ats2.nycboe.net
- New York City Board of Education -
Issued by Symantec Class 3 Secure Server SHA256 SSL CA
About this certificate
This digital certificate with serial number 70:d0:50:82:e4:9d:91:00:2b:cb:5d:ef:5f:40:4f:a6 was issued on by Symantec Corporation.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
- RSA: Public exponent SHOULD be in the range between 2^16 + 1 and 2^256 - 1 (BRs: 6.1.6)
New York City Board of Education
Organization:
New York City Board of Education
Organization unit: DoIIT
Organization unit: DoIIT
State / Province:
New York
Locality: Brooklyn
Country: US
Locality: Brooklyn
Country: US
Symantec Corporation
Organization:
Symantec Corporation
Organization unit: Symantec Trust Network
Organization unit: Symantec Trust Network
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 70:d0:50:82:e4:9d:91:00:2b:cb:5d:ef:5f:40:4f:a6Serial Number (int): 149955166237668309239200444723507515302
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: db:62:20:fb:7d:02:89:7c:d2:3b:6f:c7:e4:32:6c:05:52:1d:ad:b1
Fingerprint (sha1): 0f:b0:aa:a9:e8:48:31:80:9e:51:b0:3f:6e:1c:e3:91:75:5c:34:a7
Fingerprint (sha256): 94:53:99:a8:ab:c6:94:89:02:1f:08:b3:32:fc:b3:2c:79:7f:7a:8d:d7:ef:b4:2d:c8:36:dd:90:10:e0:a5:b7
Issuing Certificate URL: http://sg.symcb.com/sg.crt
Revocation information
OCSP Server: http://sg.symcd.comCRL Distribution Point: http://sg.symcb.com/sg.crl
Check the revocation status for certificate ats2.nycboe.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ats2.nycboe.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ats2.nycboe.net
Other certificates including the domain name nycboe.net
(limited to 100 certificates)
mail.nycboe.net
payrollportal.nycboe.net
payrollportal.nycboe.net
mail.nycboe.net
directory.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
learn-uat.nycboe.net
ihs.nycboe.net
ats2.nycboe.net
mail.nycboe.net
ats2.nycboe.net
payrollportal.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
maps.nycboe.net
mail.nycboe.net
ats2.nycboe.net
payrollportal.nycboe.net
mail.nycboe.net
*.nycboe.net
ats2.nycboe.net
ihs.nycboe.net
mail.nycboe.net
*.nycboe.net
*.nycboe.net
*.nycboe.net
ats2.nycboe.net
ats2.nycboe.net
ats2.nycboe.net
learn-uat.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
sip.schools.nyc.gov
mail.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
mail.nycboe.net
mail.nycboe.net
payrollportal.nycboe.net
payrollportal.nycboe.net
mail.nycboe.net
directory.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
learn-uat.nycboe.net
ihs.nycboe.net
ats2.nycboe.net
mail.nycboe.net
ats2.nycboe.net
payrollportal.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
maps.nycboe.net
mail.nycboe.net
ats2.nycboe.net
payrollportal.nycboe.net
mail.nycboe.net
*.nycboe.net
ats2.nycboe.net
ihs.nycboe.net
mail.nycboe.net
*.nycboe.net
*.nycboe.net
*.nycboe.net
ats2.nycboe.net
ats2.nycboe.net
ats2.nycboe.net
learn-uat.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
sip.schools.nyc.gov
mail.nycboe.net
*.nycboe.net
mail.nycboe.net
*.nycboe.net
mail.nycboe.net
mail.nycboe.net
Certificate
