sfweb.kvilleps.org
Issued by RapidSSL CA
About this certificate
This digital certificate with serial number 15:1f:31 was issued on by GeoTrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
SERIALNUMBER=TvhPkWWoXQ4HY4QTCnTHoT6mMtwM9LHz,CN=sfweb.kvilleps.org,OU=GT48859037+OU=See www.rapidssl.com/resources/cps (c)14+OU=Domain Control Validated - RapidSSL(R)
GeoTrust, Inc.
Organization:
GeoTrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 15:1f:31Serial Number (int): 1384241
Serial Number lenght: 21 bits, 3 octets
SubjectKeyId: 03:80:21:ab:b7:45:45:02:30:51:65:8a:63:53:7c:e3:63:e8:bb:9d
AuthorityKeyId: 6b:69:3d:6a:18:42:4a:dd:8f:02:65:39:fd:35:24:86:78:91:16:30
Fingerprint (sha1): 95:c8:3f:be:41:48:a9:c3:4d:20:bc:9f:8c:13:6e:1b:2f:e7:da:1e
Fingerprint (sha256): db:a2:25:da:94:4e:0a:35:66:55:30:3c:09:16:ab:43:9e:55:05:1f:a3:3c:6e:a0:45:7b:68:c9:8d:cc:22:c8
Issuing Certificate URL: http://rapidssl-aia.geotrust.com/rapidssl.crt
Revocation information
OCSP Server: http://rapidssl-ocsp.geotrust.comCRL Distribution Point: http://rapidssl-crl.geotrust.com/crls/rapidssl.crl
Check the revocation status for certificate sfweb.kvilleps.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sfweb.kvilleps.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sfweb.kvilleps.org
Other certificates including the domain name kvilleps.org
(limited to 100 certificates)
sequoiasamurai.com
bps.bayfield.k12.co.us
admin.belmonthighschool.org
www.kvilleps.org
sfweb.kvilleps.org
www.kvilleps.org
www.kvilleps.org
sfweb.kvilleps.org
www.kvilleps.org
admin.brownell.flintschools.org
admin.belmonthighschool.org
admin.brownell.flintschools.org
admin.brownell.flintschools.org
admin.belmonthighschool.org
admin.belmonthighschool.org
www.freeman.flintschools.org
www.kvilleps.org
www.kvilleps.org
admin.belmonthighschool.org
admin.belmonthighschool.org
admin.belmonthighschool.org
sfweb.kvilleps.org
sfweb.kvilleps.org
sfweb.kvilleps.org
sfweb.kvilleps.org
www.kvilleps.org
www.kvilleps.org
admin.belmonthighschool.org
www.kvilleps.org
admin.belmonthighschool.org
*.kvilleps.org
ninth.frenship.us
admin.corey.bpsd.k12.ca.us
www.kvilleps.org
admin.jewishacademyorlando.org
www.kvilleps.org
www.kvilleps.org
admin.dtm.flintschools.org
www.kvilleps.org
*.kvilleps.org
www.kvilleps.org
bhs.bayfield.k12.co.us
www.kvilleps.org
www.kvilleps.org
admin.brownell.flintschools.org
*.kvilleps.org
bis.bayfield.k12.co.us
admin.belmonthighschool.org
admin.brownell.flintschools.org
www.kvilleps.org
www.kvilleps.org
admin.belmonthighschool.org
admin.flintschools.org
usf.com.mx
www.kvilleps.org
www.kvilleps.org
admin.brownell.flintschools.org
www.kvilleps.org
sfweb.kvilleps.org
mealmagic.kvilleps.org
sfweb.kvilleps.org
www.forthamiltononline.org
mealmagic.kvilleps.org
admin.bpjh.bpsd.k12.ca.us
