spintra.mpo.cz
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 05:fe:d1:46:ea:88:57:8d:70:93:16:36:58:c1:11:6f was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=spintra.mpo.cz
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:fe:d1:46:ea:88:57:8d:70:93:16:36:58:c1:11:6fSerial Number (int): 7969228023155284444437129370655592815
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: d1:33:8f:9e:fc:a7:a8:e6:27:c0:72:77:51:e1:da:93:20:77:27:6b
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): 6f:f8:fd:28:66:99:52:3a:cf:7f:e8:4f:c1:fc:02:a0:74:63:32:b0
Fingerprint (sha256): b7:16:0c:ab:92:41:18:e6:e6:da:78:34:38:83:3c:c3:55:2c:4c:e4:f9:04:55:38:7b:90:aa:75:f9:82:84:8b
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate spintra.mpo.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for spintra.mpo.cz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
spintra.mpo.cz
www.spintra.mpo.cz
www.spintra.mpo.cz
Other certificates including the domain name mpo.cz
(limited to 100 certificates)
druhotnasurovina.mpo.cz
druhotnasurovina.mpo.cz
adfs.mpo.cz
www.mpo.cz
miss.mpo.cz
trio.mpo.cz
cafe.mpo.cz
monitoring.mpo.cz
mis.mpo.cz
druhotnasurovina.mpo.cz
druhotnasurovina.cz
cafe.mpo.cz
registr.mpo.cz
druhotnasurovina.mpo.cz
monitoring.mpo.cz
monitoring.mpo.cz
foreigners.mpo.cz
aimapa.mpo.cz
vykazy.mpo.cz
activesync.mpo.cz
monitoring.mpo.cz
trio.mpo.cz
cafe.mpo.cz
aisportal.mpo.cz
adfs.mpo.cz
monitoring.mpo.cz
aisportal.mpo.cz
monitoring.mpo.cz
vykazy.mpo.cz
foreigners.mpo.cz
druhotnasurovina.mpo.cz
adfs.mpo.cz
foreigners.mpo.cz
druhotnasurovina.cz
ais.mpo.cz
blockchain.mpo.cz
www.mpo.gov.cz
druhotnasurovina.mpo.cz
trio.mpo.cz
aimapa.mpo.cz
druhotnasurovina.cz
mapi.mpo.cz
www.mpo.cz
monitoring.mpo.cz
registr.mpo.cz
mpo.cz
www.mpo.cz
foreigners.mpo.cz
cafe.mpo.cz
trios.mpo.cz
adfs.mpo.cz
foreigners.mpo.cz
foreigners.mpo.cz
cafe.mpo.cz
druhotnasurovina.mpo.cz
cafe.mpo.cz
foreigners.mpo.cz
miss.mpo.cz
autodiscover.mpo.cz
www.mpo.cz
ews.mpo.cz
druhotnasurovina.mpo.cz
aimapa.mpo.cz
trio.mpo.cz
monitoring.mpo.cz
trio.mpo.cz
monitoring.mpo.cz
druhotnasurovina.cz
elisportal.mpo.cz
druhotnasurovina.cz
vykazy.mpo.cz
monitoring.mpo.cz
foreigners.mpo.cz
miss.mpo.cz
spintra.mpo.cz
foreigners.mpo.cz
www.mpo.cz
druhotnasurovina.cz
mis.mpo.cz
druhotnasurovina.cz
druhotnasurovina.cz
homeoffice.mpo.cz
tip.mpo.cz
miss.mpo.cz
druhotnasurovina.cz
monitoring.mpo.cz
foreigners.mpo.cz
monitoring.mpo.cz
vykazy.mpo.cz
owa.mpo.cz
cafe.mpo.cz
cafe.mpo.cz
vykazy.mpo.cz
trio.mpo.cz
blockchain.mpo.cz
www.mpo.cz
druhotnasurovina.cz
monitoring.mpo.cz
forms.mpo.cz
druhotnasurovina.mpo.cz
adfs.mpo.cz
www.mpo.cz
miss.mpo.cz
trio.mpo.cz
cafe.mpo.cz
monitoring.mpo.cz
mis.mpo.cz
druhotnasurovina.mpo.cz
druhotnasurovina.cz
cafe.mpo.cz
registr.mpo.cz
druhotnasurovina.mpo.cz
monitoring.mpo.cz
monitoring.mpo.cz
foreigners.mpo.cz
aimapa.mpo.cz
vykazy.mpo.cz
activesync.mpo.cz
monitoring.mpo.cz
trio.mpo.cz
cafe.mpo.cz
aisportal.mpo.cz
adfs.mpo.cz
monitoring.mpo.cz
aisportal.mpo.cz
monitoring.mpo.cz
vykazy.mpo.cz
foreigners.mpo.cz
druhotnasurovina.mpo.cz
adfs.mpo.cz
foreigners.mpo.cz
druhotnasurovina.cz
ais.mpo.cz
blockchain.mpo.cz
www.mpo.gov.cz
druhotnasurovina.mpo.cz
trio.mpo.cz
aimapa.mpo.cz
druhotnasurovina.cz
mapi.mpo.cz
