owa.kfh-dialyse.de
- KfH Kuratorium fuer Dialyse und Nierentransplantation e.V. -
Issued by thawte Extended Validation SSL CA
About this certificate
This digital certificate with serial number 52:58:bc:e8:d0:3f:3c:ea:67:da:0e:e2:41:39:be:47 was issued on by thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Compliant certificates must not encode explicitTest as an IA5String (RFC 6818: 3)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Compliant certificates should use the utf8string encoding for explicitText (RFC 6818: 3)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
KfH Kuratorium fuer Dialyse und Nierentransplantation e.V.
Company registration number:
VR 1773
Organization: KfH Kuratorium fuer Dialyse und Nierentransplantation e.V.
Organization unit: IT
Organization: KfH Kuratorium fuer Dialyse und Nierentransplantation e.V.
Organization unit: IT
State / Province:
Hessen
Locality: Neu-Isenburg
Country: DE
Locality: Neu-Isenburg
Country: DE
thawte, Inc.
Organization:
thawte, Inc.
Organization unit: Terms of use at https://www.thawte.com/cps (c)06
Organization unit: Terms of use at https://www.thawte.com/cps (c)06
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 52:58:bc:e8:d0:3f:3c:ea:67:da:0e:e2:41:39:be:47Serial Number (int): 109457449316302688268274777860655922759
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: cd:32:e2:f2:5d:25:47:02:aa:8f:79:4b:32:ee:03:99:fd:30:49:d1
Fingerprint (sha1): 6e:64:1f:80:eb:a6:9e:07:0f:a0:82:a7:ad:de:4c:61:b7:10:53:c7
Fingerprint (sha256): 70:9e:e2:28:1f:a6:48:ae:c0:e9:6d:04:ee:d0:c7:37:a6:b5:74:1f:e1:c4:79:65:6b:fd:dd:6a:6d:d6:44:30
Issuing Certificate URL: http://ta.symcb.com/ta.crt
Revocation information
OCSP Server: http://ta.symcd.comCRL Distribution Point: http://ta.symcb.com/ta.crl
Check the revocation status for certificate owa.kfh-dialyse.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for owa.kfh-dialyse.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
owa.kfh-dialyse.de
Other certificates including the domain name kfh-dialyse.de
(limited to 100 certificates)
webmail.kfh-dialyse.de
webmail.kfh-dialyse.de
qin.kfh-dialyse.de
mail.kfh-dialyse.de
owa.kfh-dialyse.de
gsg.kfh-dialyse.de
sharepoint.kfh-dialyse.de
gsg.kfh-dialyse.de
gsg.kfh-dialyse.de
mail.kfh-dialyse.de
gsg.kfh-dialyse.de
webmail.kfh-dialyse.de
gsg.kfh-dialyse.de
qin.kfh-dialyse.de
mail.kfh-dialyse.de
webmail.kfh-dialyse.de
qin.kfh-dialyse.de
mail.kfh-dialyse.de
owa.kfh-dialyse.de
gsg.kfh-dialyse.de
sharepoint.kfh-dialyse.de
gsg.kfh-dialyse.de
gsg.kfh-dialyse.de
mail.kfh-dialyse.de
gsg.kfh-dialyse.de
webmail.kfh-dialyse.de
gsg.kfh-dialyse.de
qin.kfh-dialyse.de
mail.kfh-dialyse.de
Certificate
The complete raw certificate details for owa.kfh-dialyse.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgIQUli86NA/POpn2g7iQTm+RzANBgkqhkiG9w0BAQUFADCB izELMAkGA1UEBhMCVVMxFTATBgNVBAoTDHRoYXd0ZSwgSW5jLjE5MDcGA1UECxMw VGVybXMgb2YgdXNlIGF0IGh0dHBzOi8vd3d3LnRoYXd0ZS5jb20vY3BzIChjKTA2 MSowKAYDVQQDEyF0aGF3dGUgRXh0ZW5kZWQgVmFsaWRhdGlvbiBTU0wgQ0EwHhcN MTQwNjIzMDAwMDAwWhcNMTYwNjIyMjM1OTU5WjCCAQ4xEzARBgsrBgEEAYI3PAIB AxMCREUxIjAgBgsrBgEEAYI3PAIBARQRT2ZmZW5iYWNoIGFtIE1haW4xHTAbBgNV BA8TFFByaXZhdGUgT3JnYW5pemF0aW9uMUMwQQYDVQQKDDpLZkggS3VyYXRvcml1 bSBmdWVyIERpYWx5c2UgdW5kIE5pZXJlbnRyYW5zcGxhbnRhdGlvbiBlLlYuMRAw DgYDVQQFEwdWUiAxNzczMQswCQYDVQQGEwJERTEPMA0GA1UECAwGSGVzc2VuMRUw EwYDVQQHDAxOZXUtSXNlbmJ1cmcxCzAJBgNVBAsMAklUMRswGQYDVQQDFBJvd2Eu a2ZoLWRpYWx5c2UuZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ ebH1PDFIV3TpCP0wlGupjL6T1py/u/1BRAl57lEwQFFXrMMIcR6HhQ7gUW15Rg3E v223jZ4VDlag9DTgYrzxxic2Jh1EJDuxOXIG6dy3rpQXNopbWbewgnGxqYtHmGQf cYqORTvC2xgXbEhMQFgpbSrBsUGBNDd09R8fKgr4B2/MoyW92d3RmBo5m/N5vY3E