download.nicd.ac.za
- NATIONAL HEALTH LABORATORY SERVICES -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 0a:7b:ce:5f:bd:07:00:2a:16:1b:0a:d3:d9:0e:6d:25 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
NATIONAL HEALTH LABORATORY SERVICES
Organization:
NATIONAL HEALTH LABORATORY SERVICES
Organization unit: IT
Organization unit: IT
Locality:
Johannesburg
Country: ZA
Country: ZA
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:7b:ce:5f:bd:07:00:2a:16:1b:0a:d3:d9:0e:6d:25Serial Number (int): 13935118233003863739894376458947030309
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 5e:dd:23:f1:c5:95:47:17:03:51:2e:42:ab:ba:71:0a:e0:e2:16:6b
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): cd:92:1e:d3:90:7d:d5:67:9f:0c:d2:d9:08:a4:f1:c0:4a:a2:db:75
Fingerprint (sha256): bc:a6:8c:63:89:91:21:26:d4:fc:57:8f:42:4b:49:d7:00:d1:ab:c0:dd:ed:97:a7:c6:9e:f9:62:98:c0:8e:28
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate download.nicd.ac.za
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for download.nicd.ac.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
download.nicd.ac.za
Other certificates including the domain name nicd.ac.za
(limited to 100 certificates)
doctors.mycure.md
ptschemes.nicd.ac.za
webmail.nicd.ac.za
securelogin.nicd.ac.za
webmail.nicd.ac.za
www.weaknesswork.com
nicdbramowas.nicd.ac.za
survey.nicd.ac.za
gis.nicd.ac.za
*.nicd.ac.za
wastewater.nicd.ac.za
www.gamasoft.co.uk
*.nicd.ac.za
securelogin.nicd.ac.za
sandexweb.nicd.ac.za
webmail.nicd.ac.za
nicdeocvcse01.nicd.ac.za
*.nicd.ac.za
legacy.nicd.ac.za
sandae.nicd.ac.za
autodiscover.nicd.ac.za
*.nicd.ac.za
download.nicd.ac.za
mstrmobile.nicd.ac.za
bramexweb.nicd.ac.za
query.nicd.ac.za
www.salavirtual.retransmision.mx
nicdsandowas.nicd.ac.za
ptschemes.nicd.ac.za
ptschemes.nicd.ac.za
securelogin.nicd.ac.za
webmail.nicd.ac.za
gis.nicd.ac.za
www.foodiebot.recipes
query.nicd.ac.za
webmail.nicd.ac.za
autodiscover.nicd.ac.za
download.nicd.ac.za
ptschemes.nicd.ac.za
webmail.nicd.ac.za
autodiscover.nicd.ac.za
laviwoodsculpting.com
webmail.nicd.ac.za
nicdeocvcsc01.nicd.ac.za
autodiscover.nicd.ac.za
legacy.nicd.ac.za
sandexweb.nicd.ac.za
www.korley.net
sandexweb.nicd.ac.za
bramae.nicd.ac.za
app.bridgetownresearch.org
ptschemes.nicd.ac.za
webmail.nicd.ac.za
securelogin.nicd.ac.za
webmail.nicd.ac.za
www.weaknesswork.com
nicdbramowas.nicd.ac.za
survey.nicd.ac.za
gis.nicd.ac.za
*.nicd.ac.za
wastewater.nicd.ac.za
www.gamasoft.co.uk
*.nicd.ac.za
securelogin.nicd.ac.za
sandexweb.nicd.ac.za
webmail.nicd.ac.za
nicdeocvcse01.nicd.ac.za
*.nicd.ac.za
legacy.nicd.ac.za
sandae.nicd.ac.za
autodiscover.nicd.ac.za
*.nicd.ac.za
download.nicd.ac.za
mstrmobile.nicd.ac.za
bramexweb.nicd.ac.za
query.nicd.ac.za
www.salavirtual.retransmision.mx
nicdsandowas.nicd.ac.za
ptschemes.nicd.ac.za
ptschemes.nicd.ac.za
