vpn.mhi.ca
Issued by GeoTrust DV SSL CA - G3
About this certificate
This digital certificate with serial number 42:7c:fc:10:f0:87:0a:2d:1a:63:da:0b:a8:e9:4f:3a was issued on by GeoTrust Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=vpn.mhi.ca
GeoTrust Inc.
Organization:
GeoTrust Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 42:7c:fc:10:f0:87:0a:2d:1a:63:da:0b:a8:e9:4f:3aSerial Number (int): 88378005041573142085205990384561901370
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: ad:65:22:85:90:d0:3b:e3:a1:49:8b:37:f9:f1:0b:1d:5f:17:a0:77
Fingerprint (sha1): c4:30:a6:75:91:f0:ac:f5:41:c4:c0:98:23:37:df:1a:89:ae:d3:f9
Fingerprint (sha256): c6:81:80:ae:80:b8:c2:73:6b:2f:f7:e4:e6:2e:ad:9a:ba:90:4d:75:1e:be:e3:1e:e0:bb:83:7e:80:95:59:af
Issuing Certificate URL: http://gt.symcb.com/gt.crt
Revocation information
OCSP Server: http://gt.symcd.comCRL Distribution Point: http://gt.symcb.com/gt.crl
Check the revocation status for certificate vpn.mhi.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vpn.mhi.ca
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vpn.mhi.ca
Other certificates including the domain name mhi.ca
(limited to 100 certificates)
ftps.mhi.ca
mhi.ca
inportal.mhi.ca
mhi.ca
mhi.ca
vpn.mhi.ca
mhi.ca
time.mhi.ca
mhi.ca
vpn.mhi.ca
mhi.ca
mhi.ca
mhi.ca
ess.mhi.ca
spam.mhi.ca
ess.mhi.ca
mhi.ca
ess.mhi.ca
spam.mhi.ca
vpn.mhi.ca
mhi.ca
portal.mhi.ca
mhi.ca
mhi.ca
portal.mhi.ca
spam.mhi.ca
hrms.mhi.ca
ftps.mhi.ca
inportal.mhi.ca
ess.mhi.ca
mhi.ca
mhi.ca
mhi.ca
spam.mhi.ca
vpn.mhi.ca
spam.mhi.ca
*.mhi.ca
training.mhi.ca
hvdc.ca
hvdc.ca
hrms.mhi.ca
vpn.mhi.ca
*.mhi.ca
mhi.ca
spam.mhi.ca
ftps.mhi.ca
mhi.ca
mhi.ca
mhi.ca
spam.mhi.ca
hrms.mhi.ca
mhi.ca
mhi.ca
mhi.ca
mhi.ca
training.mhi.ca
hrms.mhi.ca
vpn.mhi.ca
mhi.ca
mhi.ca
portal.mhi.ca
mhi.ca
mhi.ca
time.mhi.ca
mhi.ca
mhi.ca
mhi.ca
inportal.mhi.ca
mhi.ca
mhi.ca
vpn.mhi.ca
mhi.ca
time.mhi.ca
mhi.ca
vpn.mhi.ca
mhi.ca
mhi.ca
mhi.ca
ess.mhi.ca
spam.mhi.ca
ess.mhi.ca
mhi.ca
ess.mhi.ca
spam.mhi.ca
vpn.mhi.ca
mhi.ca
portal.mhi.ca
mhi.ca
mhi.ca
portal.mhi.ca
spam.mhi.ca
hrms.mhi.ca
ftps.mhi.ca
inportal.mhi.ca
ess.mhi.ca
mhi.ca
mhi.ca
mhi.ca
spam.mhi.ca
vpn.mhi.ca
spam.mhi.ca
*.mhi.ca
training.mhi.ca
hvdc.ca
hvdc.ca
hrms.mhi.ca
vpn.mhi.ca
*.mhi.ca
mhi.ca
spam.mhi.ca
ftps.mhi.ca
mhi.ca
mhi.ca
mhi.ca
spam.mhi.ca
hrms.mhi.ca
mhi.ca
mhi.ca
mhi.ca
mhi.ca
training.mhi.ca
hrms.mhi.ca
vpn.mhi.ca
mhi.ca
mhi.ca
portal.mhi.ca
mhi.ca
mhi.ca
time.mhi.ca
mhi.ca
mhi.ca
Certificate
