*.engenoil.com
- Engen Petroleum Limited -
Issued by thawte SSL CA - G2
About this certificate
This digital certificate with serial number 19:d3:ad:e7:86:72:dc:85:2b:e9:13:c8:f9:ba:ca:3c was issued on by thawte, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Engen Petroleum Limited
Organization:
Engen Petroleum Limited
Organization unit: MCC
Organization unit: MCC
State / Province:
South Africa
Locality: Cape Town
Country: ZA
Locality: Cape Town
Country: ZA
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 19:d3:ad:e7:86:72:dc:85:2b:e9:13:c8:f9:ba:ca:3cSerial Number (int): 34329801731950568222964020243062245948
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60
Fingerprint (sha1): 45:92:03:8e:ab:0f:7e:0a:38:1d:77:aa:06:15:fc:60:be:d1:16:32
Fingerprint (sha256): c4:71:6e:cf:72:a5:9f:00:2c:2b:73:22:a7:64:f2:2a:12:71:03:53:c9:b2:63:68:5a:76:85:c0:54:fc:8a:cd
Issuing Certificate URL: http://tj.symcb.com/tj.crt
Revocation information
OCSP Server: http://tj.symcd.comCRL Distribution Point: http://tj.symcb.com/tj.crl
Check the revocation status for certificate *.engenoil.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.engenoil.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.engenoil.com
engenoil.com
engenoil.com
Other certificates including the domain name engenoil.com
(limited to 100 certificates)
*.engenoil.com
connect.engenoil.com
*.engenoil.com
sip.engenoil.com
sip.engenoil.com
careers.engenoil.com
MessageBrokerqa.engenoil.com
*.engenoil.com
Mobile.engenoil.com
ACWC.engenoil.com
Mobile.engenoil.com
careers.engenoil.com
*.engenoil.com
*.engenoil.com
*.engenoil.com
sip.engenoil.com
sip.engenoil.com
login.identity.engenoil.com
boardpad.engenoil.com
secure.engenoil.com
Mobile.engenoil.com
connect.engenoil.com
1card.engenoil.com
esbprod.engenoil.com
sts.engenoil.com
rms.engenoil.com
Mobile.engenoil.com
sfbweb-ext.engenoil.com
esbqa.engenoil.com
sip.engenoil.com
Mobile.engenoil.com
sfbweb-ext.engenoil.com
Mobile.engenoil.com
mobile.engenoil.com
wac.engenoil.com
sip.engenoil.com
sip.engenoil.com
sts.engenoil.com
sip.engenoil.com
careers.engenoil.com
*.engenoil.com
Mobile.engenoil.com
*.engenoil.com
*.engenoil.com
*.engenoil.com
sfbweb-ext.engenoil.com
sfbweb-ext.engenoil.com
MessageBrokerprod.engenoil.com
rp.engenoil.com
*.engenoil.com
*.engenoil.com
Mobile.engenoil.com
sip.engenoil.com
sts.engenoil.com
secure.engenoil.com
MessageBrokerprod.engenoil.com
MessageBrokerQA.engenoil.com
sip.engenoil.com
wac.engenoil.com
esbdev.engenoil.com
sip.engenoil.com
*.engenoil.com
web-ext.engenoil.com
connect.engenoil.com
*.engenoil.com
sip.engenoil.com
sip.engenoil.com
careers.engenoil.com
MessageBrokerqa.engenoil.com
*.engenoil.com
Mobile.engenoil.com
ACWC.engenoil.com
Mobile.engenoil.com
careers.engenoil.com
*.engenoil.com
*.engenoil.com
*.engenoil.com
sip.engenoil.com
sip.engenoil.com
login.identity.engenoil.com
boardpad.engenoil.com
secure.engenoil.com
Mobile.engenoil.com
connect.engenoil.com
1card.engenoil.com
esbprod.engenoil.com
sts.engenoil.com
rms.engenoil.com
Mobile.engenoil.com
sfbweb-ext.engenoil.com
esbqa.engenoil.com
sip.engenoil.com
Mobile.engenoil.com
sfbweb-ext.engenoil.com
Mobile.engenoil.com
