mhi.ca
- Manitoba Hydro International Ltd. -
Issued by GeoTrust RSA CA 2018
About this certificate
This digital certificate with serial number 06:b5:dc:30:b1:e6:0b:06:ee:3c:07:0c:b8:48:ff:b3 was issued on by DigiCert Inc.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Manitoba Hydro International Ltd.
Organization:
Manitoba Hydro International Ltd.
State / Province:
Manitoba
Locality: Winnipeg
Country: CA
Locality: Winnipeg
Country: CA
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:b5:dc:30:b1:e6:0b:06:ee:3c:07:0c:b8:48:ff:b3Serial Number (int): 8919639694225854841136156596329054131
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: b4:8a:3d:67:ad:50:86:8c:06:db:05:9c:1e:12:dd:af:b6:ec:f5:25
AuthorityKeyId: 90:58:ff:b0:9c:75:a8:51:54:77:b1:ed:f2:a3:43:16:38:9e:6c:c5
Fingerprint (sha1): da:5c:60:3e:0b:1e:4d:7d:bd:b3:e2:b1:4e:93:74:c5:6e:cf:e2:23
Fingerprint (sha256): b3:ed:60:d5:76:64:91:9a:93:2c:f3:1d:8b:f4:59:6d:ea:c5:ef:11:b8:66:52:49:00:f5:1d:26:15:7c:2e:9f
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustRSACA2018.crl
Check the revocation status for certificate mhi.ca
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mhi.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mhi.ca
www.mhi.ca
autodiscover.mhi.ca
mail.mhi.ca
webmail.mhi.ca
www.mhi.ca
autodiscover.mhi.ca
mail.mhi.ca
webmail.mhi.ca
Other certificates including the domain name mhi.ca
(limited to 100 certificates)
ftps.mhi.ca
mhi.ca
inportal.mhi.ca
mhi.ca
mhi.ca
vpn.mhi.ca
mhi.ca
time.mhi.ca
mhi.ca
vpn.mhi.ca
mhi.ca
mhi.ca
mhi.ca
ess.mhi.ca
spam.mhi.ca
ess.mhi.ca
mhi.ca
ess.mhi.ca
spam.mhi.ca
vpn.mhi.ca
mhi.ca
portal.mhi.ca
mhi.ca
mhi.ca
portal.mhi.ca
spam.mhi.ca
hrms.mhi.ca
ftps.mhi.ca
inportal.mhi.ca
ess.mhi.ca
mhi.ca
mhi.ca
mhi.ca
spam.mhi.ca
vpn.mhi.ca
spam.mhi.ca
*.mhi.ca
training.mhi.ca
hvdc.ca
hvdc.ca
hrms.mhi.ca
vpn.mhi.ca
*.mhi.ca
mhi.ca
spam.mhi.ca
ftps.mhi.ca
mhi.ca
mhi.ca
mhi.ca
spam.mhi.ca
hrms.mhi.ca
mhi.ca
mhi.ca
mhi.ca
mhi.ca
training.mhi.ca
hrms.mhi.ca
vpn.mhi.ca
mhi.ca
mhi.ca
portal.mhi.ca
mhi.ca
mhi.ca
time.mhi.ca
mhi.ca
mhi.ca
mhi.ca
inportal.mhi.ca
mhi.ca
mhi.ca
vpn.mhi.ca
mhi.ca
time.mhi.ca
mhi.ca
vpn.mhi.ca
mhi.ca
mhi.ca
mhi.ca
ess.mhi.ca
spam.mhi.ca
ess.mhi.ca
mhi.ca
ess.mhi.ca
spam.mhi.ca
vpn.mhi.ca
mhi.ca
portal.mhi.ca
mhi.ca
mhi.ca
portal.mhi.ca
spam.mhi.ca
hrms.mhi.ca
ftps.mhi.ca
inportal.mhi.ca
ess.mhi.ca
mhi.ca
mhi.ca
mhi.ca
spam.mhi.ca
vpn.mhi.ca
spam.mhi.ca
*.mhi.ca
training.mhi.ca
hvdc.ca
hvdc.ca
hrms.mhi.ca
vpn.mhi.ca
*.mhi.ca
mhi.ca
spam.mhi.ca
ftps.mhi.ca
mhi.ca
mhi.ca
mhi.ca
spam.mhi.ca
hrms.mhi.ca
mhi.ca
mhi.ca
mhi.ca
mhi.ca
training.mhi.ca
hrms.mhi.ca
vpn.mhi.ca
