privacyguard.heg.com
- Host Europe Group Limited -
Issued by GlobalSign Extended Validation CA - SHA256 - G2
About this certificate
This digital certificate with serial number 28:32:30:85:b9:76:dd:fd:fb:cd:b3:95 was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Host Europe Group Limited
Company registration number:
08509568
Organization: Host Europe Group Limited
Organization: Host Europe Group Limited
Address:
5TH FLOOR, THE SHIPPING BUILDING OLD VINYL FACTORY
State / Province: MIDDLESEX
Locality: HAYES
Country: GB
State / Province: MIDDLESEX
Locality: HAYES
Country: GB
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 28:32:30:85:b9:76:dd:fd:fb:cd:b3:95Serial Number (int): 12440075824206786781256725397
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 5c:25:ca:08:3e:c0:3a:3b:2e:34:8d:c0:70:5c:33:a1:81:e9:ca:66
AuthorityKeyId: da:40:77:43:65:1c:f8:fe:a7:e3:f4:64:82:3e:4d:43:13:22:31:02
Fingerprint (sha1): 58:6c:5f:b3:4f:b9:a9:01:b0:91:c8:3d:08:70:9d:31:ca:d5:9c:34
Fingerprint (sha256): 73:7d:cb:7a:a5:5a:99:d6:69:0e:bb:57:05:1f:39:42:8f:f5:6d:6e:17:59:7e:af:d9:99:f7:57:f4:6d:b1:bd
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsextendvalsha2g2r2.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsextendvalsha2g2CRL Distribution Point: http://crl.globalsign.com/gs/gsextendvalsha2g2.crl
Check the revocation status for certificate privacyguard.heg.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for privacyguard.heg.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
privacyguard.heg.com
Other certificates including the domain name heg.com
(limited to 100 certificates)
vpn.heg.com
haproxy-0.cgn.ba.heg.com
confluence.dev.heg.com
bamboo.dev.heg.com
bamboo.dev.heg.com
bamboo.heg.com
confluence.heg.com
tools.core.heg.com
elk0.cgn.ba.heg.com
legal.emeaint.godaddy.com
mirrors.uk.heg.com
www.heg.com
www.heg.com
portal.heg.com
mirrors.uk.heg.com
www.heg.com
cgn-dc02.ad.heg.com
wsus.heg.com
kafka-prod0.cgn.ba.heg.com
jira.heg.com
persis.staging.heg.com
calendar.heg.com
drive.heg.com
legal.emeaint.godaddy.com
www.heg.com
axonivy.heg.com
portal.sam.heg.com
owa.heg.com
exchange.heg.com
lg.core.heg.com
n3pwhegssdc002.ad.heg.com
observium.core.heg.com
lg.core.heg.com
cmpro.heg.com
privacyguard.heg.com
restapi.sam.heg.com
vpn.heg.com
*.o365.heg.com
jira.heg.com
lists.heg.com
tools.core.heg.com
vpn.heg.com
calender.heg.com
jira.dev.heg.com
*.loki.ba.heg.com
portal.heg.com
*.artifactory.ba.heg.com
jira.heg.com
www.heg.com
stash.heg.com
confluence.heg.com
stash.dev.heg.com
exchange.heg.com
vpn.heg.com
stash.heg.com
datastore.heg.com
legal.emeaint.godaddy.com
privacyguard.heg.com
*.media.heg.com
vpn.heg.com
privacyguard.heg.com
stash.dev.heg.com
*.mjolnir.ba.heg.com
confluence.heg.com
calendar.heg.com
*.thor.ba.heg.com
elk2.cgn.ba.heg.com
ldap.heg.com
paste.heg.com
timecontrol.heg.com
heg.com
stash.heg.com
privacyguard.heg.com
vault.ba.heg.com
cmpro.heg.com
confluence.heg.com
lg.core.heg.com
vault.ba.heg.com
www.heg.com
confluence.dev.heg.com
bamboo.heg.com
restapi.sam.heg.com
rsaf.sam.heg.com
observium.core.heg.com
owa.heg.com
blog.heg.com
calendar.heg.com
*.media.heg.com
lg.core.heg.com
finance-ax.heg.com
jira.heg.com
*.freya.ba.heg.com
legal.emeaint.godaddy.com
jabber.heg.com
sam.heg.com
*.odin.ba.heg.com
elk1.cgn.ba.heg.com
lg.core.heg.com
owa.heg.com
jira.dev.heg.com
haproxy-0.cgn.ba.heg.com
confluence.dev.heg.com
bamboo.dev.heg.com
bamboo.dev.heg.com
bamboo.heg.com
confluence.heg.com
tools.core.heg.com
elk0.cgn.ba.heg.com
legal.emeaint.godaddy.com
