my.royalcanin.ch
- Royal Canin (Schweiz) AG -
Issued by GeoTrust Extended Validation SSL CA - G2
About this certificate
This digital certificate with serial number 25:10:0a:d4:eb:e5:ca:23:3d:fe:96:ef:0b:61:f7:a6 was issued on by GeoTrust Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Royal Canin (Schweiz) AG
Company registration number:
CH-020.3.922.194-6
Organization: Royal Canin (Schweiz) AG
Organization unit: Information Services
Organization: Royal Canin (Schweiz) AG
Organization unit: Information Services
State / Province:
Zurich
Locality: Daellikon
Country: CH
Locality: Daellikon
Country: CH
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 25:10:0a:d4:eb:e5:ca:23:3d:fe:96:ef:0b:61:f7:a6Serial Number (int): 49264732287251709969081755788799768486
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 6f:26:56:d9:5c:e7:f7:c9:04:20:f8:1e:ba:7c:91:27:2f:8c:fa:07
Fingerprint (sha1): 1b:82:e5:33:3f:0f:2d:83:f2:fa:07:8d:28:a9:08:22:6f:d0:bf:da
Fingerprint (sha256): 7e:a2:3b:88:94:f2:6a:00:c0:93:88:09:dc:bf:20:2d:db:70:50:96:40:ab:81:e4:a4:26:db:6c:18:c5:09:79
Issuing Certificate URL: http://gtextval2-aia.geotrust.com/gtextval2.cer
Revocation information
OCSP Server: http://gtextval2-ocsp.geotrust.comCRL Distribution Point: http://gtextval2-crl.geotrust.com/gtextval2.crl
Check the revocation status for certificate my.royalcanin.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for my.royalcanin.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
my.royalcanin.ch
Other certificates including the domain name royalcanin.ch
(limited to 100 certificates)
my.royalcanin.ch
*.royalcanin.dk
check.royalcanin.ch
my.royalcanin.ch
multifunction.royalcanin.ch
*.royalcanin.dk
mail.royalcanin.ch
deals.royalcanin.ch
*.mars.com
multifunction.royalcanin.ch
www.royalcanin.ch
deals.royalcanin.ch
share.royalcanin.ch
vetfollowup.royalcanin.com.au
multifunction.royalcanin.ch
www.royalcanin.com
royalcanin-com-redirect.mars-inc.com
deals.royalcanin.ch
shop.royalcanin.ch
aws-cf-rd08.mars-inc.com
deals.royalcanin.ch
multifunction.royalcanin.ch
shop.royalcanin.ch
*.mars.com
*.mars.com
mail.royalcanin.ch
vetservices.royal-canin.at
vetservices.royalcanin.be
my.royalcanin.ch
royalcanin-com-redirect.mars-inc.com
vetservices.royalcanin.ch
*.royalcanin.dk
deals.royalcanin.ch
*.mars.com
*.mars.com
vetservices.royal-canin.at
*.mars.com
*.royalcanin.dk
*.mars.com
*.mars.com
vetservices.royalcanin.be
check.royalcanin.ch
*.mars.com
share.royalcanin.ch
multifunction.royalcanin.ch
*.mars.com
*.royalcanin.ch
my.royalcanin.ch
deals.royalcanin.ch
shop.royalcanin.ch
*.mars.com
adminvfu.royalcanin.com
aws-cf-www-royalcanin-com-rd01.mars-inc.com
multifunction.royalcanin.ch
deals.royalcanin.ch
multifunction.royalcanin.ch
my.royalcanin.ch
deals.royalcanin.ch
*.mars.com
adminvfu.royalcanin.com
deals.royalcanin.ch
vetservices.royal-canin.at
*.royalcanin.ch
www.royalcanin.ch
account.royalcanin.ch
check.royalcanin.ch
*.royalcanin.ch
my.royalcanin.ch
shop.royalcanin.ch
vetservices.royal-canin.at
adminvfu.royalcanin.com
deals.royalcanin.ch
shop.royalcanin.ch
*.mars.com
my.royalcanin.ch
deals.royalcanin.ch
multifunction.royalcanin.ch
adminvfu.royalcanin.com
aws-cf-rd19.mars-inc.com
*.royalcanin.ch
aws-cf-rd19.mars-inc.com
*.mars.com
vetservices.royal-canin.at
*.mars.com
mail.royalcanin.ch
vetservices.royal-canin.at
