fgp.genizah.org
- Friedberg Genizah Project, Inc -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 0a:6a:ad:96:2e:5b:c9:83:62:a9:72:22:00:a1:1c:90 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Friedberg Genizah Project, Inc
Organization:
Friedberg Genizah Project, Inc
State / Province:
New Jersey
Locality: Lakewood
Country: US
Locality: Lakewood
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:6a:ad:96:2e:5b:c9:83:62:a9:72:22:00:a1:1c:90Serial Number (int): 13846184180286933656958958967789264016
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: ba:54:0b:90:24:ab:22:1d:e1:39:5e:ba:54:bf:3a:71:5b:9f:1c:2e
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): fd:77:f0:22:05:a3:62:16:56:16:27:d8:b3:50:8b:00:a3:74:5f:4f
Fingerprint (sha256): dd:fd:6e:5b:58:51:af:45:84:41:12:e8:36:74:b5:3d:e9:c2:87:f0:2a:eb:c0:aa:f5:3c:02:da:2f:6b:ef:2e
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate fgp.genizah.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for fgp.genizah.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
fgp.genizah.org
Other certificates including the domain name genizah.org
(limited to 100 certificates)
mail.genizah.org
manuscripts.genizah.org
vf.genizah.org
bavli.genizah.org
test.genizah.org
manuscriptstest.genizah.org
ssotest.genizah.org
bavlitest.genizah.org
genizah.org
test.genizah.org
ja.genizah.org
manuscriptstest.genizah.org
fgp.genizah.org
nachumsite.genizah.org
bavli.genizah.org
nachumsite.genizah.org
ssotest.genizah.org
mail.genizah.org
bavlitest.genizah.org
bavli.genizah.org
fgp.genizah.org
ja.genizah.org
fjms.genizah.org
bavli.genizah.org
*.genizah.org
fjms.genizah.org
vf.genizah.org
nachumsite.genizah.org
test.genizah.org
rambam.genizah.org
nachumsite.genizah.org
genizah.org
test.genizah.org
rambamtest.genizah.org
rambam.genizah.org
admin.genizah.org
bavli.genizah.org
manuscripts.genizah.org
fgp.genizah.org
manuscripts.genizah.org
ja.genizah.org
bavlitest.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
rambamtest.genizah.org
test.genizah.org
rambamtest.genizah.org
nachumsite.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
fjmstest.genizah.org
sso.genizah.org
rambam.genizah.org
fjmstest.genizah.org
admin.genizah.org
bavli.genizah.org
sso.genizah.org
fgp.genizah.org
genizah.org
bavli.genizah.org
mail.genizah.org
mail.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
rambamtest.genizah.org
elastic.genizah.org
bavli.genizah.org
fgp.genizah.org
manuscripts.genizah.org
vf.genizah.org
bavli.genizah.org
test.genizah.org
manuscriptstest.genizah.org
ssotest.genizah.org
bavlitest.genizah.org
genizah.org
test.genizah.org
ja.genizah.org
manuscriptstest.genizah.org
fgp.genizah.org
nachumsite.genizah.org
bavli.genizah.org
nachumsite.genizah.org
ssotest.genizah.org
mail.genizah.org
bavlitest.genizah.org
bavli.genizah.org
fgp.genizah.org
ja.genizah.org
fjms.genizah.org
bavli.genizah.org
*.genizah.org
fjms.genizah.org
vf.genizah.org
nachumsite.genizah.org
test.genizah.org
rambam.genizah.org
nachumsite.genizah.org
genizah.org
test.genizah.org
rambamtest.genizah.org
rambam.genizah.org
admin.genizah.org
bavli.genizah.org
manuscripts.genizah.org
fgp.genizah.org
manuscripts.genizah.org
ja.genizah.org
bavlitest.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
rambamtest.genizah.org
test.genizah.org
rambamtest.genizah.org
nachumsite.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
fjmstest.genizah.org
sso.genizah.org
rambam.genizah.org
fjmstest.genizah.org
admin.genizah.org
bavli.genizah.org
sso.genizah.org
fgp.genizah.org
genizah.org
bavli.genizah.org
mail.genizah.org
mail.genizah.org
vf.genizah.org
fgp.genizah.org
admin.genizah.org
rambamtest.genizah.org
elastic.genizah.org
bavli.genizah.org
fgp.genizah.org
Certificate