mirrors.uk.heg.com
www.heg.com
www.heg.com
portal.heg.com
mirrors.uk.heg.com
www.heg.com
cgn-dc02.ad.heg.com
wsus.heg.com
kafka-prod0.cgn.ba.heg.com
jira.heg.com
persis.staging.heg.com
calendar.heg.com
drive.heg.com
legal.emeaint.godaddy.com
www.heg.com
axonivy.heg.com
portal.sam.heg.com
owa.heg.com
exchange.heg.com
lg.core.heg.com
n3pwhegssdc002.ad.heg.com
observium.core.heg.com
lg.core.heg.com
cmpro.heg.com
privacyguard.heg.com
restapi.sam.heg.com
vpn.heg.com
*.o365.heg.com
jira.heg.com
lists.heg.com
tools.core.heg.com
vpn.heg.com
calender.heg.com
jira.dev.heg.com
*.loki.ba.heg.com
portal.heg.com
*.artifactory.ba.heg.com
jira.heg.com
www.heg.com
stash.heg.com
confluence.heg.com
stash.dev.heg.com
exchange.heg.com
vpn.heg.com
stash.heg.com
datastore.heg.com
legal.emeaint.godaddy.com
privacyguard.heg.com
*.media.heg.com
vpn.heg.com
privacyguard.heg.com
stash.dev.heg.com
*.mjolnir.ba.heg.com
confluence.heg.com
calendar.heg.com
*.thor.ba.heg.com
elk2.cgn.ba.heg.com
ldap.heg.com
paste.heg.com
timecontrol.heg.com
heg.com
stash.heg.com
privacyguard.heg.com
vault.ba.heg.com
cmpro.heg.com
confluence.heg.com
lg.core.heg.com
vault.ba.heg.com
www.heg.com
confluence.dev.heg.com
bamboo.heg.com
restapi.sam.heg.com
rsaf.sam.heg.com
observium.core.heg.com
owa.heg.com
blog.heg.com
calendar.heg.com
*.media.heg.com
lg.core.heg.com
finance-ax.heg.com
jira.heg.com
*.freya.ba.heg.com
legal.emeaint.godaddy.com
jabber.heg.com
sam.heg.com
*.odin.ba.heg.com
elk1.cgn.ba.heg.com
lg.core.heg.com
owa.heg.com
jira.dev.heg.com
Certificate
The complete raw certificate details for privacyguard.heg.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIHzCCBwegAwIBAgIMKDIwhbl23f37zbOVMA0GCSqGSIb3DQEBCwUAMGIxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTgwNgYDVQQDEy9H bG9iYWxTaWduIEV4dGVuZGVkIFZhbGlkYXRpb24gQ0EgLSBTSEEyNTYgLSBHMjAe Fw0xNjAzMDQxMzAxMDlaFw0xODAzMDUxMzAxMDlaMIH4MR0wGwYDVQQPDBRQcml2 YXRlIE9yZ2FuaXphdGlvbjERMA8GA1UEBRMIMDg1MDk1NjgxEzARBgsrBgEEAYI3 PAIBAxMCR0IxCzAJBgNVBAYTAkdCMRIwEAYDVQQIEwlNSURETEVTRVgxDjAMBgNV BAcTBUhBWUVTMTswOQYDVQQJEzI1VEggRkxPT1IsIFRIRSBTSElQUElORyBCVUlM RElORyBPTEQgVklOWUwgRkFDVE9SWTEiMCAGA1UEChMZSG9zdCBFdXJvcGUgR3Jv dXAgTGltaXRlZDEdMBsGA1UEAxMUcHJpdmFjeWd1YXJkLmhlZy5jb20wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnwaD54oHUn+CvB6KohhMM6Mc9Uvv6 YSM2HuF75IdIpeF40Dhiwol3gRDrfORYmxiif2mg+/QIkyvUkhGtwVSDKP2OndrW ZKQjQJQJYiNnFZoKeU/87Jy8QzcsNM0bobtgMvGVmGa8dsy/rTfmGXJ5KVVPhXl4 hu6AtMPVo4KsSFV1qYq+sv0mjbPlKcElX5+faBNmI86LfcmataYvi8YpfxLbDZCZ G7BnuoWXSX+VP/Au4/Cob0T1XM4eYZrzdmhVPgJDOVcDOcqh3SzQT88vcr+BI5Zb /Enk7a8dtPgdUPPt0P8DsymsnTlGe3f8l872a6YU7lBSYFXTPNiXTaZjAgMBAAGj ggQ8MIIEODAOBgNVHQ8BAf8EBAMCBaAwgZQGCCsGAQUFBwEBBIGHMIGEMEcGCCsG AQUFBzAChjtodHRwOi8vc2VjdXJlLmdsb2JhbHNpZ24uY29tL2NhY2VydC9nc2V4 dGVuZHZhbHNoYTJnMnIyLmNydDA5BggrBgEFBQcwAYYtaHR0cDovL29jc3AyLmds b2JhbHNpZ24uY29tL2dzZXh0ZW5kdmFsc2hhMmcyMEwGA1UdIARFMEMwQQYJKwYB BAGgMgEBMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vd3d3Lmdsb2JhbHNpZ24uY29t L3JlcG9zaXRvcnkvMAkGA1UdEwQCMAAwQwYDVR0fBDwwOjA4oDagNIYyaHR0cDov L2NybC5nbG9iYWxzaWduLmNvbS9ncy9nc2V4dGVuZHZhbHNoYTJnMi5jcmwwHwYD VR0RBBgwFoIUcHJpdmFjeWd1YXJkLmhlZy5jb20wHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMB0GA1UdDgQWBBRcJcoIPsA6Oy40jcBwXDOhgenKZjAfBgNV HSMEGDAWgBTaQHdDZRz4/qfj9GSCPk1DEyIxAjCCAm8GCisGAQQB1nkCBAIEggJf BIICWwJZAHYAaPaY+B9kgr46jO65KB1M/HFRXWeT1ETRCmesu09P+8QAAAFTQbe1 tgAABAMARzBFAiEAgx0a0W6UkEVeGErgvfGi7tDU6Un+2qwESRP5zFr5n58CIEow PKT1HCANTI+9FG43kcw0O9OId85jWSSnoRx/47J/AHYApLkJkLQYWBSHuxOizGdw Cjw1mAT5G9+443fNDsgN3BAAAAFTQbe8wAAABAMARzBFAiEAwcoQ9yEPcis4Qyew