*.okdiario.com
- DOS MIL PALABRAS SL. -
Issued by GlobalSign Organization Validation CA - SHA256 - G2
About this certificate
This digital certificate with serial number 2a:bc:d0:ab:0e:e8:8b:eb:c6:d7:00:11 was issued on by GlobalSign nv-sa.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)
DOS MIL PALABRAS SL.
Organization:
DOS MIL PALABRAS SL.
State / Province:
Madrid
Locality: Madrid
Country: ES
Locality: Madrid
Country: ES
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 2a:bc:d0:ab:0e:e8:8b:eb:c6:d7:00:11Serial Number (int): 13226633874279979017720758289
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: f2:96:ad:34:a9:20:40:62:d0:f0:2e:57:cd:c6:db:91:b2:40:05:78
AuthorityKeyId: 96:de:61:f1:bd:1c:16:29:53:1c:c0:cc:7d:3b:83:00:40:e6:1a:7c
Fingerprint (sha1): 6a:c5:02:2c:f6:7c:66:ad:0a:db:9c:94:0f:84:ec:72:51:70:ba:0d
Fingerprint (sha256): a4:21:aa:2a:a6:6a:5e:fd:8a:73:4f:4c:27:78:01:f8:f6:86:b4:a7:2d:05:81:1e:c4:4e:7d:5a:df:3a:13:0f
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsorganizationvalsha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsorganizationvalsha2g2Check the revocation status for certificate *.okdiario.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.okdiario.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.okdiario.com
okdiario.com
okdiario.com
Other certificates including the domain name okdiario.com
(limited to 100 certificates)
vibes.okdiario.com
*.okdiario.com
ssl368696.cloudflaressl.com
sni.cloudflaressl.com
*.okdiario.com
support.intercityxpress.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
dogs.danby.ny.gov
ssl368695.cloudflaressl.com
cdn.arkadiumhosted.com
billing.embark.fm
cdn.arkadiumhosted.com
ssl368695.cloudflaressl.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
ssl368694.cloudflaressl.com
plans.flowgardeners.com
*.okdiario.com
cdn.arkadiumhosted.com
ssl368696.cloudflaressl.com
subscriptions.wstwn.com
cdn.arkadiumhosted.com
*.okdiario.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
support.techprosecurity.com
inconformistas-area.okdiario.com
pre.portadas.okdiario.com
inconformistas.okdiario.com
ssl368695.cloudflaressl.com
cdn.arkadiumhosted.com
jayash.me.musegravity.com
ssl368695.cloudflaressl.com
ssl368696.cloudflaressl.com
cdn.arkadiumhosted.com
help.bidorbuy.co.za
*.okdiario.com
subscripciones.lkv.cl
billing.ipfy.com
cdn.arkadiumhosted.com
jayash.me.musegravity.com
cdn.arkadiumhosted.com
sni.cloudflaressl.com
subscripciones.lkv.cl
inconformistas-dev.okdiario.com
cdn.arkadiumhosted.com
*.okdiario.com
subscription.eklavvya.com
inconformistas-dev.okdiario.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
ssl368694.cloudflaressl.com
inconformistas.okdiario.com
cdn.arkadiumhosted.com
vibes.okdiario.com
ssl368695.cloudflaressl.com
inconformistas-area.okdiario.com
pre.okjuridico.okdiario.com
ssl368694.cloudflaressl.com
pre.usuarios.okdiario.com
ssl368694.cloudflaressl.com
subscriptions.cabmastersoftware.com
jayash.me.musegravity.com
*.okdiario.com
support.proovstation.com
