mail.cmal.com
- CMRG Apparel, LLC -
Issued by GeoTrust SSL CA
About this certificate
This digital certificate with serial number 02:0b:8f was issued on by GeoTrust, Inc..
With 20 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DNSNames must have a valid TLD. (BRs: 3.2.2.4)
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- 2 DNS name(s) are bare public suffixes: exchcasht01, exchcasht02 The domain SHOULD NOT have a bare public suffix (awslabs certlint)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
CMRG Apparel, LLC
Company registration number:
6DCtTSc9CW-lpNcHDCvLj-02COUyVMz4
Organization: CMRG Apparel, LLC
Organization: CMRG Apparel, LLC
State / Province:
Massachusetts
Locality: Canton
Country: US
Locality: Canton
Country: US
GeoTrust, Inc.
Organization:
GeoTrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:0b:8fSerial Number (int): 134031
Serial Number lenght: 18 bits, 3 octets
SubjectKeyId: 00:c1:be:7a:07:19:0c:21:fe:e5:79:a8:c9:20:cb:1a:bb:cc:62:75
AuthorityKeyId: 42:79:54:1b:61:cd:55:2b:3e:63:d5:3c:48:57:f5:9f:fb:45:ce:4a
Fingerprint (sha1): 26:75:ed:a9:47:62:03:7a:8f:df:71:09:bd:79:54:f0:b1:cc:87:b6
Fingerprint (sha256): ae:44:6f:de:f3:c5:0f:0f:59:2a:61:66:48:7e:52:71:da:b6:70:a7:5f:5d:ae:c8:c6:f9:2d:ab:6b:e8:7b:7a
Issuing Certificate URL: http://gtssl-aia.geotrust.com/gtssl.crt
Revocation information
OCSP Server: http://gtssl-ocsp.geotrust.comCRL Distribution Point: http://gtssl-crl.geotrust.com/crls/gtssl.crl
Check the revocation status for certificate mail.cmal.com
20
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mail.cmal.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
exchcasht01.cmrgcorp.cmrginc.com
exchcasht02.cmrgcorp.cmrginc.com
cmal.com
autodiscover.cmrgcorp.cmrginc.com
autodiscover.cmal.com
posmgw.cmal.com
cas.cmal.com
exchcasht01
exchcasht02
cmrgcorp.cmrginc.com
outlook.cmal.com
cas.cmrgcorp.cmrginc.com
outlook.cmrgcorp.cmrginc.com
dxlg.com
mail.dxlg.com
autodiscover.dxlg.com
exchcasht01.dxlg.com
exchcasht02.dxlg.com
outlook.dxlg.com
mail.cmal.com
exchcasht02.cmrgcorp.cmrginc.com
cmal.com
autodiscover.cmrgcorp.cmrginc.com
autodiscover.cmal.com
posmgw.cmal.com
cas.cmal.com
exchcasht01
exchcasht02
cmrgcorp.cmrginc.com
outlook.cmal.com
cas.cmrgcorp.cmrginc.com
outlook.cmrgcorp.cmrginc.com
dxlg.com
mail.dxlg.com
autodiscover.dxlg.com
exchcasht01.dxlg.com
exchcasht02.dxlg.com
outlook.dxlg.com
mail.cmal.com
Other certificates including the domain name cmal.com
(limited to 100 certificates)
securemail.cmal.com
r2web1.dxlg.com
canton1.dxlg.com
mail.cmal.com
viewsecurity.cmal.com
mail.cmal.com
mail.cmal.com
help1.cmal.com
mail.cmal.com
securemail.cmal.com
mail.cmal.com
mail.cmal.com
securemail.cmal.com
securemail.cmal.com
mail.cmal.com
mail.cmal.com
r2web1.dxlg.com
mail.cmal.com
mail.cmal.com
mail.cmal.com
mail.cmal.com
mail.cmal.com
mail.cmal.com
mail.cmal.com
r2web1.dxlg.com
mail.cmal.com
mail.cmal.com
viewsecurity.cmal.com
r2web1.dxlg.com
r2web1.dxlg.com
canton1.dxlg.com
mail.cmal.com
viewsecurity.cmal.com
mail.cmal.com
mail.cmal.com
help1.cmal.com
mail.cmal.com
securemail.cmal.com