mhi.ca
mhi.ca
portal.mhi.ca
mhi.ca
mhi.ca
time.mhi.ca
mhi.ca
mhi.ca
Certificate
The complete raw certificate details for mhi.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGsjCCBZqgAwIBAgIQBrXcMLHmCwbuPAcMuEj/szANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRHZW9UcnVzdCBSU0EgQ0EgMjAxODAe Fw0xODExMDgwMDAwMDBaFw0yMDExMjgxMjAwMDBaMHAxCzAJBgNVBAYTAkNBMREw DwYDVQQIEwhNYW5pdG9iYTERMA8GA1UEBxMIV2lubmlwZWcxKjAoBgNVBAoTIU1h bml0b2JhIEh5ZHJvIEludGVybmF0aW9uYWwgTHRkLjEPMA0GA1UEAxMGbWhpLmNh MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjhLt7uOKc+5TILQ88EaB 2BFDrIP3AEuVJTA3dYZppIqrxcU4Brap+uJwKSMCc2H7j5ZPoRYGbcRwy20OmVvY kCVZv2aaprp6IxuosqBHZXE74I0I4WKmIU6Zeh9cgGm2C72rpMyHUVIFcaYWj6Dt KLOjhPZSDhJ8NOj5GAb+57PBxxv7XATUIRO3e+Fa+FiaSH4JRUIBSUG+tUTkZVC0 6tuWxXSekfI0Zxhg8JmnAsnPmn3DPIYHpj7y47MoKvfPS2kGNaPIqfq+KrfXXDJq 1G4RHOaMyLOpcvfDPQz8yyRlyZGk9bbZ5gCZ0G+jDvImPtJ/TEbpLRC/+DvVIRPF OwIDAQABo4IDWDCCA1QwHwYDVR0jBBgwFoAUkFj/sJx1qFFUd7Ht8qNDFjiebMUw HQYDVR0OBBYEFLSKPWetUIaMBtsFnB4S3a+27PUlME8GA1UdEQRIMEaCBm1oaS5j YYIKd3d3Lm1oaS5jYYITYXV0b2Rpc2NvdmVyLm1oaS5jYYILbWFpbC5taGkuY2GC DndlYm1haWwubWhpLmNhMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwPgYDVR0fBDcwNTAzoDGgL4YtaHR0cDovL2NkcC5nZW90 cnVzdC5jb20vR2VvVHJ1c3RSU0FDQTIwMTguY3JsMEwGA1UdIARFMEMwNwYJYIZI AYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9D UFMwCAYGZ4EMAQICMHUGCCsGAQUFBwEBBGkwZzAmBggrBgEFBQcwAYYaaHR0cDov L3N0YXR1cy5nZW90cnVzdC5jb20wPQYIKwYBBQUHMAKGMWh0dHA6Ly9jYWNlcnRz Lmdlb3RydXN0LmNvbS9HZW9UcnVzdFJTQUNBMjAxOC5jcnQwCQYDVR0TBAIwADCC AYAGCisGAQQB1nkCBAIEggFwBIIBbAFqAHYApLkJkLQYWBSHuxOizGdwCjw1mAT5 G9+443fNDsgN3BAAAAFm9XbxkgAABAMARzBFAiBX6HYq4hclMNEugdK9wjMosfTD LfXP3tVQt4XPodP5/wIhAKdK7bkjNt7v6N88WDVyX60a4txi9lMmErBgq+EivW8+ AHcAh3W/51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq/16ggw8AAAFm9XbycQAABAMA SDBGAiEA2MIs5EN2lICfDpSe4rHxLc5OIRLlKONPOiYTWKA6EcICIQD3ZfM+ZwU7 dlAtnW7NdK5jqzXz8jiMp1JalunxnPUxtQB3ALvZ37wfinG1k5Qjl6qSe0c4V5UK q1LoGpCWZDaOHtGFAAABZvV28qUAAAQDAEgwRgIhAJY4pPlqfORjApQYMwukK/H7 9YGTPFT/pYgyVB8ShI/vAiEA7Hl+dG2LXxBfvJSkAJZ3pKmqG61QUOh3jjxmjVug ZQcwDQYJKoZIhvcNAQELBQADggEBAHEdI0a+gwo86J7KL5Sn9bx+orE0/94g/+LU Aehtd31GGxzv8U6QpDQ9fpapia6yU6Vr0oJgYu552miGyUTThflJqeBVeiOHVInK hxjDtrt+mztbc2r612rqw15xTS+eAXluzHVIyRXDqbHvznBInJy/cYpmcgqf1lG3 +deo4++UykCRKsna10B37Yo68DNphU9D1zR6vaEuZraW2ma3/JIC/ZEInnQtBnxi HPvmN3t7puiI/Ih7rXmyC8DSnRrYN2YvpeVouRfZ5y4U4DVEHQ8Fp/D5luoLLCv0 h3xdkDpA6TEqGc62qDPtvb1XNvsLQwfyZTlyOXvq4drvLoteb+w= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjhLt7uOKc+5TILQ88EaB 2BFDrIP3AEuVJTA3dYZppIqrxcU4Brap+uJwKSMCc2H7j5ZPoRYGbcRwy20OmVvY kCVZv2aaprp6IxuosqBHZXE74I0I4WKmIU6Zeh9cgGm2C72rpMyHUVIFcaYWj6Dt