bkw-engineering.com
- BKW AG -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 02:ad:b9:17:83:9e:e7:5d:9c:30:aa:46:89:2f:27:79 was issued on by DigiCert Inc.
With 19 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
BKW AG
Organization:
BKW AG
Locality:
Bern
Country: CH
Country: CH
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 02:ad:b9:17:83:9e:e7:5d:9c:30:aa:46:89:2f:27:79Serial Number (int): 3560477456855409472206324722821965689
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 79:6f:40:27:4e:93:c6:ba:73:9b:65:82:b4:03:89:08:7f:31:01:4e
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): 81:de:ac:06:f2:9f:e5:05:e1:f1:5a:42:fc:2a:b0:f7:60:fe:38:a0
Fingerprint (sha256): bd:ee:8c:95:da:19:f9:9a:09:cb:34:4b:05:e9:b3:ee:94:e5:69:fc:cd:97:22:4f:8c:78:39:1b:b0:de:ee:9b
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate bkw-engineering.com
19
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bkw-engineering.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bkw-engineering.com
www.bkw-engineering.com
www-p.bkw-engineering.com
www-q.bkw-engineering.com
www-t.bkw-engineering.com
bkwengineering.com
www.bkwengineering.com
www-p.bkwengineering.com
www-q.bkwengineering.com
www-t.bkwengineering.com
bkw-engineering.ch
www.bkw-engineering.ch
bkw-engineering.at
www.bkw-engineering.at
bkw-engineering.de
www.bkw-engineering.de
engineering.bkw.ch
bkw.engineering
www.bkw.engineering
www.bkw-engineering.com
www-p.bkw-engineering.com
www-q.bkw-engineering.com
www-t.bkw-engineering.com
bkwengineering.com
www.bkwengineering.com
www-p.bkwengineering.com
www-q.bkwengineering.com
www-t.bkwengineering.com
bkw-engineering.ch
www.bkw-engineering.ch
bkw-engineering.at
www.bkw-engineering.at
bkw-engineering.de
www.bkw-engineering.de
engineering.bkw.ch
bkw.engineering
www.bkw.engineering
Other certificates including the domain name bkw-engineering.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for bkw-engineering.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJaDCCCFCgAwIBAgIQAq25F4Oe512cMKpGiS8neTANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjMx MTA3MDAwMDAwWhcNMjQxMTA2MjM1OTU5WjBLMQswCQYDVQQGEwJDSDENMAsGA1UE BxMEQmVybjEPMA0GA1UEChMGQktXIEFHMRwwGgYDVQQDExNia3ctZW5naW5lZXJp bmcuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwAK1kzH3kH3p e+nKLByS2zprPWEqjT0ChLs6z6DcBjambKtzo2GXoY+tN1V/qfwWnzKjmwZu+YZL HEwNg592Vh2P9slLedzgcdYD26hyshMOlaO9N6a/F0o6INiBHg5ep4IQBfZ7MbxU tNWfWbkKNjXNchpNPLlH58BFdzcJnd/DLULX7hA6AA9Hv6oZTiFjuNUbApLCZXwH E27owt3Oj/hUdJuzWFKJdoyT8eOO+Qw5Igb+JakuoXf1+B8E2ij1mQ8UmcWbblWc 0FlSej+5T7RDCCJfNRzK4qAFb1zmEgc46T4LpuO0e97VqS925RrK7fEepLcSdsf7 UK/sJSfz+IQgBikDfKwzeoXZKAmlHa67H3LJC0NmNZfZvtNKGp0V5cxV2ElQfovf nnOYT+SOvlZePlRTzZW4hio1VK7u5Aqqz6HD27YXH345H/dhtdzFqhOKwqZ9nqEY VBpDmntc2MKEVkhPJN/hEUrtAcZQ4sI3PG+pKEWfFgJcyG+i4BcLD7x82YiCKvbh LGi3CdHQ+HFeaBrhb1nEEduR7g4v0ELNh42tU7I85hwM9z1p6sbJdB3djd4NfgoG OcYWYhSwcfL6mVTeIl9AdXhxDX2fSIaadpuV538XcF6dYatwPLKJy8q80yX3Avx1 BYMbEFqYUkCrPQ26WPaNp4+bLhBsKj0CAwEAAaOCBTgwggU0MB8GA1UdIwQYMBaA