webmail.fitnesstime.com.sa

- Leejam Sports Company -

Issued by DigiCert SHA2 Secure Server CA

About this certificate

This digital certificate with serial number 0d:92:03:7c:a0:3d:60:c3:e5:08:93:d0:64:dd:c4:b7 was issued on by DigiCert Inc.

With 15 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Leejam Sports Company

Organization: Leejam Sports Company
Organization unit: IT
Locality: Riyadh
Country: SA

DigiCert Inc

Organization: DigiCert Inc
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0d:92:03:7c:a0:3d:60:c3:e5:08:93:d0:64:dd:c4:b7
Serial Number (int): 18038110007662756912516834281593357495
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: f5:64:33:11:98:02:19:d8:da:79:b0:51:da:1c:2e:2b:7d:5d:95:13
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2

Fingerprint (sha1): b3:e5:fe:b5:98:93:a4:20:7e:af:57:da:fa:29:fd:26:01:69:e9:89
Fingerprint (sha256): d3:fa:b0:67:26:0e:ef:88:e6:df:7f:dd:4e:05:cc:a4:e5:a6:6b:50:9e:a7:ec:ab:f9:d6:7b:97:e2:91:c2:2c

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl

Check the revocation status for certificate webmail.fitnesstime.com.sa

15

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for webmail.fitnesstime.com.sa

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

webmail.fitnesstime.com.sa
leejam.com.sa
fitnesstime.com.sa
sip.fitnesstime.com.sa
sip.leejam.com.sa
autodiscover.leejam.com.sa
autodiscover.fitnesstime.com.sa
dialin.leejam.com.sa
meet.leejam.com.sa
meet.fitnesstime.com.sa
lsweb.leejam.com.sa
admin.leejam.com.sa
owa.fitnesstime.com.sa
lyncdiscover.fitnesstime.com.sa
dialin.fitnesstime.com.sa

Other certificates including the domain name fitnesstime.com.sa

(limited to 100 certificates)
ssl378723.cloudflaressl.com
fitnesstime.com.sa
ssl378725.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378724.cloudflaressl.com
fitnesstime.com.sa
ssl378724.cloudflaressl.com
webmail.fitnesstime.com.sa
fitnesstime.com.sa
ssl378725.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378723.cloudflaressl.com
sip.fitnesstime.com.sa
ssl378725.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378723.cloudflaressl.com
fitnesstime.com.sa
ssl378724.cloudflaressl.com
ssl378725.cloudflaressl.com
fitnesstime.com.sa
ssl378725.cloudflaressl.com
ssl378725.cloudflaressl.com
fitnesstime.com.sa
ssl378724.cloudflaressl.com
webmail.fitnesstime.com.sa
ssl378724.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378724.cloudflaressl.com
fitnesstime.com.sa
ssl378723.cloudflaressl.com
fitnesstime.com.sa
ssl378725.cloudflaressl.com
webmail.fitnesstime.com.sa
ssl378725.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378724.cloudflaressl.com
webmail.fitnesstime.com.sa
ssl378725.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378723.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378725.cloudflaressl.com
webmail.fitnesstime.com.sa
ssl378724.cloudflaressl.com
fitnesstime.com.sa
webmail.fitnesstime.com.sa
fitnesstime.com.sa
ssl378723.cloudflaressl.com
webmail.fitnesstime.com.sa
fitnesstime.com.sa
webmail.fitnesstime.com.sa
ssl378725.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378725.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378724.cloudflaressl.com
ssl378724.cloudflaressl.com
sip.fitnesstime.com.sa
ssl378723.cloudflaressl.com

Certificate

The complete raw certificate details for webmail.fitnesstime.com.sa in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEs/2rYbH2sqY8igZLAQ
7H1CEOK2dFpo31MNIpPwPxOoUNIpyNYLAuu6aWBDxapGWlTqzwhLaYR6YuKNcnxu
MXXxWI2gVYP1WLyzvgke4pHua+9k5NSFWxh7xVVd88Qo6SqZpNevrqJ95t+qYxCq
u9E80pJxpIvQdUMRde5tpH1F07vSYChXaCH/Cbz3DcAZAnH3agHdGCuOtPwkEipe
Yz4nF0WDmyFoNr2Ki10PcXnkXxU9DfczndhSprGplfYeQtpri388A1cfJeeT3W2S
59E1LUUBPlG3mrVYe6P/qPI00V3WmWOVCcp0d1Az6XIIvhUYmm+D49PIxz6JweTX
PwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 18038110007662756912516834281593357495
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-06 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-10 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Riyadh'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Leejam Sports Company'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'webmail.fitnesstime.com.sa'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21245142111726257191023153128584633396393223351714635722112732977061358038547268429267301387682690136185874015577034810219464885107800848388228492607864399657670686539121433098938272066080109469697114712755630618874066970054963295179765792817522270163311111487086003736702111366217551306506317100819356812253709457644195226828389682791147766969492227580425343129929311328666852645007776478080518180868475254119497188088549474460043780738500380848518704079490304812976367307346047094377174979678986865241703362889550887862041631659143120385406466549161560572323799451946586944007339189354943198386996409355966695659327
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							f5643311980219d8da79b051da1c2e2b7d5d9513
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.fitnesstime.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'leejam.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fitnesstime.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sip.fitnesstime.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sip.leejam.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.leejam.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.fitnesstime.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dialin.leejam.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'meet.leejam.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'meet.fitnesstime.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lsweb.leejam.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'admin.leejam.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'owa.fitnesstime.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lyncdiscover.fitnesstime.com.sa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dialin.fitnesstime.com.sa'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00d2c3141525fc7847baefeb53c9d75c52cf2971555746f1b41ab5e32bdafeb251c8fa6fd9d1e9cfa03a0b28b5d7a98d38d4d3bf8df1d6fecc51af6fb4229995fcee229792281b7815909a8ebc1cb2e1a7419dfcaf6658f3155bc585d20f58ea96978b69d9b69ef59c025b343fbdc50608f081d80901edb7601bc6824199fa444c4be6cdec373723627236eaf1c993e2c5d83fced00db058d45fc967c4469c31024eb14a7e058a595fae84ce26ae1f696539f7612d7242f4256363709793f15c819e20a15656f7b6d8979769b9976ef745760acf823877e458f88a92ea0bbddd3a66ea8dd6e09cf8c92bebe49a72e5e8799ebc6a59e8eee8a144c7840f81adc613