www.kvilleps.org
admin.liholiho.org
*.kvilleps.org
bps.bayfield.k12.co.us
admin.belmonthighschool.org
www.kvilleps.org
sfweb.kvilleps.org
www.kvilleps.org
www.kvilleps.org
sfweb.kvilleps.org
www.kvilleps.org
admin.brownell.flintschools.org
admin.belmonthighschool.org
admin.brownell.flintschools.org
admin.brownell.flintschools.org
admin.belmonthighschool.org
admin.belmonthighschool.org
www.freeman.flintschools.org
www.kvilleps.org
www.kvilleps.org
admin.belmonthighschool.org
admin.belmonthighschool.org
admin.belmonthighschool.org
sfweb.kvilleps.org
sfweb.kvilleps.org
sfweb.kvilleps.org
sfweb.kvilleps.org
www.kvilleps.org
www.kvilleps.org
admin.belmonthighschool.org
www.kvilleps.org
admin.belmonthighschool.org
*.kvilleps.org
ninth.frenship.us
admin.corey.bpsd.k12.ca.us
www.kvilleps.org
admin.jewishacademyorlando.org
www.kvilleps.org
www.kvilleps.org
admin.dtm.flintschools.org
www.kvilleps.org
*.kvilleps.org
www.kvilleps.org
bhs.bayfield.k12.co.us
www.kvilleps.org
www.kvilleps.org
admin.brownell.flintschools.org
*.kvilleps.org
bis.bayfield.k12.co.us
admin.belmonthighschool.org
admin.brownell.flintschools.org
www.kvilleps.org
www.kvilleps.org
admin.belmonthighschool.org
admin.flintschools.org
usf.com.mx
www.kvilleps.org
www.kvilleps.org
admin.brownell.flintschools.org
www.kvilleps.org
sfweb.kvilleps.org
mealmagic.kvilleps.org
sfweb.kvilleps.org
www.forthamiltononline.org
mealmagic.kvilleps.org
admin.bpjh.bpsd.k12.ca.us
www.kvilleps.org
admin.liholiho.org
*.kvilleps.org
Certificate
The complete raw certificate details for sfweb.kvilleps.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIDFR8xMA0GCSqGSIb3DQEBCwUAMDwxCzAJBgNVBAYTAlVT MRcwFQYDVQQKEw5HZW9UcnVzdCwgSW5jLjEUMBIGA1UEAxMLUmFwaWRTU0wgQ0Ew HhcNMTQwOTA4MDI0ODI1WhcNMTUwOTEwMjA0ODEyWjCBwTEpMCcGA1UEBRMgVHZo UGtXV29YUTRIWTRRVENuVEhvVDZtTXR3TTlMSHoxEzARBgNVBAsTCkdUNDg4NTkw MzcxMTAvBgNVBAsTKFNlZSB3d3cucmFwaWRzc2wuY29tL3Jlc291cmNlcy9jcHMg KGMpMTQxLzAtBgNVBAsTJkRvbWFpbiBDb250cm9sIFZhbGlkYXRlZCAtIFJhcGlk U1NMKFIpMRswGQYDVQQDExJzZndlYi5rdmlsbGVwcy5vcmcwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCHts/6d7TFnPwJtLVQhIiCrVnYjJZZJO19uEdo LgeycK1kGC0M02p5T3z0v0eHMMC9edOnTp71T0Sko2GPiqMJJBu1YPEuRfmlG/lC ZSNGB6pxh+8PE1G2YxY7uUBNJ28B0ljhM+uLuc0v1AOQHhzKDSAvqajgsDFxmbT2 m91YRjmMz+cwvHFHdLpu0hHBoZDA2KroYs9hR245BgF3g3JpZGuYo+K6CA12pru7 OPEik/1EGedAfOQ1luDIZqb7J0EVbfakAzbwFV0Xo2Ad3rR+5Rm9r7c1uderkr6e ryiEQ997+IxN9RA41A5+VfsLJ06U+A8n0lXEcgXiXKIQICFNAgMBAAGjggGtMIIB qTAfBgNVHSMEGDAWgBRraT1qGEJK3Y8CZTn9NSSGeJEWMDAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB0GA1UdEQQWMBSCEnNm d2ViLmt2aWxsZXBzLm9yZzBDBgNVHR8EPDA6MDigNqA0hjJodHRwOi8vcmFwaWRz c2wtY3JsLmdlb3RydXN0LmNvbS9jcmxzL3JhcGlkc3NsLmNybDAdBgNVHQ4EFgQU A4Ahq7dFRQIwUWWKY1N842Pou50wDAYDVR0TAQH/BAIwADB4BggrBgEFBQcBAQRs