The complete raw certificate details for ats2.nycboe.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIQcNBQguSdkQAry13vX0BPpjANBgkqhkiG9w0BAQsFADCB hDELMAkGA1UEBhMCVVMxHTAbBgNVBAoTFFN5bWFudGVjIENvcnBvcmF0aW9uMR8w HQYDVQQLExZTeW1hbnRlYyBUcnVzdCBOZXR3b3JrMTUwMwYDVQQDEyxTeW1hbnRl YyBDbGFzcyAzIFNlY3VyZSBTZXJ2ZXIgU0hBMjU2IFNTTCBDQTAeFw0xNzAxMDYw MDAwMDBaFw0xODAxMDcyMzU5NTlaMIGIMQswCQYDVQQGEwJVUzERMA8GA1UECAwI TmV3IFlvcmsxETAPBgNVBAcMCEJyb29rbHluMSkwJwYDVQQKDCBOZXcgWW9yayBD aXR5IEJvYXJkIG9mIEVkdWNhdGlvbjEOMAwGA1UECwwFRG9JSVQxGDAWBgNVBAMM D2F0czIubnljYm9lLm5ldDCCASAwDQYJKoZIhvcNAQEBBQADggENADCCAQgCggEB AMtcLReC3tmPH1tqEIWzM7sXt0KpbdXOglHcIjlOe4t8ZiFTUgDkZtbyOVjjWqbB fqvet5cnSWxuVckCPEezy4CMSacs7yh4wL6OhrMT+hyu4Y/zCiETimFEY56E8NBI AEitV+huKoZI3lu6LNUvUwicx+vYnCQr6jnYqb6AZsPyr+BZ/tD1HE/O14XQ5R9g x2rL++v/g8J5vhMHkcJO429k+/6MseWdkFd1ipomqlnFn6oXKBxGwlzA9lOYEujz 9P7C3aP3TFR5lLbis/20MZJN7XqqWXMl2Ne9HzCiT8R7U7WeBpKBKfzP5fyCOtp6 8COnqGmZ9jf9G3qqrFea2ZUCAQOjggF5MIIBdTAaBgNVHREEEzARgg9hdHMyLm55 Y2JvZS5uZXQwCQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMGEGA1UdIARaMFgwVgYGZ4EMAQICMEwwIwYIKwYB BQUHAgEWF2h0dHBzOi8vZC5zeW1jYi5jb20vY3BzMCUGCCsGAQUFBwICMBkMF2h0 dHBzOi8vZC5zeW1jYi5jb20vcnBhMB8GA1UdIwQYMBaAFNtiIPt9Aol80jtvx+Qy bAVSHa2xMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly9zZy5zeW1jYi5jb20vc2cu Y3JsMFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcwAYYTaHR0cDovL3NnLnN5bWNk LmNvbTAmBggrBgEFBQcwAoYaaHR0cDovL3NnLnN5bWNiLmNvbS9zZy5jcnQwEwYK KwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAI1tBsg6Ip2+CeMg RuAUR9e8F9YE18As91zOj3wwkp7yPBEGKmXA1AGPLnqguysw16JUf/e4/eYfZi0A QUtNG/2F/rxVfSbg/kQiewRgywMn8BL91gfXmkgewymsmvcsYRwZN5BKTtvkerTH 3SYNQ1A2lpMNXlYxHlL0ehQom2AfDKplml/wXyToCecsrfpozMtlhl73FTSL7RHP fx31gQODIco9Jnp1X/9VAleOqQGYPl2YqEpV/IAZNXB6HEY36w/0ocfd8QzgBXIn PfMkCDnQR9SEG1qtu1yaiRxqXyfjj+vze5QJx2hWyfAHqF7MItqjNZ+seXOxTx/9 Ok54fOg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIDANBgkqhkiG9w0BAQEFAAOCAQ0AMIIBCAKCAQEAy1wtF4Le2Y8fW2oQhbMz uxe3Qqlt1c6CUdwiOU57i3xmIVNSAORm1vI5WONapsF+q963lydJbG5VyQI8R7PL gIxJpyzvKHjAvo6GsxP6HK7hj/MKIROKYURjnoTw0EgASK1X6G4qhkjeW7os1S9T CJzH69icJCvqOdipvoBmw/Kv4Fn+0PUcT87XhdDlH2DHasv76/+Dwnm+EweRwk7j b2T7/oyx5Z2QV3WKmiaqWcWfqhcoHEbCXMD2U5gS6PP0/sLdo/dMVHmUtuKz/bQx kk3teqpZcyXY170fMKJPxHtTtZ4GkoEp/M/l/II62nrwI6eoaZn2N/0beqqsV5rZ lQIBAw== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 149955166237668309239200444723507515302 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Class 3 Secure Server SHA256 SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-01-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Brooklyn' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'New York City Board of Education' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DoIIT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ats2.nycboe.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2144 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25671829656829615939126144424693259825094764377609852915744186856764931261712172446531578829358843009510979045160414861696962524862037276654002615968626126138546039850935349523797918904075722666294353451872699744699010849043933435908104679595130897600138641706309567725097067391697000619455799116371545560017637347016916765244484535355431510982158748772457510237467279318521665847366640154692918671445792019952534887004219038031510895015403023902566438001183324092609386977240806006003124092007498220842475082327745699031276578599971774552391550905817132383245397572241960796274068687126156358345794959524006884727189 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 3 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ats2.nycboe.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://d.symcb.com/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName db6220fb7d02897cd23b6fc7e4326c05521dadb1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sg.symcb.com/sg.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sg.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sg.symcb.com/sg.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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