*.tchibo.com
- Tchibo GmbH -
Issued by GeoTrust SSL CA - G3
About this certificate
This digital certificate with serial number 24:c0:30:16:72:26:1d:bc:7c:1d:e6:ed:2b:d9:1c:e6 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Tchibo GmbH
Organization:
Tchibo GmbH
State / Province:
Hamburg
Locality: Hamburg
Country: DE
Locality: Hamburg
Country: DE
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 24:c0:30:16:72:26:1d:bc:7c:1d:e6:ed:2b:d9:1c:e6Serial Number (int): 48850104179103579649548827153047035110
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: d2:6f:f7:96:f4:85:3f:72:3c:30:7d:23:da:85:78:9b:a3:7c:5a:7c
Fingerprint (sha1): 9d:f4:88:26:0a:1b:fb:1d:60:be:19:cc:59:b3:bb:59:99:4b:3b:6c
Fingerprint (sha256): e0:6f:3a:75:4e:4d:7e:ed:92:2f:e7:df:94:fe:99:98:75:9b:3b:43:4e:bd:c6:a4:7f:f3:e7:3c:56:ed:c1:b2
Issuing Certificate URL: http://gn.symcb.com/gn.crt
Revocation information
OCSP Server: http://gn.symcd.comCRL Distribution Point: http://gn.symcb.com/gn.crl
Check the revocation status for certificate *.tchibo.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.tchibo.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.tchibo.com
tchibo.com
tchibo.com
Other certificates including the domain name tchibo.com
(limited to 100 certificates)
soc-med-agg.tchibo.com
brand.tchibo.com
recruitingtest.tchibo.com
blog-qs.tchibo.com
ssl.tchibo.com
deapp287.tchibo.tchiboroot.net
recruiting.tchibo.com
*.ship.tchibo.com
portal.tchibo.com
access.tchibo.com
access.tchibo.com
soc-med-agg.tchibo.com
jobs.tchibo.com
sip.tchibo.com
deapp287.tchibo.tchiboroot.net
soc-med-agg.tchibo.com
www.bestand.tchibo.com
soc-med-agg.tchibo.com
cloudbox.tchibo.com
deapp287.tchibo.tchiboroot.net
www.bestand.tchibo.com
blog-dev.tchibo.com
*.tchibo.com
*.login.tchibo.com
portal.tchibo.com
soc-med-agg.tchibo.com
portal.tchibo.com
*.tchibo.com
blog.tchibo.com
portal.tchibo.com
access.tchibo.com
*.tchibo.com
sip.tchibo.com
recruiting.tchibo.com
*.tchibo.com
blog.tchibo.com
jobs.tchibo.com
blog-dev.tchibo.com
www.tchibo.com
*.tchibo.com
jobs.tchibo.com
*.tchibo.com
blog-qs.tchibo.com
soc-med-agg.tchibo.com
*.login.tchibo.com
soc-med-agg.tchibo.com
*.login.tchibo.com
sofi.tchibo.com
*.tchibo.com
brand.tchibo.com
recruitingtest.tchibo.com
blog-qs.tchibo.com
ssl.tchibo.com
deapp287.tchibo.tchiboroot.net
recruiting.tchibo.com
*.ship.tchibo.com
portal.tchibo.com
access.tchibo.com
access.tchibo.com
soc-med-agg.tchibo.com
jobs.tchibo.com
sip.tchibo.com
deapp287.tchibo.tchiboroot.net
soc-med-agg.tchibo.com
www.bestand.tchibo.com
soc-med-agg.tchibo.com
cloudbox.tchibo.com
deapp287.tchibo.tchiboroot.net
www.bestand.tchibo.com
blog-dev.tchibo.com
*.tchibo.com
*.login.tchibo.com
portal.tchibo.com
soc-med-agg.tchibo.com
portal.tchibo.com
*.tchibo.com
blog.tchibo.com
portal.tchibo.com
access.tchibo.com
*.tchibo.com
sip.tchibo.com
recruiting.tchibo.com
*.tchibo.com
blog.tchibo.com
jobs.tchibo.com
blog-dev.tchibo.com
www.tchibo.com
*.tchibo.com
jobs.tchibo.com
*.tchibo.com
blog-qs.tchibo.com
soc-med-agg.tchibo.com
*.login.tchibo.com
soc-med-agg.tchibo.com
*.login.tchibo.com
sofi.tchibo.com
*.tchibo.com
Certificate
