sso.zgt.de
- FUNKE Corporate IT GmbH -
Issued by thawte SSL CA - G2
About this certificate
This digital certificate with serial number 11:ce:49:16:43:a2:bf:76:3d:9b:67:b0:25:0f:5f:a7 was issued on by thawte, Inc..
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
FUNKE Corporate IT GmbH
Organization:
FUNKE Corporate IT GmbH
Organization unit: Netzwerk und Sicherheit
Organization unit: Netzwerk und Sicherheit
State / Province:
Nordrhein-Westfalen
Locality: Essen
Country: DE
Locality: Essen
Country: DE
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 11:ce:49:16:43:a2:bf:76:3d:9b:67:b0:25:0f:5f:a7Serial Number (int): 23667971461054632010559351670659047335
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60
Fingerprint (sha1): f6:5e:8e:51:ac:e5:33:e6:1a:5a:0e:42:62:77:68:b1:91:45:21:b0
Fingerprint (sha256): a0:5a:68:af:48:5d:e3:01:d7:6f:65:0a:c0:07:2d:14:5c:57:91:d1:c7:85:51:7f:d0:8f:8a:b7:b6:ce:88:26
Issuing Certificate URL: http://tj.symcb.com/tj.crt
Revocation information
OCSP Server: http://tj.symcd.comCRL Distribution Point: http://tj.symcb.com/tj.crl
Check the revocation status for certificate sso.zgt.de
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sso.zgt.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sso.thueringer-allgemeine.de
sso.tlz.de
sso.otz.de
sso.mediengruppe-thueringen.de
sso.zgt.de
sso.tlz.de
sso.otz.de
sso.mediengruppe-thueringen.de
sso.zgt.de
Other certificates including the domain name zgt.de
(limited to 100 certificates)
sso.zgt.de
secure.zgt.de
mediaservice.zgt.de
*.zgt.de
sso.zgt.de
anzeigen.thueringer-allgemeine.de
anzeigen.thueringer-allgemeine.de
*.services.extern.zgt.de
lesershop.zgt.de
media101.zgt.de
extranet.zgt.de
*.zgt.de
mediaservice.zgt.de
secure.zgt.de
sso.zgt.de
*.zgt.de
sso.zgt.de
lesershop.zgt.de
anzeigen.thueringer-allgemeine.de
extranet.zgt.de
*.services.extern.zgt.de
sso.zgt.de
*.zgt.de
anzeigen.thueringer-allgemeine.de
secure.zgt.de
selligentdata.services.extern.zgt.de
sso.zgt.de
extranet.zgt.de
bestatter.zgt.de
*.zgt.de
sso.funkemedien.de
mediaservice.zgt.de
bestatter.zgt.de
sso.zgt.de
*.services.extern.zgt.de
sso.funkemedien.de
*.zgt.de
anzeigen.thueringer-allgemeine.de
newsapp.services.extern.zgt.de
extranet.zgt.de
*.zgt.de
sso.funkemedien.de
*.zgt.de
media101.zgt.de
anzeigen.thueringer-allgemeine.de
media101.zgt.de
anzeigen.thueringer-allgemeine.de
*.services.extern.zgt.de
secure.zgt.de
mediaservice.zgt.de
*.zgt.de
sso.zgt.de
anzeigen.thueringer-allgemeine.de
anzeigen.thueringer-allgemeine.de
*.services.extern.zgt.de
lesershop.zgt.de
media101.zgt.de
extranet.zgt.de
*.zgt.de
mediaservice.zgt.de
secure.zgt.de
sso.zgt.de
*.zgt.de
sso.zgt.de
lesershop.zgt.de
anzeigen.thueringer-allgemeine.de
extranet.zgt.de
*.services.extern.zgt.de
sso.zgt.de
*.zgt.de
anzeigen.thueringer-allgemeine.de
secure.zgt.de
selligentdata.services.extern.zgt.de
sso.zgt.de
extranet.zgt.de
bestatter.zgt.de
*.zgt.de
sso.funkemedien.de
mediaservice.zgt.de
bestatter.zgt.de
sso.zgt.de
*.services.extern.zgt.de
sso.funkemedien.de
*.zgt.de
anzeigen.thueringer-allgemeine.de
newsapp.services.extern.zgt.de
extranet.zgt.de
*.zgt.de
sso.funkemedien.de
*.zgt.de
media101.zgt.de
anzeigen.thueringer-allgemeine.de
media101.zgt.de
anzeigen.thueringer-allgemeine.de
*.services.extern.zgt.de
Certificate
The complete raw certificate details for sso.zgt.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGKzCCBROgAwIBAgIQEc5JFkOiv3Y9m2ewJQ9fpzANBgkqhkiG9w0BAQsFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMRswGQYDVQQDExJ0 aGF3dGUgU1NMIENBIC0gRzIwHhcNMTYxMjE2MDAwMDAwWhcNMTcxMjE2MjM1OTU5 WjCBlDELMAkGA1UEBhMCREUxHDAaBgNVBAgME05vcmRyaGVpbi1XZXN0ZmFsZW4x DjAMBgNVBAcMBUVzc2VuMSAwHgYDVQQKDBdGVU5LRSBDb3Jwb3JhdGUgSVQgR21i SDEgMB4GA1UECwwXTmV0endlcmsgdW5kIFNpY2hlcmhlaXQxEzARBgNVBAMMCnNz by56Z3QuZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8l63SbW7h RjCXVMrKivrcqObTr2uu3fboIoGreJReTNejha/SeQwy8NPS04qXrJQy+RIfzylS QMFQhl4HBRvIT6bkWpns6hsx8y/GwM2s99hWZ0eh4d/3FBZwBbtJuOt18NiOUnt0 