Vu4Fw+hXlaRRbRTX0VoSyXH0zVJ0Mx4hVc1HLZQyc0ISBQxNsIzd+/huv8bDGPwv gz0+cz4it5RiFk+XSu+e8BPWqJdOEIPdklReIKLzsnspcn65upIbOCxUMYD0q6KT M7DzevawW3OS1Mgd9xSnAgMBAAGjggFsMIIBaDAdBgNVHREEFjAUghJvd2Eua2Zo LWRpYWx5c2UuZGUwCQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMCBaAwKwYDVR0fBCQw IjAgoB6gHIYaaHR0cDovL3RhLnN5bWNiLmNvbS90YS5jcmwwZgYDVR0gBF8wXTBb BgtghkgBhvhFAQcwATBMMCMGCCsGAQUFBwIBFhdodHRwczovL2Quc3ltY2IuY29t L2NwczAlBggrBgEFBQcCAjAZFhdodHRwczovL2Quc3ltY2IuY29tL3JwYTAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0jBBgwFoAUzTLi8l0lRwKq j3lLMu4Dmf0wSdEwVwYIKwYBBQUHAQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8v dGEuc3ltY2QuY29tMCYGCCsGAQUFBzAChhpodHRwOi8vdGEuc3ltY2IuY29tL3Rh LmNydDANBgkqhkiG9w0BAQUFAAOCAQEAh/6va84E6nuZox7CZJD1EwFpJfZ+ZWNu 7U5eZdc/gBrKBPN1VESF+GtHquAoenaPAZmnLVj2d0eOHVjbclSd0q4t7838VP0d +6qpQD8v9nRZ1J7CnW2VKaUdOPneSGkxfaqaEv0BsHnuDPNNVpXqxNlGvrGgZKwl JW7gvhdV83hg9Dn/tfzmpoevCwa25SMCt0V0E2yrd/FKUcelTN67CgiGxhKmvI+t 2venGHFirk6o5SJGZfjTOyCMaOjZPgYP21ybVOoOhGgvgSzrgjMjqwaJG7FCZvXV 3bOEOGbpd18YNUMQEpxpHrxp7bx6oOQskAPmPLITSHa6GP2ylQh32Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Hmx9TwxSFd06Qj9MJRr qYy+k9acv7v9QUQJee5RMEBRV6zDCHEeh4UO4FFteUYNxL9tt42eFQ5WoPQ04GK8 8cYnNiYdRCQ7sTlyBunct66UFzaKW1m3sIJxsamLR5hkH3GKjkU7wtsYF2xITEBY KW0qwbFBgTQ3dPUfHyoK+AdvzKMlvdnd0ZgaOZvzeb2NxFbuBcPoV5WkUW0U19Fa Eslx9M1SdDMeIVXNRy2UMnNCEgUMTbCM3fv4br/Gwxj8L4M9PnM+IreUYhZPl0rv nvAT1qiXThCD3ZJUXiCi87J7KXJ+ubqSGzgsVDGA9KuikzOw83r2sFtzktTIHfcU pwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 109457449316302688268274777860655922759 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Terms of use at https://www.thawte.com/cps (c)06' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte Extended Validation SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-06-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-06-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.1 (jurisdictionOfIncorporationL) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Offenbach am Main' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KfH Kuratorium fuer Dialyse und Nierentransplantation e.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'VR 1773' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Hessen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Neu-Isenburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'owa.kfh-dialyse.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26317577547145452605193071230024671492528121932132503650080998687927627008346449692722584603737774498635068966830096359006360173078433484139240594525122442322586061282296934572312730879106180248038049187895806727172699219309489051971196221697760104669003514701725297442210478964684671340504202131628786675073808769353517153682700091899043753017517610969748142185146363334177334921144008559246704637334116834170357575450155443432652400793653936310903650881485519261760104525322692273489880817377002860737846824286494425395735213339201888782148556069679911525334846553362740995005743956094579855788590910867293087405223 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'owa.kfh-dialyse.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ta.symcb.com/ta.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (95 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.48.1 (Thawte EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName cd32e2f25d254702aa8f794b32ee0399fd3049d1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ta.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ta.symcb.com/ta.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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