horizons.govt.nz
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 01:e7:cb:e9:63:72:bc:c1:a1:b3:26:8e:05:23:39:d4 was issued on by DigiCert, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=horizons.govt.nz
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:e7:cb:e9:63:72:bc:c1:a1:b3:26:8e:05:23:39:d4Serial Number (int): 2532784390195593060302386601346152916
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: a8:2f:bb:aa:16:6a:2c:d4:73:01:d3:2c:1f:39:c6:45:e8:42:ec:bd
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): cd:58:9b:11:d0:4b:c0:34:ff:d9:9a:90:e6:19:95:26:61:b5:6f:c3
Fingerprint (sha256): d0:f4:c0:14:3c:85:e1:c0:e5:0c:e4:c0:60:3b:b4:9b:a7:54:04:a9:fa:3f:cc:dc:e6:f4:10:4a:35:dd:ac:32
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate horizons.govt.nz
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for horizons.govt.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
horizons.govt.nz
Other certificates including the domain name horizons.govt.nz
(limited to 100 certificates)
support.canterbury.qld.edu.au
theportal.horizons.govt.nz
helpdesk.grv.org.au
www.horizons.govt.nz
remote.horizons.govt.nz
dev.horizons.govt.nz
dev.horizons.govt.nz
*.horizons.govt.nz
envirodata.horizons.govt.nz
servicedesk.yooralla.com.au
servicedesk.cockburn.wa.gov.au
servicedesk.yooralla.com.au
helpdesk.thescapegroup.com.au
servicedesk.yooralla.com.au
portal.thescapegroup.com.au
servicedesk.bluechipit.com.au
servicedesk.yooralla.com.au
www.horizons.govt.nz
esm.parracatholic.org
test.barkuma.com.au
theportal.horizons.govt.nz
helpdesk.grv.org.au
envirodata.horizons.govt.nz
servicedesk.yooralla.com.au
envirodata.horizons.govt.nz
help.cygnetwest.com
support.calvary.qld.edu.au
www.horizons.govt.nz
help.cygnetwest.com
servicedesk.yooralla.com.au
esm.parracatholic.org
www.horizons.govt.nz
servicedesk.eqt.com.au
help.cygnetwest.com
www.horizons.govt.nz
support.calvary.qld.edu.au
servicedesk.eqt.com.au
servicedesk.eqt.com.au
www.horizons.govt.nz
envirodata.horizons.govt.nz
servicedesk.yooralla.com.au
helpdesk.grv.org.au
envirodata.horizons.govt.nz
esm.parracatholic.org
servicedesk.yooralla.com.au
servicedesk.yooralla.com.au
theportal.horizons.govt.nz
support.canterbury.qld.edu.au
servicedesk.hrha.org.au
envirodata.horizons.govt.nz
theportal.horizons.govt.nz
test.barkuma.com.au
servicedesk.yooralla.com.au
servicedesk.yooralla.com.au
remote.horizons.govt.nz
dev.horizons.govt.nz
servicedesk.yooralla.com.au
help.cygnetwest.com
support.calvary.qld.edu.au
test.barkuma.com.au
wireless.horizons.govt.nz
servicedesk.yooralla.com.au
envirodata.horizons.govt.nz
remote.horizons.govt.nz
support.calvary.qld.edu.au
servicedesk.bluechipit.com.au
test.barkuma.com.au
helpdesk.thescapegroup.com.au
envirodata.horizons.govt.nz
*.horizons.govt.nz
servicedesk.bluechipit.com.au
esm.parracatholic.org
*.horizons.govt.nz
horizons.govt.nz
www.horizons.govt.nz
servicedesk.cockburn.wa.gov.au
dev.horizons.govt.nz
servicedesk.cockburn.wa.gov.au
servicedesk.yooralla.com.au
portal.thescapegroup.com.au
support.canterbury.qld.edu.au
dev.horizons.govt.nz
servicedesk.bluechipit.com.au
envirodata.horizons.govt.nz
wireless.horizons.govt.nz
servicedesk.yooralla.com.au
support.canterbury.qld.edu.au
remote.horizons.govt.nz
servicedesk.yooralla.com.au
www.horizons.govt.nz