securelogin.nicd.ac.za
webmail.nicd.ac.za
gis.nicd.ac.za
www.foodiebot.recipes
query.nicd.ac.za
webmail.nicd.ac.za
autodiscover.nicd.ac.za
download.nicd.ac.za
ptschemes.nicd.ac.za
webmail.nicd.ac.za
autodiscover.nicd.ac.za
laviwoodsculpting.com
webmail.nicd.ac.za
nicdeocvcsc01.nicd.ac.za
autodiscover.nicd.ac.za
legacy.nicd.ac.za
sandexweb.nicd.ac.za
www.korley.net
sandexweb.nicd.ac.za
bramae.nicd.ac.za
app.bridgetownresearch.org
Certificate
The complete raw certificate details for download.nicd.ac.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG9zCCBd+gAwIBAgIQCnvOX70HACoWGwrT2Q5tJTANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTgwMjAyMDAwMDAwWhcNMjEwMjAxMTIwMDAwWjB9MQswCQYDVQQGEwJaQTEVMBMG A1UEBxMMSm9oYW5uZXNidXJnMSwwKgYDVQQKEyNOQVRJT05BTCBIRUFMVEggTEFC T1JBVE9SWSBTRVJWSUNFUzELMAkGA1UECxMCSVQxHDAaBgNVBAMTE2Rvd25sb2Fk Lm5pY2QuYWMuemEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgRp8t 1r6D6qv4Z2KKRnfOWnoa4fkBwRMNTLB3RGXtu4HomIJVxdJzd2NxVDkc9ZWXzsJt KzOc4MJ8tcvmwnugYoPYpP89G+c42rwiTbAxDuAh08sgxyDv+5lLxqSynGwmw+Jz /Z0E5oBnO+l+dkeDBFezgsB43pZFVT/tADeQowJcW4/09nav7qC3RpgO2061K7ic HBRzn7K5UT72gv8+5R6sJLYlOP3ihH6G4I358yafAp3kiAlEoUD9HU7ZMVt2dpgh 6LNZPzbpdMPpQZdoCXRNuT4vQCGheGDSf3YmhXKkLab+tGbMi2e3bhugTshOOk1X svtpXm842htIGCXvAgMBAAGjggOSMIIDjjAfBgNVHSMEGDAWgBSjyF5lVOUweMEF 6gcKalnMuf7eWjAdBgNVHQ4EFgQUXt0j8cWVRxcDUS5Cq7pxCuDiFmswHgYDVR0R BBcwFYITZG93bmxvYWQubmljZC5hYy56YTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDoGA1UdHwQzMDEwL6AtoCuGKWh0dHA6 Ly9jZHAudGhhd3RlLmNvbS9UaGF3dGVSU0FDQTIwMTguY3JsMEwGA1UdIARFMEMw NwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0 LmNvbS9DUFMwCAYGZ4EMAQICMG8GCCsGAQUFBwEBBGMwYTAkBggrBgEFBQcwAYYY aHR0cDovL3N0YXR1cy50aGF3dGUuY29tMDkGCCsGAQUFBzAChi1odHRwOi8vY2Fj ZXJ0cy50aGF3dGUuY29tL1RoYXd0ZVJTQUNBMjAxOC5jcnQwCQYDVR0TBAIwADCC AfUGCisGAQQB1nkCBAIEggHlBIIB4QHfAHUApLkJkLQYWBSHuxOizGdwCjw1mAT5 G9+443fNDsgN3BAAAAFhViPxpQAABAMARjBEAiAmlhbC0/07Lvsi+nOgIax+3USr JZIGDaVYgzzimyUZxAIgKsRmevO1jNRuMhLb969IlfMP0kdgddOpXcgoyZMmaa0A dgCHdb/nWXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/XqCDDwAAAWFWI/JTAAAEAwBH MEUCIQDyo08cib35gMfZid4RXj47jnU2uSFIk6b1vWJuBvK2AAIgdK+9A44gDq6z okrHPxB2beEEN4uMxYf/MIy/yXAoq98AdgC72d+8H4pxtZOUI5eqkntHOFeVCqtS 6BqQlmQ2jh7RhQAAAWFWI/GwAAAEAwBHMEUCIQDCFJBHzPHGwkO681I+XmUZKp5Y Dh18Uf2nezlAf7wy3gIgG7wJiBDA8Z9vP1ULc34BATM0F87z7FApmmeKlUSW65oA dgBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAWFWI/R1AAAEAwBH MEUCIQCMgLlKkrv5t+NQAEzil95GLRIvyNhUzO+dERx767+dEgIgAfdivKoae3lX 0ZwAco8wxpa4732RPZLIBDst8xWdRhwwDQYJKoZIhvcNAQELBQADggEBAL5LiYiJ vWwCf4tE/IEH/q09wlz5xLLH+zYZM7/CV8DMKU2VCyZVgDab5FwvPJw9NwosorG5 MzMdL2CsjzJDavPKjBz/FHqJaUOsnLi7IvvzaPvY05S+Z4CM3rGHBlwofgqJUneZ Er0t+qmDrSyo6P5SnM9UgBr1CZtw+RdiXtxWrR9bddshNQjgy9jNk3Fc/XWB5KA6 VJF1Xxix02+45IQMExpZnuplP9SnbG/nz7FVxqssSFFqWLI7Er9y13XwLv1Z6FoW