www.fsbmsla.com
Issued by GeoTrust TLS RSA CA G1
About this certificate
This digital certificate with serial number 0a:29:b6:6f:9c:64:09:d1:1e:35:94:f5:83:6c:ba:fe was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.fsbmsla.com
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0a:29:b6:6f:9c:64:09:d1:1e:35:94:f5:83:6c:ba:feSerial Number (int): 13508864370323590822102412883150027518
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: d3:8c:e0:70:6b:0e:fc:ff:eb:e0:7c:bc:fb:e3:19:e8:35:cf:34:f0
AuthorityKeyId: 94:4f:d4:5d:8b:e4:a4:e2:a6:80:fe:fd:d8:f9:00:ef:a3:be:02:57
Fingerprint (sha1): 96:8e:53:21:6e:a0:a5:ee:7b:10:8c:7e:6b:97:55:cc:35:43:81:d6
Fingerprint (sha256): 6c:a2:c1:c7:31:9e:4d:63:19:3c:80:2c:a5:7a:45:2b:a6:24:e1:1c:8d:73:d1:05:ba:1a:4d:62:3d:5c:07:84
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
Check the revocation status for certificate www.fsbmsla.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.fsbmsla.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.fsbmsla.com
fsbmsla.com
fsbmsla.com
Other certificates including the domain name fsbmsla.com
(limited to 100 certificates)
mortgage.1stbmt.com.roostify.com
click.mail.fsbmsla.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.fsbmsla.com
www.fsbmsla.com
mortgage.1stbmt.com
san-10-s11.tlsprovisioning.exacttarget.com
fsbmsla.com
fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.banksanjuans.com
mortgage.gofirstbank.com
mortgage.gofirstbank.com
mortgage.1stbmt.com
mortgage.1stbmt.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.fsbmsla.com
www.fsbmsla.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
www.fsbmsla.com
mortgage.banksanjuans.com
www.fsbmsla.com
mortgage.1stbmt.com
www.fsbmsla.com
www.fsbmsla.com
mortgage.valleybankhelena.com.roostify.com
fsbmsla.com
www.fsbmsla.com
www.fsbmsla.com
mortgage.fsbwy.com
mortgage.banksanjuans.com
fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
www.fsbmsla.com
mortgage.1stbmt.com
mortgage.fcbutah.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.collegiatepeaksbank.com.roostify.com
cloud.mail.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
view.mail.fsbmsla.com
www.quickapply.fsbmsla.com
mortgage.collegiatepeaksbank.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
click.mail.fsbmsla.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.fsbmsla.com
www.fsbmsla.com
mortgage.1stbmt.com
san-10-s11.tlsprovisioning.exacttarget.com
fsbmsla.com
fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.banksanjuans.com
mortgage.gofirstbank.com
mortgage.gofirstbank.com
mortgage.1stbmt.com
mortgage.1stbmt.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.fsbmsla.com
www.fsbmsla.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
www.fsbmsla.com
mortgage.banksanjuans.com
www.fsbmsla.com
mortgage.1stbmt.com
www.fsbmsla.com
www.fsbmsla.com
mortgage.valleybankhelena.com.roostify.com
fsbmsla.com
www.fsbmsla.com
www.fsbmsla.com
mortgage.fsbwy.com
mortgage.banksanjuans.com
fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
www.fsbmsla.com
mortgage.1stbmt.com
mortgage.fcbutah.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
mortgage.collegiatepeaksbank.com.roostify.com
cloud.mail.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
view.mail.fsbmsla.com
www.quickapply.fsbmsla.com
mortgage.collegiatepeaksbank.com.roostify.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
www.fsbmsla.com
san-10-s11.tlsprovisioning.exacttarget.com
san-10-s11.tlsprovisioning.exacttarget.com
Certificate