mobile.engenoil.com
wac.engenoil.com
sip.engenoil.com
sip.engenoil.com
sts.engenoil.com
sip.engenoil.com
careers.engenoil.com
*.engenoil.com
Mobile.engenoil.com
*.engenoil.com
*.engenoil.com
*.engenoil.com
sfbweb-ext.engenoil.com
sfbweb-ext.engenoil.com
MessageBrokerprod.engenoil.com
rp.engenoil.com
*.engenoil.com
*.engenoil.com
Mobile.engenoil.com
sip.engenoil.com
sts.engenoil.com
secure.engenoil.com
MessageBrokerprod.engenoil.com
MessageBrokerQA.engenoil.com
sip.engenoil.com
wac.engenoil.com
esbdev.engenoil.com
sip.engenoil.com
*.engenoil.com
web-ext.engenoil.com
Certificate
The complete raw certificate details for *.engenoil.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHyTCCBrGgAwIBAgIQGdOt54Zy3IUr6RPI+brKPDANBgkqhkiG9w0BAQsFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMRswGQYDVQQDExJ0 aGF3dGUgU1NMIENBIC0gRzIwHhcNMTcwMzAxMDAwMDAwWhcNMjAwNDI5MjM1OTU5 WjCBgTELMAkGA1UEBhMCWkExFTATBgNVBAgMDFNvdXRoIEFmcmljYTESMBAGA1UE BwwJQ2FwZSBUb3duMSAwHgYDVQQKDBdFbmdlbiBQZXRyb2xldW0gTGltaXRlZDEM MAoGA1UECwwDTUNDMRcwFQYDVQQDDA4qLmVuZ2Vub2lsLmNvbTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBALDGMlzHx3B2ywuTnHtAOCZpDAt/c0KhPNNV v4tUygn45SGfQAHspabYm+bbM+il5ALV47k0g+v6mv82eDVBcZEzFzNgG79DVMv/ Ej6i7pIzIKV+REcckH+TyaBpd1YqgA0f3jsaHR5b7R/Ltn/9Efal+T9L4ZOT+2Rz 8cHFxGlkDM4p9g+54fa6vn/zGiBtQ9JYGbELpPCqRlwfOIyNZ1QBbl56MyE/N3vZ URkPRJVR6KCx0d1OpzXlP2Inj0SqV17plEO0M+tZ7R5S/V9j7B1MGyPuzMmxs810 7fQtq76hj0Q+aPKrhgkfos4fuJEBLAKXRRn9vYGXeGcaFzXUSwE5mGRbdB/9BADo kEbz6NZdd4AR4Lb0RYkKbhirM0v8jGPxcy0w8CPmwx7bX0qt8i/RhYZLCnKioYil snPMbHojQgHYnf5TPnmXWUWNRcjSPFqIPdkVTgl5CitBRYbwsp+n/Bb7fKjEX/eu dz7BVyIcbOs/lxFCJMVo7wnxE8P6A/77QqWXP0nfuAjgP80ITH7lrrdvOZj04b6j QsWLYFzJv2DpDrMk83oAMI8uPnoyk7UW5J97DYtGg6QlEqz4QQu0Y2PV7YcKZr6I 9slESBUtRBoUsrIe2q407qsY9BBB3/eloHCW/qZ3LfikmJN7RN9yDKv/YE2h1BuJ B7jz0mjVAgMBAAGjggN6MIIDdjAnBgNVHREEIDAegg4qLmVuZ2Vub2lsLmNvbYIM ZW5nZW5vaWwuY29tMAkGA1UdEwQCMAAwbgYDVR0gBGcwZTBjBgZngQwBAgIwWTAm BggrBgEFBQcCARYaaHR0cHM6Ly93d3cudGhhd3RlLmNvbS9jcHMwLwYIKwYBBQUH AgIwIwwhaHR0cHM6Ly93d3cudGhhd3RlLmNvbS9yZXBvc2l0b3J5MA4GA1UdDwEB /wQEAwIFoDAfBgNVHSMEGDAWgBTCT0hX/NFPmsBdOH0OBdvZLrVSYDArBgNVHR8E JDAiMCCgHqAchhpodHRwOi8vdGouc3ltY2IuY29tL3RqLmNybDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwVwYIKwYBBQUHAQEESzBJMB8GCCsGAQUFBzAB hhNodHRwOi8vdGouc3ltY2QuY29tMCYGCCsGAQUFBzAChhpodHRwOi8vdGouc3lt Y2IuY29tL3RqLmNydDCCAfgGCisGAQQB1nkCBAIEggHoBIIB5AHiAHYA3esdK3oN T6Ygi4GtgWhwfi6OnQHVXIiNPRHEzbbsvswAAAFaiN2MCAAABAMARzBFAiEA23NA 8H0USPYHBkJUVGSo85+yWAVJJB/pDIWGvU8IRugCIH3HZC0PGK0bPbas7eGIOMAn l5JMBA8C+RySGWbhjtvQAHcApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN 3BAAAAFaiN2MPwAABAMASDBGAiEAy1dyF21JuDkVX7ZUJpyei9IOoqmwCO9LBzep DOrqJqYCIQCnt7cchmwUoXBkxUj/QeSkLgtbIJMelrN6HD9xXvCFQAB3AO5Lvbd1 zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABWojdjf8AAAQDAEgwRgIhAIYD 02HVceQNVXaydTElBhgyVz9nddBfhuDrmNj0DS0BAiEAuKbZsc4Y6CCqZGmBH4Yg wU9EkeZnsKqBaW/0ZipRrMgAdgC8eOHfxfY8aEZJM02hD6FfCXlpIAnAgbTz9pF/ Ptm4pQAAAVqI3YzyAAAEAwBHMEUCIQCpa7u5Ry8/ij6RzJZBr/Ei6Flnd7Ricgld S86iLPUkTwIgVhBijDL1RiLlC/+4JNodKVfEmeuJVRtjwDIPPYoEqAcwDQYJKoZI hvcNAQELBQADggEBAGMzGJsQEgkA77bQ1m9pTsbHv1Yh8cO8mErnmNJP3vfp6eGT nkX9EN/BjPuhR4uUiHU4Z996koS3SkoAJ1JtpFFyHbjP90BAWHMFk4Xi7r8bRkB0 