www.hofa.de
- HOFA GmbH -
Issued by GeoTrust RSA CA 2018
About this certificate
This digital certificate with serial number 04:e5:f9:4f:d4:3d:bc:1b:e3:f7:5a:b3:9b:2f:34:28 was issued on by DigiCert Inc.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
HOFA GmbH
Organization:
HOFA GmbH
State / Province:
Baden-Württemberg
Locality: Karlsdorf-Neuthard
Country: DE
Locality: Karlsdorf-Neuthard
Country: DE
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:e5:f9:4f:d4:3d:bc:1b:e3:f7:5a:b3:9b:2f:34:28Serial Number (int): 6511004608445741787876158982130185256
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: c3:1c:af:0c:7f:c1:59:2e:91:de:1d:f0:4f:ec:96:17:1f:db:69:ff
AuthorityKeyId: 90:58:ff:b0:9c:75:a8:51:54:77:b1:ed:f2:a3:43:16:38:9e:6c:c5
Fingerprint (sha1): 5e:9c:46:78:28:b3:20:27:71:a1:f3:a7:c6:1c:66:f2:e3:68:d5:f4
Fingerprint (sha256): bf:b1:e9:dc:e4:47:54:df:46:98:fa:ea:57:80:5d:80:ea:d7:5e:9e:da:25:44:27:e8:0b:d6:80:14:03:f3:7b
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustRSACA2018.crl
Check the revocation status for certificate www.hofa.de
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.hofa.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.hofa.de
hofa.de
hofa-studios.de
hofa-college.de
adormi.de
hofa-akustik.de
hofa-plugins.de
hofa.de
hofa-studios.de
hofa-college.de
adormi.de
hofa-akustik.de
hofa-plugins.de
Other certificates including the domain name hofa.de
(limited to 100 certificates)
dev.hofa.de
hofa.de
tv.hofa.de
studionews.hofa.de
studionews.hofa.de
www.hofa.de
dev.hofa.de
www.hofa.de
studionews.hofa.de
hofa-college.test.hofa.de
hofa-wp.srv.hofa.de
hofa.de
hofa-wp.srv.hofa.de
dev.hofa.de
hofa.de
hofa-wp.srv.hofa.de
www.hofa.de
www.hofa.de
www.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
hofa.de
hofa-wp.srv.hofa.de
songcheck.hofa.de
studionews.hofa.de
hofa-college.test.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
www.hofa.de
studionews.hofa.de
hofa-wp.srv.hofa.de
studionews.hofa.de
hofa-wp.srv.hofa.de
studionews.hofa.de
studionews.hofa.de
hofa.de
dev.hofa.de
studionews.hofa.de
hofa.de
tv.hofa.de
studionews.hofa.de
studionews.hofa.de
www.hofa.de
dev.hofa.de
www.hofa.de
studionews.hofa.de
hofa-college.test.hofa.de
hofa-wp.srv.hofa.de
hofa.de
hofa-wp.srv.hofa.de
dev.hofa.de
hofa.de
hofa-wp.srv.hofa.de
www.hofa.de
www.hofa.de
www.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
hofa.de
hofa-wp.srv.hofa.de
songcheck.hofa.de
studionews.hofa.de
hofa-college.test.hofa.de
hofa-wp.srv.hofa.de
hofa-wp.srv.hofa.de
www.hofa.de
studionews.hofa.de
hofa-wp.srv.hofa.de
studionews.hofa.de
hofa-wp.srv.hofa.de
studionews.hofa.de
studionews.hofa.de
hofa.de
dev.hofa.de
studionews.hofa.de
Certificate
The complete raw certificate details for www.hofa.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIQBOX5T9Q9vBvj91qzmy80KDANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRHZW9UcnVzdCBSU0EgQ0EgMjAxODAe Fw0xODA0MTgwMDAwMDBaFw0xODA1MjExMjAwMDBaMHExCzAJBgNVBAYTAkRFMRsw GQYDVQQIDBJCYWRlbi1Xw7xydHRlbWJlcmcxGzAZBgNVBAcTEkthcmxzZG9yZi1O ZXV0aGFyZDESMBAGA1UEChMJSE9GQSBHbWJIMRQwEgYDVQQDEwt3d3cuaG9mYS5k ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM/H8x7f85xkiD2dZuRc j8NCPiMRZoKChDf9sb9fidHk7Rc/b3JMANkPZnYla09stBfWNN6jUy4klB3t2OmO fRcdpo04lC7qoeIFT2K4td3IeiJgGmCBoLID5d5jGjK78Yi143DsiCgD1kPpisiK IqlvvDbe/DcxNy19H5srTp4C4jE1/O6RokztSgvReQjoK10Qi2yuHCRy2LQEQobz TMZddyRl/9Ezce8Namkijij11gxc3CBD4csBWxdU/hH+1Wu0lzmwyzT3wYJu4Ff5 