*.21cf.com
- Twentieth Century Fox Film Corporation -
Issued by GeoTrust SSL CA
About this certificate
This digital certificate with serial number 02:51:d6 was issued on by GeoTrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Twentieth Century Fox Film Corporation
Company registration number:
1vVGF-mMWolwac/1u/1gQtbiZ70Qtr36
Organization: Twentieth Century Fox Film Corporation
Organization: Twentieth Century Fox Film Corporation
State / Province:
California
Locality: Los Angeles
Country: US
Locality: Los Angeles
Country: US
GeoTrust, Inc.
Organization:
GeoTrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:51:d6Serial Number (int): 152022
Serial Number lenght: 18 bits, 3 octets
SubjectKeyId: c7:e5:32:bc:21:b1:f7:a6:ed:d0:7c:09:df:20:71:25:c9:a6:9b:52
AuthorityKeyId: 42:79:54:1b:61:cd:55:2b:3e:63:d5:3c:48:57:f5:9f:fb:45:ce:4a
Fingerprint (sha1): a6:66:40:9c:62:e3:bb:b4:87:ec:a7:e3:49:66:7d:bc:00:51:76:e4
Fingerprint (sha256): b2:cf:8f:08:5c:9c:61:29:d9:e5:3c:b3:c8:28:70:d2:8d:3d:a0:09:8c:b7:84:be:da:58:a0:8a:9f:8e:54:e1
Issuing Certificate URL: http://gtssl-aia.geotrust.com/gtssl.crt
Revocation information
OCSP Server: http://gtssl-ocsp.geotrust.comCRL Distribution Point: http://gtssl-crl.geotrust.com/crls/gtssl.crl
Check the revocation status for certificate *.21cf.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.21cf.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.21cf.com
21cf.com
21cf.com
Other certificates including the domain name 21cf.com
(limited to 100 certificates)
spotlight.21cf.com
hr.21cf.com
financialreports.21cf.com
redirect.disneyinternational.com
21cf.com
briefingbook.21cf.com
redirect.disneyinternational.com
foxpac.21cf.com
redirect.disneyinternational.com
view.digital.21cf.com
redirect.disneyinternational.com
cloud.digital.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
ilearn.21cf.com
view.digital.21cf.com
redirect.disneyinternational.com
cloud.digital.21cf.com
lcspublic.newscorp.com
remotevpn.21cf.com
redirect.disneyinternational.com
adfs.21cf.com
redirect.disneyinternational.com
naimail.newscorp.com
redirect.disneyinternational.com
redirect.disneyinternational.com
foxpac.21cf.com
*.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
*.sb.21cf.com
*.qa.21cf.com
lync15pool.newscorp.com
redirect.disneyinternational.com
redirect.disneyinternational.com
*.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
click.digital.21cf.com
spotlight.21cf.com
remotevpn.21cf.com
*.21cf.com
view.digital.21cf.com
impact.21cf.com
redirect.disneyinternational.com
*.21cf.com
spotlight.21cf.com
*.21cf.com
redirect.disneyinternational.com
21cf.com
*.21cf.com
redirect.disneyinternational.com
lync15njav.newscorp.com
*.21cf.com
ilearn.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
execdirect.21cf.com
redirect.disneyinternational.com
naimail.newscorp.com
spotlight.21cf.com
*.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
view.digital.21cf.com
cloud.digital.21cf.com
redirect.disneyinternational.com
ilearn.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
redirect.disneyinternational.com
lcspublic.newscorp.com
*.21cf.com
redirect.disneyinternational.com
*.21cf.com
spotlight.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
redirect.disneyinternational.com
*.21cf.com
redirect.disneyinternational.com
*.21cf.com