www.mpo.cz
monitoring.mpo.cz
registr.mpo.cz
mpo.cz
www.mpo.cz
foreigners.mpo.cz
cafe.mpo.cz
trios.mpo.cz
adfs.mpo.cz
foreigners.mpo.cz
foreigners.mpo.cz
cafe.mpo.cz
druhotnasurovina.mpo.cz
cafe.mpo.cz
foreigners.mpo.cz
miss.mpo.cz
autodiscover.mpo.cz
www.mpo.cz
ews.mpo.cz
druhotnasurovina.mpo.cz
aimapa.mpo.cz
trio.mpo.cz
monitoring.mpo.cz
trio.mpo.cz
monitoring.mpo.cz
druhotnasurovina.cz
elisportal.mpo.cz
druhotnasurovina.cz
vykazy.mpo.cz
monitoring.mpo.cz
foreigners.mpo.cz
miss.mpo.cz
spintra.mpo.cz
foreigners.mpo.cz
www.mpo.cz
druhotnasurovina.cz
mis.mpo.cz
druhotnasurovina.cz
druhotnasurovina.cz
homeoffice.mpo.cz
tip.mpo.cz
miss.mpo.cz
druhotnasurovina.cz
monitoring.mpo.cz
foreigners.mpo.cz
monitoring.mpo.cz
vykazy.mpo.cz
owa.mpo.cz
cafe.mpo.cz
cafe.mpo.cz
vykazy.mpo.cz
trio.mpo.cz
blockchain.mpo.cz
www.mpo.cz
druhotnasurovina.cz
monitoring.mpo.cz
forms.mpo.cz
Certificate
The complete raw certificate details for spintra.mpo.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHHjCCBgagAwIBAgIQBf7RRuqIV41wkxY2WMERbzANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MjIwODA5MDAwMDAwWhcNMjMwNzIxMjM1OTU5WjAZMRcwFQYDVQQDEw5zcGludHJh Lm1wby5jejCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOnRqLTaZLHm FhoApv2rK8b0hQiBFb85QkncPFOASgHOwS9FUvEjVqnr3kdu4NoxvGdSjeQTDOL+ J3XA7JvpadrlOFAFuH4qtKhehBUOJdT5BnqAwjVEgLLLbX013O6flkbx4eLaDwVM fylsezr6QAIokrrLnezjOm5k5AeDUQh5EAet0WXOmMSllgrPT9wixRlkJoqyVxfu bzzXmknPH/2tPXwKEmdojYAVQtTQs+/R/BTcv3QIFcELVr3Tnskn+NSge5wc/4gk k0bIf9ZlnV8LxYM24ZZNpIsi8cZECeHO1MpFQ0bDg99Q6vMCu6NUyg9nOBxTCFsq LZ4e7S3TTBl8wHmPMKmHVlsVIZ4qMr9jyjATUihUZgnLjRFQ6RX97ir3sx8JrO0P Vb9oLG1XzmKPJxs5yaJ+AHlqmhO6dUCbK7EEci4qMAZu1oijBe2sycfib42wyDRo tEuEP0Ljg54VCEgOvEhnp+Qv3GfA8SoTrbXxJY6o8QIpQt38+Gx9OsVFy7iA4zhw 30bRlX/q7SlJM0YbW8J2u7M6POO0wXS6wRgcoJ8AowSZx1caK5tYnEwMr4RjCRFe UlK8a9ZkC2o3of3RLQD1BnNG0KE31s5pel6PtBFDBPFn0fPlR5lA/DASxAz23+HG JQH7NG598Z2eDgie2bhLT08m16B9ZsP5AgMBAAGjggMdMIIDGTAfBgNVHSMEGDAW gBSjyF5lVOUweMEF6gcKalnMuf7eWjAdBgNVHQ4EFgQU0TOPnvynqOYnwHJ3UeHa kyB3J2swLQYDVR0RBCYwJIIOc3BpbnRyYS5tcG8uY3qCEnd3dy5zcGludHJhLm1w by5jejAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMDoGA1UdHwQzMDEwL6AtoCuGKWh0dHA6Ly9jZHAudGhhd3RlLmNvbS9UaGF3 dGVSU0FDQTIwMTguY3JsMD4GA1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYBBQUH AgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzBvBggrBgEFBQcBAQRjMGEw JAYIKwYBBQUHMAGGGGh0dHA6Ly9zdGF0dXMudGhhd3RlLmNvbTA5BggrBgEFBQcw AoYtaHR0cDovL2NhY2VydHMudGhhd3RlLmNvbS9UaGF3dGVSU0FDQTIwMTguY3J0 MAkGA1UdEwQCMAAwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB2AOg+0No+9QY1 MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABgoGfYfYAAAQDAEcwRQIgZH8pSCLX AfR3I+Y8ALx0pul1xwq1Obu6n7hTC+wi7PwCIQCMMBwh9OkFwf9NpW/qDZdA9UWu UNqHoRVEZ4WDxLOZ7QB2ADXPGRu/sWxXvw+tTG1Cy7u2JyAmUeo/4SrvqAPDO9ZM AAABgoGfYiQAAAQDAEcwRQIhAIc1CztMJZePZ5om41qAM5ZvpDBHOFGxPzVxbXBb YkVZAiAbX/RLdR9TzHq1tdOwwvxH+Q5bGBrYk/i0oq+HcjViWwB3ALc++yTfnE26 dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABgoGfYh0AAAQDAEgwRgIhAJTgRVoS Yhoh3TxXf3jjJ9eN3uvKMEQw56ITTBupN+FnAiEAhBRWHqNatlCO+RzQ87nkpsIp UWrzLWMeDSTJPB7PGaYwDQYJKoZIhvcNAQELBQADggEBAKLptRHBDjtZSrxxQjFH dDhPYqvaKceSEWMQAL4HZ21fHoY+9v4dTHn4kGR0cbi+rPdmwU1D0IOkMd1sNDq1 iSFbZZnR+aOJMvFyAAtbZNbPLPzygJvXnZ+BX9WZyOw/T6h8+Yjjl6a1/qKiVKxa