jabber.diatem.net
Issued by GlobalSign GCC R3 DV TLS CA 2020
About this certificate
This digital certificate with serial number 1b:be:b4:e7:4a:6e:d8:6b:d0:0b:1d:74 was issued on by GlobalSign nv-sa.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=jabber.diatem.net
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate will expire on
Certificate Details
Serial Number (hex): 1b:be:b4:e7:4a:6e:d8:6b:d0:0b:1d:74Serial Number (int): 8586645463431356125616479604
Serial Number lenght: 93 bits, 12 octets
SubjectKeyId: e0:0d:df:08:04:7f:a8:79:96:aa:31:f9:74:20:81:79:89:29:86:b2
AuthorityKeyId: 0d:98:c0:73:7f:ab:bd:bd:d9:47:4b:49:ad:0a:4a:0c:ac:3e:c7:7c
Fingerprint (sha1): a5:86:af:5d:61:e3:79:5c:11:99:aa:de:7a:ec:c8:f6:d8:6b:46:12
Fingerprint (sha256): db:a8:19:2b:28:bc:45:0b:75:69:fc:04:b3:ed:5a:e9:ea:9b:8f:c0:74:b9:34:d5:2a:87:5f:54:bb:74:65:ee
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsgccr3dvtlsca2020CRL Distribution Point: http://crl.globalsign.com/gsgccr3dvtlsca2020.crl
Check the revocation status for certificate jabber.diatem.net
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for jabber.diatem.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
jabber.diatem.net
jabber-int.diatem.net
spark.diatem.net
collab-edge.diatem.net
jabber-int.diatem.net
spark.diatem.net
collab-edge.diatem.net
Other certificates including the domain name diatem.net
(limited to 100 certificates)
status.autospf.com
status.autospf.com
status.mediaconnect.no
status.autospf.com
*.diatem.net
status.waps.solutions
status.autospf.com
*.diatem.net
status.mediaconnect.no
status.autospf.com
jabber.diatem.net
status.waps.solutions
*.diatem.net
swing.diatem.net
status.warrantywise.co.uk
status.warrantywise.co.uk
status.waps.solutions
status.synccentral.eu
status.autospf.com
status.zoho.sa
status.virtual-developer.com
status.autospf.com
status.warrantywise.co.uk
status.justaftermidnight.io
status.diatem.net
status.skynetexpress.com
status.autospf.com
swing.diatem.net
status.autospf.com
exchange.diatem.net
status.limonadadigital.com
status.autospf.com
status.virtual-developer.com
status.warrantywise.co.uk
status.autospf.com
status.allgreenhosting.global
*.diatem.net
*.diatem.net
status.justaftermidnight.io
status.synccentral.eu
status.autospf.com
exchange.diatem.net
status.diatem.net
status.justaftermidnight.io
*.diatem.net
status.autospf.com
status.autospf.com
status.allgreenhosting.global
status.autospf.com
jabber.diatem.net
status.mycubes.nl
status.autospf.com
status.mycubes.nl
status.limonadadigital.com
status.autospf.com
status.autospf.com
jabber.diatem.net
status.waps.solutions
fr.status.oodrive.com
*.diatem.net
swing.diatem.net
status.autospf.com
status.mediaconnect.no
status.virtual-developer.com
jabber.diatem.net
status.autospf.com
status.limonadadigital.com
*.diatem.net
fr.status.oodrive.com
status.justaftermidnight.io
status.allgreenhosting.global
swing.diatem.net
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.mediaconnect.no
status.autospf.com
status.mycubes.nl
jabber.diatem.net
status.autospf.com
*.diatem.net
*.diatem.net
status.virtual-developer.com
jabber.diatem.net
status.autospf.com
status.allgreenhosting.global
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.mediaconnect.no
