about.heel.com
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 0c:09:1c:d7:f6:30:69:33:a8:7f:53:16:92:09:c7:09 was issued on by DigiCert, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=about.heel.com
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:09:1c:d7:f6:30:69:33:a8:7f:53:16:92:09:c7:09Serial Number (int): 15998051638861484393905464980747699977
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 45:30:07:94:e4:fa:f8:ca:cb:2e:41:4c:44:55:7a:7a:9c:e2:3d:2f
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): cc:b8:81:dc:c8:b4:43:4a:f0:a3:13:85:f3:5f:bd:14:60:41:aa:8e
Fingerprint (sha256): d6:fe:83:b3:67:34:d4:2a:fa:37:bb:32:ed:be:78:4f:09:4a:4a:61:58:0b:33:fd:ce:78:a8:90:54:7c:d3:30
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate about.heel.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for about.heel.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
about.heel.com
Other certificates including the domain name heel.com
(limited to 100 certificates)
*.staffbase.cloud
events.heel.com
heel.com
heel.com
*.heel.com
events.heel.com
about.heel.com
heel.com
heel.com
*.staffbase.cloud
www.learningzone.heel.com
heel.com
heel-com.prod.heel.com
h-guest.heel.com
heel-russia-ru.prod.heel.com
heel.com
firstspirit.heel.com
*.heel.com
about.heel.com
intranet.heel.com
heel.com
*.heel.com
extranet.heel.com
heel-russia-ru.prod.heel.com
intranet.heel.com
heel-russia-ru.prod.heel.com
sip.heel.com
heel.com
heel.com
csdbp.heel.com
www.heel.com
heel-be.prod.heel.com
*.heel.com
heel.com
*.heel.com
*.heel.com
www.heel.de
firstspirit.heel.com
h-guest.heel.com
intranet.heel.com
www.learningzone.heel.com
*.staffbase.cloud
lsac.heel.com
heel.com
heel-russia-ru.prod.heel.com
heel.com
events.heel.com
heel.com
heel-com.prod.heel.com
heel.com
heel.com
traumeel-com.prod.heel.com
about.heel.com
heel.com
heel-com.prod.heel.com
intranet.heel.com
*.heel.com
heel.com
events.heel.com
heel.com
intranet.heel.com
www.learningzone.heel.com
intranet.heel.com
events.heel.com
heel.com
heel.com
*.heel.com
events.heel.com
about.heel.com
heel.com
heel.com
*.staffbase.cloud
www.learningzone.heel.com
heel.com
heel-com.prod.heel.com
h-guest.heel.com
heel-russia-ru.prod.heel.com
heel.com
firstspirit.heel.com
*.heel.com
about.heel.com
intranet.heel.com
heel.com
*.heel.com
extranet.heel.com
heel-russia-ru.prod.heel.com
intranet.heel.com
heel-russia-ru.prod.heel.com
sip.heel.com
heel.com
heel.com
csdbp.heel.com
www.heel.com
heel-be.prod.heel.com
*.heel.com
heel.com
*.heel.com
*.heel.com
www.heel.de
firstspirit.heel.com
h-guest.heel.com
intranet.heel.com
www.learningzone.heel.com
*.staffbase.cloud
lsac.heel.com
heel.com
heel-russia-ru.prod.heel.com
heel.com
events.heel.com
heel.com
heel-com.prod.heel.com
heel.com
heel.com
traumeel-com.prod.heel.com
about.heel.com
heel.com
heel-com.prod.heel.com
intranet.heel.com
*.heel.com
heel.com
events.heel.com
heel.com
intranet.heel.com
www.learningzone.heel.com
intranet.heel.com
Certificate
The complete raw certificate details for about.heel.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHizCCBXOgAwIBAgIQDAkc1/YwaTOof1MWkgnHCTANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjMxMTE0MDAwMDAwWhcNMjQwNTE0MjM1OTU5WjAZMRcwFQYDVQQDEw5hYm91dC5o ZWVsLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALB62Juu/gI1 Ou7GL8c8CjQoReIyBozRpuKk8nrfmKngdjHHhJl1PKgD2A+sh7TVF4pxL38a31AS JWJ305UAiydNuB9LFm2gX2JMzeyZkmF3w/vOC+y3022K+apPJ7+kxUm2l3WzjlSM xRc4yaOo3JEy7Hb2h6fyimhheAqlKXl3mZpJA0ik+15EkIEE4qzqou9qodbg1bUc qO2STgunuzS2iNqNfhH0XVFRIX3rjjuZ9Nmk0eLkdz9feWq7KsNw5NzR1vG/LWwt UZd5E3Yc0QWXOprna8QmDFhrxfFv64Y2ksvwLG+E2oi2FaSskYo9GjaOSelmchWA H7INuITLIyUCAwEAAaOCA4owggOGMB8GA1UdIwQYMBaAFKW01us2xOdrpt/EZAsB KiAEuGYjMB0GA1UdDgQWBBRFMAeU5Pr4yssuQUxEVXp6nOI9LzAZBgNVHREEEjAQ gg5hYm91dC5oZWVsLmNvbTA+BgNVHSAENzA1MDMGBmeBDAECATApMCcGCCsGAQUF BwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBnwYDVR0fBIGXMIGUMEig RqBEhkJodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vR2VvVHJ1c3RHbG9iYWxUTFNS U0E0MDk2U0hBMjU2MjAyMkNBMS5jcmwwSKBGoESGQmh0dHA6Ly9jcmw0LmRpZ2lj