VzVw0p4JIxZcZjpfBhs3UB3Y9c6pV9fPuRMvc7kgxG5HHT5mVQMlGuCkQ1YsUY9s c2fapcOMaDLASbpiWl4K6DQdK1Qr9x9595mbN9HRXir5GCdpuKQiupdkQK3RUrcW stz8LQXTkksmON2LDo144LE2HTsQhaFTOf3x3gO9eoR8BZ/LYyJed0DXxGF1qcp2 Q3U= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6dGotNpkseYWGgCm/asr xvSFCIEVvzlCSdw8U4BKAc7BL0VS8SNWqeveR27g2jG8Z1KN5BMM4v4ndcDsm+lp 2uU4UAW4fiq0qF6EFQ4l1PkGeoDCNUSAssttfTXc7p+WRvHh4toPBUx/KWx7OvpA AiiSusud7OM6bmTkB4NRCHkQB63RZc6YxKWWCs9P3CLFGWQmirJXF+5vPNeaSc8f /a09fAoSZ2iNgBVC1NCz79H8FNy/dAgVwQtWvdOeySf41KB7nBz/iCSTRsh/1mWd XwvFgzbhlk2kiyLxxkQJ4c7UykVDRsOD31Dq8wK7o1TKD2c4HFMIWyotnh7tLdNM GXzAeY8wqYdWWxUhnioyv2PKMBNSKFRmCcuNEVDpFf3uKvezHwms7Q9Vv2gsbVfO Yo8nGznJon4AeWqaE7p1QJsrsQRyLiowBm7WiKMF7azJx+JvjbDINGi0S4Q/QuOD nhUISA68SGen5C/cZ8DxKhOttfEljqjxAilC3fz4bH06xUXLuIDjOHDfRtGVf+rt KUkzRhtbwna7szo847TBdLrBGBygnwCjBJnHVxorm1icTAyvhGMJEV5SUrxr1mQL ajeh/dEtAPUGc0bQoTfWzml6Xo+0EUME8WfR8+VHmUD8MBLEDPbf4cYlAfs0bn3x nZ4OCJ7ZuEtPTybXoH1mw/kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7969228023155284444437129370655592815 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-08-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'spintra.mpo.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 953898216812825183418543450495329078158002599583545485834184465561281792072278711346200056515404626527244631418335868162172415997917403831295624170871654913682322170563377300988687519796653810319370594497469643076507447303280931661546749449134440086615413628033025655819860938300214519101042605033459719203135142211842125047142638058738529910264168550226961834585633237664487411406227017625776096471633634470653806580925578218120213083163475062614124419401557450734077338379909109361103619008283963300609229449143046917938861159366233789151120060650735095586162610272856263632823603824734235770923349194326120127390171543382849552025829818200872514541811372917364110461461749007161398126303125990693635188297374628636984982554017798402891922855265615671065836263621499827687417836001782962611239055129895377318607926807777143733700719229563436430879068583372997258514514594300484089807241859668618148174053323681025230941312550559066438480048737362639664011654969616202486918542541662423033005885334247304912237297441478352622410145446774982688008237262318529280751658179039020228156578499671028763004329069862136312609348493285896082907548274073430780852747408217778758430100228310074778818716630869322400589721222544001729818969081 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d1338f9efca7a8e627c0727751e1da932077276b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'spintra.mpo.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.spintra.mpo.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00a2e9b511c10e3b594abc7142314774384f62abda29c79211631000be07676d5f1e863ef6fe1d4c79f890647471b8beacf766c14d43d083a431dd6c343ab589215b6599d1f9a38932f172000b5b64d6cf2cfcf2809bd79d9f815fd599c8ec3f4fa87cf988e397a6b5fea2a254ac5a573570d29e0923165c663a5f061b37501dd8f5cea957d7cfb9132f73b920c46e471d3e665503251ae0a443562c518f6c7367daa5c38c6832c049ba625a5e0ae8341d2b542bf71f79f7999b37d1d15e2af9182769b8a422ba976440add152b716b2dcfc2d05d3924b2638dd8b0e8d78e0b1361d3b1085a15339fdf1de03bd7a847c059fcb63225e7740d7c46175a9ca764375