www.khaironline.net
Issued by GeoTrust RSA CA 2018
About this certificate
This digital certificate with serial number 0d:5b:a7:22:87:f7:87:40:f0:18:3e:d5:67:b9:b9:07 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.khaironline.net
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:5b:a7:22:87:f7:87:40:f0:18:3e:d5:67:b9:b9:07Serial Number (int): 17755852857571630696587897179408546055
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: a8:d6:85:10:40:e3:81:6d:7c:24:6a:d9:66:e4:5d:60:c0:34:c6:99
AuthorityKeyId: 90:58:ff:b0:9c:75:a8:51:54:77:b1:ed:f2:a3:43:16:38:9e:6c:c5
Fingerprint (sha1): a7:b4:ba:f9:bd:2f:27:48:0d:c6:45:9d:2d:13:0a:0f:7f:2f:0c:6e
Fingerprint (sha256): c4:0c:ed:81:88:ab:8f:1f:09:d5:40:a0:36:14:cd:3a:ff:5a:55:41:ff:3b:90:46:85:29:29:5a:24:7c:07:5f
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustRSACA2018.crl
Check the revocation status for certificate www.khaironline.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.khaironline.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.khaironline.net
khaironline.net
khaironline.net
Other certificates including the domain name khaironline.net
(limited to 100 certificates)
mail.khaironline.net
www.khaironline.net
itsupport.afmforest.com
ssihelpdesk.shoesensation.com
help-desk.soa.org
ayuda.vinte.com
www.khaironline.net
itsupport.quigleysimpson.com
servicedesk.vermontech.net
itsupport.afmforest.com
itsupport.quigleysimpson.com
ssihelpdesk.shoesensation.com
portal.beeyond.co
servicedesk.vermontech.net
www.khaironline.net
servicedesk.vermontech.net
mail.khaironline.net
mail.khaironline.net
servicedesk.vermontech.net
itsupport.afmforest.com
helpdesk.kleysen.com
servicedesk.vermontech.net
support.medicaxl.co.il
www.khaironline.net
www.khaironline.net
servicedesk.vermontech.net
itsupport.afmforest.com
support.khaironline.net
www.khaironline.net
www.khaironline.net
itsupport.quigleysimpson.com
www.khaironline.net
www.khaironline.net
www.khaironline.net
help-desk.soa.org
www.khaironline.net
www.khaironline.net
servicedesk.vermontech.net
ssihelpdesk.shoesensation.com
ayuda.vinte.com
helpdesk.kleysen.com
ssihelpdesk.shoesensation.com
itsupport.afmforest.com
support.khaironline.net
www.khaironline.net
itsupport.afmforest.com
www.khaironline.net
support.khaironline.net
help-desk.soa.org
help-desk.soa.org
help-desk.soa.org
www.khaironline.net
support.medicaxl.co.il
itsupport.afmforest.com
servicedesk.vermontech.net
itsupport.afmforest.com
www.khaironline.net
support.medicaxl.co.il
mail.khaironline.net
help-desk.soa.org
servicedesk.vermontech.net
servicedesk.vermontech.net
itsupport.quigleysimpson.com
servicedesk.vermontech.net
www.khaironline.net
support.khaironline.net
helpdesk.kleysen.com
support.medicaxl.co.il
ayuda.vinte.com
servicedesk.vermontech.net
help-desk.soa.org
help-desk.soa.org
www.khaironline.net
ayuda.vinte.com
helpdesk.kleysen.com
www.khaironline.net
