cottage.countryday.net
Issued by AlphaSSL CA - SHA256 - G2
About this certificate
This digital certificate with serial number 1f:00:ea:d9:98:ef:a8:2a:3d:97:d3:1e was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=cottage.countryday.net,OU=Domain Control Validated,C=US
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 1f:00:ea:d9:98:ef:a8:2a:3d:97:d3:1eSerial Number (int): 9595144352182364334995264286
Serial Number lenght: 93 bits, 12 octets
SubjectKeyId: 99:60:53:74:4e:13:7e:f2:17:c9:5f:40:9c:a0:78:46:45:f7:8d:84
AuthorityKeyId: f5:cd:d5:3c:08:50:f9:6a:4f:3a:b7:97:da:56:83:e6:69:d2:68:f7
Fingerprint (sha1): 57:c0:3a:2a:9b:34:e2:51:3b:de:3a:8c:81:ba:c4:9d:ee:36:34:6f
Fingerprint (sha256): b8:42:2f:4c:84:ba:e0:7e:1c:e2:b1:a9:42:f5:69:e9:a3:14:42:2b:93:d5:c1:ab:57:bf:d4:f0:d2:94:6b:44
Issuing Certificate URL: http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsalphasha2g2CRL Distribution Point: http://crl2.alphassl.com/gs/gsalphasha2g2.crl
Check the revocation status for certificate cottage.countryday.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cottage.countryday.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cottage.countryday.net
Other certificates including the domain name countryday.net
(limited to 100 certificates)
owa.countryday.net
washburn.countryday.net
moodle.countryday.net
sts.countryday.net
moodle.countryday.net
www.countryday.net
moodle.countryday.net
sysadmin.countryday.net
moodle.countryday.net
moodle.countryday.net
owa.countryday.net
sts.countryday.net
www.countryday.net
cottage.countryday.net
moodle.countryday.net
www.countryday.net
moodle.countryday.net
www.countryday.net
countryday.net
cottage.countryday.net
sysadmin.countryday.net
moodle.countryday.net
countryday.net
milestone.countryday.net
moodle.countryday.net
countryday.net
cottage.countryday.net
DyKnow.countryday.net
vpn.countryday.net
dyknow.countryday.net
cottage.countryday.net
countryday.net
wright.countryday.net
sts.countryday.net
moodle.countryday.net
sysadmin.countryday.net
moodle.countryday.net
www.countryday.net
www.countryday.net
moodle.countryday.net
www.countryday.net
cottage.countryday.net
moodle.countryday.net
washburn.countryday.net
cottage.countryday.net
cottage.countryday.net
my.countryday.net
cottage.countryday.net
www.countryday.net
washburn.countryday.net
cottage.countryday.net
cottage.countryday.net
milestone.countryday.net
moodle.countryday.net
my.countryday.net
cottage.countryday.net
www.countryday.net
moodle.countryday.net
moodle.countryday.net
cottage.countryday.net
cottage.countryday.net
dyknow.countryday.net
moodle.countryday.net
cottage.countryday.net
moodle.countryday.net
wright.countryday.net
vpn.countryday.net
my.countryday.net
my.countryday.net
www.countryday.net
cottage.countryday.net
washburn.countryday.net
moodle.countryday.net
sts.countryday.net
moodle.countryday.net
www.countryday.net
moodle.countryday.net
sysadmin.countryday.net
moodle.countryday.net
moodle.countryday.net
owa.countryday.net
sts.countryday.net
www.countryday.net
cottage.countryday.net
moodle.countryday.net