KLOjhPZSDhJ8NOj5GAb+57PBxxv7XATUIRO3e+Fa+FiaSH4JRUIBSUG+tUTkZVC0 6tuWxXSekfI0Zxhg8JmnAsnPmn3DPIYHpj7y47MoKvfPS2kGNaPIqfq+KrfXXDJq 1G4RHOaMyLOpcvfDPQz8yyRlyZGk9bbZ5gCZ0G+jDvImPtJ/TEbpLRC/+DvVIRPF OwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8919639694225854841136156596329054131 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-28 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manitoba' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Winnipeg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Manitoba Hydro International Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mhi.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17935173753239921953852268162858535924565891304599833693965753015508823948548169271157186726719524205602572408464332561523131107542666116575806788800641051266892942352022478849601113583714684866949403894061643851055534812206009231102896905468610840529146205156331023803438312158241190839888405206617634904133918956759559556163200384859030326800546806677933945046319890193660330589848081482891766235064875345788212589772405357420227833524038927780621340902849666842598527976894143574907783461597821070652253858869129578139696594889449891741853673987756951697940234218944720690119777441327132263659492538988475027014971 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9058ffb09c75a8515477b1edf2a34316389e6cc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b48a3d67ad50868c06db059c1e12ddafb6ecf525 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mhi.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mhi.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.mhi.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.mhi.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.mhi.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN asn1: syntax error: invalid boolean false . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:3|t:28|false] . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 111901403960337696690405615661702520693664364033591770573515095213173504291253 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00711d2346be830a3ce89eca2f94a7f5bc7ea2b134ffde20ffe2d401e86d777d461b1ceff14e90a4343d7e96a989aeb253a56bd2826062ee79da6886c944d385f949a9e0557a23875489ca8718c3b6bb7e9b3b5b736afad76aeac35e714d2f9e01796ecc7548c915c3a9b1efce70489c9cbf718a66720a9fd651b7f9d7a8e3ef94ca40912ac9dad74077ed8a3af03369854f43d7347abda12e66b696da66b7fc9202fd91089e742d067c621cfbe6377b7ba6e888fc887bad79b20bc0d29d1ad837662fa5e568b917d9e72e14e035441d0f05a7f0f996ea0b2c2bf4877c5d903a40e9312a19ceb6a833edbdbd5736fb0b4307f2653972397beae1daef2e8b5e6fec