www.invesco.nl
- Invesco Ltd. -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0f:22:c5:a6:0e:bb:8d:fa:7b:6d:91:3b:ce:ca:50:15 was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Invesco Ltd.
Organization:
Invesco Ltd.
State / Province:
Georgia
Locality: Atlanta
Country: US
Locality: Atlanta
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0f:22:c5:a6:0e:bb:8d:fa:7b:6d:91:3b:ce:ca:50:15Serial Number (int): 20118966821090348719901495106562838549
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: f6:e3:9f:a4:17:66:31:20:74:f6:a7:ca:11:36:74:4d:61:fb:de:f1
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): 2f:df:1f:02:e8:1d:6c:c6:eb:cf:9a:18:58:49:0c:74:1f:63:09:32
Fingerprint (sha256): 8a:f7:e4:e0:c0:92:9d:e1:d3:de:a0:1a:19:9c:87:46:b8:99:2b:09:33:b2:bb:74:ec:bf:95:cc:48:9f:40:d9
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate www.invesco.nl
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.invesco.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.invesco.nl
invesco.nl
prd.invesco.nl
invesco.nl
prd.invesco.nl
Other certificates including the domain name invesco.nl
(limited to 100 certificates)
uat.invesco.nl
www.invesco.nl
dev.invesco.nl
dev.invesco.nl
institutional.invesco.nl
www.invesco.nl
dev.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
institutional.invesco.nl
www.invesco.nl
prd.invesco.nl
www.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
www.invesco.nl
www.invesco.nl
institutional.invesco.nl
prd.legacy.invesco.nl
www.invesco.nl
www.invesco.nl
institutional.invesco.nl
www.invesco.nl
www.invesco.nl
uat.invesco.nl
www.invesco.nl
www.invesco.nl
www.invesco.nl
www.invesco.nl
institutional.invesco.nl
uat.invesco.nl
institutional.invesco.nl
www.invesco.nl
www.invesco.nl
www.invesco.nl
dev.invesco.nl
dev.invesco.nl
institutional.invesco.nl
www.invesco.nl
dev.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
institutional.invesco.nl
www.invesco.nl
prd.invesco.nl
www.invesco.nl
institutional.invesco.nl
www.invesco.nl
institutional.invesco.nl
www.invesco.nl
www.invesco.nl
institutional.invesco.nl
prd.legacy.invesco.nl
www.invesco.nl
www.invesco.nl
institutional.invesco.nl
www.invesco.nl
www.invesco.nl
uat.invesco.nl
www.invesco.nl
www.invesco.nl
www.invesco.nl
www.invesco.nl
institutional.invesco.nl
uat.invesco.nl
institutional.invesco.nl
www.invesco.nl
www.invesco.nl
Certificate
The complete raw certificate details for www.invesco.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG7DCCBdSgAwIBAgIQDyLFpg67jfp7bZE7zspQFTANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjQw MjA0MDAwMDAwWhcNMjUwMzA2MjM1OTU5WjBhMQswCQYDVQQGEwJVUzEQMA4GA1UE CBMHR2VvcmdpYTEQMA4GA1UEBxMHQXRsYW50YTEVMBMGA1UEChMMSW52ZXNjbyBM dGQuMRcwFQYDVQQDEw53d3cuaW52ZXNjby5ubDCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALKcb7aw5hcOCJaK9xkF3uOqiVSru2aTc0Bc4mJT5wqkTaGX 2QslvCPA/CZJiIswrQCb8xCtUm3mtqWtlofGd0EVg4+mBgINrUAxNKy0lWCfxQtr i8x6Qj+0ZGIlJ40EK/TwipV+yGsLIpe6jG9mlRLEWysXbF7ZCz3CamonATstN6HC J/42jLjdbdVhotmKzBKiRmoHhbyZZCMhVloLgumfHp7VQZAAnY1htNSMgHslxcai 13fc54XJEjLVw+Lvy/adcX053loXV2Y5LpYeT4Y7e6AOZk0H8cnB4eyvzhSQZYBV Hn2u/3SQxJfO2gnDUBWOzjwHrlD/B9UFPUWta0UCAwEAAaOCA6YwggOiMB8GA1Ud IwQYMBaAFHSFgMBmx9833s+9KTeqAx2+7c0XMB0GA1UdDgQWBBT245+kF2YxIHT2 p8oRNnRNYfve8TA1BgNVHREELjAsgg53d3cuaW52ZXNjby5ubIIKaW52ZXNjby5u bIIOcHJkLmludmVzY28ubmwwPgYDVR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEF BQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwgZ8GA1UdHwSBlzCBlDBI oEagRIZCaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0R2xvYmFsRzJU