www.kidney.ca
- Kidney Foundation of Canada -
Issued by GeoTrust SHA256 SSL CA
About this certificate
This digital certificate with serial number 2b:72:24:e1:c2:ee:fc:b6:a4:a6:ac:34:9c:17:e7:96 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Kidney Foundation of Canada
Organization:
Kidney Foundation of Canada
Organization unit: Hosting
Organization unit: Hosting
State / Province:
Quebec
Locality: Montreal
Country: CA
Locality: Montreal
Country: CA
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 2b:72:24:e1:c2:ee:fc:b6:a4:a6:ac:34:9c:17:e7:96Serial Number (int): 57749473714035659710062090074252109718
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 14:67:8e:ed:83:4f:d6:1e:9d:40:04:0c:04:46:a1:70:34:b2:0f:72
Fingerprint (sha1): 02:43:2d:02:99:8a:d7:04:50:d9:71:5b:60:b5:81:73:45:1f:54:f3
Fingerprint (sha256): 99:78:dc:3d:d5:e3:4b:39:71:92:b1:72:ce:6a:8f:03:8c:f7:ad:3f:98:20:b1:43:0c:cc:6a:e4:68:34:8c:5b
Issuing Certificate URL: http://gj.symcb.com/gj.crt
Revocation information
OCSP Server: http://gj.symcd.comCRL Distribution Point: http://gj.symcb.com/gj.crl
Check the revocation status for certificate www.kidney.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.kidney.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.kidney.ca
kidney.ca
kidney.ca
Other certificates including the domain name kidney.ca
(limited to 100 certificates)
newsletter.qc.kidney.ca
newsletter.qc.kidney.ca
kidney.ca
newsletter.qc.kidney.ca
www.kidney.ca
kidney.ca
www.kidney.ca
www.kidney.ca
newsletter.qc.kidney.ca
kidney.ca
www.kidney.ca
www.kidney.ca
newsletter.qc.kidney.ca
newsletter.qc.kidney.ca
www.kidney.ca
www.kidney.ca
www.kidney.ca
newsletter.qc.kidney.ca
www.kidney.ca
www.kidney.ca
newsletter.qc.kidney.ca
kidney.ca
newsletter.qc.kidney.ca
kidney.ca
newsletter.qc.kidney.ca
www.kidney.ca
kidney.ca
www.kidney.ca
www.kidney.ca
newsletter.qc.kidney.ca
kidney.ca
www.kidney.ca
www.kidney.ca
newsletter.qc.kidney.ca
newsletter.qc.kidney.ca
www.kidney.ca
www.kidney.ca
www.kidney.ca
newsletter.qc.kidney.ca
www.kidney.ca
www.kidney.ca
newsletter.qc.kidney.ca
kidney.ca
Certificate
The complete raw certificate details for www.kidney.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGgDCCBWigAwIBAgIQK3Ik4cLu/Lakpqw0nBfnljANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEfMB0GA1UEAxMW R2VvVHJ1c3QgU0hBMjU2IFNTTCBDQTAeFw0xNzAxMTcwMDAwMDBaFw0xOTAxMTcy MzU5NTlaMIGBMQswCQYDVQQGEwJDQTEPMA0GA1UECAwGUXVlYmVjMREwDwYDVQQH DAhNb250cmVhbDEkMCIGA1UECgwbS2lkbmV5IEZvdW5kYXRpb24gb2YgQ2FuYWRh MRAwDgYDVQQLDAdIb3N0aW5nMRYwFAYDVQQDDA13d3cua2lkbmV5LmNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpgvmCT8OK9xaATDCeA/ae4QD3Sk L240G+2aXV9YdKn7hwQcwASxxzqGuEvorNS7TY3moSFk3W+coaLeJY1udYNAeJsd TDOJT5r9uwOhEP7apGNcA47x+Ep2LooTbC87DwjEGtZL3/f4dgqzoyyFkzq8j4Eb +h6isaZFO31oVOJwMLIHUnKnhJz2D4Ofj0jakca38uR2z8PCzw08JXIyDwBU2RiB 9WYD2tN+rNhhuiseeqkz5atnZTiF7rrofFFeZDMtHqeJPlQ8sA+h7271IViCtEes CARO7Srdp/nnsYvePLOR5LgO0rSLc0wIZefEjlA2WNuQUwGanjIm7pgSSQIDAQAB o4IDLDCCAygwIwYDVR0RBBwwGoINd3d3LmtpZG5leS5jYYIJa2lkbmV5LmNhMAkG A1UdEwQCMAAwDgYDVR0PAQH/BAQDAgWgMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6 Ly9nai5zeW1jYi5jb20vZ2ouY3JsMIGdBgNVHSAEgZUwgZIwgY8GBmeBDAECAjCB hDA/BggrBgEFBQcCARYzaHR0cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNl cy9yZXBvc2l0b3J5L2xlZ2FsMEEGCCsGAQUFBwICMDUMM2h0dHBzOi8vd3d3Lmdl b3RydXN0LmNvbS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9sZWdhbDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0jBBgwFoAUFGeO7YNP1h6dQAQMBEah cDSyD3IwVwYIKwYBBQUHAQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8vZ2ouc3lt