The complete raw certificate details for *.tchibo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIQJMAwFnImHbx8HebtK9kc5jANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UEAxMU R2VvVHJ1c3QgU1NMIENBIC0gRzMwHhcNMTUwNjMwMDAwMDAwWhcNMTcwNzI5MjM1 OTU5WjBeMQswCQYDVQQGEwJERTEQMA4GA1UECBMHSGFtYnVyZzEQMA4GA1UEBxQH SGFtYnVyZzEUMBIGA1UEChQLVGNoaWJvIEdtYkgxFTATBgNVBAMUDCoudGNoaWJv LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL7fs2Z8EUm5Us3N Bxa+VVPfBGbstQSEgtjxIOLzMNvpZJplTouRZN1XTOXj8i1k4dPDKJ1Cps3eQ9GT iwxSv4rgJTbCGmm2ytOFIYXFgcl5tvYc4+kw8bht06qy3sJE/cF269RzW8NAXK24 pd36wnwd10z+VYGzvx8o4wFLIbfmyuJLo/PbVnMX4ZtVtUncrP16Vf+pxwI80joY /C/YyUFAq5/M+/NURgbbWpjDtIDQE/4qHoY1Ic9D6SpfAbdWLKt22NXuW8XmS4AK mDT9YrqrIbfKAt/lDFnBB5WyaI3m0fj3KS2Czjmc3ESA98QC754b5eW0yHCBtSzM S0ncsgkCAwEAAaOCAaowggGmMCMGA1UdEQQcMBqCDCoudGNoaWJvLmNvbYIKdGNo aWJvLmNvbTAJBgNVHRMEAjAAMA4GA1UdDwEB/wQEAwIFoDArBgNVHR8EJDAiMCCg HqAchhpodHRwOi8vZ24uc3ltY2IuY29tL2duLmNybDCBnQYDVR0gBIGVMIGSMIGP BgZngQwBAgIwgYQwPwYIKwYBBQUHAgEWM2h0dHBzOi8vd3d3Lmdlb3RydXN0LmNv bS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9sZWdhbDBBBggrBgEFBQcCAjA1DDNodHRw czovL3d3dy5nZW90cnVzdC5jb20vcmVzb3VyY2VzL3JlcG9zaXRvcnkvbGVnYWww HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8GA1UdIwQYMBaAFNJv95b0 hT9yPDB9I9qFeJujfFp8MFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcwAYYTaHR0 cDovL2duLnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0cDovL2duLnN5bWNiLmNv bS9nbi5jcnQwDQYJKoZIhvcNAQELBQADggEBANmi0F9EB+3CJfK3TX1tUfpeK+av 1nZiC6MDzO4qPITvRP5nXtOvu+iZrI6UFhd4T/OAw/zktBCuCA6frqqudVf+7DDO K2R0/SFr+tzZVOMmeEo0lxXir9GrLqA9ouGobDZZlvxAXx3ra4I4haXcYu60nrp9 Yb05NxU6TDwYy042kT9uYsk48o13jYr2xiOQIjOvXF+qtIHjpRDFx5x79hGjZ9p7 tLIuXq3tmegsyIzF8qMsjeVN3RJy8KCb9vms4wXeW1+wLa5xKSimcDWtAssyktk/ ndfWEl8PIe4Xznxs4PabOm4AzrcxRiERpHNUlKrR+6i4ovX3h1Z2NW4SH6A= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvt+zZnwRSblSzc0HFr5V U98EZuy1BISC2PEg4vMw2+lkmmVOi5Fk3VdM5ePyLWTh08MonUKmzd5D0ZOLDFK/ iuAlNsIaabbK04UhhcWByXm29hzj6TDxuG3TqrLewkT9wXbr1HNbw0Bcrbil3frC fB3XTP5VgbO/HyjjAUsht+bK4kuj89tWcxfhm1W1Sdys/XpV/6nHAjzSOhj8L9jJ QUCrn8z781RGBttamMO0gNAT/ioehjUhz0PpKl8Bt1Ysq3bY1e5bxeZLgAqYNP1i uqsht8oC3+UMWcEHlbJojebR+PcpLYLOOZzcRID3xALvnhvl5bTIcIG1LMxLSdyy CQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 48850104179103579649548827153047035110 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-06-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-29 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hamburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Hamburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Tchibo GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String '*.tchibo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24095588910768396078238055723122020024084375671935334579221328422953912388397824765606302747253676796592030455531649508595490127086523170031601361066202355764203096153580095610656942115656615324187440466077996748035164802286609407346366703982715009075056480750023260467259153660250191989272299814520820342560899776661111163774287572336134921621185244164761205000515407881165651521877748182067822229992007613673930856318379600348064570406543910495812041055692334412854183586066484506366427101804210160319990152977240545714637003089004278161606959709519249056188023244899945940010510065779684089733227139384933680460297 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tchibo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tchibo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d26ff796f4853f723c307d23da85789ba37c5a7c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gn.symcb.com/gn.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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