heel.com
- Biologische Heilmittel Heel GmbH -
Issued by GeoTrust TLS RSA CA G1
About this certificate
This digital certificate with serial number 06:f8:e0:69:f8:d1:f9:d4:48:4f:2a:93:d9:c8:72:51 was issued on by DigiCert Inc.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Biologische Heilmittel Heel GmbH
Organization:
Biologische Heilmittel Heel GmbH
Organization unit: IT
Organization unit: IT
Locality:
Baden-Baden
Country: DE
Country: DE
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:f8:e0:69:f8:d1:f9:d4:48:4f:2a:93:d9:c8:72:51Serial Number (int): 9267609251340542178396259775467254353
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: c5:5a:0e:82:4a:12:72:8a:4d:ea:af:b3:7e:98:b3:74:4c:56:04:9f
AuthorityKeyId: 94:4f:d4:5d:8b:e4:a4:e2:a6:80:fe:fd:d8:f9:00:ef:a3:be:02:57
Fingerprint (sha1): fd:d2:f8:02:1c:69:5b:cc:e4:09:02:2e:6f:a7:52:a3:d4:57:80:27
Fingerprint (sha256): c3:29:47:67:3d:8c:17:10:d6:d0:ac:2b:79:b9:95:0c:5d:27:23:2d:1f:a6:ae:71:cf:be:d5:02:fb:e9:5d:f7
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
Check the revocation status for certificate heel.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for heel.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
heel.com
www.heel.com
*.heel.de
*.heel.com
www.heel.com
*.heel.de
*.heel.com
Other certificates including the domain name heel.com
(limited to 100 certificates)
*.staffbase.cloud
events.heel.com
heel.com
heel.com
*.heel.com
events.heel.com
about.heel.com
heel.com
heel.com
*.staffbase.cloud
www.learningzone.heel.com
heel.com
heel-com.prod.heel.com
h-guest.heel.com
heel-russia-ru.prod.heel.com
heel.com
firstspirit.heel.com
*.heel.com
about.heel.com
intranet.heel.com
heel.com
*.heel.com
extranet.heel.com
heel-russia-ru.prod.heel.com
intranet.heel.com
heel-russia-ru.prod.heel.com
sip.heel.com
heel.com
heel.com
csdbp.heel.com
www.heel.com
heel-be.prod.heel.com
*.heel.com
heel.com
*.heel.com
*.heel.com
www.heel.de
firstspirit.heel.com
h-guest.heel.com
intranet.heel.com
www.learningzone.heel.com
*.staffbase.cloud
lsac.heel.com
heel.com
heel-russia-ru.prod.heel.com
heel.com
events.heel.com
heel.com
heel-com.prod.heel.com
heel.com
heel.com
traumeel-com.prod.heel.com
about.heel.com
heel.com
heel-com.prod.heel.com
intranet.heel.com
*.heel.com
heel.com
events.heel.com
heel.com
intranet.heel.com
www.learningzone.heel.com
intranet.heel.com
events.heel.com
heel.com
heel.com
*.heel.com
events.heel.com
about.heel.com
heel.com
heel.com
*.staffbase.cloud
www.learningzone.heel.com
heel.com
heel-com.prod.heel.com
h-guest.heel.com
heel-russia-ru.prod.heel.com
heel.com
firstspirit.heel.com
*.heel.com
about.heel.com
intranet.heel.com
heel.com
*.heel.com
extranet.heel.com
heel-russia-ru.prod.heel.com
intranet.heel.com
heel-russia-ru.prod.heel.com
sip.heel.com
heel.com
heel.com
csdbp.heel.com
www.heel.com
heel-be.prod.heel.com
*.heel.com
heel.com
*.heel.com
*.heel.com
www.heel.de
firstspirit.heel.com
h-guest.heel.com
intranet.heel.com
www.learningzone.heel.com
*.staffbase.cloud
lsac.heel.com
heel.com
heel-russia-ru.prod.heel.com
heel.com
events.heel.com
heel.com
heel-com.prod.heel.com
heel.com
heel.com
traumeel-com.prod.heel.com
about.heel.com
heel.com
heel-com.prod.heel.com
intranet.heel.com
*.heel.com
heel.com
events.heel.com
heel.com
intranet.heel.com
www.learningzone.heel.com
intranet.heel.com
Certificate
