*.cma.gov.uk
- Competition and Markets Authority -
Issued by GeoTrust TLS RSA CA G1
About this certificate
This digital certificate with serial number 02:59:ac:07:ed:67:a1:12:9b:93:18:4c:8b:3e:df:a0 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Competition and Markets Authority
Organization:
Competition and Markets Authority
Locality:
London
Country: GB
Country: GB
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:59:ac:07:ed:67:a1:12:9b:93:18:4c:8b:3e:df:a0Serial Number (int): 3124059614501624423244664422797336480
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: ab:3a:28:2b:a9:82:73:28:38:fb:e3:60:6e:66:9e:4f:55:d4:03:2f
AuthorityKeyId: 94:4f:d4:5d:8b:e4:a4:e2:a6:80:fe:fd:d8:f9:00:ef:a3:be:02:57
Fingerprint (sha1): e6:f4:02:68:ff:19:9d:44:42:0b:7d:07:05:39:c8:39:70:0d:61:52
Fingerprint (sha256): c2:6c:de:9b:ba:8e:e6:59:0a:6b:57:ad:98:cf:f6:28:a2:cb:79:0d:4e:b0:4d:c6:9d:97:c9:7c:12:ca:ad:9b
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
Check the revocation status for certificate *.cma.gov.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.cma.gov.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.cma.gov.uk
cma.gov.uk
cma.gov.uk
Other certificates including the domain name cma.gov.uk
(limited to 100 certificates)
access01.cma.gov.uk
*.cma.gov.uk
sts.cma.gov.uk
lyweb01.cma.gov.uk
aovpn.cma.gov.uk
mail.cma.gov.uk
vpn.cmaonline.org.uk
mail.cma.gov.uk
vpn.cmaonline.org.uk
vpn.cmaonline.org.uk
sftp-dfis.cma.gov.uk
mail.cma.gov.uk
access01.cma.gov.uk
access02.cma.gov.uk
access02.cma.gov.uk
mail.cma.gov.uk
sts.cma.gov.uk
*.cma.gov.uk
aovpn.cma.gov.uk
sts.cma.gov.uk
vpn.cmaonline.org.uk
*.cma.gov.uk
mail.cma.gov.uk
aovpn.cma.gov.uk
vpn.cmaonline.org.uk
*.cma.gov.uk
sts.cma.gov.uk
data.cma.gov.uk
lyweb01.cma.gov.uk
lyweb01.cma.gov.uk
vpn.cmaonline.org.uk
*.cma.gov.uk
sts.cma.gov.uk
lyweb01.cma.gov.uk
aovpn.cma.gov.uk
mail.cma.gov.uk
vpn.cmaonline.org.uk
mail.cma.gov.uk
vpn.cmaonline.org.uk
vpn.cmaonline.org.uk
sftp-dfis.cma.gov.uk
mail.cma.gov.uk
access01.cma.gov.uk
access02.cma.gov.uk
access02.cma.gov.uk
mail.cma.gov.uk
sts.cma.gov.uk
*.cma.gov.uk
aovpn.cma.gov.uk
sts.cma.gov.uk
vpn.cmaonline.org.uk
*.cma.gov.uk
mail.cma.gov.uk
aovpn.cma.gov.uk
vpn.cmaonline.org.uk
*.cma.gov.uk
sts.cma.gov.uk
data.cma.gov.uk
lyweb01.cma.gov.uk
lyweb01.cma.gov.uk
vpn.cmaonline.org.uk
Certificate
The complete raw certificate details for *.cma.gov.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGeDCCBWCgAwIBAgIQAlmsB+1noRKbkxhMiz7foDANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZHZW9UcnVzdCBUTFMgUlNBIENBIEcx MB4XDTE5MDIxMzAwMDAwMFoXDTIxMDIxMjEyMDAwMFowYTELMAkGA1UEBhMCR0Ix DzANBgNVBAcTBkxvbmRvbjEqMCgGA1UEChMhQ29tcGV0aXRpb24gYW5kIE1hcmtl dHMgQXV0aG9yaXR5MRUwEwYDVQQDDAwqLmNtYS5nb3YudWswggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDJ4Gem9ZygFaZa84udw0VvufR6vrBAc7ldD2cL qU0ZzlfxZbzkbCE1ecHKFtzDheTZ2poqTTkUx3dLfTz0JSWOqXTAteAq+jiezrA8 Pk4qXf9MDASI6Wgs0cca4ZV6fEhSyynXGA5+ZP7WqwZEOCU8lnlfg5TIKGzVS7sR M27IQqdR8ptZvsgT69WD1oWpjdR/4mBBl7r74iSXJJrkYpelhFi2i/162CzmoTol 1wpVh+aR55i1zi0GksiyBezKMBLe4AuSIViey/RSo/k8k8E0ijAjYWXMZKBHkF0a G/oAvWvW1BY2ZSxT6ofDFdvrwQWKC+oPE/Un0Z1SszhX49W9AgMBAAGjggMrMIID JzAfBgNVHSMEGDAWgBSUT9Rdi+Sk4qaA/v3Y+QDvo74CVzAdBgNVHQ4EFgQUqzoo K6mCcyg4++NgbmaeT1XUAy8wIwYDVR0RBBwwGoIMKi5jbWEuZ292LnVrggpjbWEu Z292LnVrMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL2NkcC5nZW90cnVzdC5jb20v R2VvVHJ1c3RUTFNSU0FDQUcxLmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAq MCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeB DAECAjB2BggrBgEFBQcBAQRqMGgwJgYIKwYBBQUHMAGGGmh0dHA6Ly9zdGF0dXMu Z2VvdHJ1c3QuY29tMD4GCCsGAQUFBzAChjJodHRwOi8vY2FjZXJ0cy5nZW90cnVz dC5jb20vR2VvVHJ1c3RUTFNSU0FDQUcxLmNydDAJBgNVHRMEAjAAMIIBfQYKKwYB BAHWeQIEAgSCAW0EggFpAWcAdQCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80O yA3cEAAAAWjnyh4iAAAEAwBGMEQCIDJA9qcJmPCkyx3ZHHIzvtqlMc6ZOQWANJFo 2DoS0+9/AiAreedFfnf5TSjq0RvpKEMHwRzoEZ4zVbZPGEIHTlXyqQB1AESUZS6w 7s6vxEAH2Kj+KMDa5oK+2MsxtT/TM5a1toGoAAABaOfKHfoAAAQDAEYwRAIgcsL2 egUQWOeIoW/SdoW5VWGQHDjZBXf51dfYCOKiL7MCIEEN0oxVUAlg7bNIt7iIap39 MtK6fgl5acxUF6kGevy9AHcAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e 0YUAAAFo58oeQQAABAMASDBGAiEA425XQItQhdXHB3G4Xmxo7tECKvB7gfMp55yN fSc7QicCIQCxXMQ+BtYwR+86Qmsc5SMIjbsjuxER/YrSdjG2d7vKgzANBgkqhkiG 9w0BAQsFAAOCAQEAgDXpI58Ehi5pnmQWWR/LwI43OR4kxIRTO1JSkNY5GiRFDGOy fBK4NBdkKssQtvco/mFes2x2+VOEpLPkQK5i5Q2gBkQavMqee9dBEEAn52SCbZB5 r1rC4T+YL3HF1FUkIUZOtfTOl2TQ9dGiSGBSYOWJyjEIOQ6cxItc1cUGGMXoSezH CJPwEs552i2VsyN7RQAYEAqpfIpMd8re9omFHoUfkMRPMCfoEfnxFGQntIa45wYv nV4b3sOYOB+FIRiwnX5OQpeXdSFpwkGfX8E7OHaRoBYdf+UMO+h0yL8OkPCl57L2 ic1cl982j3TIyHKQ/vtgAePaylNhqcSLHhTyQw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyeBnpvWcoBWmWvOLncNF b7n0er6wQHO5XQ9nC6lNGc5X8WW85GwhNXnByhbcw4Xk2dqaKk05FMd3S3089CUl jql0wLXgKvo4ns6wPD5OKl3/TAwEiOloLNHHGuGVenxIUssp1xgOfmT+1qsGRDgl PJZ5X4OUyChs1Uu7ETNuyEKnUfKbWb7IE+vVg9aFqY3Uf+JgQZe6++IklySa5GKX pYRYtov9etgs5qE6JdcKVYfmkeeYtc4tBpLIsgXsyjAS3uALkiFYnsv0UqP5PJPB NIowI2FlzGSgR5BdGhv6AL1r1tQWNmUsU+qHwxXb68EFigvqDxP1J9GdUrM4V+PV vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3124059614501624423244664422797336480 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-12 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Competition and Markets Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.cma.gov.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25484557474388480318711125236131513378236260217074479515881753690063655913678054518040925821500855463580174080513203440156630144307507568482724487603315783085246255187180813258426979847044648585373913556539119984925359988255607317747163403141421397837126850270862526102121940662439778525978060109727415844529377436858868957451300923268497345542662756828331334575388824485659686121423792330929609380744242369746165557336679435893236986932982010048851715074570841860695383542019522480013597075385248028184569683016362720561425893212464880331082450514630046064089677245750860120658879939198551764708957693757015957165501 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 944fd45d8be4a4e2a680fefdd8f900efa3be0257 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ab3a282ba982732838fbe3606e669e4f55d4032f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cma.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cma.gov.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 008035e9239f04862e699e6416591fcbc08e37391e24c484533b525290d6391a24450c63b27c12b83417642acb10b6f728fe615eb36c76f95384a4b3e440ae62e50da006441abcca9e7bd741104027e764826d9079af5ac2e13f982f71c5d4552421464eb5f4ce9764d0f5d1a248605260e589ca3108390e9cc48b5cd5c50618c5e849ecc70893f012ce79da2d95b3237b450018100aa97c8a4c77cadef689851e851f90c44f3027e811f9f1146427b486b8e7062f9d5e1bdec398381f852118b09d7e4e429797752169c2419f5fc13b387691a0161d7fe50c3be874c8bf0e90f0a5e7b2f689cd5c97df368f74c8c87290fefb6001e3daca5361a9c48b1e14f243