webmail.ac-montpellier.fr
- Rectorat de Montpellier -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 0a:90:5d:58:68:5a:23:aa:68:d0:e7:0c:05:2f:f5:59 was issued on by TERENA.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Rectorat de Montpellier
Organization:
Rectorat de Montpellier
State / Province:
Languedoc Roussillon
Locality: Montpellier
Country: FR
Locality: Montpellier
Country: FR
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:90:5d:58:68:5a:23:aa:68:d0:e7:0c:05:2f:f5:59Serial Number (int): 14041863973945027539668984755668383065
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: b8:44:5d:24:88:65:e7:81:ac:85:f6:ea:a9:57:25:23:17:9d:38:f2
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): 46:e4:3c:39:a7:b6:10:02:10:ff:2e:75:7b:f9:7d:f8:a1:79:ef:1e
Fingerprint (sha256): b3:86:dc:d6:ad:59:84:f6:e2:68:58:55:6e:d8:3a:7e:ec:47:00:43:3c:bd:67:1b:f2:05:f5:18:22:eb:a4:af
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate webmail.ac-montpellier.fr
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for webmail.ac-montpellier.fr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
webmail.ac-montpellier.fr
Other certificates including the domain name ac-montpellier.fr
(limited to 100 certificates)
calendar.ac-montpellier.fr
gdai.ac-montpellier.fr
cas2ct.ac-montpellier.fr
smtp.ac-montpellier.fr
siam.ac-montpellier.fr
ac-montpellier.fr
si2d.ac-montpellier.fr
publication-a11.ac-montpellier.fr
bv.ac-montpellier.fr
www.ac-montpellier.fr
ac-montpellier.fr
echanges.ac-montpellier.fr
ac-montpellier.fr
si2d.ac-montpellier.fr
www-lyc.ac-montpellier.fr
ac-montpellier.fr
bv.ac-montpellier.fr
glpi.ac-montpellier.fr
www.ac-montpellier.fr
*.ac-montpellier.fr
oudige.ac-montpellier.fr
www-lyc.ac-montpellier.fr
bv.ac-montpellier.fr
test-region.ent2d.ac-montpellier.fr
www.ac-montpellier.fr
etab.ac-montpellier.fr
entecole-formation.ac-montpellier.fr
etab.ac-montpellier.fr
etab.ac-montpellier.fr
www-clg34.ac-montpellier.fr
webmail.ac-montpellier.fr
www.ac-montpellier.fr
etab.ac-montpellier.fr
etab.ac-montpellier.fr
entecole-test.ac-montpellier.fr
test-region.ent2d.ac-montpellier.fr
smtp.ac-montpellier.fr
dev-clg34.ac-montpellier.fr
etab.ac-montpellier.fr
etab.ac-montpellier.fr
duer.ac-montpellier.fr
gdai.ac-montpellier.fr
etab.ac-montpellier.fr
ecolle.lyc-joffre-montpellier.ac-montpellier.fr
listes.ac-montpellier.fr
courrier.ac-montpellier.fr
wsentecole.ac-montpellier.fr
entecole-test.ac-montpellier.fr
clg34.ac-montpellier.fr
*.ac-montpellier.fr
usine-sites4.ac-montpellier.fr
entecole-preprod.ac-montpellier.fr
www-lyc.ac-montpellier.fr
etab.ac-montpellier.fr
www.ac-montpellier.fr
ac-montpellier.fr
test-region.ent2d.ac-montpellier.fr
caldav.ac-montpellier.fr
id.ac-montpellier.fr
etab.ac-montpellier.fr
entecole.ac-montpellier.fr
bareme.ac-montpellier.fr
usine-sites3.ac-montpellier.fr
smtp.ac-montpellier.fr
oudige.ac-montpellier.fr
si1d.ac-montpellier.fr
ent2d-resultat-qualif.ac-montpellier.fr
riddo.ac-montpellier.fr
api.ac-montpellier.fr
famille.ac-montpellier.fr
*.ac-montpellier.fr
usine-sites1.ac-montpellier.fr
bcdi.ac-montpellier.fr
etab.ac-montpellier.fr
www-clg11-66.ac-montpellier.fr
be1d-echanges.ac-montpellier.fr
usine-sites9.ac-montpellier.fr
bcdi.ac-montpellier.fr
test-region.ent2d.ac-montpellier.fr
www.ac-montpellier.fr
test.ent2d.ac-montpellier.fr
etab.ac-montpellier.fr