MGowLQYIKwYBBQUHMAGGIWh0dHA6Ly9yYXBpZHNzbC1vY3NwLmdlb3RydXN0LmNv bTA5BggrBgEFBQcwAoYtaHR0cDovL3JhcGlkc3NsLWFpYS5nZW90cnVzdC5jb20v cmFwaWRzc2wuY3J0MEwGA1UdIARFMEMwQQYKYIZIAYb4RQEHNjAzMDEGCCsGAQUF BwIBFiVodHRwOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJjZXMvY3BzMA0GCSqG SIb3DQEBCwUAA4IBAQCMWJzMArFhnOTknT0Pn+gxOusydXeVAhFFhlSfNCCnUKLk 3wwyk7hPC40camYTiErwj0N/ufv9Fn5J90L7raxnOx+sPrUCIPbFgX2suwimyrL6 VGRRNGo+hlFDpjXCcSCSOjINNTvQ3XxZYJYAZgXAo6H2XmzsJZi/StKt3Xh8tBRg z6N99ddcLCWjufVOAx90f3VefzGBpiQgXGI4s8cXA5170xDbx56a2M+g/Y2sRjSo VUgUHfEK7bdqZIP9b+dpmwDTqwx2ky43g2rUeP0pCrp7Q+dLfAyzyoXlznJXYiR5 36uaDbBm2aebGpSXmzhN/JLGRyHWQHciwLRlFxhv -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh7bP+ne0xZz8CbS1UISI gq1Z2IyWWSTtfbhHaC4HsnCtZBgtDNNqeU989L9HhzDAvXnTp06e9U9EpKNhj4qj CSQbtWDxLkX5pRv5QmUjRgeqcYfvDxNRtmMWO7lATSdvAdJY4TPri7nNL9QDkB4c yg0gL6mo4LAxcZm09pvdWEY5jM/nMLxxR3S6btIRwaGQwNiq6GLPYUduOQYBd4Ny aWRrmKPiuggNdqa7uzjxIpP9RBnnQHzkNZbgyGam+ydBFW32pAM28BVdF6NgHd60 fuUZva+3NbnXq5K+nq8ohEPfe/iMTfUQONQOflX7CydOlPgPJ9JVxHIF4lyiECAh TQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1384241 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-09-08 02:48:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-09-10 20:48:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TvhPkWWoXQ4HY4QTCnTHoT6mMtwM9LHz' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT48859037' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)14' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sfweb.kvilleps.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17132319332409559294600782892658322581055421993610225985867433824746043301930624132187824071010591538656752675614191171158052898188836762459434900055630216941040549730065793780782696233338708665701075676845034277055214044385419361663143486083223449933515107065644347458594797912733102327464014230029690269686927865831687357062494515022334587383803061284563426230598962442186596152489242337328969048667324065840876485500828851163532639885539860077797138677518846429310675686458908673177443669975595235157165447627630303219291023126507322444619696101833534337018439062708752267412649300884956320248416316824661061017933 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b693d6a18424add8f026539fd35248678911630 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfweb.kvilleps.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-crl.geotrust.com/crls/rapidssl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 038021abb74545023051658a63537ce363e8bb9d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-ocsp.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-aia.geotrust.com/rapidssl.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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