vasco.nrdns.nl
Issued by Trust Provider B.V. DV SSL CA - G2
About this certificate
This digital certificate with serial number 56:1c:87:35:95:67:34:2e:31:3f:06:ca:00:4e:74:92 was issued on by Trust Provider B.V..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=vasco.nrdns.nl
Trust Provider B.V.
Organization:
Trust Provider B.V.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 56:1c:87:35:95:67:34:2e:31:3f:06:ca:00:4e:74:92Serial Number (int): 114461734320168878712800007571307918482
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: d8:da:ef:d8:e0:ac:71:71:02:de:e6:62:fa:cf:fc:40:3b:fb:a0:52
Fingerprint (sha1): b5:ec:4f:d8:f7:8f:b0:5d:9b:19:28:89:8d:e6:de:11:70:d2:b7:b2
Fingerprint (sha256): 85:2d:f3:93:4d:ca:64:9f:67:29:b5:25:50:aa:a4:0b:c5:1b:6a:55:aa:94:6f:59:2f:d2:cf:2d:b7:5e:9c:c8
Issuing Certificate URL: http://trustprovider-aia.digitalcertvalidation.com/trustproviderg2.crt
Revocation information
OCSP Server: http://trustprovider-ocsp.digitalcertvalidation.comCRL Distribution Point: http://trustprovider-crl.digitalcertvalidation.com/trustproviderg2.crl
Check the revocation status for certificate vasco.nrdns.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vasco.nrdns.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vasco.nrdns.nl
Other certificates including the domain name nrdns.nl
(limited to 100 certificates)
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
*.nrdns.nl
sv2.nrdns.nl
*.nrdns.nl
sv2.nrdns.nl
vasco.nrdns.nl
sv2.nrdns.nl
*.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv1.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
*.nrdns.nl
sv2.nrdns.nl
*.nrdns.nl
nrhe1.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
vasco.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
backup.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
imap.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
nrhe1.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
*.nrdns.nl
sv2.nrdns.nl
*.nrdns.nl
sv2.nrdns.nl
vasco.nrdns.nl
sv2.nrdns.nl
*.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv1.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
*.nrdns.nl
sv2.nrdns.nl
*.nrdns.nl
nrhe1.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
vasco.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
backup.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
imap.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
nrhe1.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
sv2.nrdns.nl
Certificate
The complete raw certificate details for vasco.nrdns.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHMzCCBhugAwIBAgIQVhyHNZVnNC4xPwbKAE50kjANBgkqhkiG9w0BAQsFADB3 MQswCQYDVQQGEwJOTDEcMBoGA1UEChMTVHJ1c3QgUHJvdmlkZXIgQi5WLjEdMBsG A1UECxMURG9tYWluIFZhbGlkYXRlZCBTU0wxKzApBgNVBAMTIlRydXN0IFByb3Zp ZGVyIEIuVi4gRFYgU1NMIENBIC0gRzIwHhcNMTYwMzE3MDAwMDAwWhcNMTkwMzE3 MjM1OTU5WjAZMRcwFQYDVQQDDA52YXNjby5ucmRucy5ubDCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBALBdv8GM79lZXTRxaN2SFzoPcSDXlPu1rho+ZEkE a+Dp9F9vLe2BQTZJxvDNVUyioiR5FYtxeYfJDW8iMJNcC+wnY8PDPx7Oj8H4T2jj bL8DgSvKOVDCKVTwTKYbBdaKrxt/qA57wT5962dG1tQr8M3KNg91d9B1nqyPpwH1 zHI1IeigK5aaZ1w210j+fido0ELtsvlmxVpHsTVvF6Iju1q1NCUQjezqhCh3Xz3S aVjwCWeb9xYfAGXixuGroVlgBXVlTD2IDGc6n/q9EqA+cJN1ims+PND/eTZzJrTU Zp9lKssfB4efvaLG4p8CfyghJj2YAaXpq3/y6CCgDmKDqGkCAwEAAaOCBBcwggQT MBkGA1UdEQQSMBCCDnZhc2NvLm5yZG5zLm5sMAkGA1UdEwQCMAAwVwYDVR0fBFAw TjBMoEqgSIZGaHR0cDovL3RydXN0cHJvdmlkZXItY3JsLmRpZ2l0YWxjZXJ0dmFs aWRhdGlvbi5jb20vdHJ1c3Rwcm92aWRlcmcyLmNybDCBnQYDVR0gBIGVMIGSMIGP BgZngQwBAgEwgYQwPwYIKwYBBQUHAgEWM2h0dHBzOi8vd3d3Lmdlb3RydXN0LmNv bS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9sZWdhbDBBBggrBgEFBQcCAjA1DDNodHRw