The complete raw certificate details for www.fsbmsla.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGLTCCBRWgAwIBAgIQCim2b5xkCdEeNZT1g2y6/jANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZHZW9UcnVzdCBUTFMgUlNBIENBIEcx MB4XDTIzMTAwOTAwMDAwMFoXDTI0MTAwODIzNTk1OVowGjEYMBYGA1UEAxMPd3d3 LmZzYm1zbGEuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13DT 9QqkGlK/83E4YHIGq3SX1e2WrjTAR3ZVu8Seue8cAayQrnV85H7DIUJabmzdwn0j 5mNl3J0quhKMmcIt9m4GGpbigY2sWO+RDxLbRgJKPRX7oSMEaimayxXQ8nkwrcSv tCzFcQq8k5Dknpz2ai/9tN6yub3Hnf+V17KDnPwWXEiZ7L7yCtN0/wJ8oAZyaWLy pif2VsjmhI/zOy7h5lV8yJO1MZOh4GuZnXXeIaF/yt691Kt9IE4xpUlJCelGQ1el ZVGdUASHYYdndu7G8d2DUwwH8SzT86ZoLrmF39d1G6kxuowlS6frOSoZEJimREAF htoixRrxtb5Qg+NqEwIDAQABo4IDJzCCAyMwHwYDVR0jBBgwFoAUlE/UXYvkpOKm gP792PkA76O+AlcwHQYDVR0OBBYEFNOM4HBrDvz/6+B8vPvjGeg1zzTwMCcGA1Ud EQQgMB6CD3d3dy5mc2Jtc2xhLmNvbYILZnNibXNsYS5jb20wPgYDVR0gBDcwNTAz BgZngQwBAgEwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20v Q1BTMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL2NkcC5nZW90cnVzdC5jb20vR2Vv VHJ1c3RUTFNSU0FDQUcxLmNybDB2BggrBgEFBQcBAQRqMGgwJgYIKwYBBQUHMAGG Gmh0dHA6Ly9zdGF0dXMuZ2VvdHJ1c3QuY29tMD4GCCsGAQUFBzAChjJodHRwOi8v Y2FjZXJ0cy5nZW90cnVzdC5jb20vR2VvVHJ1c3RUTFNSU0FDQUcxLmNydDAMBgNV HRMBAf8EAjAAMIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoAdgDuzdBk1dsazsVc t520zROiModGfLzs3sNRSFlGcR+1mwAAAYsWCVbdAAAEAwBHMEUCIQCUnsRPj1M+ it6I8aB0za7q8zC4fQMv6CEJwyx9w1uOQgIgOVqdaBxHGSUcSfG7Y0cv499NcHrY sxLC1WnFxVltFLoAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAA AYsWCVZ/AAAEAwBIMEYCIQC7vychXEGbN2DPeaY3k0RuNSuYxTXnUxQjz8OkYi/U EgIhAKt1PKzZmlfXeb6xkBpvRIuTsoMhHasAGwlMY/w1TRQeAHcA2ra/az+1tiKf m8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGLFglWgQAABAMASDBGAiEA4oM7LqwM iX74WytJPyUfWxGaq4iSjfQFrIAI+ZZXcHgCIQCJ2KIQptEHe//ZkvqdsAFq3Xlo RJwpn0TOW6Hd3F/7eTANBgkqhkiG9w0BAQsFAAOCAQEApdg05yI7tnGRTbBqmf3D Eme6ygQzDIMF1nR8zQRfHvFNBBOJNSmpTfyiaOK6h+TjsVxeE+0r90lhIVtjrLiv rT5k+UhHwZgQkoj5hLmcd2LvOn4QwTnWpa4gDLCz4dTuiYaK/mDagBXIxkYuGjPG xGTCwWkNpmVvHCdgGOm44ilsS5VeATNDDm6DR4BE4X0O3w9WeV9zafgBBlwXkYph VKgq79tUvUK5hyzSCX/A0qqLhKg/krHIneW0efvj4cMEoVOnu+Kts47s22kWpp/R uXhUzXmrY+i1TSby42ozeV8nFx0FoWVaIERkyaI8vlGnFZ21kFWsmWWBUQVlLuef OQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13DT9QqkGlK/83E4YHIG q3SX1e2WrjTAR3ZVu8Seue8cAayQrnV85H7DIUJabmzdwn0j5mNl3J0quhKMmcIt 9m4GGpbigY2sWO+RDxLbRgJKPRX7oSMEaimayxXQ8nkwrcSvtCzFcQq8k5Dknpz2 ai/9tN6yub3Hnf+V17KDnPwWXEiZ7L7yCtN0/wJ8oAZyaWLypif2VsjmhI/zOy7h 5lV8yJO1MZOh4GuZnXXeIaF/yt691Kt9IE4xpUlJCelGQ1elZVGdUASHYYdndu7G 8d2DUwwH8SzT86ZoLrmF39d1G6kxuowlS6frOSoZEJimREAFhtoixRrxtb5Qg+Nq EwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13508864370323590822102412883150027518 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-08 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.fsbmsla.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27196873107327156414539170494169320431883204829594681754879476554338219534433325042365333292327916353543817442134984758211165338265849893970619055156213386456894643428784901717305818115500054752824770954775112600026056657233213953303925888465642701535401579363452468025116465998079361258905502214581282032192722696969351206567457238853878596598884758649624616910458056808302340685435468576183473745319345015153753510547317817107749202208458677215037587562881655786530309863064952028226880787179585182450393317369493724968167187790388709251319620959859230213044461062943718121002364065525362763894120410883150659676691 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 944fd45d8be4a4e2a680fefdd8f900efa3be0257 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d38ce0706b0efcffebe07cbcfbe319e835cf34f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fsbmsla.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fsbmsla.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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