billing.forgestop.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
sni.cloudflaressl.com
sni.cloudflaressl.com
okdiario.com
cdn.arkadiumhosted.com
billing.smartsp.es
jayash.me.musegravity.com
pre.diariomadridista.okdiario.com
bolsa.okdiario.com
cdn.arkadiumhosted.com
pre.look.okdiario.com
cdn.arkadiumhosted.com
help.turnsapp.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
jayash.me.musegravity.com
*.okdiario.com
ssl368695.cloudflaressl.com
jayash.me.musegravity.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
pre.look.okdiario.com
*.okdiario.com
cdn.arkadiumhosted.com
subscriptions.digistax.com
tienda.okdiario.com
cdn.arkadiumhosted.com
billing.incthr.com
cdn.arkadiumhosted.com
ssl368696.cloudflaressl.com
ssl368696.cloudflaressl.com
cdn.arkadiumhosted.com
*.okdiario.com
ssl368696.cloudflaressl.com
sni.cloudflaressl.com
*.okdiario.com
support.intercityxpress.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
dogs.danby.ny.gov
ssl368695.cloudflaressl.com
cdn.arkadiumhosted.com
billing.embark.fm
cdn.arkadiumhosted.com
ssl368695.cloudflaressl.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
ssl368694.cloudflaressl.com
plans.flowgardeners.com
*.okdiario.com
cdn.arkadiumhosted.com
ssl368696.cloudflaressl.com
subscriptions.wstwn.com
cdn.arkadiumhosted.com
*.okdiario.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
support.techprosecurity.com
inconformistas-area.okdiario.com
pre.portadas.okdiario.com
inconformistas.okdiario.com
ssl368695.cloudflaressl.com
cdn.arkadiumhosted.com
jayash.me.musegravity.com
ssl368695.cloudflaressl.com
ssl368696.cloudflaressl.com
cdn.arkadiumhosted.com
help.bidorbuy.co.za
*.okdiario.com
subscripciones.lkv.cl
billing.ipfy.com
cdn.arkadiumhosted.com
jayash.me.musegravity.com
cdn.arkadiumhosted.com
sni.cloudflaressl.com
subscripciones.lkv.cl
inconformistas-dev.okdiario.com
cdn.arkadiumhosted.com
*.okdiario.com
subscription.eklavvya.com
inconformistas-dev.okdiario.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
ssl368694.cloudflaressl.com
inconformistas.okdiario.com
cdn.arkadiumhosted.com
vibes.okdiario.com
ssl368695.cloudflaressl.com
inconformistas-area.okdiario.com
pre.okjuridico.okdiario.com
ssl368694.cloudflaressl.com
pre.usuarios.okdiario.com
ssl368694.cloudflaressl.com
subscriptions.cabmastersoftware.com
jayash.me.musegravity.com
*.okdiario.com
support.proovstation.com
billing.forgestop.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
sni.cloudflaressl.com
sni.cloudflaressl.com
okdiario.com
cdn.arkadiumhosted.com
billing.smartsp.es
jayash.me.musegravity.com
pre.diariomadridista.okdiario.com
bolsa.okdiario.com
cdn.arkadiumhosted.com
pre.look.okdiario.com
cdn.arkadiumhosted.com
help.turnsapp.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
jayash.me.musegravity.com
*.okdiario.com
ssl368695.cloudflaressl.com
jayash.me.musegravity.com
cdn.arkadiumhosted.com
cdn.arkadiumhosted.com
pre.look.okdiario.com
*.okdiario.com
cdn.arkadiumhosted.com
subscriptions.digistax.com
tienda.okdiario.com
cdn.arkadiumhosted.com
billing.incthr.com
cdn.arkadiumhosted.com