FHSFgMBmx9833s+9KTeqAx2+7c0XMB0GA1UdDgQWBBR5b0AnTpPGunObZYK0A4kI fzEBTjCCAcQGA1UdEQSCAbswggG3ghNia3ctZW5naW5lZXJpbmcuY29tghd3d3cu Ymt3LWVuZ2luZWVyaW5nLmNvbYIZd3d3LXAuYmt3LWVuZ2luZWVyaW5nLmNvbYIZ d3d3LXEuYmt3LWVuZ2luZWVyaW5nLmNvbYIZd3d3LXQuYmt3LWVuZ2luZWVyaW5n LmNvbYISYmt3ZW5naW5lZXJpbmcuY29tghZ3d3cuYmt3ZW5naW5lZXJpbmcuY29t ghh3d3ctcC5ia3dlbmdpbmVlcmluZy5jb22CGHd3dy1xLmJrd2VuZ2luZWVyaW5n LmNvbYIYd3d3LXQuYmt3ZW5naW5lZXJpbmcuY29tghJia3ctZW5naW5lZXJpbmcu Y2iCFnd3dy5ia3ctZW5naW5lZXJpbmcuY2iCEmJrdy1lbmdpbmVlcmluZy5hdIIW d3d3LmJrdy1lbmdpbmVlcmluZy5hdIISYmt3LWVuZ2luZWVyaW5nLmRlghZ3d3cu Ymt3LWVuZ2luZWVyaW5nLmRlghJlbmdpbmVlcmluZy5ia3cuY2iCD2Jrdy5lbmdp bmVlcmluZ4ITd3d3LmJrdy5lbmdpbmVlcmluZzA+BgNVHSAENzA1MDMGBmeBDAEC AjApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBnwYD VR0fBIGXMIGUMEigRqBEhkJodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vRGlnaUNl cnRHbG9iYWxHMlRMU1JTQVNIQTI1NjIwMjBDQTEtMS5jcmwwSKBGoESGQmh0dHA6 Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbEcyVExTUlNBU0hBMjU2 MjAyMENBMS0xLmNybDCBhwYIKwYBBQUHAQEEezB5MCQGCCsGAQUFBzABhhhodHRw Oi8vb2NzcC5kaWdpY2VydC5jb20wUQYIKwYBBQUHMAKGRWh0dHA6Ly9jYWNlcnRz LmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbEcyVExTUlNBU0hBMjU2MjAyMENB MS0xLmNydDAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkA dQDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYuqkAZUAAAEAwBG MEQCIBG7Fvr1SzSXVVvd3AMpzULIvBGaB1itibLPRLzxyux8AiBEC6SVlf8SIC2+ Z0esCgQCaoJqEiecwwbvPNJpth6dkgB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0s gdm7v6s52IRzAAABi6qQBkcAAAQDAEgwRgIhAM/Q2KseZU5KmO8nk5set9XNkTTi wTErMFFU8HAIXi42AiEAm+q3nyquUAReziEmM84HfBZLTpNEvUrhLyYmqy7sUq8A dwA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAYuqkAaCAAAEAwBI MEYCIQCwmYnekuxzYppbkl41XO+ThEEUukLdZ8Vz44ruU1b10wIhAMuWZlFA1HPP v6KwhQrZBRPAODh5nb+cTA+UVlAANTM9MA0GCSqGSIb3DQEBCwUAA4IBAQAZm3tv S8SlfmJRB4iYrf/klVMNNy7Z+t2+9kjlyC/XKyVSTGgtby6HQjdCIq5X065cyEz3 RDS04xHuuUv9XnLYHKRK0wKzVtQTpvtwQwxH5Yoza2oN3fcHYXAqSPZjDmRbnnLl 8AQ7v2iNqmeMhJEH8Drg43nXDENovNtw6q7E2+uKKUvNX/ig5LcJnN64AdWB+Oh6 r7a0VzyytAFExlw/puW9Cvlh/yDTxqqpjw6IQxrQgbl4dcFL1jUd9RAZUzUCQi0v 0yISR8zhJL9Ty7qyQlBSUXb19qgVCJDOGql0R2+RttD0Fyr8gQe2Yy5V8X6S6UUM D+bvdjTvRjdZW+uF -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwAK1kzH3kH3pe+nKLByS 2zprPWEqjT0ChLs6z6DcBjambKtzo2GXoY+tN1V/qfwWnzKjmwZu+YZLHEwNg592 Vh2P9slLedzgcdYD26hyshMOlaO9N6a/F0o6INiBHg5ep4IQBfZ7MbxUtNWfWbkK NjXNchpNPLlH58BFdzcJnd/DLULX7hA6AA9Hv6oZTiFjuNUbApLCZXwHE27owt3O j/hUdJuzWFKJdoyT8eOO+Qw5Igb+JakuoXf1+B8E2ij1mQ8UmcWbblWc0FlSej+5 T7RDCCJfNRzK4qAFb1zmEgc46T4LpuO0e97VqS925RrK7fEepLcSdsf7UK/sJSfz +IQgBikDfKwzeoXZKAmlHa67H3LJC0NmNZfZvtNKGp0V5cxV2ElQfovfnnOYT+SO vlZePlRTzZW4hio1VK7u5Aqqz6HD27YXH345H/dhtdzFqhOKwqZ9nqEYVBpDmntc 2MKEVkhPJN/hEUrtAcZQ4sI3PG+pKEWfFgJcyG+i4BcLD7x82YiCKvbhLGi3CdHQ +HFeaBrhb1nEEduR7g4v0ELNh42tU7I85hwM9z1p6sbJdB3djd4NfgoGOcYWYhSw cfL6mVTeIl9AdXhxDX2fSIaadpuV538XcF6dYatwPLKJy8q80yX3Avx1BYMbEFqY UkCrPQ26WPaNp4+bLhBsKj0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3560477456855409472206324722821965689 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BKW AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bkw-engineering.