The complete raw certificate details for fgp.genizah.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGeDCCBWCgAwIBAgIQCmqtli5byYNiqXIiAKEckDANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MTgwNzE3MDAwMDAwWhcNMjAwOTE5MTIwMDAwWjB4MQswCQYDVQQGEwJVUzETMBEG A1UECBMKTmV3IEplcnNleTERMA8GA1UEBxMITGFrZXdvb2QxJzAlBgNVBAoTHkZy aWVkYmVyZyBHZW5pemFoIFByb2plY3QsIEluYzEYMBYGA1UEAxMPZmdwLmdlbml6 YWgub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpwTP3Oy6vpv RaDvrk59T5S/jL08NQMs7PN3YjpljA7SG5TiBhlc7kbyGF7LcW0AWICDf5N2QrzI V7hWaa175UCpq0x0G9qPmB2uSBjaOb6z7+xDPnlIBqRBbvF2b8B68FHXGGcnStuq 3akcOOI0KqT50uFKEZ0Bk/yierZK0Kp6CLaVFkdJeOYSDaUgSpZyuG7ioyl2n4E8 KuFg38wqZczsVCIV2djVpohp+iB8z8Hw3yj6egCqxRt49V3NQ5bkfkLOFN2FcVB+ wFCYinBYpYYAOPvonw78IX88vrxzLXD6ZkNY5RPzSCWUP7+U6JdAAmCnlhcJnbIF AIxYD73DFwIDAQABo4IDGDCCAxQwHwYDVR0jBBgwFoAUo8heZVTlMHjBBeoHCmpZ zLn+3lowHQYDVR0OBBYEFLpUC5AkqyId4TleulS/OnFbnxwuMBoGA1UdEQQTMBGC D2ZncC5nZW5pemFoLm9yZzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMDoGA1UdHwQzMDEwL6AtoCuGKWh0dHA6Ly9jZHAudGhh d3RlLmNvbS9UaGF3dGVSU0FDQTIwMTguY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9 bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMw CAYGZ4EMAQICMG8GCCsGAQUFBwEBBGMwYTAkBggrBgEFBQcwAYYYaHR0cDovL3N0 YXR1cy50aGF3dGUuY29tMDkGCCsGAQUFBzAChi1odHRwOi8vY2FjZXJ0cy50aGF3 dGUuY29tL1RoYXd0ZVJTQUNBMjAxOC5jcnQwCQYDVR0TBAIwADCCAX8GCisGAQQB 1nkCBAIEggFvBIIBawFpAHcApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN 3BAAAAFkqhCwpwAABAMASDBGAiEAlA4Bl5cIraMAeur0VFZSu1Zj7Si9CF9C6D47 O1u1GasCIQCa1aj6BryyuwrSqiu7DkJ2OVAz4BgsESyjEBE8odi8CQB1AId1v+dZ fPiMQ5lfvfNu/1aNR1Y2/0q1YMG06v9eoIMPAAABZKoQsTsAAAQDAEYwRAIgKgcj dJTvX3je5oHZCA93xGMQ9vN5D2ZOzcX/IKAbGQMCICYhzRtl6zwhs7aPYaLGryZs jV5sis44Of8FAF7Z2FoXAHcAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e 0YUAAAFkqhCxFAAABAMASDBGAiEA6PYZRyp9K3PhIKdbOOEyYC1GikYGPNEXS7Lv iUIwiD4CIQCysoH7i0797qgbwRWMu1JCAw+d3MNmG1DioK89Oix4wTANBgkqhkiG 9w0BAQsFAAOCAQEAt7uAZsrSdMslQ4Vh3DlqRc4E+JFBe2vdR5+16BuQcVhvHSZM QiSUY+FblJ0QiSrytCCcj6zbe7Zow61I9n6WOXMmE5a8IR+N/PBokRbtIntok9Aa uP+Zi5e38tfi0/SYiQ8wefzt1RmVa5qxHyEACuylUB7dUihEQjwLkqB/sYdFJcdg 01VfEjB9wdTfygRjXMG0vyCthP4WBtUpKBIFVb32uivQvmbuAv58VeTRD/C8oo5w bFJXQykYiT9n41SIr6SKXti2o0+M9CBTNvQ7Qg0/ISZ9DsFotGteEDYBwlvdm/zO Y6eN+gLbFRcsErv2xUYbydcPPwNnYdq4ee4VGg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpwTP3Oy6vpvRaDvrk59 T5S/jL08NQMs7PN3YjpljA7SG5TiBhlc7kbyGF7LcW0AWICDf5N2QrzIV7hWaa17 5UCpq0x0G9qPmB2uSBjaOb6z7+xDPnlIBqRBbvF2b8B68FHXGGcnStuq3akcOOI0 KqT50uFKEZ0Bk/yierZK0Kp6CLaVFkdJeOYSDaUgSpZyuG7ioyl2n4E8KuFg38wq ZczsVCIV2djVpohp+iB8z8Hw3yj6egCqxRt49V3NQ5bkfkLOFN2FcVB+wFCYinBY pYYAOPvonw78IX88vrxzLXD6ZkNY5RPzSCWUP7+U6JdAAmCnlhcJnbIFAIxYD73D FwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13846184180286933656958958967789264016 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-19 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Jersey' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Lakewood' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Friedberg Genizah Project, Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fgp.genizah.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23052335046978202158789406959369859879827636411215999957813157448945617508616567860256347334743617339141007526105920285449270647901171665239220149535131279775065024258042978958213317340325802385585393240189973693589451202017278039635081938089101861304854796218636275626342593722427390238609095848752624007235163018743508968090149269839531927533158372633009068915679722393724308102733185981169356743341753293391732238534837076436842058674028284942213731039847157337439087434913370477005089140875999405470444384728414953841104510421362070994094761952156385559924199034018503726039745182396713287605725828313095740441367 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ba540b9024ab221de1395eba54bf3a715b9f1c2e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fgp.genizah.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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