banestescorp.banestes.com.br
- BANESTES SA BANCO DO ESTADO DO ESPIRITO SANTO -
Issued by GeoTrust EV RSA CA G2
About this certificate
This digital certificate with serial number 0a:a0:5a:9c:e3:fa:e1:67:cd:0c:56:ac:23:75:17:dc was issued on by DigiCert Inc.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
BANESTES SA BANCO DO ESTADO DO ESPIRITO SANTO
Company registration number:
28.127.603/0001-78
Organization: BANESTES SA BANCO DO ESTADO DO ESPIRITO SANTO
Organization: BANESTES SA BANCO DO ESTADO DO ESPIRITO SANTO
State / Province:
Espírito Santo
Locality: Vitória
Country: BR
Locality: Vitória
Country: BR
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0a:a0:5a:9c:e3:fa:e1:67:cd:0c:56:ac:23:75:17:dcSerial Number (int): 14124885302228805156775322792234391516
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 69:9d:18:2a:1e:53:4d:67:5d:bf:65:40:49:d1:2a:a0:5f:d8:ff:57
AuthorityKeyId: 28:d2:cf:ee:09:84:75:dd:b5:b2:b5:bf:3c:d5:a0:c6:73:88:5d:1f
Fingerprint (sha1): 3c:78:cd:0d:11:3e:36:3a:75:c6:9d:97:f6:21:13:b4:e7:d2:c4:e8
Fingerprint (sha256): 6e:2b:42:4c:76:93:6f:ed:8c:46:0b:88:d6:75:86:10:1e:82:b0:ce:be:f1:a3:85:4b:9a:19:ea:27:aa:66:bd
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustEVRSACAG2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustEVRSACAG2.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustEVRSACAG2.crl
Check the revocation status for certificate banestescorp.banestes.com.br
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for banestescorp.banestes.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
banestescorp.banestes.com.br
Other certificates including the domain name banestes.com.br
(limited to 100 certificates)
portalinternet.banestes.com.br
www.banestes.com.br
mail.banestes.com.br
*.banestes.com.br
www.banestes.com.br
gerenciador.banestes.com.br
av.banestes.com.br
portal.pix.banestes.com.br
www.banestes.com.br
wwws.banestes.com.br
av.u.banestes.com.br
seg.banestes.com.br
portalinternet.banestes.com.br
svcpiprapl01.banestes.com.br
banestescorp.banestes.com.br
www.banestes.com.br
seg.banestes.com.br
ws.u.banestes.com.br
wwws.banestes.com.br
wwws.u.banestes.com.br
wwws.banestes.com.br
seg.banestes.com.br
seg.banestes.com.br
wwws.banestes.com.br
banestescorp.banestes.com.br
misp.banestes.com.br
portalinternet.banestes.com.br
seg.banestes.com.br
seg.banestes.com.br
wwws.banestes.com.br
misp.h.banestes.com.br
ws.banestes.com.br
www.banestes.com.br
*.banestes.com.br
www.banestes.com.br
wwws.banestes.com.br
portalinternet.banestes.com.br
depositojudicial.banestes.com.br
wwws.banestes.com.br
seg.banestes.com.br
chat.banestes.com.br
wwws.banestes.com.br
ws.h.banestes.com.br
seg.banestes.com.br
www.banestes.com.br
portalinternet.banestes.com.br
banestescorp.banestes.com.br
depositojudicial.h.banestes.com.br
wwws.banestes.com.br
*.banestes.com.br
portalinternet.banestes.com.br
sisjur.banestes.com.br
wwws.banestes.com.br
chat.banestes.com.br
*.banestes.com.br
seg.banestes.com.br
www.banestes.com.br
mail.banestes.com.br
*.banestes.com.br
www.banestes.com.br
gerenciador.banestes.com.br
av.banestes.com.br
portal.pix.banestes.com.br
www.banestes.com.br
wwws.banestes.com.br
av.u.banestes.com.br
seg.banestes.com.br
