*.rmk.ee
- Riigimetsa Majandamise Keskus (RMK) -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0e:4c:a8:42:ad:30:1f:f2:85:be:e7:6a:cb:ba:89:54 was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Riigimetsa Majandamise Keskus (RMK)
Organization:
Riigimetsa Majandamise Keskus (RMK)
State / Province:
Parnumaa
Locality: Tallinn
Country: EE
Locality: Tallinn
Country: EE
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:4c:a8:42:ad:30:1f:f2:85:be:e7:6a:cb:ba:89:54Serial Number (int): 19007219229708694548043749462038448468
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 0d:99:88:43:c7:8f:bf:be:10:bd:04:38:74:b4:bf:8e:13:31:1b:d6
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): a7:a4:53:5f:b7:10:c2:d8:d7:74:ce:35:6f:1c:d1:09:8a:ae:f4:12
Fingerprint (sha256): 6e:bc:6e:f9:86:f8:3a:47:3e:c3:f6:0c:39:63:16:62:c8:c5:12:e5:5e:c3:a5:59:3e:e2:fd:e4:d4:02:82:46
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g5.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g5.crl
Check the revocation status for certificate *.rmk.ee
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.rmk.ee
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.rmk.ee
rmk.ee
matkapass.rmk.ee
rmk.ee
matkapass.rmk.ee
Other certificates including the domain name rmk.ee
(limited to 100 certificates)
customerportal.uk.rlb.com
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
*.rmk.ee
rmk-mobile-app-service.rmk.ee
yritused.rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
*.rmk.ee
rmk-mobile-app-service.rmk.ee
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
filesender2.rmk.ee
*.rmk.ee
yritused.rmk.ee
*.rmk.ee
*.rmk.ee
*.rmk.ee
yritused.rmk.ee
yritused.rmk.ee
rmk.ee
ep.rmk.ee
rmk.ee
*.rmk.ee
filesender2.rmk.ee
filesender2.rmk.ee
rmk.ee
sslvpn.rmk.ee
*.rmk.ee
kampaania.rmk.ee
customerportal.uk.rlb.com
customerportal.uk.rlb.com
*.rmk.ee
rmk.ee
it.rmk.ee
maksed.rmk.ee
it.rmk.ee
customerportal.uk.rlb.com
rmk.ee
yritused.rmk.ee
*.rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
rmk.ee
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
rmk.ee
customerportal.uk.rlb.com
yritused.rmk.ee
*.rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
wfprwpa.rcs.it
*.rmk.ee
rmk.ee
puidumyykproxy.rmk.ee
rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
customerportal.uk.rlb.com
rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
kampaania.rmk.ee
customerportal.uk.rlb.com
kampaania.rmk.ee
rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
kampaania.rmk.ee
rmk.ee
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
rmk.ee
kampaania.rmk.ee
*.rmk.ee
kampaania.rmk.ee
kampaania.rmk.ee
it.rmk.ee
*.rmk.ee
filesender2.rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
rmk.ee
kampaania.rmk.ee
it.rmk.ee
rmk-mobile-app-service.rmk.ee
*.rmk.ee
kampaania.rmk.ee
wfprwpa.rcs.it
kampaania.rmk.ee
customerportal.uk.rlb.com
customerportal.uk.rlb.com
*.rmk.ee
rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
*.rmk.ee
rmk-mobile-app-service.rmk.ee
yritused.rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
*.rmk.ee
rmk-mobile-app-service.rmk.ee
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
filesender2.rmk.ee
*.rmk.ee
yritused.rmk.ee
*.rmk.ee
*.rmk.ee
*.rmk.ee
yritused.rmk.ee
yritused.rmk.ee
rmk.ee
ep.rmk.ee
rmk.ee
*.rmk.ee
filesender2.rmk.ee
filesender2.rmk.ee
rmk.ee
sslvpn.rmk.ee
*.rmk.ee
kampaania.rmk.ee
customerportal.uk.rlb.com
customerportal.uk.rlb.com
*.rmk.ee
rmk.ee
it.rmk.ee
maksed.rmk.ee
it.rmk.ee
customerportal.uk.rlb.com
rmk.ee
yritused.rmk.ee
*.rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
rmk.ee
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
rmk.ee
customerportal.uk.rlb.com
yritused.rmk.ee
*.rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
wfprwpa.rcs.it
*.rmk.ee
rmk.ee
puidumyykproxy.rmk.ee
rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
customerportal.uk.rlb.com
rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
kampaania.rmk.ee
customerportal.uk.rlb.com
kampaania.rmk.ee
rmk.ee
customerportal.uk.rlb.com
*.rmk.ee
kampaania.rmk.ee
rmk.ee
*.rmk.ee
*.rmk.ee
kampaania.rmk.ee
rmk.ee
kampaania.rmk.ee
*.rmk.ee
kampaania.rmk.ee
kampaania.rmk.ee
it.rmk.ee
*.rmk.ee
filesender2.rmk.ee