www.countryday.net
moodle.countryday.net
www.countryday.net
countryday.net
cottage.countryday.net
sysadmin.countryday.net
moodle.countryday.net
countryday.net
milestone.countryday.net
moodle.countryday.net
countryday.net
cottage.countryday.net
DyKnow.countryday.net
vpn.countryday.net
dyknow.countryday.net
cottage.countryday.net
countryday.net
wright.countryday.net
sts.countryday.net
moodle.countryday.net
sysadmin.countryday.net
moodle.countryday.net
www.countryday.net
www.countryday.net
moodle.countryday.net
www.countryday.net
cottage.countryday.net
moodle.countryday.net
washburn.countryday.net
cottage.countryday.net
cottage.countryday.net
my.countryday.net
cottage.countryday.net
www.countryday.net
washburn.countryday.net
cottage.countryday.net
cottage.countryday.net
milestone.countryday.net
moodle.countryday.net
my.countryday.net
cottage.countryday.net
www.countryday.net
moodle.countryday.net
moodle.countryday.net
cottage.countryday.net
cottage.countryday.net
dyknow.countryday.net
moodle.countryday.net
cottage.countryday.net
moodle.countryday.net
wright.countryday.net
vpn.countryday.net
my.countryday.net
my.countryday.net
www.countryday.net
cottage.countryday.net
Certificate
The complete raw certificate details for cottage.countryday.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHXzCCBkegAwIBAgIMHwDq2ZjvqCo9l9MeMA0GCSqGSIb3DQEBCwUAMEwxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSIwIAYDVQQDExlB bHBoYVNTTCBDQSAtIFNIQTI1NiAtIEcyMB4XDTE2MTEwOTE5MTcxNFoXDTE4MTIy MzEzMjgxOFowUTELMAkGA1UEBhMCVVMxITAfBgNVBAsTGERvbWFpbiBDb250cm9s IFZhbGlkYXRlZDEfMB0GA1UEAxMWY290dGFnZS5jb3VudHJ5ZGF5Lm5ldDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKDvAE23/LInW0P9b5/KRUtMIQiv 5pcXlblhJ81fsx+FKnabwnSBfwvGClJGFLIT3uhZo7TWf59o5kGZi8q9lCq9D1Re 0710VP5VAPWTl2VVcup3lswPxsaI+B0C5GxeD1mogHVPVstM8IEYLM4YnxYBiRYv OYxSzZnG9yC8ecfTQFSt0t48kxjkiDl+uJ1ROu1uzpBZbQpzwjGOetPAEi0xXAen RXyDmpYfmScUPaZYFO/nsQhSAkTL7cgKv8v/ofPta8USdUPd1wTAiW+tPk7w+R2r 4ZO7kq04z+YgqcajupZ1T+stm6rF43oapm5dLuyR/JN0OirNLGxsAcNXJGsCAwEA AaOCBDowggQ2MA4GA1UdDwEB/wQEAwIFoDCBiQYIKwYBBQUHAQEEfTB7MEIGCCsG AQUFBzAChjZodHRwOi8vc2VjdXJlMi5hbHBoYXNzbC5jb20vY2FjZXJ0L2dzYWxw aGFzaGEyZzJyMS5jcnQwNQYIKwYBBQUHMAGGKWh0dHA6Ly9vY3NwMi5nbG9iYWxz aWduLmNvbS9nc2FscGhhc2hhMmcyMFcGA1UdIARQME4wQgYKKwYBBAGgMgEKCjA0 MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9iYWxzaWduLmNvbS9yZXBvc2l0 b3J5LzAIBgZngQwBAgEwCQYDVR0TBAIwADA+BgNVHR8ENzA1MDOgMaAvhi1odHRw Oi8vY3JsMi5hbHBoYXNzbC5jb20vZ3MvZ3NhbHBoYXNoYTJnMi5jcmwwIQYDVR0R BBowGIIWY290dGFnZS5jb3VudHJ5ZGF5Lm5ldDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwHQYDVR0OBBYEFJlgU3ROE37yF8lfQJygeEZF942EMB8GA1Ud IwQYMBaAFPXN1TwIUPlqTzq3l9pWg+Zp0mj3MIICcAYKKwYBBAHWeQIEAgSCAmAE ggJcAloAdwBWFAaaL9fC7NP14b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAVhKhdmW AAAEAwBIMEYCIQDZE0gSmFKiLDDmi3p++8+bFlTg54R/U0+QrytnxaCDPAIhAOIF tquKdiSRqPW3kn+EnevF2L4pl86ezVZ8UQ8RLSJAAHYA3esdK3oNT6Ygi4GtgWhw fi6OnQHVXIiNPRHEzbbsvswAAAFYSoXZkAAABAMARzBFAiEAqy3Zz0dJcR3nsSn3 HKl5ieVzGOT+9hfCYr+okojZ+cECIGNmOXg6OHgnqmK8WBRLvtMkQvZL5C7hVWTk