mail.cmal.com
mail.cmal.com
securemail.cmal.com
securemail.cmal.com
mail.cmal.com
mail.cmal.com
r2web1.dxlg.com
mail.cmal.com
mail.cmal.com
mail.cmal.com
mail.cmal.com
mail.cmal.com
mail.cmal.com
mail.cmal.com
r2web1.dxlg.com
mail.cmal.com
mail.cmal.com
viewsecurity.cmal.com
r2web1.dxlg.com
Certificate
The complete raw certificate details for mail.cmal.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGgzCCBWugAwIBAgIDAguPMA0GCSqGSIb3DQEBBQUAMEAxCzAJBgNVBAYTAlVT MRcwFQYDVQQKEw5HZW9UcnVzdCwgSW5jLjEYMBYGA1UEAxMPR2VvVHJ1c3QgU1NM IENBMB4XDTEzMDIyNTE1MDczMFoXDTE1MDkyNTEzMTkzMlowgZUxKTAnBgNVBAUT IDZEQ3RUU2M5Q1ctbHBOY0hEQ3ZMai0wMkNPVXlWTXo0MQswCQYDVQQGEwJVUzEW MBQGA1UECBMNTWFzc2FjaHVzZXR0czEPMA0GA1UEBxMGQ2FudG9uMRowGAYDVQQK ExFDTVJHIEFwcGFyZWwsIExMQzEWMBQGA1UEAxMNbWFpbC5jbWFsLmNvbTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALNHCT+THSX2S9qRxalvAHEkCvKw 72/5xkz5hhPjip1N/p1cPUQIQSULynBsBEgVZuzM6ytHOkOYXMPpRB04e+eLUZAP qT4O1wy/U+4JwJzR6w8maR2/MvAHF4WDgTpj+FJsyIAvLjxKvE8gJS+YAS+tOJ1u 7xDgUH0kmeT00mLFTefrOUUg42gkig0CBVuoNF/+Baw4XnGCxfU4E8Q+E1G1Q+QF PFFpmmFSqZoHc5yg8jf4b0oK1QdigT69NAzVKzSOztjPnSXlXYMd1Bcl2j7xClFE LG6TKO3i7UXOD4QblC5n0xRv3lnJRZgpC+PYliDtWEnJVK/PNm7NQWO3nDMCAwEA AaOCAy4wggMqMB8GA1UdIwQYMBaAFEJ5VBthzVUrPmPVPEhX9Z/7Rc5KMA4GA1Ud DwEB/wQEAwIEsDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwggGrBgNV HREEggGiMIIBnoIgZXhjaGNhc2h0MDEuY21yZ2NvcnAuY21yZ2luYy5jb22CIGV4 Y2hjYXNodDAyLmNtcmdjb3JwLmNtcmdpbmMuY29tgghjbWFsLmNvbYIhYXV0b2Rp c2NvdmVyLmNtcmdjb3JwLmNtcmdpbmMuY29tghVhdXRvZGlzY292ZXIuY21hbC5j b22CD3Bvc21ndy5jbWFsLmNvbYIMY2FzLmNtYWwuY29tggtleGNoY2FzaHQwMYIL ZXhjaGNhc2h0MDKCFGNtcmdjb3JwLmNtcmdpbmMuY29tghBvdXRsb29rLmNtYWwu Y29tghhjYXMuY21yZ2NvcnAuY21yZ2luYy5jb22CHG91dGxvb2suY21yZ2NvcnAu Y21yZ2luYy5jb22CCGR4bGcuY29tgg1tYWlsLmR4bGcuY29tghVhdXRvZGlzY292 ZXIuZHhsZy5jb22CFGV4Y2hjYXNodDAxLmR4bGcuY29tghRleGNoY2FzaHQwMi5k eGxnLmNvbYIQb3V0bG9vay5keGxnLmNvbYINbWFpbC5jbWFsLmNvbTA9BgNVHR8E NjA0MDKgMKAuhixodHRwOi8vZ3Rzc2wtY3JsLmdlb3RydXN0LmNvbS9jcmxzL2d0 c3NsLmNybDAdBgNVHQ4EFgQUAMG+egcZDCH+5XmoySDLGrvMYnUwDAYDVR0TAQH/ BAIwADBvBggrBgEFBQcBAQRjMGEwKgYIKwYBBQUHMAGGHmh0dHA6Ly9ndHNzbC1v Y3NwLmdlb3RydXN0LmNvbTAzBggrBgEFBQcwAoYnaHR0cDovL2d0c3NsLWFpYS5n ZW90cnVzdC5jb20vZ3Rzc2wuY3J0MEwGA1UdIARFMEMwQQYKYIZIAYb4RQEHNjAz MDEGCCsGAQUFBwIBFiVodHRwOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJjZXMv Y3BzMA0GCSqGSIb3DQEBBQUAA4IBAQAQ28PVmmxcx67rWXb5h04AxepIOE5aWsxo jOr9q52biEfOUEp0Y6Yc3hDhW7JIRGdUkVkbX2KQsNNPsWWhaYNmh2MsnvVaDoxt 1RRiPOfrkrByfvCeRmm+Ut0+3GvKJin/oNZSAwBXuyatZrAC7venPJm4JkpoxjGL 9GY6e1uLpi3BzUHm1UyCRNqcTBenNnq/0MAuNuQiKeUtzh3/wIHQETva+VG83Ip1 H2DLGVxgapaudpyWPrVsGDr95mOYFsjlIbezK95b0jcPtKs63gNznHfic0mwotyA YQr3yXzxOaxBFbwR/tMD9g1+bEF91vQRZQUd7ayxDPpekgrGT8df -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0cJP5MdJfZL2pHFqW8A cSQK8rDvb/nGTPmGE+OKnU3+nVw9RAhBJQvKcGwESBVm7MzrK0c6Q5hcw+lEHTh7 54tRkA+pPg7XDL9T7gnAnNHrDyZpHb8y8AcXhYOBOmP4UmzIgC8uPEq8TyAlL5gB L604nW7vEOBQfSSZ5PTSYsVN5+s5RSDjaCSKDQIFW6g0X/4FrDhecYLF9TgTxD4T UbVD5AU8UWmaYVKpmgdznKDyN/hvSgrVB2KBPr00DNUrNI7O2M+dJeVdgx3UFyXa PvEKUUQsbpMo7eLtRc4PhBuULmfTFG/eWclFmCkL49iWIO1YSclUr882bs1BY7ec MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 134031 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-02-25 15:07:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-09-25 13:19:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '6DCtTSc9CW-lpNcHDCvLj-02COUyVMz4' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Massachusetts' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Canton' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CMRG Apparel, LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mail.cmal.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22631685808370946952425860836591767313670443481382961941379367175363846209035383939391881527176345424323940031264929016728310889708643826378807397383183273954769158283058697590350520016553656353975125757248144846696213334132875095777590580477336932183359434968726443056990568144909995426565834928260828397170844495886566219126560327621335868741061113046347267896198510857774306505878397258859333648270662081321234477130100604353661147593774527066131911937396127359170631789881133425749655852771927759738482007143552348100675051485021558606521462013627877141094008070222257573000938695730191083329822171800744867896371 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4279541b61cd552b3e63d53c4857f59ffb45ce4a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (418 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exchcasht01.cmrgcorp.cmrginc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exchcasht02.cmrgcorp.cmrginc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.cmrgcorp.cmrginc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.cmal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'posmgw.cmal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cas.cmal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exchcasht01' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exchcasht02' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmrgcorp.cmrginc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'outlook.cmal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cas.cmrgcorp.cmrginc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'outlook.cmrgcorp.cmrginc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dxlg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.dxlg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.dxlg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exchcasht01.dxlg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'exchcasht02.dxlg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'outlook.dxlg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.cmal.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl-crl.geotrust.com/crls/gtssl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 00c1be7a07190c21fee579a8c920cb1abbcc6275 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl-ocsp.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl-aia.geotrust.com/gtssl.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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