TFNSU0FTSEEyNTYyMDIwQ0ExLTEuY3JsMEigRqBEhkJodHRwOi8vY3JsNC5kaWdp Y2VydC5jb20vRGlnaUNlcnRHbG9iYWxHMlRMU1JTQVNIQTI1NjIwMjBDQTEtMS5j cmwwgYcGCCsGAQUFBwEBBHsweTAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGln aWNlcnQuY29tMFEGCCsGAQUFBzAChkVodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5j b20vRGlnaUNlcnRHbG9iYWxHMlRMU1JTQVNIQTI1NjIwMjBDQTEtMS5jcnQwDAYD VR0TAQH/BAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYATnWjJ1yaEMM4 W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGNdAVY+wAABAMARzBFAiEA+vA5P2D5 trF3pXJnWeIrGTqd/NrsaFOkMslRCX2sL+4CIF210WZ0YYIeevgIFvg79aIYHrUM WeTBlP1TF6YK1o2IAHUAVYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwA AAGNdAVZLwAABAMARjBEAiAE4X2GzBlakMcnT29oDDoszIyOg2md7Zy9tj9r92rT 9gIgZMr9f7QurlLxpczB9Cwla8St5ZGDJH2d/0wXkVRQeLkAdwB9WR4S4Xgqexxh Z3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAY10BViEAAAEAwBIMEYCIQCbVAHO/UcF Q7JBIWgN9R3NcZpKQuNUKXOKi1k5W93wAAIhAPcDto4EuTzdc23qqorr7Crr/Fo9 7wOgeIIxF9Re6KPDMA0GCSqGSIb3DQEBCwUAA4IBAQBkNeJ5r9C58lZWdDix0hal 1CYE5+D55H36eY2run4P8Pp1hb//oQlUCzNtHlpMfXgeVhmkVOnyH/aI8TAl+f2R 1AINIX7KsPILUv/YOuABU4qKY1a6YbpXD6VEk2b4BoV9j1mba9qzChCKTv6/RakP 5nqJlNaWLVEAfuf7evw0NeD/qhAv9ydlieP2V3yve3fhZLA40VFwjCMdWHnutgFX ifihvPuXvr0pNe/zDcXFdvonuJnkJKt4GzSRIAJoqhe+BU9MsweOb5l2+M1gUXIH jpOpS/1Y0AUK6/Rr3eKo0Ak0hxjOgNqcAh8SIMZAqxe51/9iHHySE9qWyrbnkOJC -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspxvtrDmFw4Ilor3GQXe 46qJVKu7ZpNzQFziYlPnCqRNoZfZCyW8I8D8JkmIizCtAJvzEK1Sbea2pa2Wh8Z3 QRWDj6YGAg2tQDE0rLSVYJ/FC2uLzHpCP7RkYiUnjQQr9PCKlX7Iawsil7qMb2aV EsRbKxdsXtkLPcJqaicBOy03ocIn/jaMuN1t1WGi2YrMEqJGageFvJlkIyFWWguC 6Z8entVBkACdjWG01IyAeyXFxqLXd9znhckSMtXD4u/L9p1xfTneWhdXZjkulh5P hjt7oA5mTQfxycHh7K/OFJBlgFUefa7/dJDEl87aCcNQFY7OPAeuUP8H1QU9Ra1r RQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20118966821090348719901495106562838549 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Georgia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Atlanta' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Invesco Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.invesco.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22547559938732465205602884630933382190870465037254320484887190871424178589547131834812892759568726005567654247720667938837026830837125670822992910002047150699055695301537275454334769115469652400487712849245240387563222381204709140293509209848136918978451489019714003358186003142866334771534166345449135306738303183885383173707572224574871192520601990476974477545221954748257205674915721316466689993661094759559910525655232584537092941737996329588475478489567791714886787538757021779934997111269271290191093339477661590973712359755548228600080890227061707352843388506187822904012661677550760041558416127028893234064197 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f6e39fa41766312074f6a7ca1136744d61fbdef1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.invesco.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'invesco.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prd.invesco.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 006435e279afd0b9f256567438b1d216a5d42604e7e0f9e47dfa798dabba7e0ff0fa7585bfffa109540b336d1e5a4c7d781e5619a454e9f21ff688f13025f9fd91d4020d217ecab0f20b52ffd83ae001538a8a6356ba61ba570fa5449366f806857d8f599b6bdab30a108a4efebf45a90fe67a8994d6962d51007ee7fb7afc3435e0ffaa102ff7276589e3f6577caf7b77e164b038d151708c231d5879eeb6015789f8a1bcfb97bebd2935eff30dc5c576fa27b899e424ab781b3491200268aa17be054f4cb3078e6f9976f8cd605172078e93a94bfd58d0050aebf46bdde2a8d009348718ce80da9c021f1220c640ab17b9d7ff621c7c9213da96cab6e790e242