www.verisigndns.com
- Verisign, Inc -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 02:9e:c1:18:cd:bc:25:37:79:ec:8b:e5:b8:0b:fe:be was issued on by DigiCert Inc.
With 26 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Verisign, Inc
Organization:
Verisign, Inc
State / Province:
Virginia
Locality: Reston
Country: US
Locality: Reston
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 02:9e:c1:18:cd:bc:25:37:79:ec:8b:e5:b8:0b:fe:beSerial Number (int): 3482755365419620444230987001298157246
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 25:28:d6:d1:80:0a:0a:b2:40:0f:07:04:08:09:33:43:ab:98:33:a4
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): 0f:22:43:78:ac:4f:30:d2:da:ed:fb:be:86:a7:27:9a:c1:c1:d4:2a
Fingerprint (sha256): bb:09:a3:41:d6:33:d4:11:42:04:10:10:3e:cf:c7:e3:9c:1f:7c:ed:16:e3:16:8a:be:bf:1d:06:e4:58:f4:f1
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate www.verisigndns.com
26
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.verisigndns.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.verisigndns.com
dnssec.org
dnssecsigningservice.net
dnssecforum.com
cap.verisigninc.com
dnssecforum.net
dnssec.com
dnssecsigningservice.com
verisigndns.com
www.dnssecforum.net
www.nic.name
verisigndnssec.net
nic.cc
www.dnssec.com
www.dnssecsigningservice.com
www.verisigndnssec.com
tipstogetonline.com
nic.name
www.dnssec.org
www.dnssecsigningservice.net
www.verisigndnssec.net
www.tipstogetonline.com
registrarprograms.verisigninc.com
www.dnssecforum.com
www.nic.cc
verisigndnssec.com
dnssec.org
dnssecsigningservice.net
dnssecforum.com
cap.verisigninc.com
dnssecforum.net
dnssec.com
dnssecsigningservice.com
verisigndns.com
www.dnssecforum.net
www.nic.name
verisigndnssec.net
nic.cc
www.dnssec.com
www.dnssecsigningservice.com
www.verisigndnssec.com
tipstogetonline.com
nic.name
www.dnssec.org
www.dnssecsigningservice.net
www.verisigndnssec.net
www.tipstogetonline.com
registrarprograms.verisigninc.com
www.dnssecforum.com
www.nic.cc
verisigndnssec.com
Other certificates including the domain name verisigndns.com
(limited to 100 certificates)
www.verisigndns.com
qa.verisigndns.com
verisigndns.com
www.verisigndns.com
www.verisigndns.com
ote.verisigndns.com
mdns.verisign.com
www.verisigndns.com
mdns.verisign.com
ote.verisigndns.com
rdap.verisign.com
download.verisigndns.com
qa.verisigndns.com
mdns.verisign.com
ote.verisigndns.com
download.verisigndns.com
mdns.verisign.com
mdns.verisign.com
WWW.DNS-TOOL.COM
www.verisigndns.com
rdap.verisign.com
rdap.verisign.com
qa3-mdns.verisign.com
qa.verisigndns.com
mdns.verisign.com
www.verisigndns.com
rdap.verisign.com
qa2-mdns.verisign.com
verisigndns.com
qa1-mdns.verisign.com
verisigndns.com
WWW.DNS-TOOL.COM
ote.verisigndns.com
www.verisigndns.com
www.verisigndns.com
mdns.verisign.com
mdns.verisign.com
qa.verisigndns.com
verisigndns.com
www.verisigndns.com
www.verisigndns.com
ote.verisigndns.com
mdns.verisign.com
www.verisigndns.com
mdns.verisign.com
ote.verisigndns.com
rdap.verisign.com
download.verisigndns.com
qa.verisigndns.com
mdns.verisign.com
ote.verisigndns.com
download.verisigndns.com
mdns.verisign.com
mdns.verisign.com
WWW.DNS-TOOL.COM
www.verisigndns.com
rdap.verisign.com
rdap.verisign.com
qa3-mdns.verisign.com
qa.verisigndns.com
mdns.verisign.com
www.verisigndns.com
rdap.verisign.com
qa2-mdns.verisign.com
