query.nicd.ac.za
- NATIONAL HEALTH LABORATORY SERVICES -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 07:b7:20:10:3d:22:73:ae:8d:2e:72:11:f4:55:42:29 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
NATIONAL HEALTH LABORATORY SERVICES
Organization:
NATIONAL HEALTH LABORATORY SERVICES
Organization unit: IT
Organization unit: IT
Locality:
Johannesburg
Country: ZA
Country: ZA
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:b7:20:10:3d:22:73:ae:8d:2e:72:11:f4:55:42:29Serial Number (int): 10255436619284437017051837507483025961
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 6f:7c:6d:69:94:a5:57:43:ea:65:50:76:d4:78:e3:23:9d:0c:36:0c
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 2e:4c:c3:98:47:78:d8:33:2c:af:61:92:2c:9f:b1:2c:94:b4:01:70
Fingerprint (sha256): a3:75:b4:71:52:32:af:7f:c2:ce:60:34:1f:33:ad:84:2a:87:28:f2:9c:ec:74:2a:7e:e2:a7:44:23:55:3b:90
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate query.nicd.ac.za
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for query.nicd.ac.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
query.nicd.ac.za
Other certificates including the domain name nicd.ac.za
(limited to 100 certificates)
doctors.mycure.md
ptschemes.nicd.ac.za
webmail.nicd.ac.za
securelogin.nicd.ac.za
webmail.nicd.ac.za
www.weaknesswork.com
nicdbramowas.nicd.ac.za
survey.nicd.ac.za
gis.nicd.ac.za
*.nicd.ac.za
wastewater.nicd.ac.za
www.gamasoft.co.uk
*.nicd.ac.za
securelogin.nicd.ac.za
sandexweb.nicd.ac.za
webmail.nicd.ac.za
nicdeocvcse01.nicd.ac.za
*.nicd.ac.za
legacy.nicd.ac.za
sandae.nicd.ac.za
autodiscover.nicd.ac.za
*.nicd.ac.za
download.nicd.ac.za
mstrmobile.nicd.ac.za
bramexweb.nicd.ac.za
query.nicd.ac.za
www.salavirtual.retransmision.mx
nicdsandowas.nicd.ac.za
ptschemes.nicd.ac.za
ptschemes.nicd.ac.za
securelogin.nicd.ac.za
webmail.nicd.ac.za
gis.nicd.ac.za
www.foodiebot.recipes
query.nicd.ac.za
webmail.nicd.ac.za
autodiscover.nicd.ac.za
download.nicd.ac.za
ptschemes.nicd.ac.za
webmail.nicd.ac.za
autodiscover.nicd.ac.za
laviwoodsculpting.com
webmail.nicd.ac.za
nicdeocvcsc01.nicd.ac.za
autodiscover.nicd.ac.za
legacy.nicd.ac.za
sandexweb.nicd.ac.za
www.korley.net
sandexweb.nicd.ac.za
bramae.nicd.ac.za
app.bridgetownresearch.org
ptschemes.nicd.ac.za
webmail.nicd.ac.za
securelogin.nicd.ac.za
webmail.nicd.ac.za
www.weaknesswork.com
nicdbramowas.nicd.ac.za
survey.nicd.ac.za
gis.nicd.ac.za
*.nicd.ac.za
wastewater.nicd.ac.za
www.gamasoft.co.uk
*.nicd.ac.za
securelogin.nicd.ac.za
sandexweb.nicd.ac.za
webmail.nicd.ac.za
nicdeocvcse01.nicd.ac.za
*.nicd.ac.za
legacy.nicd.ac.za
sandae.nicd.ac.za
autodiscover.nicd.ac.za
*.nicd.ac.za
download.nicd.ac.za
mstrmobile.nicd.ac.za
bramexweb.nicd.ac.za
query.nicd.ac.za
www.salavirtual.retransmision.mx
nicdsandowas.nicd.ac.za
ptschemes.nicd.ac.za
ptschemes.nicd.ac.za
securelogin.nicd.ac.za
webmail.nicd.ac.za
gis.nicd.ac.za
www.foodiebot.recipes
query.nicd.ac.za
webmail.nicd.ac.za
autodiscover.nicd.ac.za
download.nicd.ac.za
ptschemes.nicd.ac.za
webmail.nicd.ac.za
autodiscover.nicd.ac.za
laviwoodsculpting.com
webmail.nicd.ac.za
nicdeocvcsc01.nicd.ac.za
autodiscover.nicd.ac.za
legacy.nicd.ac.za
sandexweb.nicd.ac.za
www.korley.net
sandexweb.nicd.ac.za
bramae.nicd.ac.za
app.bridgetownresearch.org
Certificate