n28n3r1MermuSXx//eRfBpWgYdYO0ci/2DsEcRSrVe2VN4Rp5QjVJLL7ILX6MfxV Dr0CAwEAAaOCAggwggIEMB8GA1UdIwQYMBaAFJBY/7CcdahRVHex7fKjQxY4nmzF MB0GA1UdDgQWBBTDHK8Mf8FZLpHeHfBP7JYXH9tp/zBuBgNVHREEZzBlggt3d3cu aG9mYS5kZYIHaG9mYS5kZYIPaG9mYS1zdHVkaW9zLmRlgg9ob2ZhLWNvbGxlZ2Uu ZGWCCWFkb3JtaS5kZYIPaG9mYS1ha3VzdGlrLmRlgg9ob2ZhLXBsdWdpbnMuZGUw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA+ BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vY2RwLmdlb3RydXN0LmNvbS9HZW9UcnVz dFJTQUNBMjAxOC5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEF BQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwdQYI KwYBBQUHAQEEaTBnMCYGCCsGAQUFBzABhhpodHRwOi8vc3RhdHVzLmdlb3RydXN0 LmNvbTA9BggrBgEFBQcwAoYxaHR0cDovL2NhY2VydHMuZ2VvdHJ1c3QuY29tL0dl b1RydXN0UlNBQ0EyMDE4LmNydDAJBgNVHRMEAjAAMBMGCisGAQQB1nkCBAMBAf8E AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAqbxdQq3BArt3+TdZbZJXPXzb5BqZpkSN1 6+pnu7gLoqoz0JHFBUHhSQvJFEmEbbMEX5g+SQgWNK9YwNziu50MQEx+yr+KEvyM SoleGxtAac3ViksPz55aC3KSLnQShGlBjRwkvXE/DgpbL+t2LpF99+1i5S+yKBSq iOT/VAaKsLnkt2buFA2OQ5A1xZsPQm5ZdkcsHUmlRZSpgy/JsH8Y+Cma3w1c233g CQKkpYK+BFd9Fgm0vgTn7T6lZ7mrFZB8yGpCtkiJDFzyzNalC7pVRtZ2yqYCrmz5 Tkcq7QXPwglEMGV403X6n18jKuHZxvRaojjWgDwv3/J7AqbBnrW/ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8fzHt/znGSIPZ1m5FyP w0I+IxFmgoKEN/2xv1+J0eTtFz9vckwA2Q9mdiVrT2y0F9Y03qNTLiSUHe3Y6Y59 Fx2mjTiULuqh4gVPYri13ch6ImAaYIGgsgPl3mMaMrvxiLXjcOyIKAPWQ+mKyIoi qW+8Nt78NzE3LX0fmytOngLiMTX87pGiTO1KC9F5COgrXRCLbK4cJHLYtARChvNM xl13JGX/0TNx7w1qaSKOKPXWDFzcIEPhywFbF1T+Ef7Va7SXObDLNPfBgm7gV/mf byfevUx6ua5JfH/95F8GlaBh1g7RyL/YOwRxFKtV7ZU3hGnlCNUksvsgtfox/FUO vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6511004608445741787876158982130185256 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-21 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Baden-Württemberg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Karlsdorf-Neuthard' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HOFA GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.hofa.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26229927994875293973852906115999732996352886305440700031593100743851271352310747594337195796780630017499913394470428188586780224763653057454977566279723918698623240841549173984559107465716812342355344193408487253457581868046243407338618064795782793229132788269983254042532094904680503174165940120650725766846496346606010662635608986585185038798484822328915394582841938090232102096249200326200918962513352925280471845252951041051690878908016856128550935111758674980791663540966470259406830728909248211662917338521593474418144143207938267534805659064832701782088143660508468141782554203708400656234177375096878677692093 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9058ffb09c75a8515477b1edf2a34316389e6cc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c31caf0c7fc1592e91de1df04fec96171fdb69ff . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hofa.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hofa.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hofa-studios.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hofa-college.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adormi.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hofa-akustik.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hofa-plugins.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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