mail.royalcanin.ch
my.royalcanin.ch
mail.royalcanin.ch
*.mars.com
*.mars.com
*.royalcanin.dk
aws-cf-www-royalcanin-com-rd01.mars-inc.com
deals.royalcanin.ch
share.royalcanin.ch
*.mars.com
deals.royalcanin.ch
adminvfu.royalcanin.com
share.royalcanin.ch
*.royalcanin.dk
*.royalcanin.dk
check.royalcanin.ch
my.royalcanin.ch
multifunction.royalcanin.ch
*.royalcanin.dk
mail.royalcanin.ch
deals.royalcanin.ch
*.mars.com
multifunction.royalcanin.ch
www.royalcanin.ch
deals.royalcanin.ch
share.royalcanin.ch
vetfollowup.royalcanin.com.au
multifunction.royalcanin.ch
www.royalcanin.com
royalcanin-com-redirect.mars-inc.com
deals.royalcanin.ch
shop.royalcanin.ch
aws-cf-rd08.mars-inc.com
deals.royalcanin.ch
multifunction.royalcanin.ch
shop.royalcanin.ch
*.mars.com
*.mars.com
mail.royalcanin.ch
vetservices.royal-canin.at
vetservices.royalcanin.be
my.royalcanin.ch
royalcanin-com-redirect.mars-inc.com
vetservices.royalcanin.ch
*.royalcanin.dk
deals.royalcanin.ch
*.mars.com
*.mars.com
vetservices.royal-canin.at
*.mars.com
*.royalcanin.dk
*.mars.com
*.mars.com
vetservices.royalcanin.be
check.royalcanin.ch
*.mars.com
share.royalcanin.ch
multifunction.royalcanin.ch
*.mars.com
*.royalcanin.ch
my.royalcanin.ch
deals.royalcanin.ch
shop.royalcanin.ch
*.mars.com
adminvfu.royalcanin.com
aws-cf-www-royalcanin-com-rd01.mars-inc.com
multifunction.royalcanin.ch
deals.royalcanin.ch
multifunction.royalcanin.ch
my.royalcanin.ch
deals.royalcanin.ch
*.mars.com
adminvfu.royalcanin.com
deals.royalcanin.ch
vetservices.royal-canin.at
*.royalcanin.ch
www.royalcanin.ch
account.royalcanin.ch
check.royalcanin.ch
*.royalcanin.ch
my.royalcanin.ch
shop.royalcanin.ch
vetservices.royal-canin.at
adminvfu.royalcanin.com
deals.royalcanin.ch
shop.royalcanin.ch
*.mars.com
my.royalcanin.ch
deals.royalcanin.ch
multifunction.royalcanin.ch
adminvfu.royalcanin.com
aws-cf-rd19.mars-inc.com
*.royalcanin.ch
aws-cf-rd19.mars-inc.com
*.mars.com
vetservices.royal-canin.at
*.mars.com
mail.royalcanin.ch
vetservices.royal-canin.at
mail.royalcanin.ch
my.royalcanin.ch
mail.royalcanin.ch
*.mars.com
*.mars.com
*.royalcanin.dk
aws-cf-www-royalcanin-com-rd01.mars-inc.com
deals.royalcanin.ch
share.royalcanin.ch
*.mars.com
deals.royalcanin.ch
adminvfu.royalcanin.com
share.royalcanin.ch
*.royalcanin.dk
Certificate
The complete raw certificate details for my.royalcanin.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgIQJRAK1OvlyiM9/pbvC2H3pjANBgkqhkiG9w0BAQUFADBY MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjExMC8GA1UEAxMo R2VvVHJ1c3QgRXh0ZW5kZWQgVmFsaWRhdGlvbiBTU0wgQ0EgLSBHMjAeFw0xMzEw MDcwMDAwMDBaFw0xNTEwMDcyMzU5NTlaMIHgMRMwEQYLKwYBBAGCNzwCAQMTAkNI MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjEbMBkGA1UEBRMSQ0gtMDIw LjMuOTIyLjE5NC02MQswCQYDVQQGEwJDSDEPMA0GA1UECBQGWnVyaWNoMRIwEAYD VQQHFAlEYWVsbGlrb24xITAfBgNVBAoUGFJveWFsIENhbmluIChTY2h3ZWl6KSBB RzEdMBsGA1UECxQUSW5mb3JtYXRpb24gU2VydmljZXMxGTAXBgNVBAMUEG15LnJv eWFsY2FuaW4uY2gwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQyfXI VAtX5hRsQK4PJO97P2HaClNfTAJhEsx+IK63t1inukGKC9J1Wb5lisLFsOg16f1z S/H9ieyGwrQmGidCUPLEtoQCYo9Hz9hCY2WG0FGHOImtyInUGq9a9iVeWRs0Pcfd RGy2I998K3CsP82F6kdv4InBdTQZCxQ+n4xWj0y4cUhQI5aN85KCd6c6F7yMfaNB Scev3QPK/IJdllscGxvzXTOBRJXyD5SMefWtFVtC4MhVcxqupySPQ/dSSSVIa0Ec E3Hgc0i/iSv98QG3f42RQuf9EhsdvQFjp7+jw+hlfRHkon+g40Rw84sNHGDu++hj 