ZXJ0LmNvbS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNy bDCBhwYIKwYBBQUHAQEEezB5MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdp Y2VydC5jb20wUQYIKwYBBQUHMAKGRWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNv bS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNydDAMBgNV HRMBAf8EAjAAMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgB2/4g/Crb7lVHC Ycz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYvNcmaKAAAEAwBHMEUCIQD2EkkikrCQ jjAtj0KPbhnXCI3F51BdpxxLLwajkmk4qgIgSDdX0O2Tb8t+jX1kZ9pxCPjJboTH fqKqAKSy6xKUX0oAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAA AYvNcmaHAAAEAwBIMEYCIQCfBrba3anwn+GBJghEtGqAUgDe2OTDe086uCvFptjw 6AIhAIi9OpEcd5hnhgijOpwPQxR/ggW2lF74V8+1ol957B5TAHUAO1N3dT4tuYBO izBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGLzXJmyAAABAMARjBEAiBKvf+Nmtob aPUduhgoLLnQ/VW9+6BVL7wt/oS1WOvBFQIgG2gWlGvMyaj+Ip2WMaYMMa1DKEYh 4e0yoHdsFUIvQIcwDQYJKoZIhvcNAQELBQADggIBAC9a3pPEVTo8ou+loAWrpl7e +z7aE4ptbbtkCTZZkYstPuqMrRgyMKbW7SmwJmv3JtPPPHhBHw+PDrs7zqskkax8 tx45/G6RR3zpFt6tzHEPI+65TDQTAeY2IiERaj9mKQMXeGNwxewRFw4/kRHAri79 fs6UOrd1ZE5cl6XxTepYVtxqB2q4snrnWhpH1U9lmMa1dMD6Jn1eHaUKF5WRswHJ A4pz5qtOArt/k/4PccP1fzpH33OEs4UoTk+JMjvy5xOXZgqxN/Uz9CuH2DsHCOYw Agjcwo0fhN2paYRSDRb9RCDJcjJ9+QMl+A6SR9bmlrERcwrFgzK6g/ywujzfefzL s6YGX2wh8jrQZxoNyH7BEVLYw5xfGWQ/zRx4WR2nD0YfiGYpH3L4lgu6n54BR/YK dD/HOfSytKnH6/a7BTCc6eVg5t3AExMaOcIxVGCuCGLkV3r4LgmfX/wg8sqFxnN9 K/6d7ytSXC5CNy6Amv2spMt+04ZFk8fLjenKIoHwgSHygrzIyoqY6Z6eevmh4fPq muknqtxRFgNCCd6eSQZFLgO52gHwMu8Lw5X0nQVfeTiOlntJJ4kqGvlmme45ODnl LPmMdCHApvq287ad73WEESS143F3RX+H9UZOoqOouS+cqti/fA3ZcwIAnAiqNJs6 hdk4tcdusI1WIy7jn0+7 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHrYm67+AjU67sYvxzwK NChF4jIGjNGm4qTyet+YqeB2MceEmXU8qAPYD6yHtNUXinEvfxrfUBIlYnfTlQCL J024H0sWbaBfYkzN7JmSYXfD+84L7LfTbYr5qk8nv6TFSbaXdbOOVIzFFzjJo6jc kTLsdvaHp/KKaGF4CqUpeXeZmkkDSKT7XkSQgQTirOqi72qh1uDVtRyo7ZJOC6e7 NLaI2o1+EfRdUVEhfeuOO5n02aTR4uR3P195arsqw3Dk3NHW8b8tbC1Rl3kTdhzR BZc6mudrxCYMWGvF8W/rhjaSy/Asb4TaiLYVpKyRij0aNo5J6WZyFYAfsg24hMsj JQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15998051638861484393905464980747699977 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'about.heel.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22278519356292537296591034530349962155258638907987244227024732338095329312010644748896175966728980669760124453158156244754147017215194992977570855637434716996116585671179989850484477076078196180683427748059107007369773108555821731156531643690633292144892619450627291849232956177634906778159392916723089916865992778152188372994486300663086398584961019349589241890192639001530018180552194841440489707009997832344240144460481413580828288088149412063445947417348322333884826420412221588919180140362725256483770493098074753280355984492462955936842486632753227323080089285124660040480480606291773202314796223321861069153061 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 45300794e4faf8cacb2e414c44557a7a9ce23d2f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'about.heel.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 002f5ade93c4553a3ca2efa5a005aba65edefb3eda138a6d6dbb64093659918b2d3eea8cad183230a6d6ed29b0266bf726d3cf3c78411f0f8f0ebb3bceab2491ac7cb71e39fc6e91477ce916deadcc710f23eeb94c341301e6362221116a3f66290317786370c5ec11170e3f9111c0ae2efd7ece943ab775644e5c97a5f14dea5856dc6a076ab8b27ae75a1a47d54f6598c6b574c0fa267d5e1da50a179591b301c9038a73e6ab4e02bb7f93fe0f71c3f57f3a47df7384b385284e4f89323bf2e71397660ab137f533f42b87d83b0708e6300208dcc28d1f84dda96984520d16fd4420c972327df90325f80e9247d6e696b111730ac58332ba83fcb0ba3cdf79fccbb3a6065f6c21f23ad0671a0dc87ec11152d8c39c5f19643fcd1c78591da70f461f8866291f72f8960bba9f9e0147f60a743fc739f4b2b4a9c7ebf6bb05309ce9e560e6ddc013131a39c2315460ae0862e4577af82e099f5ffc20f2ca85c6737d2bfe9def2b525c2e42372e809afdaca4cb7ed3864593c7cb8de9ca2281f08121f282bcc8ca8a98e99e9e7af9a1e1f3ea9ae927aadc5116034209de9e4906452e03b9da01f032ef0bc395f49d055f79388e967b4927892a1af96699ee393839e52cf98c7421c0a6fab6f3b69def75841124b5e37177457f87f5464ea2a3a8b92f9caad8bf7c0dd97302009c08aa349b3a85d938b5c76eb08d56232ee39f4fbb