Y2QuY29tMCYGCCsGAQUFBzAChhpodHRwOi8vZ2ouc3ltY2IuY29tL2dqLmNydDCC AX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHcA3esdK3oNT6Ygi4GtgWhwfi6OnQHV XIiNPRHEzbbsvswAAAFZrUOQrwAABAMASDBGAiEAwjvfCOVOv1pFuvCL4gisnvGs K6dmFRSYVZ0H4y6pBIICIQCwzWg8pzSo5zsqYdvGoILhivPfXcnJwe5oDrOihVbj FgB1AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABWa1DkTIAAAQD AEYwRAIgQTiPuE+4ODEh6j+bZIzuZeW4dqTZubZciWsPcpnInooCICM1s79AOjpB rHbHD8yKemlLitYCNfHBuD9YfvU0XaJJAHYAvHjh38X2PGhGSTNNoQ+hXwl5aSAJ wIG08/aRfz7ZuKUAAAFZrUORpQAABAMARzBFAiBqQL+6jwlauvZmTWtBiNmhlwtP AShOjIJchmDz23zSewIhANnx+4Da8O4XDy6uSHPqRGYIJAXaU8U20krCvkKdF9gd MA0GCSqGSIb3DQEBCwUAA4IBAQC814EuAg9KerAGgFtPC4fwtVFJgAQ2Krj/jszh Su3Y4/MhXrg9qgyu2F97H8ElU/VuONDfsCU/Ut80BLwVgRRktxT77QxBX/8og0zq OZTjYPniOIogmrEAw0Crsns7SGQKlpIkw+lUBbmCtkFY3sRY9RQsIWxeSuVpAels NBZTrGLmHUP9PdY6BIgtclUyZtmThwY9VZ3Sd/cVd2nBfgzA/4dwVU8YYdJ1iECU khqp+sgC4FBGq6y88qTtEbehcJtyZFRup2K5tD9NbFhYwSxVTfAO69ed5sEx9U5w y7FGfB1BdMeeTBTWjfFwEIWQsjNuGWZEdMZkC9YKMgqpLEi/ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpgvmCT8OK9xaATDCeA/ ae4QD3SkL240G+2aXV9YdKn7hwQcwASxxzqGuEvorNS7TY3moSFk3W+coaLeJY1u dYNAeJsdTDOJT5r9uwOhEP7apGNcA47x+Ep2LooTbC87DwjEGtZL3/f4dgqzoyyF kzq8j4Eb+h6isaZFO31oVOJwMLIHUnKnhJz2D4Ofj0jakca38uR2z8PCzw08JXIy DwBU2RiB9WYD2tN+rNhhuiseeqkz5atnZTiF7rrofFFeZDMtHqeJPlQ8sA+h7271 IViCtEesCARO7Srdp/nnsYvePLOR5LgO0rSLc0wIZefEjlA2WNuQUwGanjIm7pgS SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 57749473714035659710062090074252109718 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SHA256 SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-01-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Quebec' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Montreal' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Kidney Foundation of Canada' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Hosting' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.kidney.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23050417175642872434163153402197908166332123115749759813622274383034977602521706703796288586508363223076725855514872507263323722446941450805308158261429271417637168604804206273579885445509134646372579279334085735462499624341498987930120565401502304912306866787351482918513433786565975629300377011129079871207558284986898296230793410472895611916615459989096417520925778293577440515795632147687257920124146210533916511732469537325534191964966248856345063340930115031525382662372563746857053700476627790044444423723993053191417831172676288687802413585527908465393361850935697884003924361425937972252024657561955706868297 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kidney.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kidney.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gj.symcb.com/gj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 14678eed834fd61e9d40040c0446a17034b20f72 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gj.symcb.com/gj.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00bcd7812e020f4a7ab006805b4f0b87f0b551498004362ab8ff8ecce14aedd8e3f3215eb83daa0caed85f7b1fc12553f56e38d0dfb0253f52df3404bc15811464b714fbed0c415fff28834cea3994e360f9e2388a209ab100c340abb27b3b48640a969224c3e95405b982b64158dec458f5142c216c5e4ae56901e96c341653ac62e61d43fd3dd63a04882d72553266d99387063d559dd277f7157769c17e0cc0ff8770554f1861d275884094921aa9fac802e05046abacbcf2a4ed11b7a1709b7264546ea762b9b43f4d6c5858c12c554df00eebd79de6c131f54e70cbb1467c1d4174c79e4c14d68df170108590b2336e19664474c6640bd60a320aa92c48bf