niJuXKDYK4eqUQmQkFWrIC1awvrJhpYlyhvUM1i8MF3kpHFUeMKo5u68eeD31gLc aRqqjZhYlNtBhh4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoEafLda+g+qr+GdiikZ3 zlp6GuH5AcETDUywd0Rl7buB6JiCVcXSc3djcVQ5HPWVl87CbSsznODCfLXL5sJ7 oGKD2KT/PRvnONq8Ik2wMQ7gIdPLIMcg7/uZS8akspxsJsPic/2dBOaAZzvpfnZH gwRXs4LAeN6WRVU/7QA3kKMCXFuP9PZ2r+6gt0aYDttOtSu4nBwUc5+yuVE+9oL/ PuUerCS2JTj94oR+huCN+fMmnwKd5IgJRKFA/R1O2TFbdnaYIeizWT826XTD6UGX aAl0Tbk+L0AhoXhg0n92JoVypC2m/rRmzItnt24boE7ITjpNV7L7aV5vONobSBgl 7wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13935118233003863739894376458947030309 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-01 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Johannesburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NATIONAL HEALTH LABORATORY SERVICES' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'download.nicd.ac.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20232953698735915126442339180822357704254815273681254968312441320019847335675048011852968709380190127678345215324528167428757259257992920611599922653406735772052065897783597067289771297556447315354131678248907478268949744030108990673105341785586090575377869377311793522863102712101187330493071604401227114989030508752506742998361017332721159174962987277078864435738535991770541195609493872035928536667143774191222282327794547799056392527627525229566109033968955295610345624293980257170390492598222552606407028797193730572831789420695640632849094788109253760126590576938597537437957012325759357470556409278378892862959 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5edd23f1c595471703512e42abba710ae0e2166b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'download.nicd.ac.za' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (485 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (481 bytes) 01df007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc10000001615623f1a500000403004630440220269616c2d3fd3b2efb22fa73a021ac7edd44ab2592060da558833ce29b2519c402202ac4667af3b58cd46e3212dbf7af4895f30fd2476075d3a95dc828c9932669ad0076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f000001615623f2530000040300473045022100f2a34f1c89bdf980c7d989de115e3e3b8e7536b9214893a6f5bd626e06f2b600022074afbd038e200eaeb3a24ac73f10766de104378b8cc587ff308cbfc97028abdf007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed185000001615623f1b00000040300473045022100c2149047ccf1c6c243baf3523e5e65192a9e580e1d7c51fda77b39407fbc32de02201bbc098810c0f19f6f3f550b737e0101333417cef3ec50299a678a954496eb9a0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001615623f47500000403004730450221008c80b94a92bbf9b7e350004ce297de462d122fc8d854ccef9d111c7bebbf9d12022001f762bcaa1a7b7957d19c00728f30c696b8ef7d913d92c8043b2df3159d461c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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