bavli.genizah.org
- Friedberg Genizah Project, Inc. -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 04:e9:74:04:b5:f2:4e:17:5a:ff:07:82:8f:3f:d8:20 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Friedberg Genizah Project, Inc.
Organization:
Friedberg Genizah Project, Inc.
State / Province:
New Jersey
Locality: Lakewood Township
Country: US
Locality: Lakewood Township
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:e9:74:04:b5:f2:4e:17:5a:ff:07:82:8f:3f:d8:20Serial Number (int): 6529070283914667581317305208070461472
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: fb:cc:0c:7b:e2:d9:9f:c4:15:11:86:24:ae:26:fc:1b:15:59:fa:76
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): b4:a4:56:25:c4:fe:22:88:f6:4e:73:07:41:55:0a:ad:56:f2:dc:93
Fingerprint (sha256): 7b:ed:9f:5b:bf:d1:e5:39:3b:69:ab:36:6c:e9:14:a8:e4:ae:e2:92:3b:fc:a9:c5:49:e7:50:d2:e8:e8:58:34
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate bavli.genizah.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bavli.genizah.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bavli.genizah.org
Other certificates including the domain name genizah.org
(limited to 100 certificates)
mail.genizah.org
manuscripts.genizah.org
vf.genizah.org
bavli.genizah.org
test.genizah.org
manuscriptstest.genizah.org
ssotest.genizah.org
bavlitest.genizah.org
genizah.org
test.genizah.org
ja.genizah.org
manuscriptstest.genizah.org
fgp.genizah.org
nachumsite.genizah.org
bavli.genizah.org
nachumsite.genizah.org
ssotest.genizah.org
mail.genizah.org
bavlitest.genizah.org
bavli.genizah.org
fgp.genizah.org
ja.genizah.org
fjms.genizah.org
bavli.genizah.org
*.genizah.org
fjms.genizah.org
vf.genizah.org
nachumsite.genizah.org
test.genizah.org
rambam.genizah.org
nachumsite.genizah.org
genizah.org
test.genizah.org
rambamtest.genizah.org
rambam.genizah.org
admin.genizah.org
bavli.genizah.org
manuscripts.genizah.org
fgp.genizah.org
manuscripts.genizah.org
ja.genizah.org
bavlitest.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
rambamtest.genizah.org
test.genizah.org
rambamtest.genizah.org
nachumsite.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
fjmstest.genizah.org
sso.genizah.org
rambam.genizah.org
fjmstest.genizah.org
admin.genizah.org
bavli.genizah.org
sso.genizah.org
fgp.genizah.org
genizah.org
bavli.genizah.org
mail.genizah.org
mail.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
rambamtest.genizah.org
elastic.genizah.org
bavli.genizah.org
fgp.genizah.org
manuscripts.genizah.org
vf.genizah.org
bavli.genizah.org
test.genizah.org
manuscriptstest.genizah.org
ssotest.genizah.org
bavlitest.genizah.org
genizah.org
test.genizah.org
ja.genizah.org
manuscriptstest.genizah.org
fgp.genizah.org
nachumsite.genizah.org
bavli.genizah.org
nachumsite.genizah.org
ssotest.genizah.org
mail.genizah.org
bavlitest.genizah.org
bavli.genizah.org
fgp.genizah.org
ja.genizah.org
fjms.genizah.org
bavli.genizah.org
*.genizah.org
fjms.genizah.org
vf.genizah.org
nachumsite.genizah.org
test.genizah.org
rambam.genizah.org
nachumsite.genizah.org
genizah.org
test.genizah.org
rambamtest.genizah.org
rambam.genizah.org
admin.genizah.org
bavli.genizah.org
manuscripts.genizah.org
fgp.genizah.org
manuscripts.genizah.org
ja.genizah.org
bavlitest.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
rambamtest.genizah.org
test.genizah.org
rambamtest.genizah.org
nachumsite.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
fjmstest.genizah.org
sso.genizah.org
rambam.genizah.org
fjmstest.genizah.org
admin.genizah.org
bavli.genizah.org
sso.genizah.org
fgp.genizah.org
genizah.org
bavli.genizah.org
mail.genizah.org
mail.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
