*.bsgroup.com.hk
- Bright Smart Securities International (H.K.) Limited -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number ef:3e:9a:d8:3e:d3:ec:36:63:fa:d2:ad:dd:fe:3e:dd was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Bright Smart Securities International (H.K.) Limited
Organization:
Bright Smart Securities International (H.K.) Limited
State / Province:
Hong Kong
Country: HK
Country: HK
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): ef:3e:9a:d8:3e:d3:ec:36:63:fa:d2:ad:dd:fe:3e:ddSerial Number (int): 318010554021630387814001506693119098589
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 97:e5:e1:b5:76:74:79:40:97:dc:c3:42:5f:ae:17:f2:87:43:81:7d
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): 51:15:e5:fb:e7:0c:a6:86:18:36:17:57:ba:13:bd:d3:95:8d:65:a4
Fingerprint (sha256): ce:9b:bd:87:2b:a0:65:f1:4b:cb:5e:f8:15:68:20:9b:48:9f:da:56:64:73:4c:92:37:55:6b:32:f6:11:e3:d6
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate *.bsgroup.com.hk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.bsgroup.com.hk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.bsgroup.com.hk
bsgroup.com.hk
bsgroup.com.hk
Other certificates including the domain name bsgroup.com.hk
(limited to 100 certificates)
*.bsgroup.com.hk
*.bsgroup.com.hk
*.bsgroup.com.hk
china.bsgroup.com.hk
*.bsgroup.com.hk
*.bsgroup.com.hk
bss2.bsgroup.com.hk
pps.bsgroup.com.hk
bss3.bsgroup.com.hk
*.bsgroup.com.hk
*.bsgroup.com.hk
ssl808847.cloudflaressl.com
bss2.bsgroup.com.hk
ppsbsg.bsgroup.com.hk
membership.bsgroup.com.hk
www.bsgroup.com.hk
HiSpeedMobile.bsgroup.com.hk
sni.cloudflaressl.com
ppsbsg.bsgroup.com.hk
pps.bsgroup.com.hk
*.bsgroup.com.hk
*.bsgroup.com.hk
*.bsgroup.com.hk
sni.cloudflaressl.com
*.bsgroup.com.hk
sni.cloudflaressl.com
*.bsgroup.com.hk
membership.bsgroup.com.hk
www.bsgroup.com.hk
mobilef.bsgroup.com.hk
pps.bsgroup.com.hk
*.bsgroup.com.hk
*.bsgroup.com.hk
*.bsgroup.com.hk
*.bsgroup.com.hk
china.bsgroup.com.hk
*.bsgroup.com.hk
*.bsgroup.com.hk
bss2.bsgroup.com.hk
pps.bsgroup.com.hk
bss3.bsgroup.com.hk
*.bsgroup.com.hk
*.bsgroup.com.hk
ssl808847.cloudflaressl.com
bss2.bsgroup.com.hk
ppsbsg.bsgroup.com.hk
membership.bsgroup.com.hk
www.bsgroup.com.hk
HiSpeedMobile.bsgroup.com.hk
sni.cloudflaressl.com
ppsbsg.bsgroup.com.hk
pps.bsgroup.com.hk
*.bsgroup.com.hk
*.bsgroup.com.hk
*.bsgroup.com.hk
sni.cloudflaressl.com
*.bsgroup.com.hk
sni.cloudflaressl.com
*.bsgroup.com.hk
membership.bsgroup.com.hk
www.bsgroup.com.hk
mobilef.bsgroup.com.hk
pps.bsgroup.com.hk
*.bsgroup.com.hk
*.bsgroup.com.hk
Certificate
The complete raw certificate details for *.bsgroup.com.hk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHAjCCBeqgAwIBAgIRAO8+mtg+0+w2Y/rSrd3+Pt0wDQYJKoZIhvcNAQELBQAw gZUxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE9MDsGA1UE AxM0U2VjdGlnbyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl cnZlciBDQTAeFw0yMzA5MjIwMDAwMDBaFw0yNDEwMjIyMzU5NTlaMHsxCzAJBgNV BAYTAkhLMRIwEAYDVQQIEwlIb25nIEtvbmcxPTA7BgNVBAoTNEJyaWdodCBTbWFy dCBTZWN1cml0aWVzIEludGVybmF0aW9uYWwgKEguSy4pIExpbWl0ZWQxGTAXBgNV BAMMECouYnNncm91cC5jb20uaGswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCIo21/srrrH5zIbR3o18ORKCEyQVfOxip3yix1HP+yYFSTEV0rhflkd1hm Eq3zHemaW4/rWqfA5yogj/3sEosvF4CTItVmj3WhHeSWGOtUhLjrc6wv3yTLWqbd W1JISIjOaGc04qTb+Bz1rq3eoK9fvnUUCZPv4QBwP8Q0M1SOP/eD7SrbOi4aVbQ1 ZmuflgLCT7u+CDVCHkrauVmk+DD6vxgjGhWYEZy1DNA9je6dLv7UI9G1RspkfRkp q/bn1LwGmdMxSPwghwB9ebbqlpJcwK7VJE8roC0y8fIBgvaz8hsK3xJfVkp5DMzd CgmWPYqSZtt8vKC9FdMm2cD3GqwtAgMBAAGjggNkMIIDYDAfBgNVHSMEGDAWgBQX 2dYlJ2f5McJJQ9kwNkSMbKlP6zAdBgNVHQ4EFgQUl+XhtXZ0eUCX3MNCX64X8odD gX0wDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMEoGA1UdIARDMEEwNQYMKwYBBAGyMQECAQMEMCUwIwYI KwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjBaBgNV HR8EUzBRME+gTaBLhklodHRwOi8vY3JsLnNlY3RpZ28uY29tL1NlY3RpZ29SU0FP cmdhbml6YXRpb25WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3JsMIGKBggrBgEF BQcBAQR+MHwwVQYIKwYBBQUHMAKGSWh0dHA6Ly9jcnQuc2VjdGlnby5jb20vU2Vj dGlnb1JTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5jcnQw IwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLnNlY3RpZ28uY29tMCsGA1UdEQQkMCKC ECouYnNncm91cC5jb20uaGuCDmJzZ3JvdXAuY29tLmhrMIIBfQYKKwYBBAHWeQIE AgSCAW0EggFpAWcAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAA AYq6hSFNAAAEAwBHMEUCIGl6WjzifnR735iBO0NcOWeo2HSWS/U7z5h92s4QoX3Z AiEAw70HVl69gnNTl1OE76EvRdcR0u4WcxEtbb1hjpEoy5AAdgDatr9rP7W2Ip+b wrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYq6hSGjAAAEAwBHMEUCID3pf7eI4hpg D7gWUxpk+YbJszLyhygu8GMldIrZ9h9gAiEA8iM1iSGgxLsqxRqvBw9CDBzvvbYj G/yu7iT4gCubl9AAdQDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAA AYq6hSG/AAAEAwBGMEQCIEX5jwf0D+wyyGEOQ0qihfK9zAMiJDLrFufusFctTgPK AiBxyKPwKsdiXnzQFUNSCqJ9sNtMXUOO3QQy+Rd8GkBcIDANBgkqhkiG9w0BAQsF AAOCAQEAIE0bJWRlXKB5uNlQVCVmufZtlNAbGS65xVE2M+zsNuibbjwIkf7LCI5Q 2JNh/XtsCj7/QO/L4akNm/DQQsq/ss/JB7567whOjl65TRueEHYoT5sdBlHgh6qq DuZ0yofnzOtN0YwUZDfdNcuOQ+R/T6CBEGB6TXkgkUsMF/TTZRbX8puED+mC2OOx 9t2liXd/XtmmK5U3xuIpo0tNE5lnK59zbxb9TbR1VtZsqm5ffVdi01pQ+apqrT/1 lEBd4GXLSu7yAaMD+YnvrIrUMbuc+a0rEXQHsqfZ1BFxGeBYzvB/G9hQALOBHtoB qxTNrnwLibmh0GZmoVFGQfcgvVOOBg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiKNtf7K66x+cyG0d6NfD kSghMkFXzsYqd8osdRz/smBUkxFdK4X5ZHdYZhKt8x3pmluP61qnwOcqII/97BKL LxeAkyLVZo91oR3klhjrVIS463OsL98ky1qm3VtSSEiIzmhnNOKk2/gc9a6t3qCv X751FAmT7+EAcD/ENDNUjj/3g+0q2zouGlW0NWZrn5YCwk+7vgg1Qh5K2rlZpPgw +r8YIxoVmBGctQzQPY3unS7+1CPRtUbKZH0ZKav259S8BpnTMUj8IIcAfXm26paS XMCu1SRPK6AtMvHyAYL2s/IbCt8SX1ZKeQzM3QoJlj2KkmbbfLygvRXTJtnA9xqs LQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 318010554021630387814001506693119098589 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HK' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hong Kong' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bright Smart Securities International (H.K.) Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.bsgroup.com.hk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17248998692534499343206665063439333762017737264875540205987615568559430221554674586765621238454258942990413531942109518939068272178917309370385502668091911412691360130362353572852409229291928759793821703057066202262268097936656721998293468731442750294975367147091698085898117496471200201546250517976213916117777139618983878300606947654183635928946295307228506524717262156265337975962877355123539737344912808833799105234397331930188114069938855019813702714404243480036950249472199538782852675545362077141764513900052979511701169369633410894755711127800677765922085850407437671876817062821509031591392419037353241914413 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 97e5e1b57674794097dcc3425fae17f28743817d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bsgroup.com.hk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bsgroup.com.hk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00204d1b2564655ca079b8d950542566b9f66d94d01b192eb9c5513633ecec36e89b6e3c0891fecb088e50d89361fd7b6c0a3eff40efcbe1a90d9bf0d042cabfb2cfc907be7aef084e8e5eb94d1b9e1076284f9b1d0651e087aaaa0ee674ca87e7cceb4dd18c146437dd35cb8e43e47f4fa08110607a4d7920914b0c17f4d36516d7f29b840fe982d8e3b1f6dda589777f5ed9a62b9537c6e229a34b4d1399672b9f736f16fd4db47556d66caa6e5f7d5762d35a50f9aa6aad3ff594405de065cb4aeef201a303f989efac8ad431bb9cf9ad2b117407b2a7d9d4117119e058cef07f1bd85000b3811eda01ab14cdae7c0b89b9a1d06666a1514641f720bd538e06