members.columbusmuseum.org
- Columbus Museum of Art -
Issued by GeoTrust TLS RSA CA G1
About this certificate
This digital certificate with serial number 02:59:a5:d5:f1:b6:20:d7:48:ef:ea:72:a1:06:7f:90 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Columbus Museum of Art
Organization:
Columbus Museum of Art
Organization unit: Hosting
Organization unit: Hosting
State / Province:
Ohio
Locality: Columbus
Country: US
Locality: Columbus
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:59:a5:d5:f1:b6:20:d7:48:ef:ea:72:a1:06:7f:90Serial Number (int): 3123933959968716421817815832067473296
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 3c:24:b3:57:5f:55:35:eb:04:56:c0:4d:7b:66:7d:3b:3c:aa:e8:7c
AuthorityKeyId: 94:4f:d4:5d:8b:e4:a4:e2:a6:80:fe:fd:d8:f9:00:ef:a3:be:02:57
Fingerprint (sha1): 10:a7:e3:8b:05:6c:6c:7e:18:6c:ca:ba:c8:32:88:9a:03:05:ee:87
Fingerprint (sha256): d9:47:96:a7:cd:6f:f4:da:8f:9f:35:d5:9c:48:39:06:fc:08:69:5e:93:29:f4:35:ed:5b:26:ba:51:b9:f8:be
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
Check the revocation status for certificate members.columbusmuseum.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for members.columbusmuseum.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
members.columbusmuseum.org
Other certificates including the domain name columbusmuseum.org
(limited to 100 certificates)
www.columbusmuseum.org
www.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
alexa.columbusmuseum.org
pizzuti.columbusmuseum.org
pizzuti.columbusmuseum.org
www.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
www.columbusmuseum.org
columbusmuseum.org
alexa.columbusmuseum.org
members.columbusmuseum.org
museumstore.columbusmuseum.org
mycma.columbusmuseum.org
pizzuti.columbusmuseum.org
pizzuti.columbusmuseum.org
columbusmuseum.org
museumstore.columbusmuseum.org
pizzuti.columbusmuseum.org
members.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
members.columbusmuseum.org
columbusmuseum.org
www.columbusmuseum.org
alexa.columbusmuseum.org
museumstore.columbusmuseum.org
members.columbusmuseum.org
members.columbusmuseum.org
museumstore.columbusmuseum.org
columbusmuseum.org
museumstore.columbusmuseum.org
www.columbusmuseum.org
www.columbusmuseum.org
columbusmuseum.org
museumstore.columbusmuseum.org
columbusmuseum.org
pizzuti.columbusmuseum.org
museumstore.columbusmuseum.org
members.columbusmuseum.org
museumstore.columbusmuseum.org
www.columbusmuseum.org
pizzuti.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
members.columbusmuseum.org
columbusmuseum.org
pizzuti.columbusmuseum.org
members.columbusmuseum.org
www.columbusmuseum.org
www.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
alexa.columbusmuseum.org
pizzuti.columbusmuseum.org
pizzuti.columbusmuseum.org
www.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
www.columbusmuseum.org
columbusmuseum.org
alexa.columbusmuseum.org
members.columbusmuseum.org
museumstore.columbusmuseum.org
mycma.columbusmuseum.org
pizzuti.columbusmuseum.org