portalinternet.banestes.com.br
svcpiprapl01.banestes.com.br
banestescorp.banestes.com.br
www.banestes.com.br
seg.banestes.com.br
ws.u.banestes.com.br
wwws.banestes.com.br
wwws.u.banestes.com.br
wwws.banestes.com.br
seg.banestes.com.br
seg.banestes.com.br
wwws.banestes.com.br
banestescorp.banestes.com.br
misp.banestes.com.br
portalinternet.banestes.com.br
seg.banestes.com.br
seg.banestes.com.br
wwws.banestes.com.br
misp.h.banestes.com.br
ws.banestes.com.br
www.banestes.com.br
*.banestes.com.br
www.banestes.com.br
wwws.banestes.com.br
portalinternet.banestes.com.br
depositojudicial.banestes.com.br
wwws.banestes.com.br
seg.banestes.com.br
chat.banestes.com.br
wwws.banestes.com.br
ws.h.banestes.com.br
seg.banestes.com.br
www.banestes.com.br
portalinternet.banestes.com.br
banestescorp.banestes.com.br
depositojudicial.h.banestes.com.br
wwws.banestes.com.br
*.banestes.com.br
portalinternet.banestes.com.br
sisjur.banestes.com.br
wwws.banestes.com.br
chat.banestes.com.br
*.banestes.com.br
seg.banestes.com.br
Certificate
The complete raw certificate details for banestescorp.banestes.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgIQCqBanOP64WfNDFasI3UX3DANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMR4wHAYDVQQDExVH ZW9UcnVzdCBFViBSU0EgQ0EgRzIwHhcNMjMxMjE1MDAwMDAwWhcNMjUwMTA5MjM1 OTU5WjCB6jETMBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDwwUUHJpdmF0ZSBP cmdhbml6YXRpb24xGzAZBgNVBAUTEjI4LjEyNy42MDMvMDAwMS03ODELMAkGA1UE BhMCQlIxGDAWBgNVBAgMD0VzcMOtcml0byBTYW50bzERMA8GA1UEBwwIVml0w7Ny aWExNjA0BgNVBAoTLUJBTkVTVEVTIFNBIEJBTkNPIERPIEVTVEFETyBETyBFU1BJ UklUTyBTQU5UTzElMCMGA1UEAxMcYmFuZXN0ZXNjb3JwLmJhbmVzdGVzLmNvbS5i cjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL0Z0gLccpvrAfGNUBNl 31C2cwQy2Yn+FOuRZNgSPuPH4PXqSv8JdbUr32AvP+e6S+ijRycRkQUBO13bVsa+ u5S6vKQ054C/CMu6+hRpep6RFLGQO47iQzgebJXyi+Ps5tYzNrMOt8GsxPGiFmLg A6yPA0uHCLvUzFmUpjyi+wF6KcX5Bmz9U64/7r0ZCeG6AVAs4Ze25wc79q01Akyo 7jDuuG4YwD3yoVD/YHeSKzYKH3EJD9GuBXA9wb+W+ED6ESB+EeYaAlZazrMHroSS E26kD6oz3x1y4HozP3SXuI0pBKhqKAP5DfuLs1hzlNUVnNKitcqOhMqzpxNr4Egj +PUCAwEAAaOCA2UwggNhMB8GA1UdIwQYMBaAFCjSz+4JhHXdtbK1vzzVoMZziF0f MB0GA1UdDgQWBBRpnRgqHlNNZ12/ZUBJ0SqgX9j/VzAnBgNVHREEIDAeghxiYW5l c3Rlc2NvcnAuYmFuZXN0ZXMuY29tLmJyMEoGA1UdIARDMEEwCwYJYIZIAYb9bAIB MDIGBWeBDAEBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29t L0NQUzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMHUGA1UdHwRuMGwwNKAyoDCGLmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9H ZW9UcnVzdEVWUlNBQ0FHMi5jcmwwNKAyoDCGLmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0 LmNvbS9HZW9UcnVzdEVWUlNBQ0FHMi5jcmwwcwYIKwYBBQUHAQEEZzBlMCQGCCsG AQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wPQYIKwYBBQUHMAKGMWh0 dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9HZW9UcnVzdEVWUlNBQ0FHMi5jcnQw DAYDVR0TAQH/BAIwADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFpAHcATnWjJ1ya EMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGMb0rECgAABAMASDBGAiEA1Vtj xx+5xzPH250N9W+PG1KNBIxmC8Dqb3nlaa3TcHMCIQDNwRukkYABd3mqiKqm4Mky 1iQt3yORzUE3zx+MiLNBZAB2AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/KIXs +GRuAAABjG9Kw/8AAAQDAEcwRQIhALizNruDqc22pfJBcQu5i82thzsLL2/SGZqu bl/ePB00AiBLJFiSGhkCA+/697cJ1xtByR8DTNdrGsJOssEpKEXn9AB2AFWB1MIW kDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABjG9KxGEAAAQDAEcwRQIhAJYc YkXPs1w0r2cQT7ba5AhZy8C//22keYy/tsP+mTyPAiADVPks9ahH37OYX5KPJm/t PvobKPIOum7ltwkgB0XJrDANBgkqhkiG9w0BAQsFAAOCAQEACJ/LfiXyvo76VI/p QkoeJMDSuQX1xwj7JBsWr3fWbk4YufxGXfovif9pcVHh6O3e+WB/6NfCTjC1k2zs 1/fMlz+yZ0oYT9Lc+FQssjIBQtDaGqEiSCZLkgliOa3T3T1V+eVIlaMR1Oi5oE4O A2e2Zx3a4huGMeKiLbAkH49tILU8hyG+0BFc0TtAbM0/eF9dS7vop1JmRNjuVbQl 3bkhZlVao/jIYzNi5uwsKXpdKVKeZ181sCgGNUwcS46tmrPNpyzAmcIBTJBcamKy 8gwU2BeTSPJeX/OOUr3sPY9G1CyJ3w4tcCROi1QLCAkrDpoDsOEtUWDLhTQljiev O/QG3g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRnSAtxym+sB8Y1QE2Xf ULZzBDLZif4U65Fk2BI+48fg9epK/wl1tSvfYC8/57pL6KNHJxGRBQE7XdtWxr67 lLq8pDTngL8Iy7r6FGl6npEUsZA7juJDOB5slfKL4+zm1jM2sw63wazE8aIWYuAD rI8DS4cIu9TMWZSmPKL7AXopxfkGbP1Trj/uvRkJ4boBUCzhl7bnBzv2rTUCTKju MO64bhjAPfKhUP9gd5IrNgofcQkP0a4FcD3Bv5b4QPoRIH4R5hoCVlrOsweuhJIT bqQPqjPfHXLgejM/dJe4jSkEqGooA/kN+4uzWHOU1RWc0qK1yo6EyrOnE2vgSCP4 9QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14124885302228805156775322792234391516 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust EV RSA CA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '28.127.603/0001-78' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Espírito Santo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Vitória' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BANESTES SA BANCO DO ESTADO DO ESPIRITO SANTO' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'banestescorp.banestes.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23871772130752718386603941978812799834366764566550577841764980801038176721741299703786439265756805665745217120760596283938143379902955792792084701251144311071870206363547275705987329951458046966953158577203333795334207136455228729553667405538248034532714515624281559258375616268021109634207499232680443315466923468808318460400275632426980628354887356321755206836522811368983370238061764653582354123417835838852092641320673739021575274466113430436756045779459960534571534427096717001579417685506549578357232210658008137296883833754727681047526930917960675562767497849122529579126474409285715752418379742349886130223349 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 28d2cfee098475ddb5b2b5bf3cd5a0c673885d1f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 699d182a1e534d675dbf654049d12aa05fd8ff57 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'banestescorp.banestes.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustEVRSACAG2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustEVRSACAG2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustEVRSACAG2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00089fcb7e25f2be8efa548fe9424a1e24c0d2b905f5c708fb241b16af77d66e4e18b9fc465dfa2f89ff697151e1e8eddef9607fe8d7c24e30b5936cecd7f7cc973fb2674a184fd2dcf8542cb2320142d0da1aa12248264b92096239add3dd3d55f9e54895a311d4e8b9a04e0e0367b6671ddae21b8631e2a22db0241f8f6d20b53c8721bed0115cd13b406ccd3f785f5d4bbbe8a7526644d8ee55b425ddb92166555aa3f8c8633362e6ec2c297a5d29529e675f35b02806354c1c4b8ead9ab3cda72cc099c2014c905c6a62b2f20c14d8179348f25e5ff38e52bdec3d8f46d42c89df0e2d70244e8b540b08092b0e9a03b0e12d5160cb8534258e27af3bf406de