vpn.techlib.cz
- Národní technická knihovna -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 02:e4:48:e1:62:75:ab:38:5c:cf:47:a9:05:a8:42:a5 was issued on by TERENA.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Národní technická knihovna
Organization:
Národní technická knihovna
Locality:
Praha 6
Country: CZ
Country: CZ
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 02:e4:48:e1:62:75:ab:38:5c:cf:47:a9:05:a8:42:a5Serial Number (int): 3843777865615584922619659981578322597
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 26:33:dd:e8:d4:71:b5:fd:1c:94:f3:db:7f:6e:10:5f:c9:92:2d:33
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): 83:c6:21:f0:d0:05:e2:9b:e6:0f:c1:3b:e8:07:52:30:08:1b:9b:3e
Fingerprint (sha256): 7a:e4:02:39:c6:a3:ff:65:19:66:21:81:ad:77:ab:fb:c8:90:17:20:e5:3a:c6:dc:c6:82:3a:2f:5d:33:62:7f
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate vpn.techlib.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vpn.techlib.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA512 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vpn.techlib.cz
vpn.ntkcz.cz
vpn.ntkcz.cz
Other certificates including the domain name techlib.cz
(limited to 100 certificates)
elag2011.techlib.cz
vykukator.techlib.cz
icolc.techlib.cz
sfx.techlib.cz
matrix.techlib.cz
old.techlib.cz
elag2011.techlib.cz
caslin2013.techlib.cz
techlib.cz
space.techlib.cz
bigclean.techlib.cz
liber-lag2012.techlib.cz
caslin2013.techlib.cz
blog.techlib.cz
bigclean.techlib.cz
*.ezproxy.techlib.cz
blog.techlib.cz
eod2013.techlib.cz
bigclean.techlib.cz
old.techlib.cz
eod2013.techlib.cz
*.ezproxy.techlib.cz
caslin2013.techlib.cz
repozitar.techlib.cz
eod2013.techlib.cz
aleph.techlib.cz
ezproxy1.ntkcz.cz
summon-custom.techlib.cz
eod2013.techlib.cz
vykukator.techlib.cz
summon-custom.techlib.cz
indico.techlib.cz
blog.techlib.cz
liber-lag2012.techlib.cz
stanik.techlib.cz
bigclean.techlib.cz
caslin2013.techlib.cz
eod2013.techlib.cz
icolc.techlib.cz
bigclean.techlib.cz
ps.techlib.cz
summon-custom.techlib.cz
caslin2013.techlib.cz
caslin2013.techlib.cz
eod2013.techlib.cz
old.techlib.cz
space.techlib.cz
bigclean.techlib.cz
stanik.techlib.cz
liber-lag2012.techlib.cz
caslin2013.techlib.cz
icolc.techlib.cz
bigclean.techlib.cz
bigclean.techlib.cz
ps.techlib.cz
elag2011.techlib.cz
doc.techlib.cz
matrix.techlib.cz
mail.ntkcz.cz
techlib.cz
bigclean.techlib.cz
vykukator.techlib.cz
liber-lag2012.techlib.cz
liber-lag2012.techlib.cz
psh.techlib.cz
eod2013.techlib.cz
stanik.techlib.cz
psh.techlib.cz
elag2011.techlib.cz
kramerius.techlib.cz
ifis.techlib.cz
matrix.techlib.cz
safeq.ntkcz.cz
techlib.cz
liber-lag2012.techlib.cz
vykukator.techlib.cz
*.ezproxy.techlib.cz
old.techlib.cz
rs.techlib.cz
elag2011.techlib.cz
eod2013.techlib.cz
blog.techlib.cz
blog.techlib.cz
blog.techlib.cz
eod2013.techlib.cz
aleph.techlib.cz
nrgl.techlib.cz
psh.techlib.cz
