qed.int.onvio.ca
- Thomson Reuters -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 01:e0:1d:1d:73:c1:b5:03:96:3a:5e:f5:c5:6f:dd:a5 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Thomson Reuters
Organization:
Thomson Reuters
State / Province:
Minnesota
Locality: Eagan
Country: US
Locality: Eagan
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:e0:1d:1d:73:c1:b5:03:96:3a:5e:f5:c5:6f:dd:a5Serial Number (int): 2492893015416889700941729946078797221
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: bf:83:5e:f5:f6:8d:0d:9f:3f:d2:06:5a:fc:de:b8:8c:08:63:49:6f
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 9e:c9:d2:ec:d4:3c:a0:b4:1c:db:77:9a:bc:19:a6:62:78:6c:ab:86
Fingerprint (sha256): c3:bb:26:0c:9f:c8:61:63:b9:2c:20:f1:8a:b3:3a:cf:d2:f6:1e:ae:22:59:1b:43:d9:ff:89:56:e5:da:26:85
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate qed.int.onvio.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for qed.int.onvio.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
qed.int.onvio.ca
Other certificates including the domain name onvio.ca
(limited to 100 certificates)
qed.onvio.us
csshared.demo.int.onvio.ca
qed.onvio.us
ci.onvio.us
www.onvio.ca
qed.onvio.ca
demo.onvio.us
qed.int.onvio.ca
demo.onvio.us
ci.int.onvio.us
qed.api.onvio.us
demo.int.onvio.us
qed.onvio.us
demo.int.onvio.us
onvio.ca
onvio.ca
qed.onvio.ca
www.onvio.ca
demo.api.onvio.us
demo.int.onvio.ca
qed.onvio.ca
qed.onvio.us
qed.onvio.us
onvio.ca
csshared.demo.int.onvio.ca
ci.api.onvio.us
ci.onvio.us
ci.int.onvio.us
qed.onvio.us
demo.onvio.us
qed.onvio.us
demo.onvio.us
onvio.ca
demo.onvio.us
qed.onvio.us
onvio.ca
qed.onvio.ca
demo.onvio.ca
onvio.ca
demo.onvio.us
api.onvio.us
int.onvio.ca
ci.onvio.us
ci.onvio.us
qed.onvio.ca
int.onvio.ca
www.onvio.ca
onvio.ca
demo.int.onvio.us
ci.int.onvio.us
ci.int.onvio.us
qed.onvio.ca
ci.onvio.us
demo.onvio.us
qed.int.onvio.ca
ci.int.onvio.us
www.onvio.ca
ci.onvio.us
demo.onvio.ca
ci.int.onvio.us
demo.onvio.us
demo.onvio.us
demo.int.onvio.ca
ci.onvio.us
onvio.ca
qed.onvio.us
onvio.ca
qed.onvio.ca
ci.onvio.us
demo.onvio.us
qed.onvio.us
csshared.demo.int.onvio.ca
qed.onvio.us
ci.onvio.us
www.onvio.ca
qed.onvio.ca
demo.onvio.us
qed.int.onvio.ca
demo.onvio.us
ci.int.onvio.us
qed.api.onvio.us
demo.int.onvio.us
qed.onvio.us
demo.int.onvio.us
onvio.ca
onvio.ca
qed.onvio.ca
www.onvio.ca
demo.api.onvio.us
demo.int.onvio.ca
qed.onvio.ca
qed.onvio.us
qed.onvio.us
onvio.ca
csshared.demo.int.onvio.ca
ci.api.onvio.us
ci.onvio.us
ci.int.onvio.us
qed.onvio.us
demo.onvio.us
qed.onvio.us
demo.onvio.us
onvio.ca
demo.onvio.us
qed.onvio.us
onvio.ca
qed.onvio.ca
demo.onvio.ca
onvio.ca
demo.onvio.us
api.onvio.us
int.onvio.ca
ci.onvio.us
ci.onvio.us
qed.onvio.ca
int.onvio.ca
www.onvio.ca
onvio.ca
demo.int.onvio.us
ci.int.onvio.us
ci.int.onvio.us
qed.onvio.ca
ci.onvio.us
demo.onvio.us
qed.int.onvio.ca
ci.int.onvio.us
www.onvio.ca
ci.onvio.us
demo.onvio.ca
ci.int.onvio.us
demo.onvio.us
demo.onvio.us
demo.int.onvio.ca
ci.onvio.us
onvio.ca
qed.onvio.us
onvio.ca
qed.onvio.ca
ci.onvio.us
demo.onvio.us
qed.onvio.us
Certificate