servicedesk.cockburn.wa.gov.au
servicedesk.eqt.com.au
envirodata.horizons.govt.nz
helpdesk.grv.org.au
theportal.horizons.govt.nz
helpdesk.grv.org.au
www.horizons.govt.nz
remote.horizons.govt.nz
dev.horizons.govt.nz
dev.horizons.govt.nz
*.horizons.govt.nz
envirodata.horizons.govt.nz
servicedesk.yooralla.com.au
servicedesk.cockburn.wa.gov.au
servicedesk.yooralla.com.au
helpdesk.thescapegroup.com.au
servicedesk.yooralla.com.au
portal.thescapegroup.com.au
servicedesk.bluechipit.com.au
servicedesk.yooralla.com.au
www.horizons.govt.nz
esm.parracatholic.org
test.barkuma.com.au
theportal.horizons.govt.nz
helpdesk.grv.org.au
envirodata.horizons.govt.nz
servicedesk.yooralla.com.au
envirodata.horizons.govt.nz
help.cygnetwest.com
support.calvary.qld.edu.au
www.horizons.govt.nz
help.cygnetwest.com
servicedesk.yooralla.com.au
esm.parracatholic.org
www.horizons.govt.nz
servicedesk.eqt.com.au
help.cygnetwest.com
www.horizons.govt.nz
support.calvary.qld.edu.au
servicedesk.eqt.com.au
servicedesk.eqt.com.au
www.horizons.govt.nz
envirodata.horizons.govt.nz
servicedesk.yooralla.com.au
helpdesk.grv.org.au
envirodata.horizons.govt.nz
esm.parracatholic.org
servicedesk.yooralla.com.au
servicedesk.yooralla.com.au
theportal.horizons.govt.nz
support.canterbury.qld.edu.au
servicedesk.hrha.org.au
envirodata.horizons.govt.nz
theportal.horizons.govt.nz
test.barkuma.com.au
servicedesk.yooralla.com.au
servicedesk.yooralla.com.au
remote.horizons.govt.nz
dev.horizons.govt.nz
servicedesk.yooralla.com.au
help.cygnetwest.com
support.calvary.qld.edu.au
test.barkuma.com.au
wireless.horizons.govt.nz
servicedesk.yooralla.com.au
envirodata.horizons.govt.nz
remote.horizons.govt.nz
support.calvary.qld.edu.au
servicedesk.bluechipit.com.au
test.barkuma.com.au
helpdesk.thescapegroup.com.au
envirodata.horizons.govt.nz
*.horizons.govt.nz
servicedesk.bluechipit.com.au
esm.parracatholic.org
*.horizons.govt.nz
horizons.govt.nz
www.horizons.govt.nz
servicedesk.cockburn.wa.gov.au
dev.horizons.govt.nz
servicedesk.cockburn.wa.gov.au
servicedesk.yooralla.com.au
portal.thescapegroup.com.au
support.canterbury.qld.edu.au
dev.horizons.govt.nz
servicedesk.bluechipit.com.au
envirodata.horizons.govt.nz
wireless.horizons.govt.nz
servicedesk.yooralla.com.au
support.canterbury.qld.edu.au
remote.horizons.govt.nz
servicedesk.yooralla.com.au
www.horizons.govt.nz
servicedesk.cockburn.wa.gov.au
servicedesk.eqt.com.au
envirodata.horizons.govt.nz
helpdesk.grv.org.au
Certificate
The complete raw certificate details for horizons.govt.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHkDCCBXigAwIBAgIQAefL6WNyvMGhsyaOBSM51DANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjQwNjAxMDAwMDAwWhcNMjQxMjAxMjM1OTU5WjAbMRkwFwYDVQQDExBob3Jpem9u cy5nb3Z0Lm56MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxJIyRf+ PvLMek5lkT5M+ERvBXa5+yyACzIc3Uxtuu7GrcPAumRlhaEOwIqDjOdUPpR55bqa +dy3dfIKy0PryxPvLGMX+wceFEdcVsoQzEwv4UOiFVNyMphF1/Mo6+C6rWOOQ961 ksQDj1K/JtdS3ar6Bb0YUWF4BrEFNlD1tBX7PR9z3+VmqLZe9I5vi7xifgy5g5a/ YzQNGLvm7HW7Ur3Imhd06Xe/JuW+xy2wdhk/k7YHfhRdgjAVTWYsittrYuJY1pYl yoyGn8dfKf/kXkcVJg3anVfZ7KrngeIyWmHzZckFMWFVKNE2mwoxgMpACwGH+Kuy wmQXEFHc4h3oRQIDAQABo4IDjTCCA4kwHwYDVR0jBBgwFoAUpbTW6zbE52um38Rk CwEqIAS4ZiMwHQYDVR0OBBYEFKgvu6oWaizUcwHTLB85xkXoQuy9MBsGA1UdEQQU MBKCEGhvcml6b25zLmdvdnQubnowPgYDVR0gBDcwNTAzBgZngQwBAgEwKTAnBggr BgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwgZ8GA1UdHwSBlzCB lDBIoEagRIZCaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0dlb1RydXN0R2xvYmFs VExTUlNBNDA5NlNIQTI1NjIwMjJDQTEuY3JsMEigRqBEhkJodHRwOi8vY3JsNC5k aWdpY2VydC5jb20vR2VvVHJ1c3RHbG9iYWxUTFNSU0E0MDk2U0hBMjU2MjAyMkNB MS5jcmwwgYcGCCsGAQUFBwEBBHsweTAkBggrBgEFBQcwAYYYaHR0cDovL29jc3Au ZGlnaWNlcnQuY29tMFEGCCsGAQUFBzAChkVodHRwOi8vY2FjZXJ0cy5kaWdpY2Vy dC5jb20vR2VvVHJ1c3RHbG9iYWxUTFNSU0E0MDk2U0hBMjU2MjAyMkNBMS5jcnQw DAYDVR0TAQH/BAIwADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFpAHUA7s3QZNXb Gs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGP0oKD4wAABAMARjBEAiBjW+Zt qzZh8KHyvfM9H8Rmdp+4rSgakUrE8dFv5qQKbwIgeu9MSYigPqk4ugXnlkdWKwWH Q6uVEyuXk0xgR5MIH58AdwDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7 qwAAAY/SgoOgAAAEAwBIMEYCIQC+uACecqRIou1V7VMBjT8iYMGfenUAVoawk2gO Fk8ecwIhAO+pMHd3hjMJeb0eluOMUhTAWXIS7DXVu4+py0S9hmdiAHcAPxdLT9ci R1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGP0oKDvQAABAMASDBGAiEA3h2R innJRJg0tuYc2tQVdhawTg+QKxuivYzJTbvfuc0CIQCNVohYp2oj5vkpuEkszdR3 Xgsv54fhj7rok+hGIJr+gzANBgkqhkiG9w0BAQsFAAOCAgEAZpZJpzMeKMrk/mwU ZrCSIUEoauh01CQOvRO+wD4YZAlo7TjBuOvN6dGc+3E5bMBMnTEmZvJnklaxbmMw 6aJYfdBmeunCMLHQhSBl/9dZycUF3AGNrEMrIoIzsLNl6avwxTmT3V62FVC4dCGd bn3uXQgbMBQQxK6s6jwjrwtlq5y9QzNOsrJfgbNuGf5+YUbdSUtH8akxMzzeUPSw +fSyyxprJ9vsAT/MYJK4LkAwYmOohf2P0Tn8KJoltsIyhhbxjebHcQdKZ8TjT3rl IIGiyYBHakWZHSSek69qsVKD0+xafFaXxUItrJvuJUvP1gEivl/H7eP4dhM7BUhh rXbSWW7r/n0ZzuMLL6Sx2SQGg3BI1jV+5HlkPCJEffIviCRj1hQcC43bsvlZDEAF S8nRluUj4EF1DpDxSwIHMdTn/DifwlFVeGOk9k6Z8OaAE1zDR/5HItiG6rjkZ2Cf RLNqcydh75yIbjld5NRQBywS3cEsNmFkSJ/Y6Fj4e3CHGA7wf0aXMv0sVRPCxXCW tARO28+PhSuCO0sh7ZL+XnCYNBb2p6BkRgdC4595hUUeX9W9Ft01B+Bar72bbss0 SO2MNSMe8kAvLpaznpRKNM5gayy7nbhxB88wRmH6GIr8AkYjZuWo5dA/xa229DoI REQCcJ9UwC6TyhAhFMjlkmsyH8A= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxJIyRf+PvLMek5lkT5M +ERvBXa5+yyACzIc3Uxtuu7GrcPAumRlhaEOwIqDjOdUPpR55bqa+dy3dfIKy0Pr yxPvLGMX+wceFEdcVsoQzEwv4UOiFVNyMphF1/Mo6+C6rWOOQ961ksQDj1K/JtdS 3ar6Bb0YUWF4BrEFNlD1tBX7PR9z3+VmqLZe9I5vi7xifgy5g5a/YzQNGLvm7HW7 Ur3Imhd06Xe/JuW+xy2wdhk/k7YHfhRdgjAVTWYsittrYuJY1pYlyoyGn8dfKf/k XkcVJg3anVfZ7KrngeIyWmHzZckFMWFVKNE2mwoxgMpACwGH+KuywmQXEFHc4h3o RQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2532784390195593060302386601346152916 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'horizons.govt.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24625485801850851772030005075776292241236147483409509292253386390447186882562836304772490636623357969937857386551373357014083239371006064965636471931704280470942774752053622022762889748061337385183401989377523398268762187473613947168881997058557081798278590453502969569642894401789699831299989025440587936599940030095040290361388264979656111800353673740748735942250940645682922032093907631933591397499970605942661310362441196365280395194951919014966624165964933158520961611758055148310664073320896460224198540422619252801453850504218332141928467468605361452303994880950566407126112507944999077988443342675521589602373 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a82fbbaa166a2cd47301d32c1f39c645e842ecbd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'horizons.govt.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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