*.rmk.ee
customerportal.uk.rlb.com
rmk.ee
kampaania.rmk.ee
it.rmk.ee
rmk-mobile-app-service.rmk.ee
*.rmk.ee
kampaania.rmk.ee
wfprwpa.rcs.it
kampaania.rmk.ee
customerportal.uk.rlb.com
customerportal.uk.rlb.com
*.rmk.ee
rmk.ee
customerportal.uk.rlb.com
Certificate
The complete raw certificate details for *.rmk.ee in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIQDkyoQq0wH/KFvudqy7qJVDANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTUwMzExMDAwMDAwWhcN MTgwMzE1MTIwMDAwWjBzMQswCQYDVQQGEwJFRTERMA8GA1UECBMIUGFybnVtYWEx EDAOBgNVBAcTB1RhbGxpbm4xLDAqBgNVBAoTI1JpaWdpbWV0c2EgTWFqYW5kYW1p c2UgS2Vza3VzIChSTUspMREwDwYDVQQDDAgqLnJtay5lZTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAJeosX5fCcXJPWdMGG878GpzwDVqOA0iZ6diWL6O apT3nkVVzjeLTXOjiVskTkrDNdd02vfYRzCYrQBfAs7xLG2zpgcyb8XU7cvIJIUh THEZO/DjePeCvpEVlGPgfpZlhSpTk9XAFuztCv53myRJkRKBd0TTzV286HF/CKbX DCUvKk+PkjdhRoxu0uX/+kAKPSL4rDVR5OztOXaZnVZ412y9Lw+mCURIcn4EJzUs 7jlCt+nh6IZ4skQTZTyH8WColJ9g9VDGbcZ7t0J4KBbVk3sEdJ3Iz487Li94NrpP WzfsIiElRrbAOPGHUYp8MOle9v6VuW8ije/T88sww0m32BcCAwEAAaOCAekwggHl MB8GA1UdIwQYMBaAFA+AYRyCMWHVLyjnjUY4tCzhxtniMB0GA1UdDgQWBBQNmYhD x4+/vhC9BDh0tL+OEzEb1jAtBgNVHREEJjAkgggqLnJtay5lZYIGcm1rLmVlghBt YXRrYXBhc3Mucm1rLmVlMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwawYDVR0fBGQwYjAvoC2gK4YpaHR0cDovL2NybDMuZGln aWNlcnQuY29tL3NzY2Etc2hhMi1nNS5jcmwwL6AtoCuGKWh0dHA6Ly9jcmw0LmRp Z2ljZXJ0LmNvbS9zc2NhLXNoYTItZzUuY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9 bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMw CAYGZ4EMAQICMHwGCCsGAQUFBwEBBHAwbjAkBggrBgEFBQcwAYYYaHR0cDovL29j c3AuZGlnaWNlcnQuY29tMEYGCCsGAQUFBzAChjpodHRwOi8vY2FjZXJ0cy5kaWdp Y2VydC5jb20vRGlnaUNlcnRTSEEyU2VjdXJlU2VydmVyQ0EuY3J0MAwGA1UdEwEB /wQCMAAwDQYJKoZIhvcNAQELBQADggEBAAZwgXRxQEe2Ddy1tbbZwWY8Ek9/zoto f8eIul0HO1g68ffqS1npucCIYdRAuRcZ6L87nyL9DPfZA+X1oUwBbpngo3Xfu4Kg Xv4WJDbw+DVOob0bDoxeN2baegQ26TIK6kquRhXkUAZJYA+CPT5QQ8FrGrghKMi/ NiAVCOlxatuEgywffoPt3LTJ3YWMibSfh4bnGm6mt9aVhfWm02r3QLGTXjiDwzvg nWVkgltu01d7xLM9BtbFlV0i30akxhIdRrDQJ4uvyU07qKz12P3aAadkV8/hA66M cEOhmWIeKQzifCPxo5R6zP1pJIZb4ArPbd+Gm7kK7FB2h0l4bunItJk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl6ixfl8Jxck9Z0wYbzvw anPANWo4DSJnp2JYvo5qlPeeRVXON4tNc6OJWyROSsM113Ta99hHMJitAF8CzvEs bbOmBzJvxdTty8gkhSFMcRk78ON494K+kRWUY+B+lmWFKlOT1cAW7O0K/nebJEmR EoF3RNPNXbzocX8IptcMJS8qT4+SN2FGjG7S5f/6QAo9IvisNVHk7O05dpmdVnjX bL0vD6YJREhyfgQnNSzuOUK36eHohniyRBNlPIfxYKiUn2D1UMZtxnu3QngoFtWT ewR0ncjPjzsuL3g2uk9bN+wiISVGtsA48YdRinww6V72/pW5byKN79PzyzDDSbfY FwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19007219229708694548043749462038448468 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-03-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-15 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'EE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Parnumaa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Tallinn' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Riigimetsa Majandamise Keskus (RMK)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.rmk.ee' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19145169833504332680293631374826856925486741268261130148555394887432553302065983701203348311654143747315478056062409436677566624399562301860841817972413478555554772577164009728026974990707823849537586112340689449964616141303756639912733786217347193833473448951849516272265843785380783497350124055259069782255596072044507034066785746649971130004156104921165040612032932595144676549575448635213556982211176582141726061869260151350938728196082978623256807240956901157872262040649024756378748900298292767365784870726544786786533482219810471031235018443775332849303452508788624411843546991432307238534514010846368326211607 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0d998843c78fbfbe10bd043874b4bf8e13311bd6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rmk.ee' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rmk.ee' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'matkapass.rmk.ee' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g5.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g5.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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