The complete raw certificate details for qed.int.onvio.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIQAeAdHXPBtQOWOl71xW/dpTANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwMjE0MDAwMDAwWhcN MTkxMDI0MTIwMDAwWjBmMQswCQYDVQQGEwJVUzESMBAGA1UECBMJTWlubmVzb3Rh MQ4wDAYDVQQHEwVFYWdhbjEYMBYGA1UEChMPVGhvbXNvbiBSZXV0ZXJzMRkwFwYD VQQDExBxZWQuaW50Lm9udmlvLmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAn9+W8wBnQOnLtvksO50926UpfHQbXaVIGrcVntdCYwGTaeDcBo/Bk0fb sJt7L9zVkNY5lv1RqNzdpslmW6c0oRM1tf6yXC3vkb9KyzY0uiqf9Tekmq+DkL0h ptFW3eLu9dJ/pDHRFvnYu4W6bofwLaga1iFWQuqce/PBho3GBbJ2h6ubX7lrjcA8 6tV3PtI8ekLGVQ5X4iYl0Yrkc/RSR/EqV2m9o2jnu/4oF1PwibcZJEKH5uTk+lir +9qVznKWVnegkBrOkW9MC5w2Lf3zhome0K2NGePlIyyX0QZ4qnxzVViB7RzSNJwz 2dkiP4lBOq17fOyznc24oRYsK7uHqwIDAQABo4IB6TCCAeUwHwYDVR0jBBgwFoAU D4BhHIIxYdUvKOeNRji0LOHG2eIwHQYDVR0OBBYEFL+DXvX2jQ2fP9IGWvzeuIwI Y0lvMBsGA1UdEQQUMBKCEHFlZC5pbnQub252aW8uY2EwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBrBgNVHR8EZDBiMC+gLaAr hilodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc3NjYS1zaGEyLWc2LmNybDAvoC2g K4YpaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nNi5jcmwwTAYD VR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cu ZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwfAYIKwYBBQUHAQEEcDBuMCQGCCsG AQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wRgYIKwYBBQUHMAKGOmh0 dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJTZWN1cmVTZXJ2 ZXJDQS5jcnQwCQYDVR0TBAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG 9w0BAQsFAAOCAQEArlCbBp/Go+lywhXypK09aEORlLNWQSeHrKy1AGF7pZ7VzA8c 8kBTZ8LALKFd1PNbm5tzT/GmCm/wkngzCSA5U0N/FJX5w8B6gq4RIelceFm7Up+1 kaDZ2XytGvnXT9tp7Gmwmd4OcI/8tcwZHZkZlTMWNbngwz0nPB3oww/2MZtWOO/5 wENiuvj9GGm86neMhtisdBvyCufPk5z3E6vqwLuJj7LatDfFYRV19tDrS43l6IYL yTJi//Wm3XoVzSvrv2JfkopkGTirUTYm8EHA5abPMk9Z4emOiBxXXykoqzk1TNxz ED+l26vLyW01hlher+PFZ5DDDZ2nPAYL2LeEnQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9+W8wBnQOnLtvksO509 26UpfHQbXaVIGrcVntdCYwGTaeDcBo/Bk0fbsJt7L9zVkNY5lv1RqNzdpslmW6c0 oRM1tf6yXC3vkb9KyzY0uiqf9Tekmq+DkL0hptFW3eLu9dJ/pDHRFvnYu4W6bofw Laga1iFWQuqce/PBho3GBbJ2h6ubX7lrjcA86tV3PtI8ekLGVQ5X4iYl0Yrkc/RS R/EqV2m9o2jnu/4oF1PwibcZJEKH5uTk+lir+9qVznKWVnegkBrOkW9MC5w2Lf3z home0K2NGePlIyyX0QZ4qnxzVViB7RzSNJwz2dkiP4lBOq17fOyznc24oRYsK7uH qwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2492893015416889700941729946078797221 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-24 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnesota' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Eagan' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thomson Reuters' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'qed.int.onvio.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20182146653058371988391487528857712817299685516062122916142696271434556097709147797216821960688628519115061359379330461668128418394863735168312871993311061982891172011413382375628048441020412035739222277402830556500285218484011527589491969034861399158624055106536474811950246552269179609142196817102548188102770708688562054721085880571979440338521163123237368515807815658253384564350302618309661859613555830068258233769346721816851313744841053590706696482611010934670218318053164005091380423230501920178586537846887292159749403820252095040208861062673176157193810925094533896807217244484743657477025919050813577856939 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bf835ef5f68d0d9f3fd2065afcdeb88c0863496f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qed.int.onvio.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00ae509b069fc6a3e972c215f2a4ad3d68439194b356412787acacb500617ba59ed5cc0f1cf2405367c2c02ca15dd4f35b9b9b734ff1a60a6ff092783309203953437f1495f9c3c07a82ae1121e95c7859bb529fb591a0d9d97cad1af9d74fdb69ec69b099de0e708ffcb5cc191d991995331635b9e0c33d273c1de8c30ff6319b5638eff9c04362baf8fd1869bcea778c86d8ac741bf20ae7cf939cf713abeac0bb898fb2dab437c5611575f6d0eb4b8de5e8860bc93262fff5a6dd7a15cd2bebbf625f928a641938ab513626f041c0e5a6cf324f59e1e98e881c575f2928ab39354cdc73103fa5dbabcbc96d3586585eafe3c56790c30d9da73c060bd8b7849d