ssl368696.cloudflaressl.com
ssl368696.cloudflaressl.com
cdn.arkadiumhosted.com
Certificate
The complete raw certificate details for *.okdiario.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGeDCCBWCgAwIBAgIMKrzQqw7oi+vG1wARMA0GCSqGSIb3DQEBCwUAMGYxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTwwOgYDVQQDEzNH bG9iYWxTaWduIE9yZ2FuaXphdGlvbiBWYWxpZGF0aW9uIENBIC0gU0hBMjU2IC0g RzIwHhcNMjIwMTAzMTUxMzQyWhcNMjMwMjA0MTUxMzQyWjBnMQswCQYDVQQGEwJF UzEPMA0GA1UECBMGTWFkcmlkMQ8wDQYDVQQHEwZNYWRyaWQxHTAbBgNVBAoTFERP UyBNSUwgUEFMQUJSQVMgU0wuMRcwFQYDVQQDDA4qLm9rZGlhcmlvLmNvbTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMZbSabm+odSas5leF7wGdiMfb6G E/kMHfu1FSz9lAXL1Dv7Av1qxpPfcYCLsdSDpZ4AXbiB7OhomJTalDEW0BXI9RF8 ZQNY5kYAQ9DLiQei4oNZrscKNVOAz0267XF41eme01OLz4Fl5C9lCtvJTLYIe/v0 VeRO+WT/ceBlP03GVhMgSCtjE4xlQEFPqzFMlidZgzwbHAQBsw8bneovLnHQ0a7X BO0xp5HQz9WCFVP8MIuiUPrxMa7NkTZNWg2aBpTQLhcbgsc64/l1EMP6OLHUj2i4 2UxptK7PQGfM73x80WisN2Vw0xZgbVV5/Z1/P4rQAFpS9jzEFg4VOQho1XsCAwEA AaOCAyMwggMfMA4GA1UdDwEB/wQEAwIFoDCBoAYIKwYBBQUHAQEEgZMwgZAwTQYI KwYBBQUHMAKGQWh0dHA6Ly9zZWN1cmUuZ2xvYmFsc2lnbi5jb20vY2FjZXJ0L2dz b3JnYW5pemF0aW9udmFsc2hhMmcycjEuY3J0MD8GCCsGAQUFBzABhjNodHRwOi8v b2NzcDIuZ2xvYmFsc2lnbi5jb20vZ3Nvcmdhbml6YXRpb252YWxzaGEyZzIwVgYD VR0gBE8wTTBBBgkrBgEEAaAyARQwNDAyBggrBgEFBQcCARYmaHR0cHM6Ly93d3cu Z2xvYmFsc2lnbi5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQICMAkGA1UdEwQCMAAw JwYDVR0RBCAwHoIOKi5va2RpYXJpby5jb22CDG9rZGlhcmlvLmNvbTAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0jBBgwFoAUlt5h8b0cFilTHMDM fTuDAEDmGnwwHQYDVR0OBBYEFPKWrTSpIEBi0PAuV83G25GyQAV4MIIBfQYKKwYB BAHWeQIEAgSCAW0EggFpAWcAdQDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp4Xd9 bQa9bgAAAX4ggORRAAAEAwBGMEQCIDt2V5lC2ebZ0z0d/kGLDFoaKHobwUhPyDGd Q9n1nwo8AiBeuhmnDm/B0vq6MDwWs8mJWmXExkEMx02TtqBXFNj4+wB3AG9Tdqwx 8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABfiCA4zAAAAQDAEgwRgIhAN4q S9YgpMN1IyOCELwggE0fQS3GrFr2W1/fpf1I21q/AiEA1b41tt8yqXfD0nrL4SqX o+hcHJv0yVPCu/LiymMrksIAdQA1zxkbv7FsV78PrUxtQsu7ticgJlHqP+Eq76gD wzvWTAAAAX4ggOR6AAAEAwBGMEQCIGJDzf80MhhHGSP8zCXhzcU3qeuM9hkS0j+G UNJU6ObBAiAzLHw+A8Aavpa8kLSXxcIso/JF95Fhx7Nr3NmnoqA7ZDANBgkqhkiG 9w0BAQsFAAOCAQEAIwivYK8/e/qzVNHkc7W0Zkg5oxQGjF5Hb6/09r95W8JmI9vg cQYLJyx40SK487unZnRh/gv3ppkk3hq9WLIETDpD4px9yBa9zdIzy1vt81MsnOUR bpk5XNajTDgyryx66ax/81Wv6hwlUOxZQYzi80A0660C3MUdimrTzkwhQl85nuEf EcPvEG1F3FE8cymwQDsJFnljcAUjV20ulzc1bhRZrtiMXdkphvX354bB6odtVyHq 4YBn/ItnAr7DcmOYFNrPBm4GdyRTwkvY7z52VmLEK77TQZmxIRe3XawVNGvw7G1V 5id8xHXeWnDXzmlkZ2rNpQgpfmGZWsb7PP+BHw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxltJpub6h1JqzmV4XvAZ 2Ix9voYT+Qwd+7UVLP2UBcvUO/sC/WrGk99xgIux1IOlngBduIHs6GiYlNqUMRbQ Fcj1EXxlA1jmRgBD0MuJB6Lig1muxwo1U4DPTbrtcXjV6Z7TU4vPgWXkL2UK28lM tgh7+/RV5E75ZP9x4GU/TcZWEyBIK2MTjGVAQU+rMUyWJ1mDPBscBAGzDxud6i8u cdDRrtcE7TGnkdDP1YIVU/wwi6JQ+vExrs2RNk1aDZoGlNAuFxuCxzrj+XUQw/o4 sdSPaLjZTGm0rs9AZ8zvfHzRaKw3ZXDTFmBtVXn9nX8/itAAWlL2PMQWDhU5CGjV ewIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13226633874279979017720758289 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Organization Validation CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-03 15:13:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-04 15:13:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ES' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Madrid' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Madrid' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DOS MIL PALABRAS SL.