ac-montpellier.fr
etab.ac-montpellier.fr
etab.ac-montpellier.fr
www-clg30-48.ac-montpellier.fr
intranet.in.ac-montpellier.fr
etab.ac-montpellier.fr
www.ac-montpellier.fr
dev-lyc.ac-montpellier.fr
etab.ac-montpellier.fr
pia.ac-montpellier.fr
ac-montpellier.fr
etab.ac-montpellier.fr
entecole-preprod.ac-montpellier.fr
etab.ac-montpellier.fr
oudige.ac-montpellier.fr
sync.ac-montpellier.fr
ac-montpellier.fr
echanges.ac-montpellier.fr
gdai.ac-montpellier.fr
cas2ct.ac-montpellier.fr
smtp.ac-montpellier.fr
siam.ac-montpellier.fr
ac-montpellier.fr
si2d.ac-montpellier.fr
publication-a11.ac-montpellier.fr
bv.ac-montpellier.fr
www.ac-montpellier.fr
ac-montpellier.fr
echanges.ac-montpellier.fr
ac-montpellier.fr
si2d.ac-montpellier.fr
www-lyc.ac-montpellier.fr
ac-montpellier.fr
bv.ac-montpellier.fr
glpi.ac-montpellier.fr
www.ac-montpellier.fr
*.ac-montpellier.fr
oudige.ac-montpellier.fr
www-lyc.ac-montpellier.fr
bv.ac-montpellier.fr
test-region.ent2d.ac-montpellier.fr
www.ac-montpellier.fr
etab.ac-montpellier.fr
entecole-formation.ac-montpellier.fr
etab.ac-montpellier.fr
etab.ac-montpellier.fr
www-clg34.ac-montpellier.fr
webmail.ac-montpellier.fr
www.ac-montpellier.fr
etab.ac-montpellier.fr
etab.ac-montpellier.fr
entecole-test.ac-montpellier.fr
test-region.ent2d.ac-montpellier.fr
smtp.ac-montpellier.fr
dev-clg34.ac-montpellier.fr
etab.ac-montpellier.fr
etab.ac-montpellier.fr
duer.ac-montpellier.fr
gdai.ac-montpellier.fr
etab.ac-montpellier.fr
ecolle.lyc-joffre-montpellier.ac-montpellier.fr
listes.ac-montpellier.fr
courrier.ac-montpellier.fr
wsentecole.ac-montpellier.fr
entecole-test.ac-montpellier.fr
clg34.ac-montpellier.fr
*.ac-montpellier.fr
usine-sites4.ac-montpellier.fr
entecole-preprod.ac-montpellier.fr
www-lyc.ac-montpellier.fr
etab.ac-montpellier.fr
www.ac-montpellier.fr
ac-montpellier.fr
test-region.ent2d.ac-montpellier.fr
caldav.ac-montpellier.fr
id.ac-montpellier.fr
etab.ac-montpellier.fr
entecole.ac-montpellier.fr
bareme.ac-montpellier.fr
usine-sites3.ac-montpellier.fr
smtp.ac-montpellier.fr
oudige.ac-montpellier.fr
si1d.ac-montpellier.fr
ent2d-resultat-qualif.ac-montpellier.fr
riddo.ac-montpellier.fr
api.ac-montpellier.fr
famille.ac-montpellier.fr
*.ac-montpellier.fr
usine-sites1.ac-montpellier.fr
bcdi.ac-montpellier.fr
etab.ac-montpellier.fr
www-clg11-66.ac-montpellier.fr
be1d-echanges.ac-montpellier.fr
usine-sites9.ac-montpellier.fr
bcdi.ac-montpellier.fr
test-region.ent2d.ac-montpellier.fr
www.ac-montpellier.fr
test.ent2d.ac-montpellier.fr
etab.ac-montpellier.fr
ac-montpellier.fr
etab.ac-montpellier.fr
etab.ac-montpellier.fr
www-clg30-48.ac-montpellier.fr
intranet.in.ac-montpellier.fr
etab.ac-montpellier.fr
www.ac-montpellier.fr
dev-lyc.ac-montpellier.fr
etab.ac-montpellier.fr
pia.ac-montpellier.fr
ac-montpellier.fr
etab.ac-montpellier.fr
entecole-preprod.ac-montpellier.fr
etab.ac-montpellier.fr
oudige.ac-montpellier.fr
sync.ac-montpellier.fr
ac-montpellier.fr
echanges.ac-montpellier.fr
Certificate