pizzuti.columbusmuseum.org
columbusmuseum.org
museumstore.columbusmuseum.org
pizzuti.columbusmuseum.org
members.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
members.columbusmuseum.org
columbusmuseum.org
www.columbusmuseum.org
alexa.columbusmuseum.org
museumstore.columbusmuseum.org
members.columbusmuseum.org
members.columbusmuseum.org
museumstore.columbusmuseum.org
columbusmuseum.org
museumstore.columbusmuseum.org
www.columbusmuseum.org
www.columbusmuseum.org
columbusmuseum.org
museumstore.columbusmuseum.org
columbusmuseum.org
pizzuti.columbusmuseum.org
museumstore.columbusmuseum.org
members.columbusmuseum.org
museumstore.columbusmuseum.org
www.columbusmuseum.org
pizzuti.columbusmuseum.org
museumstore.columbusmuseum.org
museumstore.columbusmuseum.org
members.columbusmuseum.org
columbusmuseum.org
pizzuti.columbusmuseum.org
members.columbusmuseum.org
www.columbusmuseum.org
Certificate
The complete raw certificate details for members.columbusmuseum.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGojCCBYqgAwIBAgIQAlml1fG2INdI7+pyoQZ/kDANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZHZW9UcnVzdCBUTFMgUlNBIENBIEcx MB4XDTIwMDQyMjAwMDAwMFoXDTIyMDYyMTEyMDAwMFowgYcxCzAJBgNVBAYTAlVT MQ0wCwYDVQQIEwRPaGlvMREwDwYDVQQHEwhDb2x1bWJ1czEfMB0GA1UEChMWQ29s dW1idXMgTXVzZXVtIG9mIEFydDEQMA4GA1UECxMHSG9zdGluZzEjMCEGA1UEAxMa bWVtYmVycy5jb2x1bWJ1c211c2V1bS5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPZj4pwpcY5fDOpQN744+3rDdKagC4AXloIgEwku0fZnRWlph5 h6UynQRHvvsz9YvNGGBOhZAWsSbtx76i9E0q8kJGhRWYyco2lvpiOpyyK2h2KTfQ CoO28iWorX+oeLWulUcUu3RozGo81xVP9JGkZ1G1DSG1B5Fl9d7u+dbGv/uiQUgL yzqAhZp51lIV7VWtsqS7Uufx/TOHI/g+L1NuZOVUQziNHtSf1vxP8Lf01WOAGxSs Q3uSrdzj1prkx/+dtw/PtMcd/BH+eBfmKbmi+w1qD0pDG8tDCyog8oyoKN/7aTBY VEeywSnSqE3lnMBk8s5NaKx3dNcpSt/7TvOXAgMBAAGjggMuMIIDKjAfBgNVHSME GDAWgBSUT9Rdi+Sk4qaA/v3Y+QDvo74CVzAdBgNVHQ4EFgQUPCSzV19VNesEVsBN e2Z9Ozyq6HwwJQYDVR0RBB4wHIIabWVtYmVycy5jb2x1bWJ1c211c2V1bS5vcmcw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA/ BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vY2RwLmdlb3RydXN0LmNvbS9HZW9UcnVz dFRMU1JTQUNBRzEuY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYB BQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMHYG CCsGAQUFBwEBBGowaDAmBggrBgEFBQcwAYYaaHR0cDovL3N0YXR1cy5nZW90cnVz dC5jb20wPgYIKwYBBQUHMAKGMmh0dHA6Ly9jYWNlcnRzLmdlb3RydXN0LmNvbS9H ZW9UcnVzdFRMU1JTQUNBRzEuY3J0MAkGA1UdEwQCMAAwggF+BgorBgEEAdZ5AgQC BIIBbgSCAWoBaAB2ACl5vvCeOTkh8FZzn2Old+W+V32cYAr4+U1dJlwlXceEAAAB caK7FSUAAAQDAEcwRQIgGgLTr7rc6oDzZsGS/KYaGACtplm3ew0TaRj2m1mC2A8C IQDEx+J1tz0mZmElM2BK7LOKstc/UfcLdyrpjGK7hR0uYwB2ACJFRQdZVSRWlj+h L/H3bYbgIyZjrcBLf13Gg1xu4g8CAAABcaK7FUgAAAQDAEcwRQIhALRJ9EqKcrPa 5z0oyXEKQcjivqSI9M2OdjJUrQxVNtHkAiB8qyHC2MuIWIbOpStVXVvqJtN73p9D YyhJ8uP8dptV9wB2AFGjsPX9AXmcVm24N3iPDKR6zBsny/eeiEKaDf7UiwXlAAAB caK7FYcAAAQDAEcwRQIhAOB5IyZtW0I+AeWxoJvSGh6/18DxJy4pAw0TKV69MO8w AiAr4qA1BKyJmp3JHCL/yUfqi7ptip3unYdGZM9rhmotjTANBgkqhkiG9w0BAQsF AAOCAQEAXEqAqrK8gIY8bFEzXgbR5QpemT4WYvlH5q6Xy4UsnCJc/R17XZ+bH9T4 