rambamtest.genizah.org
elastic.genizah.org
bavli.genizah.org
fgp.genizah.org
Certificate
The complete raw certificate details for bavli.genizah.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgIQBOl0BLXyThda/weCjz/YIDANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTkxMjE2MDAwMDAwWhcNMjExMjI1MTIwMDAwWjCBhDELMAkGA1UEBhMCVVMxEzAR BgNVBAgTCk5ldyBKZXJzZXkxGjAYBgNVBAcTEUxha2V3b29kIFRvd25zaGlwMSgw JgYDVQQKEx9GcmllZGJlcmcgR2VuaXphaCBQcm9qZWN0LCBJbmMuMRowGAYDVQQD ExFiYXZsaS5nZW5pemFoLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKBvTpLME0KnEsxkKdrkpirjwaAtQWas0kL7vtVlvpTDFFSN0qpHtfeJl8Sz 5wWcIDWx8/q8E+T+IQ1O58a49Iis/y/7lComEODr+/MBPBeP/IsGqCciQs5TqAR0 UeUBdVKt0EPzDfS5zAaecyuhR+mV8Cuo9gkSl50rmXQsMqLxQBZP4p3rQA/aANrt dz3313L2C08bPrS2hyK4R25EsqDc7AH4NkeU44pux3m71JNnAGG0WFzfCbTaW5A+ Z5cOAoQ8/Y2kzagnIaujS6hw2eNjxmqSUuqTjf7QREwI5/BkVABLnsXnU0C6AfqE 0Lcx5btypbOs2vnQkd9VO3AFJaECAwEAAaOCAawwggGoMB8GA1UdIwQYMBaAFKPI XmVU5TB4wQXqBwpqWcy5/t5aMB0GA1UdDgQWBBT7zAx74tmfxBURhiSuJvwbFVn6 djAcBgNVHREEFTATghFiYXZsaS5nZW5pemFoLm9yZzAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDoGA1UdHwQzMDEwL6AtoCuG KWh0dHA6Ly9jZHAudGhhd3RlLmNvbS9UaGF3dGVSU0FDQTIwMTguY3JsMEwGA1Ud IARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRp Z2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMG8GCCsGAQUFBwEBBGMwYTAkBggrBgEF BQcwAYYYaHR0cDovL3N0YXR1cy50aGF3dGUuY29tMDkGCCsGAQUFBzAChi1odHRw Oi8vY2FjZXJ0cy50aGF3dGUuY29tL1RoYXd0ZVJTQUNBMjAxOC5jcnQwCQYDVR0T BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWMtX vXXagUqHlNYrhNME7+qYUXsDRXLKawzlMlonT9ND6RC0j+RdUsYRWLKBzM+ym+YJ 9XzHdnZF7Aon72FW4dCRLeG8B/7KLnhTaAYl9DnrwXn1JkOhhCcvn8rw1VZIWOCL fhcAqIXbHvDY5yPXeq4Qm3mUwtbPteuMFU4v94tB4/Z0+mlcibTcBHAo6JHZArN2 LBpN/64HfKswYPRLk6sZYsxhQ6VdXNZaOn4RlfEDco9O7VYiZ1FxFNoKCJTsqk5W IWLFNID0iz+DT8filpgw6agsbrYUBwimh6Q4WIArjDpnNaqVlDLePTU2NMcIsVw+ 52rKojydB+xDBv0mfg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoG9OkswTQqcSzGQp2uSm KuPBoC1BZqzSQvu+1WW+lMMUVI3Sqke194mXxLPnBZwgNbHz+rwT5P4hDU7nxrj0 iKz/L/uUKiYQ4Ov78wE8F4/8iwaoJyJCzlOoBHRR5QF1Uq3QQ/MN9LnMBp5zK6FH 6ZXwK6j2CRKXnSuZdCwyovFAFk/inetAD9oA2u13PffXcvYLTxs+tLaHIrhHbkSy oNzsAfg2R5Tjim7HebvUk2cAYbRYXN8JtNpbkD5nlw4ChDz9jaTNqCchq6NLqHDZ 42PGapJS6pON/tBETAjn8GRUAEuexedTQLoB+oTQtzHlu3Kls6za+dCR31U7cAUl oQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6529070283914667581317305208070461472 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-25 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Jersey' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Lakewood Township' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Friedberg Genizah Project, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bavli.genizah.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20253016286178339613674526813026035344483294594252198992505383724715090132975801761485555511715146798810427913270231212180018238129675858952277763738618453448662332070210039580099422029111772355578065051925719584444538581227352514981388794079623137571346682276253552529638787044690059514878068994909060713004104373278809020041436146594173161396948295119719655251278627169533028663598916547574908704643906041693407929764580193079339315981428607342546463069911238294359600661904963447286226481563496829540214684433961345696948765369125370435478787533538375933950533106083018054932891334125197442712656745495579282711969 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fbcc0c7be2d99fc415118624ae26fc1b1559fa76 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bavli.genizah.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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