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 783334836399490315411905378426702320199487796993881121365887662156076127956433826971800014305683089581839159301144837516264043194684611509062564949959850129899339451455383835292417459998788919342856612268918359202963800258438593248059728106560954521357834832016103194941974368334648203104492547041813340033516445353439700533022705965463641139986598829497444253955543597025298531435620018076210228588158806461739515516053331843354092743449507520439955125112354733977669271096047773301326069257800784136202702606109310211662196691609770704667974060545245723250257371393928204502134046109567654214443346851349962571557785425166132402628910094533576155265778172861770038783610277796701750514875500188931404091260743572868261723037610188504467505768746967681087879932360564270376805840072499917738915633504973552075206499004688896522679024635891588900731415037994877184944484214121740196273186825528992676152661142576034991250300095265734018432234535357258294558907348587929745293956026229571530998796458634472807785880481274662017533728018005970578870137699350251135241054595901217110082859160328838168918857377240205555502352351035768495410854630703465751014864092647405251394560755777896797166796885846215341884235868466312357790624317 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 796f40274e93c6ba739b6582b40389087f31014e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (443 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bkw-engineering.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bkw-engineering.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-p.bkw-engineering.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-q.bkw-engineering.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-t.bkw-engineering.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bkwengineering.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bkwengineering.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-p.bkwengineering.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-q.bkwengineering.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-t.bkwengineering.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bkw-engineering.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bkw-engineering.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bkw-engineering.at' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bkw-engineering.at' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bkw-engineering.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bkw-engineering.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'engineering.bkw.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bkw.engineering' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bkw.engineering' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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