kFKDAKk15EOSO6trHzvvsuM71n338Ry/EH6nPbll/Cfma128W6XRIGPDbyyIkSWZ ROwsDtbKU5+QOoBwiHYZrGKTYCj6Fi9DI0F9mL3TuFlQ+Yt6ATi02rks/nUX7Zk8 YHVSWgTj0ReqdJCOqiuQIPPGZUW1SSYb2jclOsIBsem4qTyi+0r4RnAAb4YSoo1Y sg2QUAsiD/vjs3HNYeQ+BcLeDCQjoZhk1LtqmJo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsMYyXMfHcHbLC5Oce0A4 JmkMC39zQqE801W/i1TKCfjlIZ9AAeylptib5tsz6KXkAtXjuTSD6/qa/zZ4NUFx kTMXM2Abv0NUy/8SPqLukjMgpX5ERxyQf5PJoGl3ViqADR/eOxodHlvtH8u2f/0R 9qX5P0vhk5P7ZHPxwcXEaWQMzin2D7nh9rq+f/MaIG1D0lgZsQuk8KpGXB84jI1n VAFuXnozIT83e9lRGQ9ElVHooLHR3U6nNeU/YiePRKpXXumUQ7Qz61ntHlL9X2Ps HUwbI+7MybGzzXTt9C2rvqGPRD5o8quGCR+izh+4kQEsApdFGf29gZd4ZxoXNdRL ATmYZFt0H/0EAOiQRvPo1l13gBHgtvRFiQpuGKszS/yMY/FzLTDwI+bDHttfSq3y L9GFhksKcqKhiKWyc8xseiNCAdid/lM+eZdZRY1FyNI8Wog92RVOCXkKK0FFhvCy n6f8Fvt8qMRf9653PsFXIhxs6z+XEUIkxWjvCfETw/oD/vtCpZc/Sd+4COA/zQhM fuWut285mPThvqNCxYtgXMm/YOkOsyTzegAwjy4+ejKTtRbkn3sNi0aDpCUSrPhB C7RjY9Xthwpmvoj2yURIFS1EGhSysh7arjTuqxj0EEHf96WgcJb+pnct+KSYk3tE 33IMq/9gTaHUG4kHuPPSaNUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 34329801731950568222964020243062245948 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-03-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-29 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'South Africa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Cape Town' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Engen Petroleum Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'MCC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.engenoil.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 721175840762826897042371698493319817383626985261992575291773722767908983677546694693666702854370646544368949582163669964898596163469801364771505559263298371631514133329708005604857072526502880135321266050039802968310247830545779317687920811449503313737602313360634916023032289521786326319950942633273799136467593338251940188196605785377078612550701215068517284438992477372824929710878571606746883031138471828686977024816640773259996623996887170688239684295882705401711856148680537474107910090890498838744677617047427790605779166129292072976841140741824466488005188439061990994760104825384345652505512790447510550704591816772075832583420566711987979537757918865876490212776138443596082970158065218445948528365246472662508467811521064371506919719062709019231083689338627977667750111774570508675872726897857202815252449297924667921916343019862018519840534351742606276351727094447709811675049651668270997553653774098087033942159408060081887060314241032734805454839355539148107921801581321490530011708160585497953817998938947477213979268831722174149581339772943008875830882564740599836123404063579643884315630118281565787454443402765131675417718449354613034309339527524590638194860749876192091027285553309056766296531747303727659234781397 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.engenoil.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'engenoil.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (488 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (484 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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