itsupport.afmforest.com
ssihelpdesk.shoesensation.com
help-desk.soa.org
ayuda.vinte.com
www.khaironline.net
itsupport.quigleysimpson.com
servicedesk.vermontech.net
itsupport.afmforest.com
itsupport.quigleysimpson.com
ssihelpdesk.shoesensation.com
portal.beeyond.co
servicedesk.vermontech.net
www.khaironline.net
servicedesk.vermontech.net
mail.khaironline.net
mail.khaironline.net
servicedesk.vermontech.net
itsupport.afmforest.com
helpdesk.kleysen.com
servicedesk.vermontech.net
support.medicaxl.co.il
www.khaironline.net
www.khaironline.net
servicedesk.vermontech.net
itsupport.afmforest.com
support.khaironline.net
www.khaironline.net
www.khaironline.net
itsupport.quigleysimpson.com
www.khaironline.net
www.khaironline.net
www.khaironline.net
help-desk.soa.org
www.khaironline.net
www.khaironline.net
servicedesk.vermontech.net
ssihelpdesk.shoesensation.com
ayuda.vinte.com
helpdesk.kleysen.com
ssihelpdesk.shoesensation.com
itsupport.afmforest.com
support.khaironline.net
www.khaironline.net
itsupport.afmforest.com
www.khaironline.net
support.khaironline.net
help-desk.soa.org
help-desk.soa.org
help-desk.soa.org
www.khaironline.net
support.medicaxl.co.il
itsupport.afmforest.com
servicedesk.vermontech.net
itsupport.afmforest.com
www.khaironline.net
support.medicaxl.co.il
mail.khaironline.net
help-desk.soa.org
servicedesk.vermontech.net
servicedesk.vermontech.net
itsupport.quigleysimpson.com
servicedesk.vermontech.net
www.khaironline.net
support.khaironline.net
helpdesk.kleysen.com
support.medicaxl.co.il
ayuda.vinte.com
servicedesk.vermontech.net
help-desk.soa.org
help-desk.soa.org
www.khaironline.net
ayuda.vinte.com
helpdesk.kleysen.com
Certificate
The complete raw certificate details for www.khaironline.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGtjCCBZ6gAwIBAgIQDVunIof3h0DwGD7VZ7m5BzANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRHZW9UcnVzdCBSU0EgQ0EgMjAxODAe Fw0xODA2MDcwMDAwMDBaFw0yMDA5MDkwMDAwMDBaMB4xHDAaBgNVBAMTE3d3dy5r aGFpcm9ubGluZS5uZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt x73APRszXr3c0a20C49aL9QL1J/ZEhLo/YpOptb0UxqK5QFO9HjC6PEEyPpy7YXf JSCq6XSICz0mOllKwV0WvFQpUDnRuMJvkIMVd1VqSre+6pQGfFj6iNab9kyWV3qo JaUr/5N3vJ1QLVJEIm/PjvAXAr30UTVez2H4kTuWWdGV7eM+lD8BJDfRP5ZUPyI4 N/uYFokX+f/pneJwrp+/7BSBMqP4vmf+Pgg/i7EoDlAOKvRd1Z26sTBn+VAt7CEd BhISkh7oE++7z5dccnyq3w+l2q1wbAvG0XQjtPpoMy5Q+RkVz6PhKIbI9OI68iM+ Ts1cY+6nffyJx2scw6AnAgMBAAGjggOuMIIDqjAfBgNVHSMEGDAWgBSQWP+wnHWo UVR3se3yo0MWOJ5sxTAdBgNVHQ4EFgQUqNaFEEDjgW18JGrZZuRdYMA0xpkwLwYD VR0RBCgwJoITd3d3LmtoYWlyb25saW5lLm5ldIIPa2hhaXJvbmxpbmUubmV0MA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPgYD VR0fBDcwNTAzoDGgL4YtaHR0cDovL2NkcC5nZW90cnVzdC5jb20vR2VvVHJ1c3RS U0FDQTIwMTguY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAECMCowKAYIKwYBBQUH AgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQIBMHUGCCsG AQUFBwEBBGkwZzAmBggrBgEFBQcwAYYaaHR0cDovL3N0YXR1cy5nZW90cnVzdC5j