redirect.disneyinternational.com
today.21cf.com
*.21cf.com
ilearn.21cf.com
impact.21cf.com
adfs.21cf.com
spotlight.21cf.com
naimail.newscorp.com
redirect.disneyinternational.com
redirect.disneyinternational.com
lync15njav.newscorp.com
naimail.newscorp.com
redirect.disneyinternational.com
lyncpool.newscorp.com
newschannel.21cf.com
ilearn.21cf.com
*.21cf.com
redirect.disneyinternational.com
hr.21cf.com
financialreports.21cf.com
redirect.disneyinternational.com
21cf.com
briefingbook.21cf.com
redirect.disneyinternational.com
foxpac.21cf.com
redirect.disneyinternational.com
view.digital.21cf.com
redirect.disneyinternational.com
cloud.digital.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
ilearn.21cf.com
view.digital.21cf.com
redirect.disneyinternational.com
cloud.digital.21cf.com
lcspublic.newscorp.com
remotevpn.21cf.com
redirect.disneyinternational.com
adfs.21cf.com
redirect.disneyinternational.com
naimail.newscorp.com
redirect.disneyinternational.com
redirect.disneyinternational.com
foxpac.21cf.com
*.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
*.sb.21cf.com
*.qa.21cf.com
lync15pool.newscorp.com
redirect.disneyinternational.com
redirect.disneyinternational.com
*.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
click.digital.21cf.com
spotlight.21cf.com
remotevpn.21cf.com
*.21cf.com
view.digital.21cf.com
impact.21cf.com
redirect.disneyinternational.com
*.21cf.com
spotlight.21cf.com
*.21cf.com
redirect.disneyinternational.com
21cf.com
*.21cf.com
redirect.disneyinternational.com
lync15njav.newscorp.com
*.21cf.com
ilearn.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
execdirect.21cf.com
redirect.disneyinternational.com
naimail.newscorp.com
spotlight.21cf.com
*.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
view.digital.21cf.com
cloud.digital.21cf.com
redirect.disneyinternational.com
ilearn.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
redirect.disneyinternational.com
lcspublic.newscorp.com
*.21cf.com
redirect.disneyinternational.com
*.21cf.com
spotlight.21cf.com
redirect.disneyinternational.com
redirect.disneyinternational.com
redirect.disneyinternational.com
*.21cf.com
redirect.disneyinternational.com
*.21cf.com
redirect.disneyinternational.com
today.21cf.com
*.21cf.com
ilearn.21cf.com
impact.21cf.com
adfs.21cf.com
spotlight.21cf.com
naimail.newscorp.com
redirect.disneyinternational.com
redirect.disneyinternational.com
lync15njav.newscorp.com
naimail.newscorp.com
redirect.disneyinternational.com
lyncpool.newscorp.com
newschannel.21cf.com
ilearn.21cf.com
*.21cf.com
redirect.disneyinternational.com
Certificate
The complete raw certificate details for *.21cf.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIDAlHWMA0GCSqGSIb3DQEBBQUAMEAxCzAJBgNVBAYTAlVT MRcwFQYDVQQKEw5HZW9UcnVzdCwgSW5jLjEYMBYGA1UEAxMPR2VvVHJ1c3QgU1NM IENBMB4XDTEzMDYxNjIxMTkzMloXDTE1MDYxOTIyNDQ1MFowgakxKTAnBgNVBAUT IDF2VkdGLW1NV29sd2FjLzF1LzFnUXRiaVo3MFF0cjM2MQswCQYDVQQGEwJVUzET MBEGA1UECBMKQ2FsaWZvcm5pYTEUMBIGA1UEBxMLTG9zIEFuZ2VsZXMxLzAtBgNV BAoTJlR3ZW50aWV0aCBDZW50dXJ5IEZveCBGaWxtIENvcnBvcmF0aW9uMRMwEQYD VQQDDAoqLjIxY2YuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA lBj7MCTfVNA5VVwf3y82dO0WO8mV1P+CpmZWgywqAJ14p6oMomC4K74gUwc8dWIR ocZoRtX05DhcgiDmAZsnMSH29OnDpI8N6cL8Kk9HZaoxU51ykwNpzkGJjjCOds8S ft28XjnHZM5CYkQszMIyTUNYgkaNXBgXka3qf8YLlp8NKQRzLoneIK0oC4aycRNg