The complete raw certificate details for vpn.mhi.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGpTCCBY2gAwIBAgIQQnz8EPCHCi0aY9oLqOlPOjANBgkqhkiG9w0BAQsFADBm MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UECxMU RG9tYWluIFZhbGlkYXRlZCBTU0wxIDAeBgNVBAMTF0dlb1RydXN0IERWIFNTTCBD QSAtIEczMB4XDTE2MDkzMDAwMDAwMFoXDTE4MTAwOTIzNTk1OVowFTETMBEGA1UE AwwKdnBuLm1oaS5jYTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAKD8 YaftqfSYCFuW7JUiguYj2onya/u+CUG8N3zewu9qkT1grYUYR753Z7ryo2nk8qPG N6/7rYUJVVpbktOcNXh/A9VPcOyHREu+F/9I3qAXXSE5l5fJmRSygkeCVgecDH+r 8CxAWnR6hRJAxmoIvG6qX/pE4l6+Kiri0D7fzZ+i1iGWZjmAo3buBjqfGHsJTIIJ JZXkvgOCLSfn8MyGFoWcpX0uqFl6Sl08cN+zAdkDLgdtrJH/9R95PF4GJVJPuPnT SumGdaIbuI2o9pXKBLHdRa+kxmdXApoA8V/TwjPhXHI3aEMZpZsIss0bUkcJnl4e v91HCS5H6NUaGNssp4t/PN9yp0FEOgglt8QTGOKllFOhRPTRE+yIgHqnvoJhalK5 C+1awWSbv0RPGmOCOyfPzwBOKz5LvHEUjUtfdh35goyR8IiKsUewiGgeBLPE1ahx IZL5GYytSK4Su6cLzud3+pxN3Dg+LqSO5Kb3PHptAJndfeoqvxXnrWuhjssW0wID AQABo4IDHjCCAxowFQYDVR0RBA4wDIIKdnBuLm1oaS5jYTAJBgNVHRMEAjAAMCsG A1UdHwQkMCIwIKAeoByGGmh0dHA6Ly9ndC5zeW1jYi5jb20vZ3QuY3JsMIGdBgNV HSAEgZUwgZIwgY8GBmeBDAECATCBhDA/BggrBgEFBQcCARYzaHR0cHM6Ly93d3cu Z2VvdHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0b3J5L2xlZ2FsMEEGCCsGAQUF BwICMDUMM2h0dHBzOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJjZXMvcmVwb3Np dG9yeS9sZWdhbDAfBgNVHSMEGDAWgBStZSKFkNA746FJizf58QsdXxegdzAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsG AQUFBwEBBEswSTAfBggrBgEFBQcwAYYTaHR0cDovL2d0LnN5bWNkLmNvbTAmBggr BgEFBQcwAoYaaHR0cDovL2d0LnN5bWNiLmNvbS9ndC5jcnQwggF+BgorBgEEAdZ5 AgQCBIIBbgSCAWoBaAB2AN3rHSt6DU+mIIuBrYFocH4ujp0B1VyIjT0RxM227L7M AAABV3wNFowAAAQDAEcwRQIhAMqS7/SWbUhBDXFY3pe7BDzS67fYK6PAIEP7Ru2x eWVTAiBRPeuB0mZtzRl+3rC95Vfkl2aBSoivtV4Bma1bPxVwQQB2AGj2mPgfZIK+ OozuuSgdTPxxUV1nk9RE0QpnrLtPT/vEAAABV3wNFqwAAAQDAEcwRQIgFwpJJq0b Ga2zZ67A8IqcDVuSe4A0ggJvyYjXDJAUnbgCIQCE/08UnTFdeirJWePqnHFurz9c +UqUF0m+LFK0i2QCTAB2AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3L AAABV3wNFycAAAQDAEcwRQIgbyUKQq8N8s6lv2cnQnYN/b55/+ng/pBb0mhNJ4RY Ux0CIQCwHvsyMeQ1ipmWBj1XbQIxY49Bhtd+XrXgNgnOs0iKDDANBgkqhkiG9w0B AQsFAAOCAQEAoz+vYwtdxDR2gF8HBfbCWeFui/BbXryMNWdhr78WT4SXTyltIlcp +/fQtISVNLQhmY0+xO63yYY0kYB9AXrLIpAbQX0z7PZyPbsJu0rEeXf7V0/B/9sO jiCUfTfwXWhz0bQbAOjy/kpe473e/RzhHbEFPlgAzycTkiJwuLjlp3lDomxeVqLB AI5mJiDExJS4wveMlljB/qvn/hv/fdjGmXlbtruN/b+iFFQHVJwPJyNOre7aGhEW B68GOPK0aUv69Eo0g8iyC3E5/ERQeS3PNBtj5zblpeMn58rfB2lBIxpFySpvnLpy AlsrZk/1S4ox4i7nnV9ul/AKpzuhByuqJA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAoPxhp+2p9JgIW5bslSKC 5iPaifJr+74JQbw3fN7C72qRPWCthRhHvndnuvKjaeTyo8Y3r/uthQlVWluS05w1 eH8D1U9w7IdES74X/0jeoBddITmXl8mZFLKCR4JWB5wMf6vwLEBadHqFEkDGagi8 bqpf+kTiXr4qKuLQPt/Nn6LWIZZmOYCjdu4GOp8YewlMggklleS+A4ItJ+fwzIYW