www.alpho.com
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 0b:63:8f:34:42:76:f1:e3:18:3b:32:7d:2c:cc:3a:87 was issued on by DigiCert, Inc..
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.alpho.com
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:63:8f:34:42:76:f1:e3:18:3b:32:7d:2c:cc:3a:87Serial Number (int): 15138449867636601642185198009651575431
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 11:93:9a:65:d8:dc:9f:11:1d:92:0e:67:64:ab:37:4f:07:15:ec:df
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): 04:84:85:35:09:b4:95:fc:b3:f6:91:c7:83:83:ab:12:c5:fd:82:b1
Fingerprint (sha256): b4:8b:77:90:07:7a:27:2e:a5:5c:9f:31:de:59:3e:ef:8c:34:5f:75:90:a7:dc:8b:f3:95:1c:5e:28:0f:6f:b0
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate www.alpho.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.alpho.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.alpho.com
alpho.com
backend.alpho.com
alpho.com
backend.alpho.com
Other certificates including the domain name alpho.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.alpho.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIpTCCBo2gAwIBAgIQC2OPNEJ28eMYOzJ9LMw6hzANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjIwOTA2MDAwMDAwWhcNMjMwOTIzMjM1OTU5WjAYMRYwFAYDVQQDEw13d3cuYWxw aG8uY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2wPK10WQ/3VE sBApmpWUUjD/1x9i5X82SpW4h5hBNW1MmaX/ZT0q7iXofexGn8n31S0ZQ64HCLZO 11PslaVy1h5rPZZFQg0qQ8ef519KB8XoPo9YlBgUJ3AXIxCVVAxM+prwH+2Rsc/Z qU0SqB+iyvRjq17jezqBYzAj4mAj7BPheG9OUcCTln9JmduNmnOEEihBxJv0UNHB aPOWX3qKj3RSM+ILiysZuoxYcKPoQVV80u4+EYtbmiyvvgFliMH0hMDmr1lIHsQU M345ocdSYZGe9eVV16LXcyG985yIUWTUQzP3BapeZp869a1Plx8mQkgCPwztpPCY GSeZHBZuk0x/VwCR6hFJ/rsSqQ/g2lJ8C4/EiYTaI9T210Yf4bfMAeJXQUnBV3JF +3KwkDdHrCpq9jIObCladWfikBJraK0oziJVxZcbskrp2Kb5Qsx5NG10M/jNiJyI w9hkavtcl2sBrja9M+7qrEAJe2Ck1Uz6YvPY5VBJh6NxdQSqNun6GUvlg+Y1xmrM k7i3MtiwJHTdUFnTXfP/tvtl6+EU7ibhX+w54gFurawqbu/2G2VPnBUt+YrsyNlH QLNE1lPosDwr8COzIa/Hn5Ki483GngfA2tYyw5HCOUek5nQK/jEtGVsvnzT9IF9t iFumuK9sgRdoCNHU+dAK0zTyJrlhZbsCAwEAAaOCA6UwggOhMB8GA1UdIwQYMBaA FKW01us2xOdrpt/EZAsBKiAEuGYjMB0GA1UdDgQWBBQRk5pl2NyfER2SDmdkqzdP BxXs3zA2BgNVHREELzAtgg13d3cuYWxwaG8uY29tgglhbHBoby5jb22CEWJhY2tl bmQuYWxwaG8uY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwgZ8GA1UdHwSBlzCBlDBIoEagRIZCaHR0cDovL2NybDMuZGln aWNlcnQuY29tL0dlb1RydXN0R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEu Y3JsMEigRqBEhkJodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vR2VvVHJ1c3RHbG9i YWxUTFNSU0E0MDk2U0hBMjU2MjAyMkNBMS5jcmwwPgYDVR0gBDcwNTAzBgZngQwB AgEwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMIGH BggrBgEFBQcBAQR7MHkwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0 LmNvbTBRBggrBgEFBQcwAoZFaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0dl b1RydXN0R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEuY3J0MAkGA1UdEwQC MAAwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB3AK33vvp8/xDIi509nB4+GGq0 Zyldz7EMJMqFhjTr3IKKAAABgxHRCaMAAAQDAEgwRgIhAJ0Uy41gb3iguShZT1oY yir4nqjSMirmkZa07J8VIaafAiEAhH4fHiMmRtH67GzXcQWKHp8Y+uiSTv+aOTeg X9vAEVEAdgA1zxkbv7FsV78PrUxtQsu7ticgJlHqP+Eq76gDwzvWTAAAAYMR0QmT AAAEAwBHMEUCIQD0gHbuOfxgBze0zZ56URytfH84lAPighYMXch6WMTdEwIgKTx6 UHhBX4mYwP4AOLuy3atnRHX0UvJhKLI5LFcP8v0AdgCzc3cH4YRQ+GOG1gWp3BEJ SnktsWcMC4fc8AMOeTalmgAAAYMR0QnRAAAEAwBHMEUCIQCIk8+kk5g8PY96Zp1a 14gQTkE4rDgrbj2wQZDZM42dPQIgcesoHM4H8t6lvAXD6lPW8cOf1QiXmPPPFG2V T2Z8uuAwDQYJKoZIhvcNAQELBQADggIBAKXxJvr3UCJmVHYFG5dfcO20kkloLNiq iCFUiYsllEowVVtIgnWnEb+fhAusIU5WXrv7TbC5JHLDN0FpqnM9NszoGTgD9GFH qtPAevyz/YL37HyziT7IFIsYur0/rlUg6iAMhmy2SLE5FHDdy31nVsRR8Ll8RTdN +SIX85OnzW2aTj5IAmI2EqLK6bx090DS2XFmCUwSekFjJFII4RzVyGK1lZQGqw6s K6+hTiuJM7vJFF/1yzmmypu0LKhsAvoTlNuUACfw/BssoIwprRHbTK8uk7aoXJPB R7lLRSPu8E+YbQ4xrzzwuUFD0EyKD30MApKtAT9YRL2uPVaxXqRsYOm20MpyQBTc Ux3Eq04hH3vqI8nOaWAbpg0kgnh9zeXn3IMpRp7sz4XxfUxwJGUMl6Ha4D7P/ysk