verisigndns.com
qa1-mdns.verisign.com
verisigndns.com
WWW.DNS-TOOL.COM
ote.verisigndns.com
www.verisigndns.com
www.verisigndns.com
mdns.verisign.com
mdns.verisign.com
Certificate
The complete raw certificate details for www.verisigndns.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIzzCCB7egAwIBAgIQAp7BGM28JTd57IvluAv+vjANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjQw NTA3MDAwMDAwWhcNMjUwNTA2MjM1OTU5WjBnMQswCQYDVQQGEwJVUzERMA8GA1UE CBMIVmlyZ2luaWExDzANBgNVBAcTBlJlc3RvbjEWMBQGA1UEChMNVmVyaXNpZ24s IEluYzEcMBoGA1UEAxMTd3d3LnZlcmlzaWduZG5zLmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAKZmyGNdJO2yKisAsmCQC2IbIyn2OTumSS2S+fZ8 TyVZVPr2KomRAKrWDkLivtNiFfZGL/3045qGU8T8eqx4FhOZd6ou1+hCz6rgf3sz eB0yIDSvDy0WetEeiksokNF6b9BtEEw1BiAo/7i92D20nkTSG8f8zMLdX/0g7RbM oIO6SOCb2KmPVeZJ/p6AzNXzHAqYvonlqaFIux6ot5vIXRlAy0klzd/vG0YCfy5Q wISY+3ZewhH9nZTNrrQ9C47fSiZj3HHX2alSuFK0Z+rcwzuSdRArIxPqAwDJM+3D 0zJ1AgBpjccKZQBAlrqvSGSh6HFtj/qGe0ZGW7gJoqfphp8CAwEAAaOCBYMwggV/ MB8GA1UdIwQYMBaAFHSFgMBmx9833s+9KTeqAx2+7c0XMB0GA1UdDgQWBBQlKNbR gAoKskAPBwQICTNDq5gzpDCCAhEGA1UdEQSCAggwggIEghN3d3cudmVyaXNpZ25k bnMuY29tggpkbnNzZWMub3JnghhkbnNzZWNzaWduaW5nc2VydmljZS5uZXSCD2Ru c3NlY2ZvcnVtLmNvbYITY2FwLnZlcmlzaWduaW5jLmNvbYIPZG5zc2VjZm9ydW0u bmV0ggpkbnNzZWMuY29tghhkbnNzZWNzaWduaW5nc2VydmljZS5jb22CD3Zlcmlz aWduZG5zLmNvbYITd3d3LmRuc3NlY2ZvcnVtLm5ldIIMd3d3Lm5pYy5uYW1lghJ2 ZXJpc2lnbmRuc3NlYy5uZXSCBm5pYy5jY4IOd3d3LmRuc3NlYy5jb22CHHd3dy5k bnNzZWNzaWduaW5nc2VydmljZS5jb22CFnd3dy52ZXJpc2lnbmRuc3NlYy5jb22C E3RpcHN0b2dldG9ubGluZS5jb22CCG5pYy5uYW1lgg53d3cuZG5zc2VjLm9yZ4Ic d3d3LmRuc3NlY3NpZ25pbmdzZXJ2aWNlLm5ldIIWd3d3LnZlcmlzaWduZG5zc2Vj Lm5ldIIXd3d3LnRpcHN0b2dldG9ubGluZS5jb22CIXJlZ2lzdHJhcnByb2dyYW1z LnZlcmlzaWduaW5jLmNvbYITd3d3LmRuc3NlY2ZvcnVtLmNvbYIKd3d3Lm5pYy5j Y4ISdmVyaXNpZ25kbnNzZWMuY29tMD4GA1UdIAQ3MDUwMwYGZ4EMAQICMCkwJwYI KwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGfBgNVHR8EgZcw gZQwSKBGoESGQmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2Jh bEcyVExTUlNBU0hBMjU2MjAyMENBMS0xLmNybDBIoEagRIZCaHR0cDovL2NybDQu ZGlnaWNlcnQuY29tL0RpZ2lDZXJ0R2xvYmFsRzJUTFNSU0FTSEEyNTYyMDIwQ0Ex LTEuY3JsMIGHBggrBgEFBQcBAQR7MHkwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmRpZ2ljZXJ0LmNvbTBRBggrBgEFBQcwAoZFaHR0cDovL2NhY2VydHMuZGlnaWNl cnQuY29tL0RpZ2lDZXJ0R2xvYmFsRzJUTFNSU0FTSEEyNTYyMDIwQ0ExLTEuY3J0 MAwGA1UdEwEB/wQCMAAwggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB2AE51oydc mhDDOFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABj1SOB4kAAAQDAEcwRQIgAkMF 0VMT77xifW+I3IOtrW2ypz4U9ODh00KJDvgbYw8CIQD0hbvfgnQxsdOIvGdoj9M9 Kl4cPZZGUjzvKnUFJ466UAB2AH1ZHhLheCp7HGFnfF79+NCHXBSgTpWeuQMv2Q6M Lnm4AAABj1SOB7sAAAQDAEcwRQIhAPRalRCaTn38WnhpqTQEieCITcLQGzqg1RuJ FMJi572GAiA5fAJkU8gxM3Awoq365ngE579wrqII73PS3FquX8EHvQB1AObSMWNA d4zBEEEG13G5zsHSQPaWhIb7uocyHf0eN45QAAABj1SOB9AAAAQDAEYwRAIgRIa5 vnzSP3B33/zmip+0StBRgPbKfGw5hOEtrZwLxEACIE7CVE29I33Y4dqhLwJdUqGh fBlobPNz1iQEFtacQQT7MA0GCSqGSIb3DQEBCwUAA4IBAQCa236fpPyUVNYgZSMI U+gFcJ6YKC1CppYGeC6bs7l8Zuvuynt3nOrCheL3F5cRBYTiyWv/sCf92FNS8EsH VDJckT0rcvLE7Rk25sqDHTVWRNHV7+EyVN+TMELHvQMlO9TSH2gnQodNHNyGNnD8 7yz2BMXpqyc6yGmZQ7HSb0BTyjfmyyHwIdiL/y+8jkjsaDTr6ecPW0fNwzcXOIvi rRyYYFiuDhVBuHODmyU3FLK5X37kxxl3QpSKCXRHK88IfZBp08Q4C4qVip9pO0mv kzF245G9X/Sa40KyHl0hDynmRfwKbbH1ptJ7/86rmgpoK/XE1fXmsBRr2oxnbIlQ LVyq -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmbIY10k7bIqKwCyYJAL