gdt1taR2QArFsMRJZlp99Rq5TrECID+5PVpmcT2tRJnky+brinhuwwMHyCM5Tj43 J95dvbnyAHUA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo/csAAAFTQbfM BwAABAMARjBEAiB8HP6/+zdWr59T58CdjjZLmrhkx2cRAkBTrpdKfJ9ywQIgBf5j e+A4qA3hZwdQ4JR7u8yszjE+ClR5E9t4VXBLjAAAdwDNtRebf8HARv7qMRNqP48A LmGC+viJb+zIsvW1q2BJAAAAAVNBt9CWAAAEAwBIMEYCIQD1MNLr/p/IPwK+qqhP UzJP/xD5muuu2V2Fdv96JNH9/wIhAOPYSRdnQdzgdFxgbawoiSHDpxRUsAuUBrv6 2Zt2sH9vAHcAVhQGmi/XwuzT9eG9RLI+x0Z2ubyZEVzA75SYVdaJ0N0AAAFTQbfU ZgAABAMASDBGAiEA7zXlGsen/z/T0oCr8kPbx0Gdk9GKHhRhdH7athqCmYYCIQDj 005ygnh8bkpAhNZITNLO7a9Qu6nEQX4CZ29QVM1vCzANBgkqhkiG9w0BAQsFAAOC AQEAGCsY4Mv4Sk1exzi42gICMOqL2Ltv9lfRWA/89PhVVJMKJ/YrjzSQ7Ovhwm9o FYZqUA9J6kGQ04zch97exWniiiPMt60lzxhUI+m9slm1BGhPGzbeQAYNJuMoUoHu qCQafwHJuUStk9k70GJHLxeQsvPQsOzUxkl7NOhPyhpHuNgw05dWfHJWEh9/lGQ3 tpE0HAILiw4RJZj40SY/X0/yXL1JRofQJyxnCZnsT73tdTWngLdZxz19j4g0r/Xz 8LHF9K39V6dDHtwEOFW/aLZPSwQFak3P9HEoR+JA0TyTUS+kxCVgbthcuM+9s0lR MOpQuHqAf3eEl8MXRPsWYsrZTA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp8Gg+eKB1J/grweiqIYT DOjHPVL7+mEjNh7he+SHSKXheNA4YsKJd4EQ63zkWJsYon9poPv0CJMr1JIRrcFU gyj9jp3a1mSkI0CUCWIjZxWaCnlP/OycvEM3LDTNG6G7YDLxlZhmvHbMv6035hly eSlVT4V5eIbugLTD1aOCrEhVdamKvrL9Jo2z5SnBJV+fn2gTZiPOi33JmrWmL4vG KX8S2w2QmRuwZ7qFl0l/lT/wLuPwqG9E9VzOHmGa83ZoVT4CQzlXAznKod0s0E/P L3K/gSOWW/xJ5O2vHbT4HVDz7dD/A7MprJ05Rnt3/JfO9mumFO5QUmBV0zzYl02m YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12440075824206786781256725397 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Extended Validation CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-03-04 13:01:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-05 13:01:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '08509568' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MIDDLESEX' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HAYES' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '5TH FLOOR, THE SHIPPING BUILDING OLD VINYL FACTORY' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Host Europe Group Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'privacyguard.heg.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21177278855652314102579803147844929099968741375392886844615867339910178432172460956608263905407215299236576197766874236731389327515018944461278197726631623162716971975020041706605070738048070325638775639546416975346666035928856377905097978878942612749622834750759556762437343175987046861420288919482009070736354540060177160084329631452282284104793046450115705433866793283527641830650136146781659049905859483916497261262695199458915663878714087212649160039034550360338898853232265562626755418676967460014965026359308921277056653146007338496876889998209738674656694142283285585800726276533861153925507768621686175147619 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsextendvalsha2g2r2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsextendvalsha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.1 (GlobalSign EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gs/gsextendvalsha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'privacyguard.heg.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5c25ca083ec03a3b2e348dc0705c33a181e9ca66 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName da407743651cf8fea7e3f464823e4d4313223102 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (607 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (603 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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