old.techlib.cz
nejtek.techlib.cz
www.techlib.cz
summon-custom.techlib.cz
caslin2013.techlib.cz
vufind.techlib.cz
www.techlib.cz
eod2013.techlib.cz
bigclean.techlib.cz
techlib.cz
aleph.techlib.cz
techlib.cz
vykukator.techlib.cz
icolc.techlib.cz
sfx.techlib.cz
matrix.techlib.cz
old.techlib.cz
elag2011.techlib.cz
caslin2013.techlib.cz
techlib.cz
space.techlib.cz
bigclean.techlib.cz
liber-lag2012.techlib.cz
caslin2013.techlib.cz
blog.techlib.cz
bigclean.techlib.cz
*.ezproxy.techlib.cz
blog.techlib.cz
eod2013.techlib.cz
bigclean.techlib.cz
old.techlib.cz
eod2013.techlib.cz
*.ezproxy.techlib.cz
caslin2013.techlib.cz
repozitar.techlib.cz
eod2013.techlib.cz
aleph.techlib.cz
ezproxy1.ntkcz.cz
summon-custom.techlib.cz
eod2013.techlib.cz
vykukator.techlib.cz
summon-custom.techlib.cz
indico.techlib.cz
blog.techlib.cz
liber-lag2012.techlib.cz
stanik.techlib.cz
bigclean.techlib.cz
caslin2013.techlib.cz
eod2013.techlib.cz
icolc.techlib.cz
bigclean.techlib.cz
ps.techlib.cz
summon-custom.techlib.cz
caslin2013.techlib.cz
caslin2013.techlib.cz
eod2013.techlib.cz
old.techlib.cz
space.techlib.cz
bigclean.techlib.cz
stanik.techlib.cz
liber-lag2012.techlib.cz
caslin2013.techlib.cz
icolc.techlib.cz
bigclean.techlib.cz
bigclean.techlib.cz
ps.techlib.cz
elag2011.techlib.cz
doc.techlib.cz
matrix.techlib.cz
mail.ntkcz.cz
techlib.cz
bigclean.techlib.cz
vykukator.techlib.cz
liber-lag2012.techlib.cz
liber-lag2012.techlib.cz
psh.techlib.cz
eod2013.techlib.cz
stanik.techlib.cz
psh.techlib.cz
elag2011.techlib.cz
kramerius.techlib.cz
ifis.techlib.cz
matrix.techlib.cz
safeq.ntkcz.cz
techlib.cz
liber-lag2012.techlib.cz
vykukator.techlib.cz
*.ezproxy.techlib.cz
old.techlib.cz
rs.techlib.cz
elag2011.techlib.cz
eod2013.techlib.cz
blog.techlib.cz
blog.techlib.cz
blog.techlib.cz
eod2013.techlib.cz
aleph.techlib.cz
nrgl.techlib.cz
psh.techlib.cz
old.techlib.cz
nejtek.techlib.cz
www.techlib.cz
summon-custom.techlib.cz
caslin2013.techlib.cz
vufind.techlib.cz
www.techlib.cz
eod2013.techlib.cz
bigclean.techlib.cz
techlib.cz
aleph.techlib.cz
techlib.cz
Certificate
The complete raw certificate details for vpn.techlib.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIQAuRI4WJ1qzhcz0epBahCpTANBgkqhkiG9w0BAQ0FADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xOTA4MTIwMDAwMDBaFw0yMTA4MTYxMjAwMDBaMGAxCzAJBgNVBAYT AkNaMRAwDgYDVQQHEwdQcmFoYSA2MSYwJAYDVQQKDB1Ow6Fyb2Ruw60gdGVjaG5p Y2vDoSBrbmlob3ZuYTEXMBUGA1UEAxMOdnBuLnRlY2hsaWIuY3owggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtSIkZe1Oy+4h+crBh/M+2PMCvZt7PNTU/ mwO5/z2l5lBr/YLw465gTQyzUVp4dr+k+ZAWvel8eSR49uzJk4gXf5zA0q6nkW7+ YD810q2xKwXPZ34Y1G0g4fIYCDYW5EMqDmAfpXZnR+FSFWDXNsT/zoiH7M0/YkEz hnBp/y/OyyU1uXxn3UmU3k7YiWPGmJCTcxM0wruwMEFX49nghDLCg+UbMhpk4/ln 3BsGpDzptUh/mfF0+l1gj5Jcxl962Zpmmzd0FwXNd2ClDiH8Q4lKXlX4X7yBGouZ TXBa7yPje9z1mbwn9BBhTJFa+4msoenjm4VZrfFvLq2/9haLzXBxAgMBAAGjggHq