKCho0zDE4 kaET+RkZa+zA/g2uwMMiTyLsdC2iL5wjaGVoHYDxrtALJrqonUUzn4PG5hM84WZy iwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6779173777089799620295568263806535551 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-06-22 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NO' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Oslo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Universitetet i Oslo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gbif.no' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24083924482071233350100960559158009113484211954807918199780352375220212347185367450794164208163956632091704054087791885913523980619795147271710030933746804041399193965920734628246124168706613765351762055703388613804672468731216118549410977454461350629161623344956018073053611605827577924232784490599468073120140124572843502234060814557107350625437305258184122604360524885809838388834940505164954499785675804108346259153699428477527029325454028110064068744515971889956751107198863246901782663470447027378104438945016602280560699430411035421952848209309694072381530305284936056119720890629182131864020507434146190488203 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 82509d366d3db751a1b09c7d2104181745d3b3c2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gbif.no' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gbif.no' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0031af2c3884dbcad48412c05a0ed6e0081c53f6d442abcb685ef3690622898fff4d08c71e702822461b15ff9a3539018f22109867183afa8e8a49021bf85e117a2beba1bee4ddf9e4857dfbb1f6f7817e92235b6d08e3a70a64852af78d6043d259b0e5384de87161dba6ab9becf910d3f285ecd9ad95b1b21aa3638a4c8a755aab5b85816d268e7588d617dab1f4d3e170f61a4a6cdde2b482b2488f5eb3899502d46916f66e0d0d49b26aab71e609f5406c278aaff819d2992cc2a9de833c2b801478221d7b3ab125d950a60f793225ac9995717e93d5425150c866ac0c9f03c420f20e29efd71b6151d66cb1a10578b277e377817d5937b646fe25ac781194