status.autospf.com
*.diatem.net
status.waps.solutions
status.autospf.com
*.diatem.net
status.mediaconnect.no
status.autospf.com
jabber.diatem.net
status.waps.solutions
*.diatem.net
swing.diatem.net
status.warrantywise.co.uk
status.warrantywise.co.uk
status.waps.solutions
status.synccentral.eu
status.autospf.com
status.zoho.sa
status.virtual-developer.com
status.autospf.com
status.warrantywise.co.uk
status.justaftermidnight.io
status.diatem.net
status.skynetexpress.com
status.autospf.com
swing.diatem.net
status.autospf.com
exchange.diatem.net
status.limonadadigital.com
status.autospf.com
status.virtual-developer.com
status.warrantywise.co.uk
status.autospf.com
status.allgreenhosting.global
*.diatem.net
*.diatem.net
status.justaftermidnight.io
status.synccentral.eu
status.autospf.com
exchange.diatem.net
status.diatem.net
status.justaftermidnight.io
*.diatem.net
status.autospf.com
status.autospf.com
status.allgreenhosting.global
status.autospf.com
jabber.diatem.net
status.mycubes.nl
status.autospf.com
status.mycubes.nl
status.limonadadigital.com
status.autospf.com
status.autospf.com
jabber.diatem.net
status.waps.solutions
fr.status.oodrive.com
*.diatem.net
swing.diatem.net
status.autospf.com
status.mediaconnect.no
status.virtual-developer.com
jabber.diatem.net
status.autospf.com
status.limonadadigital.com
*.diatem.net
fr.status.oodrive.com
status.justaftermidnight.io
status.allgreenhosting.global
swing.diatem.net
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.mediaconnect.no
status.autospf.com
status.mycubes.nl
jabber.diatem.net
status.autospf.com
*.diatem.net
*.diatem.net
status.virtual-developer.com
jabber.diatem.net
status.autospf.com
status.allgreenhosting.global
status.autospf.com
status.autospf.com
status.autospf.com
Certificate
The complete raw certificate details for jabber.diatem.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgIMG76050pu2GvQCx10MA0GCSqGSIb3DQEBCwUAMFMxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSkwJwYDVQQDEyBH bG9iYWxTaWduIEdDQyBSMyBEViBUTFMgQ0EgMjAyMDAeFw0yNDAxMTUwOTQ3Mzla Fw0yNTAyMTUwOTQ3MzhaMBwxGjAYBgNVBAMTEWphYmJlci5kaWF0ZW0ubmV0MIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/rGlRvuDDAy8OkQMC8Hfu56 gEty0IXHM06EC3Lz53r3VjABhDwEZYXppTIVK896+YVsceOuBlvcauE1VJl2OKPZ j9p/Lpr0FD8BAnald+hI423HxurZPlmWEOlQ3RhYoRFkmIqMZXoMPg2wUFNvUwi3 LYA2OXl6Psamh+pUF7UqlwwkfYUbt0kbGcFxGmaMbO7qFXrY2SAH/rmgJFgpWjBp ecgzs8MeyEq/i39bHpusqWG+Mc2jryyKLzm5yD7+glDIN6JVU5CM0Ew3+d5X/juu 5HpcXU5DFSYhLFqliAnMTohipcZzQjEpMpC5KbWPGcXI0GFsoKxKxJOTri3qEQID AQABo4ICJjCCAiIwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwgZMGCCsG AQUFBwEBBIGGMIGDMEYGCCsGAQUFBzAChjpodHRwOi8vc2VjdXJlLmdsb2JhbHNp Z24uY29tL2NhY2VydC9nc2djY3IzZHZ0bHNjYTIwMjAuY3J0MDkGCCsGAQUFBzAB hi1odHRwOi8vb2NzcC5nbG9iYWxzaWduLmNvbS9nc2djY3IzZHZ0bHNjYTIwMjAw VgYDVR0gBE8wTTBBBgkrBgEEAaAyAQowNDAyBggrBgEFBQcCARYmaHR0cHM6Ly93 d3cuZ2xvYmFsc2lnbi5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQIBMEEGA1UdHwQ6 MDgwNqA0oDKGMGh0dHA6Ly9jcmwuZ2xvYmFsc2lnbi5jb20vZ3NnY2NyM2R2dGxz Y2EyMDIwLmNybDBdBgNVHREEVjBUghFqYWJiZXIuZGlhdGVtLm5ldIIVamFiYmVy LWludC5kaWF0ZW0ubmV0ghBzcGFyay5kaWF0ZW0ubmV0ghZjb2xsYWItZWRnZS5k aWF0ZW0ubmV0MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAfBgNVHSME GDAWgBQNmMBzf6u9vdlHS0mtCkoMrD7HfDAdBgNVHQ4EFgQU4A3fCAR/qHmWqjH5 dCCBeYkphrIwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEB AAV+sKd5lKUh3mGlr0TS4L5fycVIa5pJKj79ie6gQoTrmiRCvFf4oBQAh8h9QWNI CEK7vnZeQVODjBB1e6dJ5VWUvUmavkiqnexO4zdWlbq9ysydkJ1xamoxlKudBF5p 2EmpBRJ61LvebMnYK8IN6/UJPXuyWYhz5dkx6KQXkoqXxF4PsdpwYoHxGnsEr73U wIAgmA3Qde4s1lobaOmJV+RuD005WiDNaVTA/RI64BvCTG9jTX5MmnxOk6TupWmu +liSwmnyFsFoCXPp03F8wnwx7UNd+4nyVCX4+6TAwIMZRAFSponbfdbFMXxd+hSV LoYfvWyNGasIeZvwc/7eSww= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/rGlRvuDDAy8OkQMC8H fu56gEty0IXHM06EC3Lz53r3VjABhDwEZYXppTIVK896+YVsceOuBlvcauE1VJl2 OKPZj9p/Lpr0FD8BAnald+hI423HxurZPlmWEOlQ3RhYoRFkmIqMZXoMPg2wUFNv Uwi3LYA2OXl6Psamh+pUF7UqlwwkfYUbt0kbGcFxGmaMbO7qFXrY2SAH/rmgJFgp WjBpecgzs8MeyEq/i39bHpusqWG+Mc2jryyKLzm5yD7+glDIN6JVU5CM0Ew3+d5X /juu5HpcXU5DFSYhLFqliAnMTohipcZzQjEpMpC5KbWPGcXI0GFsoKxKxJOTri3q EQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8586645463431356125616479604 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign GCC R3 DV TLS CA 2020' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-15 09:47:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-15 09:47:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'jabber.diatem.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22215365481954686549238176332708453863560361650239617298666838716277505814180498890386648731385761432201997036240450998544050819902939011386064891132235085384327388412346983536113141673849221058244315543715539402539935378553048087644463337157113366915800022733100398469012789224700817517598218779249297100962658193434933255609650652925067483618143989752644322848374068730584515372020129907220514124947257271025399693037606090733543647274373683073515077969227815859483295406932288588776843523880982406826457689275308057895919247383124749803367345192335642602035885753684639252743631907166973295257228631658814264699409 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (134 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsgccr3dvtlsca2020' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10 (globalsignDVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsgccr3dvtlsca2020.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jabber.diatem.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jabber-int.diatem.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'spark.diatem.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collab-edge.diatem.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0d98c0737fabbdbdd9474b49ad0a4a0cac3ec77c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e00ddf08047fa87996aa31f974208179892986b2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00057eb0a77994a521de61a5af44d2e0be5fc9c5486b9a492a3efd89eea04284eb9a2442bc57f8a0140087c87d4163480842bbbe765e4153838c10757ba749e55594bd499abe48aa9dec4ee3375695babdcacc9d909d716a6a3194ab9d045e69d849a905127ad4bbde6cc9d82bc20debf5093d7bb2598873e5d931e8a417928a97c45e0fb1da706281f11a7b04afbdd4c08020980dd075ee2cd65a1b68e98957e46e0f4d395a20cd6954c0fd123ae01bc24c6f634d7e4c9a7c4e93a4eea569aefa5892c269f216c1680973e9d3717cc27c31ed435dfb89f25425f8fba4c0c08319440152a689db7dd6c5317c5dfa14952e861fbd6c8d19ab08799bf073fede4b0c