b20wPQYIKwYBBQUHMAKGMWh0dHA6Ly9jYWNlcnRzLmdlb3RydXN0LmNvbS9HZW9U cnVzdFJTQUNBMjAxOC5jcnQwCQYDVR0TBAIwADCCAfYGCisGAQQB1nkCBAIEggHm BIIB4gHgAHUApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFj2Yzv fQAABAMARjBEAiAkaZtgV8Ftx2vBGATrGFBN3b3Tb95tZPdH9Q1HTxam6AIgaguc hk/1hu/3SB5st7YYtMmh1onOOXpaEgYAe1w/tHwAdgCHdb/nWXz4jEOZX73zbv9W jUdWNv9KtWDBtOr/XqCDDwAAAWPZjPBVAAAEAwBHMEUCIDCr4TNXjnociWz5Na5n l8uV/steYY+HCvkDJQp+KM/YAiEAkce2EOfr37Kzolw3/Kb3UFsf4SP3HEfEbmY8 ptO0qu8AdgDuS723dc5guuFCaR+r4Z5mow9+X7By2IMAxHuJeqj9ywAAAWPZjPBf AAAEAwBHMEUCIGUXeZ2UerJNnIuzgfWxNSFd3LuwGOMcsLEc4t2w98FLAiEAknfU FVSPoesWUQGzsT7S9GZqhPuHwfcFHW2r00WINGIAdwC72d+8H4pxtZOUI5eqkntH OFeVCqtS6BqQlmQ2jh7RhQAAAWPZjPBlAAAEAwBIMEYCIQCwMEY8wbOabSVUrpo4 A/JaIn8rnaviHcG3OrYwl25jsgIhAOF06Msmf5XiHmXvNbtSrVQEaTT5pR8ujLh4 PwVTDifRMA0GCSqGSIb3DQEBCwUAA4IBAQBVhrFv+2NOSuYUXEqQlC8hxvYUFtsY 9VdeRXF3yA93vD0ntijFEUZcaZrBHiWf5QpJ5SWdntqmMUpP8THVrwZDlIFZWc7s BdLm0yqCxJgNVik8Xe1TWqd2N7FRGsyfOYoyCrGtg1rJGsVqu044Oprjfu/V/k/b DJkFTLkBceGnFg5EtVPHLUtVBVvvwmgIdFYQAg0ByahZwsihnrD7+AXP6ryGCBng IUZnv6mcXr4R6QPSXtvQA8eiAGaLyoHHY+dx/iRqOIUJE4FJ1X70xfAGRdhPaWVG NmZS6HA6+kI0idl44pckPrn6mimXK85fRhOiceAbWS9Icls4s9dcC7K8 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArce9wD0bM1693NGttAuP Wi/UC9Sf2RIS6P2KTqbW9FMaiuUBTvR4wujxBMj6cu2F3yUgqul0iAs9JjpZSsFd FrxUKVA50bjCb5CDFXdVakq3vuqUBnxY+ojWm/ZMlld6qCWlK/+Td7ydUC1SRCJv z47wFwK99FE1Xs9h+JE7llnRle3jPpQ/ASQ30T+WVD8iODf7mBaJF/n/6Z3icK6f v+wUgTKj+L5n/j4IP4uxKA5QDir0XdWdurEwZ/lQLewhHQYSEpIe6BPvu8+XXHJ8 qt8PpdqtcGwLxtF0I7T6aDMuUPkZFc+j4SiGyPTiOvIjPk7NXGPup338icdrHMOg JwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17755852857571630696587897179408546055 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-09 00:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.khaironline.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21937722823035974479544360046735030919073757968000937175265852305239300055385957640615489971124732903605133279495436318371761704752270668680504222091145010992631950444013014771032142805066150272054784963004364771626605185975512475642702224234050225642840230951833416202594610008010162010641681051797942710701729614863847671725115704360431439001823011592745490131820028105784958436436705213574258638555960620585859958696906276874494500820627386222794105679957767711979564874890175746537455997770283034262396915780768855975416281948378096774476312094529019808389517621212003431916166515210852021398153372708685438230567 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9058ffb09c75a8515477b1edf2a34316389e6cc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a8d6851040e3816d7c246ad966e45d60c034c699 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.khaironline.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'khaironline.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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