The complete raw certificate details for heel.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgIQBvjgafjR+dRITyqT2chyUTANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZHZW9UcnVzdCBUTFMgUlNBIENBIEcx MB4XDTIwMDQwODAwMDAwMFoXDTIyMDYwNzEyMDAwMFowbjELMAkGA1UEBhMCREUx FDASBgNVBAcTC0JhZGVuLUJhZGVuMSkwJwYDVQQKEyBCaW9sb2dpc2NoZSBIZWls bWl0dGVsIEhlZWwgR21iSDELMAkGA1UECxMCSVQxETAPBgNVBAMTCGhlZWwuY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwH2uVUqs8yd7X6EoNuwX Hk8gv5Up166WrvcY+Nv9xHP7XV6CBu4x9O3BoJ6roxkS9FHCdW6yFUfz02JsfvqW TfGxyOaKk7ih6q7p69CzD1MpFq8h87LZflHxGaSrEXP8wQegcQ/UC/+6b9enaRaq GsX0vtqMyyRSINxafcMmcn3FAFskwQ45qkXE9KNBn5GQpFq/uXIJV9xnndWxESw6 hSC8SmiTVwgjsiqYOz3D48h8WUDbOunXypplPb+iWbQLXCxm8vd+v7bN+mBp0TvT e0cbBpqu5rxzFcJNbjYtYUsieTi1xKYYs6ISCFAqByIFI2VkW/EahTCV4YBUjn9C mwIDAQABo4IB1DCCAdAwHwYDVR0jBBgwFoAUlE/UXYvkpOKmgP792PkA76O+Alcw HQYDVR0OBBYEFMVaDoJKEnKKTeqvs36Ys3RMVgSfMDgGA1UdEQQxMC+CCGhlZWwu Y29tggx3d3cuaGVlbC5jb22CCSouaGVlbC5kZYIKKi5oZWVsLmNvbTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMD8GA1UdHwQ4 MDYwNKAyoDCGLmh0dHA6Ly9jZHAuZ2VvdHJ1c3QuY29tL0dlb1RydXN0VExTUlNB Q0FHMS5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYc aHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwdgYIKwYBBQUH AQEEajBoMCYGCCsGAQUFBzABhhpodHRwOi8vc3RhdHVzLmdlb3RydXN0LmNvbTA+ BggrBgEFBQcwAoYyaHR0cDovL2NhY2VydHMuZ2VvdHJ1c3QuY29tL0dlb1RydXN0 VExTUlNBQ0FHMS5jcnQwCQYDVR0TBAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADAN BgkqhkiG9w0BAQsFAAOCAQEAtBsp1ayPkxdLpujIxFmDZ4lqq7BWEVMzPtMeHT7W G4AOGb5xEt0AYfRxRuyk74rDWuKgwYVjloqPKjl69iRJqYAbj6aUoYj2IBTO6Ky1 +wUxnbyW0IIvbi+vqUmoAef0JG0MPlBa3OYTK+coRg2Z1o2qcKzpAbLo/e6v5vGo rljc9b0vgB7c96j69hg7d1aOBoKmtCOSK9OLeDJ1bC0r2BSYNSFS2wQW/9iA+7be AwT7GH9yB9BNP/cAr+1nrXnCs772g+n7xJR62zSwwq2XMtgmTorNVOjCFpQ+zZ+X YjkS91pRLDezSagak5r0sh3KgIj7k7c14NhGnN3VCA1VuQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwH2uVUqs8yd7X6EoNuwX Hk8gv5Up166WrvcY+Nv9xHP7XV6CBu4x9O3BoJ6roxkS9FHCdW6yFUfz02JsfvqW TfGxyOaKk7ih6q7p69CzD1MpFq8h87LZflHxGaSrEXP8wQegcQ/UC/+6b9enaRaq GsX0vtqMyyRSINxafcMmcn3FAFskwQ45qkXE9KNBn5GQpFq/uXIJV9xnndWxESw6 hSC8SmiTVwgjsiqYOz3D48h8WUDbOunXypplPb+iWbQLXCxm8vd+v7bN+mBp0TvT e0cbBpqu5rxzFcJNbjYtYUsieTi1xKYYs6ISCFAqByIFI2VkW/EahTCV4YBUjn9C mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9267609251340542178396259775467254353 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-07 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Baden-Baden' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Biologische Heilmittel Heel GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'heel.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24299730158996004789303734859756147299252270003643423537017245876141366878537323257501609689599441046900097722570777417597309333809108252703295448248625715227405258387356787897012868762923236720913798575910776079897536901659819393060404650591378996793522433329307334423960163284329202894444046060153935440386802785887261556872804059101751703861958327553382196164978143500393401623763898787661361591398448647916625850251515780038818218152651499580036465832281532272238707982142079800943704137767164550865747607469579940556393656067103686806887308242494496358822620997267867796420786677893629194614453127584495091794587 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 944fd45d8be4a4e2a680fefdd8f900efa3be0257 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c55a0e824a12728a4deaafb37e98b3744c56049f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heel.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.heel.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.heel.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.heel.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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