YhsjKfY5O6ZJLZL59nxPJVlU+vYqiZEAqtYOQuK+02IV9kYv/fTjmoZTxPx6rHgW E5l3qi7X6ELPquB/ezN4HTIgNK8PLRZ60R6KSyiQ0Xpv0G0QTDUGICj/uL3YPbSe RNIbx/zMwt1f/SDtFsygg7pI4JvYqY9V5kn+noDM1fMcCpi+ieWpoUi7Hqi3m8hd GUDLSSXN3+8bRgJ/LlDAhJj7dl7CEf2dlM2utD0Ljt9KJmPccdfZqVK4UrRn6tzD O5J1ECsjE+oDAMkz7cPTMnUCAGmNxwplAECWuq9IZKHocW2P+oZ7RkZbuAmip+mG nwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3482755365419620444230987001298157246 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Virginia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Reston' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Verisign, Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.verisigndns.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21006242695386314769928531470339303507171862039467226191688522466251370020106408317725806930310087907446434582922423993741956365550373448546387281118588164071775402358935865324826592224917930568439797549316646146928888848717750737195050291056419393849973845349276500212666682520204317205065344029754109036474984084793016903565388447815632905944989349097165738146564244380980417643683997684763973350803083217111047637385763039733696943431916183374593355621078223630311530870112408691228399059891096223706803211512206668621133566515911576090372407681107391931476488953551323672301971308582042644431687435385533744383647 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2528d6d1800a0ab2400f070408093343ab9833a4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (520 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.verisigndns.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dnssec.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dnssecsigningservice.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dnssecforum.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cap.verisigninc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dnssecforum.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dnssec.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dnssecsigningservice.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'verisigndns.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dnssecforum.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nic.name' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'verisigndnssec.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nic.cc' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dnssec.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dnssecsigningservice.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.verisigndnssec.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tipstogetonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nic.name' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dnssec.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dnssecsigningservice.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.verisigndnssec.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tipstogetonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'registrarprograms.verisigninc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dnssecforum.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nic.cc' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'verisigndnssec.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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