6caqxQQSZkpkxGllAgMBAAGjggGIMIIBhDAbBgNVHREEFDASghBteS5yb3lhbGNh bmluLmNoMAkGA1UdEwQCMAAwDgYDVR0PAQH/BAQDAgWgMEAGA1UdHwQ5MDcwNaAz oDGGL2h0dHA6Ly9ndGV4dHZhbDItY3JsLmdlb3RydXN0LmNvbS9ndGV4dHZhbDIu Y3JsMEsGA1UdIAREMEIwQAYJKwYBBAHwIgEGMDMwMQYIKwYBBQUHAgEWJWh0dHA6 Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9jcHMwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMB8GA1UdIwQYMBaAFG8mVtlc5/fJBCD4Hrp8kScvjPoH MHsGCCsGAQUFBwEBBG8wbTAuBggrBgEFBQcwAYYiaHR0cDovL2d0ZXh0dmFsMi1v Y3NwLmdlb3RydXN0LmNvbTA7BggrBgEFBQcwAoYvaHR0cDovL2d0ZXh0dmFsMi1h aWEuZ2VvdHJ1c3QuY29tL2d0ZXh0dmFsMi5jZXIwDQYJKoZIhvcNAQEFBQADggEB AFvQXM46QkUzOMLCHiWH2iZFl+7NWMK168vKWcjAby+fBPalC2/VlXky5FNsmaf0 pPlXDQhmPtjdh/o9hZIxOozEAS5jYgn9PP9c/TgrvjcqeIRLonQTkkZktQLV98I6 zUaXMvuQL6atqak+DAz5wzOkmNnjQOOG+x5eFiHvhs/e+aIgdAXZYX5+EL7WnpXS m7F87jtLcL4HfYehFUoqcsz6c+qruGqjxTwSk0wTFvyMyocF3vfs0nKW2wFv39ii J5qWnH92UQmHGyhZcfmfhndPk0Zw7IlTv0um1huievcLXJMeVtCJCB766Cw7HoEl e7CRmHjj6qoX5CKqefjs/VQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Mn1yFQLV+YUbECuDyTv ez9h2gpTX0wCYRLMfiCut7dYp7pBigvSdVm+ZYrCxbDoNen9c0vx/YnshsK0Jhon QlDyxLaEAmKPR8/YQmNlhtBRhziJrciJ1BqvWvYlXlkbND3H3URstiPffCtwrD/N hepHb+CJwXU0GQsUPp+MVo9MuHFIUCOWjfOSgnenOhe8jH2jQUnHr90DyvyCXZZb HBsb810zgUSV8g+UjHn1rRVbQuDIVXMarqckj0P3UkklSGtBHBNx4HNIv4kr/fEB t3+NkULn/RIbHb0BY6e/o8PoZX0R5KJ/oONEcPOLDRxg7vvoY+nGqsUEEmZKZMRp ZQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 49264732287251709969081755788799768486 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Extended Validation SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-10-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-10-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH-020.3.922.194-6' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Zurich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Daellikon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Royal Canin (Schweiz) AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Information Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'my.royalcanin.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26357157664120243654818620918775482336833429730796780231432982062967644153174303147089301589923484517952905111105158529436453567397969843934928038113332137310403315055387890745400561084976027759952687989482340226067859441756664743537396747777386413921797263154442958030733261324952222445548856867626557617903359605195849746653084493014619119946947754634510885731024609431816321283666973116186429231243622303593758149214864009894200371634579968248603801431634115369509420564386647057114408298875628536149155010468782915894327805726922976294277778537909880932323971356494593968921188546033220566756417472804094757595493 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.royalcanin.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtextval2-crl.geotrust.com/gtextval2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.14370.1.6 (GeoTrust EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f2656d95ce7f7c90420f81eba7c91272f8cfa07 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (111 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtextval2-ocsp.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtextval2-aia.geotrust.com/gtextval2.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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