YviRq4uwAHcAaPaY+B9kgr46jO65KB1M/HFRXWeT1ETRCmesu09P+8QAAAFYSoXZ rwAABAMASDBGAiEAzxYjf2pNyd85MfMTXVtAhqdZIPFNJ+HeQSVgGvI9s7wCIQCo fb0gsbyL+IpGbfEDvQbkH2hjhmhJTE9rSUp5wGe8vAB3AKS5CZC0GFgUh7sTosxn cAo8NZgE+RvfuON3zQ7IDdwQAAABWEqF2bkAAAQDAEgwRgIhAJ/p5nrbBVHDsXND rbE/taba7vRW+cL5oW1xfkRjD01PAiEAnSkcjo2t1Ogy8H6Hd5VKmaHIN4J4ialm LRZEhSl751AAdQDuS723dc5guuFCaR+r4Z5mow9+X7By2IMAxHuJeqj9ywAAAVhK hdybAAAEAwBGMEQCIHxrNdkyejh/NcknESiX6aVf/RxQZ26cHW1MXlwY5aouAiBt 4VBL7yQ5a5j3cdOl2eKAIWs42FrITyfniZEGfE968DANBgkqhkiG9w0BAQsFAAOC AQEATO+G0X79z2wFNR76D7lbcjp8Jbqatpemno2LKAgouS5ja9BRcpHkUvMpJxgn 4CZloXbLsL0Kbw+lr5M0BM9DY9OZ/aSNj8i3gY04ZywfjntNGCZD4HtkG85+eiJ6 +Mfy/7hMLDJeRRvP0bkfQ0lWuqMlEeMz+GNsYPu2ahYCtVu95V+2m52TK4bPjNCG EBzZv/0d6y4Nngen8E8cQDGd9Rwemkmx1FMKT+5L9PziizVzY1rsH3tHZ46pPfW2 X4Huqo5D9Goes15ThhQ254JoQSrkuZZrTe27nirsU3bIP+kthluvuPng//adM02e bUjP6vDYPFNmaujELHYIFP4M4Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoO8ATbf8sidbQ/1vn8pF S0whCK/mlxeVuWEnzV+zH4UqdpvCdIF/C8YKUkYUshPe6FmjtNZ/n2jmQZmLyr2U Kr0PVF7TvXRU/lUA9ZOXZVVy6neWzA/Gxoj4HQLkbF4PWaiAdU9Wy0zwgRgszhif FgGJFi85jFLNmcb3ILx5x9NAVK3S3jyTGOSIOX64nVE67W7OkFltCnPCMY5608AS LTFcB6dFfIOalh+ZJxQ9plgU7+exCFICRMvtyAq/y/+h8+1rxRJ1Q93XBMCJb60+ TvD5Havhk7uSrTjP5iCpxqO6lnVP6y2bqsXjehqmbl0u7JH8k3Q6Ks0sbGwBw1ck awIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9595144352182364334995264286 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AlphaSSL CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-09 19:17:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-23 13:28:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cottage.countryday.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20315984671882039319783634739552840814597478007497384131979964165966896331561616750725056124887236002891804162793856146595864908694180049983015587400654858991108151144154240914802330071092592702211721946102345181216016343188022415099636835568780961501310566303552096244894787116061929418585400680299787165216166094045915575836067743558993418770186979820747435276989638364456510285100513959215951195457673504183713940253411648168645343395870683474067905422484659860507018861120868369777855054827320100018049988804613912042070698019010449145443400182624789442163397566315734572837721058495932774954475510244122234922091 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (125 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsalphasha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10.10 (Domain Validation Certificates Policy - AlphaSSL) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl2.alphassl.com/gs/gsalphasha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cottage.countryday.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 996053744e137ef217c95f409ca0784645f78d84 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f5cdd53c0850f96a4f3ab797da5683e669d268f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (608 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (604 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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