czovL3d3dy5nZW90cnVzdC5jb20vcmVzb3VyY2VzL3JlcG9zaXRvcnkvbGVnYWww HwYDVR0jBBgwFoAU2Nrv2OCscXEC3uZi+s/8QDv7oFIwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBpQYIKwYBBQUHAQEEgZgw gZUwPwYIKwYBBQUHMAGGM2h0dHA6Ly90cnVzdHByb3ZpZGVyLW9jc3AuZGlnaXRh bGNlcnR2YWxpZGF0aW9uLmNvbTBSBggrBgEFBQcwAoZGaHR0cDovL3RydXN0cHJv dmlkZXItYWlhLmRpZ2l0YWxjZXJ0dmFsaWRhdGlvbi5jb20vdHJ1c3Rwcm92aWRl cmcyLmNydDCCAfgGCisGAQQB1nkCBAIEggHoBIIB5AHiAHYA3esdK3oNT6Ygi4Gt gWhwfi6OnQHVXIiNPRHEzbbsvswAAAFThFInmQAABAMARzBFAiEA3+HywATR1VOn JUOjwk8zAwC3Fj9STJ5CPA4knNAjd5YCIH88tRWfOlN4zF3Oz0BnrKeLe1sSloOt ZxVQMsZG0zjqAHcApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFT hFInwAAABAMASDBGAiEAwehVi5Va1p1o08Do7P2GLl4Xs3rmE1L5JRNxpAKibiYC IQDeeorV1KdK0O0tJS9wOYkBvCDTQGnmrLieELXsKB/8hAB2AGj2mPgfZIK+Oozu uSgdTPxxUV1nk9RE0QpnrLtPT/vEAAABU4RSJ8EAAAQDAEcwRQIhAKK/BBLtgWuY Z5fnsqLfv71h4r3CZyEC4I157OJsCi80AiB1+Wrk2s87sefWPG+JIlh2vDzgicCr Q67Fj9txQKOBmQB3AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAAB U4RSJ+EAAAQDAEgwRgIhAKNUcdysJCL4wlL1rTB3soCIuD6AQGKgZIBY4ubhCAXe AiEA+8o6t+11dfLnon2raearPDXgLh3+RH87SR1tiMcLofQwDQYJKoZIhvcNAQEL BQADggEBAIEN9UQ4jaZQFRnUIzdT9eIscTEUzMtgvNJ/NYYtmtp9UZvAFt3xZuTo YjNlJ4/Up8d4+6e1M0oiwXkxmNxtu2Tp+wSxqV4dnI7U1XpKDoHaYtJam0czaxFJ I8wEpjHFb282H40Eh5zQ6xes6YoeSMk5TrJodkf9qnX3XTS4wXqA56a7yVmKZ3bO HVGDrY4FvFt5e2mU6/PfRYRCfr3e5JDydux5u2fB8+NQ0Ud8bfPfCfSv5W0hyv++ YER4AYz/0otlNFtJ5IvkdJUaQotqTto8QIc2iiinoIPGa3/DT/LbUKDiIjD8uttn Y2hQiL3lyxIlEzgBw62jUpqusCj/cMU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsF2/wYzv2VldNHFo3ZIX Og9xINeU+7WuGj5kSQRr4On0X28t7YFBNknG8M1VTKKiJHkVi3F5h8kNbyIwk1wL 7Cdjw8M/Hs6PwfhPaONsvwOBK8o5UMIpVPBMphsF1oqvG3+oDnvBPn3rZ0bW1Cvw zco2D3V30HWerI+nAfXMcjUh6KArlppnXDbXSP5+J2jQQu2y+WbFWkexNW8XoiO7 WrU0JRCN7OqEKHdfPdJpWPAJZ5v3Fh8AZeLG4auhWWAFdWVMPYgMZzqf+r0SoD5w k3WKaz480P95NnMmtNRmn2Uqyx8Hh5+9osbinwJ/KCEmPZgBpemrf/LoIKAOYoOo aQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 114461734320168878712800007571307918482 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trust Provider B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trust Provider B.V. DV SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-03-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'vasco.nrdns.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22264171052142259520426658254175481836828029244631142068404137102561527978062067229679601345403677017800025694757974905290940675070075301344499387770631483661504923251618890032586258902680293268518897722112733685711381547153934443365637054088922703835521005398538521528546281660698515643662867694221068745199307685694250476172657241561412786836089006948391920078567841990425057792592048594721663129426053573978761716340339947662906858920293770434560426147858927241130219980524704670508415661844250122409388066259079792129359488953548686233386524591639084534771972930599887968087029373112412572775248547649871822432361 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vasco.nrdns.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://trustprovider-crl.digitalcertvalidation.com/trustproviderg2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d8daefd8e0ac717102dee662facffc403bfba052 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (152 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://trustprovider-ocsp.digitalcertvalidation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://trustprovider-aia.digitalcertvalidation.com/trustproviderg2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (488 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (484 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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