MIIB5jAfBgNVHSMEGDAWgBRn/YggFCeYxwnSJRm76VERY3VQYjAdBgNVHQ4EFgQU JjPd6NRxtf0clPPbf24QX8mSLTMwJwYDVR0RBCAwHoIOdnBuLnRlY2hsaWIuY3qC DHZwbi5udGtjei5jejAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMGsGA1UdHwRkMGIwL6AtoCuGKWh0dHA6Ly9jcmwzLmRpZ2lj ZXJ0LmNvbS9URVJFTkFTU0xDQTMuY3JsMC+gLaArhilodHRwOi8vY3JsNC5kaWdp Y2VydC5jb20vVEVSRU5BU1NMQ0EzLmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwB ATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgG BmeBDAECAjBuBggrBgEFBQcBAQRiMGAwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmRpZ2ljZXJ0LmNvbTA4BggrBgEFBQcwAoYsaHR0cDovL2NhY2VydHMuZGlnaWNl cnQuY29tL1RFUkVOQVNTTENBMy5jcnQwDAYDVR0TAQH/BAIwADATBgorBgEEAdZ5 AgQDAQH/BAIFADANBgkqhkiG9w0BAQ0FAAOCAQEAWxeoYEQKbXAA4NbYPK7koFDe iK6gAJBfxnjf3PDLm4m+G6ee95S/tsBc/wa8qu4GMqIB6I+SrfTX5OnSYp9G1na9 sjNCSHvyen94/Xj8AZU8PaF9o9T10/b16AIjfAMUV6Ym9dlYEwXCJYbOJ4vU/oQ5 K3qWMYt+wBRFWw1QwzusLQILPqP1YJZBIGNZ0CkxYX/cdURTfOOipsd+z51ukRo2 HcrGUtXfKeOVh6yFR3j4BClqTnn9uuev9Xo+o7pocC9W2djHCx9k0ZRwwu7tzTIY 07Z5BQHYcOA9NilRaDEvEZJ1cFgnsfjhln0sIu4I4TTw/yqpbKaywNFPZckkNA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUiJGXtTsvuIfnKwYfzP tjzAr2bezzU1P5sDuf89peZQa/2C8OOuYE0Ms1FaeHa/pPmQFr3pfHkkePbsyZOI F3+cwNKup5Fu/mA/NdKtsSsFz2d+GNRtIOHyGAg2FuRDKg5gH6V2Z0fhUhVg1zbE /86Ih+zNP2JBM4Zwaf8vzsslNbl8Z91JlN5O2IljxpiQk3MTNMK7sDBBV+PZ4IQy woPlGzIaZOP5Z9wbBqQ86bVIf5nxdPpdYI+SXMZfetmaZps3dBcFzXdgpQ4h/EOJ Sl5V+F+8gRqLmU1wWu8j43vc9Zm8J/QQYUyRWvuJrKHp45uFWa3xby6tv/YWi81w cQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3843777865615584922619659981578322597 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-16 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Praha 6' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Národní technická knihovna' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vpn.techlib.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21874995369516813038318196853046253208530747407500373752010808318916189740156740610070913770583128116829686205232548094594712998778409263350997219082695668367719268603561266300082536875023915474939001696990646590836617773995800037701093128792676316220980802147919962524274151064124181474113783498088082933192748735055040450335587266541340393769801713002745820482341513499166169332760993938333639775624970636831996051269521812759119815253958118199151882745985261387372935544666021676173270448940519540310377985522846419932492406062206271526598893241482112733955331040656995497313343914278522015367557125266699147112561 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2633dde8d471b5fd1c94f3db7f6e105fc9922d33 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn.techlib.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn.ntkcz.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.13 (sha512WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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