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.okdiario.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25040200027373293405058646650133881415061656857700009020880231907822790286805686390277930273388153711650222162639862056858249070883444603118772806664756605891121473332132958682124834922993912537223722980522819441179080634073301318435484184328983590959941887803632970264388118736642523057576455706438362594552114475387054397872673476666013674726571173100578246684571980560329017596536851087125540237710678776775772371760557693113176682997630772831177159921889760444603708124213156887228507507813966340796523579609557939287168413178197115172678060427459193501998912722973510781998318454276758142689639233311895466857851 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (147 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsorganizationvalsha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsorganizationvalsha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20 (globalsignOVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.okdiario.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'okdiario.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 96de61f1bd1c1629531cc0cc7d3b830040e61a7c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f296ad34a9204062d0f02e57cdc6db91b2400578 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 0167007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000017e2080e451000004030046304402203b76579942d9e6d9d33d1dfe418b0c5a1a287a1bc1484fc8319d43d9f59f0a3c02205eba19a70e6fc1d2faba303c16b3c9895a65c4c6410cc74d93b6a05714d8f8fb0077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000017e2080e3300000040300483046022100de2a4bd620a4c37523238210bc20804d1f412dc6ac5af65b5fdfa5fd48db5abf022100d5be35b6df32a977c3d27acbe12a97a3e85c1c9bf4c953c2bbf2e2ca632b92c200750035cf191bbfb16c57bf0fad4c6d42cbbbb627202651ea3fe12aefa803c33bd64c0000017e2080e47a000004030046304402206243cdff343218471923fccc25e1cdc537a9eb8cf61912d23f8650d254e8e6c10220332c7c3e03c01abe96bc90b497c5c22ca3f245f79161c7b36bdcd9a7a2a03b64 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 002308af60af3f7bfab354d1e473b5b4664839a314068c5e476faff4f6bf795bc26623dbe071060b272c78d122b8f3bba7667461fe0bf7a69924de1abd58b2044c3a43e29c7dc816bdcdd233cb5bedf3532c9ce5116e99395cd6a34c3832af2c7ae9ac7ff355afea1c2550ec59418ce2f34034ebad02dcc51d8a6ad3ce4c21425f399ee11f11c3ef106d45dc513c7329b0403b09167963700523576d2e9737356e1459aed88c5dd92986f5f7e786c1ea876d5721eae18067fc8b6702bec372639814dacf066e06772453c24bd8ef3e765662c42bbed34199b12117b75dac15346bf0ec6d55e6277cc475de5a70d7ce6964676acda508297e61995ac6fb3cff811f