Cx1vYcnh24sevI0ztfiggeqzTkS942Lp6ZiL1VrRyxZRGCjLdIoSnxVPi0B2pYaq 1onrz+imRbZhR/BMdj4UTBiYFF8TAIzLj5bswf+eFAX3JysYDKTzgM13j7ZPw4VM eM5sivwkp+bNRrrY7jUk/1tkp9Kfso8DxR7Gi6MRZ75bbdmZg9vDJXuzcqH++i1v qnAWO2D3pGAhX++NbHXbwZuYsrXEZm6FhRHH5yY5pwSm39VXFwKh7su6N4WymOnl pnD/Nj279JKEA8II6fVWAMSBq5w/Sg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz2Y+KcKXGOXwzqUDe+OP t6w3SmoAuAF5aCIBMJLtH2Z0VpaYeYelMp0ER777M/WLzRhgToWQFrEm7ce+ovRN KvJCRoUVmMnKNpb6Yjqcsitodik30AqDtvIlqK1/qHi1rpVHFLt0aMxqPNcVT/SR pGdRtQ0htQeRZfXe7vnWxr/7okFIC8s6gIWaedZSFe1VrbKku1Ln8f0zhyP4Pi9T bmTlVEM4jR7Un9b8T/C39NVjgBsUrEN7kq3c49aa5Mf/nbcPz7THHfwR/ngX5im5 ovsNag9KQxvLQwsqIPKMqCjf+2kwWFRHssEp0qhN5ZzAZPLOTWisd3TXKUrf+07z lwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3123933959968716421817815832067473296 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-21 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ohio' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Columbus' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Columbus Museum of Art' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hosting' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'members.columbusmuseum.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26181746943935794570818786510400775793395097440266308188521884228301944784094073323184493584406639403024514608931375550770913287803845913326863768046734142799423706883881601092066836003049953107888599745865060191172504968905314695689534259160180092448405810327206097092280681948226887328278502067681988409990022942973336876385663333216759404813914622747053241083765143404987797011437483212534750902399831473794238414119821412460379904578880410471036510022360185128068519353286605476969465952912268136329425491053042748280028984702222814915546326216494263104724496779849860363206072567844920546933846992795659041436567 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 944fd45d8be4a4e2a680fefdd8f900efa3be0257 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3c24b3575f5535eb0456c04d7b667d3b3caae87c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'members.columbusmuseum.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 01680076002979bef09e393921f056739f63a577e5be577d9c600af8f94d5d265c255dc78400000171a2bb1525000004030047304502201a02d3afbadcea80f366c192fca61a1800ada659b77b0d136918f69b5982d80f022100c4c7e275b73d2666612533604aecb38ab2d73f51f70b772ae98c62bb851d2e630076002245450759552456963fa12ff1f76d86e0232663adc04b7f5dc6835c6ee20f0200000171a2bb15480000040300473045022100b449f44a8a72b3dae73d28c9710a41c8e2bea488f4cd8e763254ad0c5536d1e402207cab21c2d8cb885886cea52b555d5bea26d37bde9f43632849f2e3fc769b55f700760051a3b0f5fd01799c566db837788f0ca47acc1b27cbf79e88429a0dfed48b05e500000171a2bb15870000040300473045022100e07923266d5b423e01e5b1a09bd21a1ebfd7c0f1272e29030d13295ebd30ef3002202be2a03504ac899a9dc91c22ffc947ea8bba6d8a9dee9d874664cf6b866a2d8d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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