vosMxgX/mFTlGpn5N7OBbYtCPU++DS8uzGTH2gO19HsYnk/qTtxFHb/cR+GqJTy/ h2KMk4bUCgdzgdcpazh6z6fI6ZVdoiSAtaSttxLK2Hzo9+W0vcrkVDEHkHzHRh9h /Wsae6YwnYiR0Iri1OFe3IcvWjAQnF+GWyEGWMi8UI1hiyqWQLDrtsnldKkCdRzU bJokbTVdElaZBaZmYwqDdOP1HnYqjHbodbcKVUelL8x0YicSs2QU3R6IPIrXaGR6 8qne5CpwG7zR -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2wPK10WQ/3VEsBApmpWU UjD/1x9i5X82SpW4h5hBNW1MmaX/ZT0q7iXofexGn8n31S0ZQ64HCLZO11PslaVy 1h5rPZZFQg0qQ8ef519KB8XoPo9YlBgUJ3AXIxCVVAxM+prwH+2Rsc/ZqU0SqB+i yvRjq17jezqBYzAj4mAj7BPheG9OUcCTln9JmduNmnOEEihBxJv0UNHBaPOWX3qK j3RSM+ILiysZuoxYcKPoQVV80u4+EYtbmiyvvgFliMH0hMDmr1lIHsQUM345ocdS YZGe9eVV16LXcyG985yIUWTUQzP3BapeZp869a1Plx8mQkgCPwztpPCYGSeZHBZu k0x/VwCR6hFJ/rsSqQ/g2lJ8C4/EiYTaI9T210Yf4bfMAeJXQUnBV3JF+3KwkDdH rCpq9jIObCladWfikBJraK0oziJVxZcbskrp2Kb5Qsx5NG10M/jNiJyIw9hkavtc l2sBrja9M+7qrEAJe2Ck1Uz6YvPY5VBJh6NxdQSqNun6GUvlg+Y1xmrMk7i3Mtiw JHTdUFnTXfP/tvtl6+EU7ibhX+w54gFurawqbu/2G2VPnBUt+YrsyNlHQLNE1lPo sDwr8COzIa/Hn5Ki483GngfA2tYyw5HCOUek5nQK/jEtGVsvnzT9IF9tiFumuK9s gRdoCNHU+dAK0zTyJrlhZbsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15138449867636601642185198009651575431 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-23 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.alpho.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 893502486158555183076536077146686271676989782843025467695929712933903966110302116460096935951063058673508016981460718112916599704787385264562732830980557349290405754832423674694468162150208471355376722611125940536969335924175668304541766369897024603718642229856097529729739325326495935730398207430087138721098466538553197874648394202490571511235870587543391726988122653744881595238658095146526136043889038052131824214458358629227833942975985783002801621837999131063499297696317143804359272371482355625194827289509155501374511155402870309847960513996484050602265217985504837738188562560444550947145022928959598827434986307878603872776553984306586962979168778084208685510997528979741618506056077433592766102833006086578111699219293559064340614383191726531243644863162064560436810356938385136565343281566847608279949550683035196511609742208848902309663249224938115812782673993659714531158046547708511285901119517360428050107554260509738224408497789407862107187408200114734055880167929447812022958535832075012238262940951683569121917518832093507083952051421924227122943175576242320828047867870803651815687845918218813050902894167672892658699961469088594015690211285716420593345222528721443996627299706846327953647085938975349273633318331 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 11939a65d8dc9f111d920e6764ab374f0715ecdf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.alpho.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alpho.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'backend.alpho.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 00a5f126faf75022665476051b975f70edb49249682cd8aa882154898b25944a30555b488275a711bf9f840bac214e565ebbfb4db0b92472c3374169aa733d36cce8193803f46147aad3c07afcb3fd82f7ec7cb3893ec8148b18babd3fae5520ea200c866cb648b1391470ddcb7d6756c451f0b97c45374df92217f393a7cd6d9a4e3e4802623612a2cae9bc74f740d2d97166094c127a4163245208e11cd5c862b5959406ab0eac2bafa14e2b8933bbc9145ff5cb39a6ca9bb42ca86c02fa1394db940027f0fc1b2ca08c29ad11db4caf2e93b6a85c93c147b94b4523eef04f986d0e31af3cf0b94143d04c8a0f7d0c0292ad013f5844bdae3d56b15ea46c60e9b6d0ca724014dc531dc4ab4e211f7bea23c9ce69601ba60d2482787dcde5e7dc8329469eeccf85f17d4c7024650c97a1dae03ecfff2b24be8b0cc605ff9854e51a99f937b3816d8b423d4fbe0d2f2ecc64c7da03b5f47b189e4fea4edc451dbfdc47e1aa253cbf87628c9386d40a077381d7296b387acfa7c8e9955da22480b5a4adb712cad87ce8f7e5b4bdcae4543107907cc7461f61fd6b1a7ba6309d8891d08ae2d4e15edc872f5a30109c5f865b210658c8bc508d618b2a9640b0ebb6c9e574a902751cd46c9a246d355d12569905a666630a8374e3f51e762a8c76e875b70a5547a52fcc74622712b36414dd1e883c8ad768647af2a9dee42a701bbcd1