hZylfS6oWXpKXTxw37MB2QMuB22skf/1H3k8XgYlUk+4+dNK6YZ1ohu4jaj2lcoE sd1Fr6TGZ1cCmgDxX9PCM+FccjdoQxmlmwiyzRtSRwmeXh6/3UcJLkfo1RoY2yyn i38833KnQUQ6CCW3xBMY4qWUU6FE9NET7IiAeqe+gmFqUrkL7VrBZJu/RE8aY4I7 J8/PAE4rPku8cRSNS192HfmCjJHwiIqxR7CIaB4Es8TVqHEhkvkZjK1IrhK7pwvO 53f6nE3cOD4upI7kpvc8em0Amd196iq/Feeta6GOyxbTAgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 88378005041573142085205990384561901370 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust DV SSL CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'vpn.mhi.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 3653376746576656826138126128964063752284988039324280541974711414533774583354224358254023581029088101100513594274029983980476857462745373907925939307035122160199781738893009093248904063708331463982361069637619915096956626255857769618413800140202460002923417633233582205234256907083832770087106375608907401969795374459865525669418176614348841056442367118095968528655143660721071881165269522804904393083709357280094193410174216416614193067403422012947091251913310146182222000593770468824440800888396719669398268780298373996879736631152479493326275615068910491190742147202458230739175942986580634778831361040935877533283143745479971523189397778287391604109645285576476386152961963543985559999105090872206789234499024003963774628250184804188966521880831493596242715283240119418248511528512571386938944691211029363165140348717304759940453400475977124704688054078715489433807493342022986697059861734322201751929435725163932997588691 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn.mhi.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcb.com/gt.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ad65228590d03be3a1498b37f9f10b1d5f17a077 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcb.com/gt.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 0168007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc000001577c0d168c0000040300473045022100ca92eff4966d48410d7158de97bb043cd2ebb7d82ba3c02043fb46edb17965530220513deb81d2666dcd197edeb0bde557e49766814a88afb55e0199ad5b3f15704100760068f698f81f6482be3a8ceeb9281d4cfc71515d6793d444d10a67acbb4f4ffbc4000001577c0d16ac00000403004730450220170a4926ad1b19adb367aec0f08a9c0d5b927b803482026fc988d70c90149db802210084ff4f149d315d7a2ac959e3ea9c716eaf3f5cf94a941749be2c52b48b64024c007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb000001577c0d1727000004030047304502206f250a42af0df2cea5bf672742760dfdbe79ffe9e0fe905bd2684d278458531d022100b01efb3231e4358a9996063d576d0231638f4186d77e5eb5e03609ceb3488a0c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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