The complete raw certificate details for query.nicd.ac.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG8jCCBdqgAwIBAgIQB7cgED0ic66NLnIR9FVCKTANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTgwMjAyMDAwMDAwWhcNMjEwMjAxMTIwMDAwWjB6MQswCQYDVQQGEwJaQTEVMBMG A1UEBxMMSm9oYW5uZXNidXJnMSwwKgYDVQQKEyNOQVRJT05BTCBIRUFMVEggTEFC T1JBVE9SWSBTRVJWSUNFUzELMAkGA1UECxMCSVQxGTAXBgNVBAMTEHF1ZXJ5Lm5p Y2QuYWMuemEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtT3x4/qd0 GvbmO1BmcipljApL72A3koVgxDaWKeA7F1MdAh7mvK6IcA+VgTFqfM13Mo+8gqqx xyIJ9LWEvTaI6e4JcfW+a8fWo7wzdrF0lG0ThgDnp3KMOPTy5mXK7ZEG8byKTaCC dCrjCvIFjX8gWXwlaowiOXr9tkbCFK2zBKrDfPR9E1nV+gm1FvvUrz6Bdz39OpF2 XoiVDzC84OFKFBq8GI3J86WVmSrx8XswBXXHr25UTL1P0XsQE5ujNctKd5jex3F7 2ShKNnPI6p7ESVB1xF8pc0b4lV2dXfpP07NPdR0Dfg8Zr7YDwmxJDo6LPcdtd7/H mbnHq8jNruLfAgMBAAGjggOQMIIDjDAfBgNVHSMEGDAWgBSjyF5lVOUweMEF6gcK alnMuf7eWjAdBgNVHQ4EFgQUb3xtaZSlV0PqZVB21HjjI50MNgwwGwYDVR0RBBQw EoIQcXVlcnkubmljZC5hYy56YTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMDoGA1UdHwQzMDEwL6AtoCuGKWh0dHA6Ly9jZHAu dGhhd3RlLmNvbS9UaGF3dGVSU0FDQTIwMTguY3JsMEwGA1UdIARFMEMwNwYJYIZI AYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9D UFMwCAYGZ4EMAQICMG8GCCsGAQUFBwEBBGMwYTAkBggrBgEFBQcwAYYYaHR0cDov L3N0YXR1cy50aGF3dGUuY29tMDkGCCsGAQUFBzAChi1odHRwOi8vY2FjZXJ0cy50 aGF3dGUuY29tL1RoYXd0ZVJTQUNBMjAxOC5jcnQwCQYDVR0TBAIwADCCAfYGCisG AQQB1nkCBAIEggHmBIIB4gHgAHYApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fN DsgN3BAAAAFhViPpMwAABAMARzBFAiEA7Kg/KuyGseHY1sf5MjEjtV6xH+OPeDf6 GfARocPMKuECID/pXq4qNZGrUQL3HhsaSCu13cpcyN8yETewnps1pYUvAHYAh3W/ 51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq/16ggw8AAAFhViPp5QAABAMARzBFAiA7 Mbd2BsKlbwZAvKOOg8wDJCX8Q+CuOphYhaIsQg47CwIhAK+hoPHF1zYn2580o0d+ vj/NVD5jV6l6+WsAtMqove6RAHYAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZk No4e0YUAAAFhViPpWQAABAMARzBFAiA0ZGB0hNweuxUZcgXWBtQklPS+mW4hvl1Y WcJwpV7jogIhAMToTWzHJP3HqctrWqrMe2KMcaf3d0SutBU8X2LY6XDaAHYAb1N2 rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFhViPsCgAABAMARzBFAiEA 2lLsU4on/Fm8LTyCFELWoV7OY0+Al8HaMbUdgSRTYwkCIEY1ApQgEcZ7KyUe3APy xE9nwWHiFQXSpjtFXieqNF/IMA0GCSqGSIb3DQEBCwUAA4IBAQBfyb7o1Ljs9S0q g7I++phx9z8sAxQOXnXcS7FBhzDjvaD9v/tYPgqaLOY/41aPRC72qy7oKutBaWZd P44ai0ckMrG3iicK0CVO8r92uZugAPE9QAT7f89j15suUp8dr88ZEs3dLLd/FE23 NI+ESjwUqUpPhsCgutxizqHxZwvUTd0xjJmBkZRpqh7NLoRc8yLeFKbTtx1LYm0s sXzALpf7WOuncbPce4qRrQHZ+ijt7STIvGVrA3mSmJYaRqzrrL0R1aZh424J5HYQ R+T0mTGkJ3DcPCF5fgqgTRm1LBRDhtP/p3FUhX+C8Z03k7Wql8ou81tRfmCgLMJZ +6Y6ubL1 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArU98eP6ndBr25jtQZnIq ZYwKS+9gN5KFYMQ2lingOxdTHQIe5ryuiHAPlYExanzNdzKPvIKqscciCfS1hL02 iOnuCXH1vmvH1qO8M3axdJRtE4YA56dyjDj08uZlyu2RBvG8ik2ggnQq4wryBY1/ IFl8JWqMIjl6/bZGwhStswSqw3z0fRNZ1foJtRb71K8+gXc9/TqRdl6IlQ8wvODh ShQavBiNyfOllZkq8fF7MAV1x69uVEy9T9F7EBObozXLSneY3sdxe9koSjZzyOqe xElQdcRfKXNG+JVdnV36T9OzT3UdA34PGa+2A8JsSQ6Oiz3HbXe/x5m5x6vIza7i 3wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10255436619284437017051837507483025961 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-01 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Johannesburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NATIONAL HEALTH LABORATORY SERVICES' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'query.nicd.ac.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21878422875677529633505834885680606884594585619749223333091519646582489058963823439300711407711092278518668115096531056996507303043582661267703093201509119903492270159343334760961064299470258017515904929169906186458583719711526423502562670544086981123850408585390389336564578856381812367609442276245707350974415852773337874424690158306836015374166351589707525933225028849566725616107900914787710763257192152363812092530046139627568305320285118937203580045355483632460974721003787951373408985479043807719461021455217273505040792076516271799339295315334829395192827186076399886376045604787732607794213741245071801377503 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6f7c6d6994a55743ea655076d478e3239d0c360c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'query.nicd.ac.za' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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