dEkmjqbr0fIVt8VNfK0k90+qfnqY0jiNJGBMlsFZhvgxv0NnHyVPD4cJuWUziUDU AjXJ5KoB88Q7wV80mxBWjfi6bSHAfDf2ys5+1/69i3q/z7Pzj0IhTFH99HQyd3H0 3hH1bOJN8NXHh5uuCxmCNcNCs0GB8Y4HlBtaLCPGq65xVrAWQY5FOsdiyPzZT4Vg 5J2Ys5J0XF1zAgMBAAGjggLJMIICxTBrBgNVHREEZDBighxzc28udGh1ZXJpbmdl ci1hbGxnZW1laW5lLmRlggpzc28udGx6LmRlggpzc28ub3R6LmRlgh5zc28ubWVk aWVuZ3J1cHBlLXRodWVyaW5nZW4uZGWCCnNzby56Z3QuZGUwCQYDVR0TBAIwADBu BgNVHSAEZzBlMGMGBmeBDAECAjBZMCYGCCsGAQUFBwIBFhpodHRwczovL3d3dy50 aGF3dGUuY29tL2NwczAvBggrBgEFBQcCAjAjDCFodHRwczovL3d3dy50aGF3dGUu Y29tL3JlcG9zaXRvcnkwDgYDVR0PAQH/BAQDAgWgMB8GA1UdIwQYMBaAFMJPSFf8 0U+awF04fQ4F29kutVJgMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly90ai5zeW1j Yi5jb20vdGouY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBXBggr BgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly90ai5zeW1jZC5jb20wJgYI KwYBBQUHMAKGGmh0dHA6Ly90ai5zeW1jYi5jb20vdGouY3J0MIIBAwYKKwYBBAHW eQIEAgSB9ASB8QDvAHUA3esdK3oNT6Ygi4GtgWhwfi6OnQHVXIiNPRHEzbbsvswA AAFZCEWwugAABAMARjBEAiBHZ2+GllH+CJSTHlDAiWcQSPASZ8R+zsyylJmy2mkB pQIgbYTSp5zRgtZaT9iZX+N7oxIA1mlozGl44ZRYjLrhEE0AdgDuS723dc5guuFC aR+r4Z5mow9+X7By2IMAxHuJeqj9ywAAAVkIRbD6AAAEAwBHMEUCIQDdD6D6SUVz 0oGufb5CcWAxiRLrx//+4gI4a954vTzD4gIgOS+WaLOcx4w0rtOuIcaoJFLyI0Su PgTCQz7LecBK4bcwDQYJKoZIhvcNAQELBQADggEBAHD6vzHuE8hnXWWelmmBAcbR y45JZ5lTYOWyi3fOJiHF5OTqHkk64tAHUNvnAa2mkYqKfdhZR/HtmUV57x6yT+2R caRf7rHcKyFFrbSlKES7sy5QtVSWq6s5kQaqxsNwJea7Mepy1yQWTF4dlQw+2C3S UxFHOBl/4j6dC/9uqnAR3o1U+Kv/PigVdJqZfjATZUPdm5LUKCAFQ0Z91bP1/gs8 d+kMwhtaxWpjOtym/ctKkXYp+Y+FlX1Z8vkWBp8QEaebpkZyLY0dztHp7Q3yuCeu 7W8apPB4cDNpesGh2+G52vDk/zSQSyAXBFnZVSqxuDYqTRMgfO8oZ30Mz49pPSI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJet0m1u4UYwl1TKyor6 3Kjm069rrt326CKBq3iUXkzXo4Wv0nkMMvDT0tOKl6yUMvkSH88pUkDBUIZeBwUb yE+m5FqZ7OobMfMvxsDNrPfYVmdHoeHf9xQWcAW7SbjrdfDYjlJ7dHRJJo6m69Hy FbfFTXytJPdPqn56mNI4jSRgTJbBWYb4Mb9DZx8lTw+HCbllM4lA1AI1yeSqAfPE O8FfNJsQVo34um0hwHw39srOftf+vYt6v8+z849CIUxR/fR0Mndx9N4R9WziTfDV x4ebrgsZgjXDQrNBgfGOB5QbWiwjxquucVawFkGORTrHYsj82U+FYOSdmLOSdFxd cwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 23667971461054632010559351670659047335 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Nordrhein-Westfalen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Essen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'FUNKE Corporate IT GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Netzwerk und Sicherheit' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'sso.zgt.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23807597032306482786747243936148952950973818097119243475598198373782717140285545804351769052930552784267080207691763517524752238523791236673286192169828107433754549412235244880735402329191702496491527759806364513305039706644242656248955431905480248365583653606834774588372542466111953741260436350122514184905937778271810569022858033192559135427656502549391777646812952359285302261747187912989295822032650389127351875809598985911021416521842063633007427141812619431939792098701370615724896936917340562622055286430325254206786379395043617839549040846376813997778387212714481127955220188377374079520735058053083434868083 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sso.thueringer-allgemeine.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sso.tlz.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sso.otz.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sso.mediengruppe-thueringen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sso.zgt.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc000001590845b0ba0000040300463044022047676f869651fe0894931e50c089671048f01267c47ececcb29499b2da6901a502206d84d2a79cd182d65a4fd8995fe37ba31200d66968cc6978e194588cbae1104d007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb000001590845b0fa0000040300473045022100dd0fa0fa494573d281ae7dbe427160318912ebc7fffee202386bde78bd3cc3e20220392f9668b39cc78c34aed3ae21c6a82452f22344ae3e04c2433ecb79c04ae1b7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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