P6TTFp1r4mGfS1s4/7V58fYi+9kOk1NGdg3OEoIeOwYrtvLKMg7bH6KjnW3mZiEQ mQsZTkE3Q74U0NkvrzLZNojs8doRRVJmWGPquQ/mcmDES9rgtNyaxtm0kBFBlAZX J0ruLCTiHtz5QYQpMBH8YQIDAQABo4IBoDCCAZwwHwYDVR0jBBgwFoAUQnlUG2HN VSs+Y9U8SFf1n/tFzkowDgYDVR0PAQH/BAQDAgSwMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAfBgNVHREEGDAWggoqLjIxY2YuY29tgggyMWNmLmNvbTA9 BgNVHR8ENjA0MDKgMKAuhixodHRwOi8vZ3Rzc2wtY3JsLmdlb3RydXN0LmNvbS9j cmxzL2d0c3NsLmNybDAdBgNVHQ4EFgQUx+UyvCGx96bt0HwJ3yBxJcmmm1IwDAYD VR0TAQH/BAIwADBvBggrBgEFBQcBAQRjMGEwKgYIKwYBBQUHMAGGHmh0dHA6Ly9n dHNzbC1vY3NwLmdlb3RydXN0LmNvbTAzBggrBgEFBQcwAoYnaHR0cDovL2d0c3Ns LWFpYS5nZW90cnVzdC5jb20vZ3Rzc2wuY3J0MEwGA1UdIARFMEMwQQYKYIZIAYb4 RQEHNjAzMDEGCCsGAQUFBwIBFiVodHRwOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNv dXJjZXMvY3BzMA0GCSqGSIb3DQEBBQUAA4IBAQCKjPDKubLVtMWx0CePp0eQ+Vii YuAEByKRYVWdJIGy3BHwCNUU5g9fqBYdI2yjbVwI8JW5qEnYXJg5pAPqPN69Eztj po7ixI/rnulfao3RozqXE7FrhBjZxS3xhPij+o5p3PvWV1UeZ1YSwM02S4BdURWp cjC5LyrJU/t2j1Op5OpwnQoqFkReUWSyQgusU8Y+vIOqBGjvkAHUbafLE27ATM+x zdmiOYUtxBTa5nvTOJPqII3VJP2q0gEUvA4xAJmfGzj9ye+i+xRgvR5a/wA+JhQv W12b2+BrkY6qsuucrhpc1jYik7TE7mFwiDYmjT3LOYcFVB6sUeUjpe/fnnUX -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlBj7MCTfVNA5VVwf3y82 dO0WO8mV1P+CpmZWgywqAJ14p6oMomC4K74gUwc8dWIRocZoRtX05DhcgiDmAZsn MSH29OnDpI8N6cL8Kk9HZaoxU51ykwNpzkGJjjCOds8Sft28XjnHZM5CYkQszMIy TUNYgkaNXBgXka3qf8YLlp8NKQRzLoneIK0oC4aycRNgP6TTFp1r4mGfS1s4/7V5 8fYi+9kOk1NGdg3OEoIeOwYrtvLKMg7bH6KjnW3mZiEQmQsZTkE3Q74U0NkvrzLZ Nojs8doRRVJmWGPquQ/mcmDES9rgtNyaxtm0kBFBlAZXJ0ruLCTiHtz5QYQpMBH8 YQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 152022 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-06-16 21:19:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-06-19 22:44:50 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1vVGF-mMWolwac/1u/1gQtbiZ70Qtr36' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Los Angeles' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Twentieth Century Fox Film Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.21cf.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18695587825482128514349117728032455169506746710891347110769851041472011070671347263781615132917354030383484810459500015574083955798077230720155212405536662580988033720445142194183815443212691176238591451767940349010736647629547568485343507608263269931097268582956563868363049854787042348654854142550170720084009018684043805771200804799958267055717874296431945134274271519855926585600875870684210159266541635201059323870841116536016205547326050135196453413902235316514879248270862847972038097617019063595359575566184122924433899404691985505518277881152293556526094437451409586060334126500135840018044421658548026604641 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4279541b61cd552b3e63d53c4857f59ffb45ce4a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.21cf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '21cf.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl-crl.geotrust.com/crls/gtssl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c7e532bc21b1f7a6edd07c09df207125c9a69b52 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl-ocsp.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl-aia.geotrust.com/gtssl.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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