The complete raw certificate details for webmail.ac-montpellier.fr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIQCpBdWGhaI6po0OcMBS/1WTANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xNTExMTMwMDAwMDBaFw0xODExMjExMjAwMDBaMIGIMQswCQYDVQQG EwJGUjEdMBsGA1UECBMUTGFuZ3VlZG9jIFJvdXNzaWxsb24xFDASBgNVBAcTC01v bnRwZWxsaWVyMSAwHgYDVQQKExdSZWN0b3JhdCBkZSBNb250cGVsbGllcjEiMCAG A1UEAxMZd2VibWFpbC5hYy1tb250cGVsbGllci5mcjCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBALKT4X7+aly2CXVmKG+M0WtlSdEEPFFtyUdYbNFsSCKA arSzrhLDeay6l9Ox9d1TkpzFMJJmmPQPldMqsPxgYGE+9pel2WMrJRCZWAfGjhgW 8MgJr+hCyWChSWXvE+cYOOPbwEXAv30jnvjj2LoaUFhtobRKgXlIqqMP6rqHtvJZ Mtm9l7D1mTR5chKjxq8IgFuRsP7Ey8bbND8LqT6pYk6Xr/d8epvWAUMRmfYffzZ3 qVJZtMQyX7kGyD7HfxhAYmrBFkOIriUHc/Q+KYJYFBMMjsgJXj8TCV5skYznrOwM Fo+BXpZ5dpXG1qpwF2JrXQV2cBGHVz3IKk+HfJpZ3lECAwEAAaOCAdIwggHOMB8G A1UdIwQYMBaAFGf9iCAUJ5jHCdIlGbvpURFjdVBiMB0GA1UdDgQWBBS4RF0kiGXn gayF9uqpVyUjF5048jAkBgNVHREEHTAbghl3ZWJtYWlsLmFjLW1vbnRwZWxsaWVy LmZyMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwawYDVR0fBGQwYjAvoC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL1RF UkVOQVNTTENBMy5jcmwwL6AtoCuGKWh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9U RVJFTkFTU0xDQTMuY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYB BQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMG4G CCsGAQUFBwEBBGIwYDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQu Y29tMDgGCCsGAQUFBzAChixodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vVEVS RU5BU1NMQ0EzLmNydDAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQAE 0p7cvt4Y8pYFI//7EpvaJCnP5KgSBr4nsZ8Sdut5SH9ZiJ7E99T+qLMynIP66Cgd YpzRI5aSZHS6/vfp5ZC0AgyqBqPEECUAhzVaCH4LKYCdqgeELhBb9J5nn5vTfKdI Jg4MZL5Bs9ywGHy70z3WDjOb8ffky0SepjR7UgnlxYLNwKU/GCY1DUen3DqqCtvw DfpSb7rh8wghYPsV58DpTDCmutCEOvRUG5LULJ0opN6hmx0a8cud7cyPGd5iyGw4 Raaf59jGXhEKCwL6QqVZoHFML20tRsCCczh51nlkZ3byryIR22FkoI4j/Lf4klgW fbXvQO72BjA6YWVR6Dpr -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspPhfv5qXLYJdWYob4zR a2VJ0QQ8UW3JR1hs0WxIIoBqtLOuEsN5rLqX07H13VOSnMUwkmaY9A+V0yqw/GBg YT72l6XZYyslEJlYB8aOGBbwyAmv6ELJYKFJZe8T5xg449vARcC/fSOe+OPYuhpQ WG2htEqBeUiqow/quoe28lky2b2XsPWZNHlyEqPGrwiAW5Gw/sTLxts0PwupPqli Tpev93x6m9YBQxGZ9h9/NnepUlm0xDJfuQbIPsd/GEBiasEWQ4iuJQdz9D4pglgU EwyOyAlePxMJXmyRjOes7AwWj4Felnl2lcbWqnAXYmtdBXZwEYdXPcgqT4d8mlne UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14041863973945027539668984755668383065 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-11-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-21 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Languedoc Roussillon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Montpellier' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rectorat de Montpellier' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'webmail.ac-montpellier.fr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22543341046014129472499127473530298988222184201570877144415505857429337342222159218943957928894042247593069217751755618379806696046251481859337556551046089297305999665204448534076924191103767496957199554031466096198590294815375387450754432084570052473024004167543143011558625999249646006049878394868802907205147180079426896495646359645247408721191113167153672922312277909802962440223327923654470545477788890194829958616939547358310495127538811162637583036872321306903204619100132857161464324373872197324751983452830010776421649427322216435524343089094601877446723336004085723663264597993255111404128381143220808703569 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b8445d248865e781ac85f6eaa9572523179d38f2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.ac-montpellier.fr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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