*.galitt.com
- GALITT -
Issued by Thawte SSL CA
About this certificate
This digital certificate with serial number 72:f9:20:8c:98:ad:f6:e6:bc:f7:1d:a9:11:88:9e:8a was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
GALITT
Organization:
GALITT
State / Province:
HAUTS DE SEINE
Locality: BOULOGNE BILLANCOURT
Country: FR
Locality: BOULOGNE BILLANCOURT
Country: FR
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 72:f9:20:8c:98:ad:f6:e6:bc:f7:1d:a9:11:88:9e:8aSerial Number (int): 152825533613557682059159016655798443658
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: a7:a2:83:bb:34:45:40:3d:fc:d5:30:4f:12:b9:3e:a1:01:9f:f6:db
Fingerprint (sha1): ad:ac:6b:69:29:96:ab:14:10:62:5c:d4:43:fe:13:b8:37:f5:2a:12
Fingerprint (sha256): e0:b7:ee:d2:ab:bc:40:77:d6:c9:45:a7:f4:d5:d9:67:50:a9:0d:95:ab:0c:4c:83:7e:7e:67:a9:f6:d5:b5:30
Issuing Certificate URL: http://svr-ov-aia.thawte.com/ThawteOV.cer
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl
Check the revocation status for certificate *.galitt.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.galitt.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.galitt.com
Other certificates including the domain name galitt.com
(limited to 100 certificates)
tls01.novagence.com
elk-testbnkf-01.do.sepamail.galitt.com
couchdb-skem.do.sepamail.galitt.com
services.galitt.com
support.galitt.com
tls01.novagence.com
jenkins.do.sepamail.galitt.com
prepayecatti.galitt.com
*.galitt.com
tls01.novagence.com
catti.galitt.com
rabbitmq-skem.do.sepamail.galitt.com
tls01.novagence.com
tls01.novagence.com
parking.novagence.fr
tls01.novagence.com
bnkf.sepamail.galitt.com
tls01.novagence.com
parking.novagence.fr
tls01.novagence.com
couchdb-testbanks.do.anantaplex.fr
parking.novagence.fr
tls01.novagence.com
parking.novagence.fr
rabbitmq-skem.do.sepamail.galitt.com
tls01.novagence.com
tls01.novagence.com
rabbitmq-testbanks.do.sepamail.galitt.com
tls01.novagence.com
www.galitt.com
docker-registry.do.sepamail.galitt.com
*.galitt.com
tls01.novagence.com
parking.novagence.fr
skem.sepamail.galitt.com
bnke.sepamail.galitt.com
elk-testbnke-01.do.sepamail.galitt.com
soprasteria.com
tls01.novagence.com
elk-skem-01.do.sepamail.galitt.com
services.galitt.com
parking.novagence.fr
couchdb-testbanks.do.sepamail.galitt.com
consul-clustera-node1.do.sepamail.galitt.com
*.galitt.com
docker-registry.do.sepamail.galitt.com
jenkins.do.sepamail.galitt.com
*.galitt.com
tls01.novagence.com
*.galitt.com
parking.novagence.fr
parking.novagence.fr
loy-ppaid-catti.galitt.com
loy-ppaid-catti.galitt.com
*.galitt.com
parking.novagence.fr
elk-testbnkf-01.do.sepamail.galitt.com
parking.novagence.fr
tls01.novagence.com
parking.novagence.fr
loy-ppaid-catti.galitt.com
support.galitt.com
parking.novagence.fr
couchdb-skem.do.sepamail.galitt.com
tls01.novagence.com
*.galitt.com
parking.novagence.fr
support.galitt.com
loy-ppaid-catti.galitt.com
tls01.novagence.com
*.galitt.com
elk-skem-01.do.sepamail.galitt.com
tls01.novagence.com
parking.novagence.fr
couchdb-skem.do.sepamail.galitt.com
*.galitt.com
fidelitecatti.galitt.com
rabbitmq-skem.do.sepamail.galitt.com
tls01.novagence.com
referential-mirror.do.sepamail.galitt.com
services.galitt.com
tls01.novagence.com
tls01.novagence.com
*.galitt.com
tls01.novagence.com
tls01.novagence.com
fidelitecatti.galitt.com
consul-clustera-node1.do.sepamail.galitt.com
parking.novagence.fr
*.galitt.com
*.galitt.com
tls01.novagence.com
elk-skem-01.do.sepamail.galitt.com
tls01.novagence.com
*.galitt.com
elk-testbnkf-01.do.sepamail.galitt.com
couchdb-skem.do.sepamail.galitt.com
services.galitt.com
support.galitt.com
tls01.novagence.com
jenkins.do.sepamail.galitt.com
prepayecatti.galitt.com
*.galitt.com
tls01.novagence.com
catti.galitt.com
rabbitmq-skem.do.sepamail.galitt.com
tls01.novagence.com
tls01.novagence.com
parking.novagence.fr
tls01.novagence.com
bnkf.sepamail.galitt.com
tls01.novagence.com
parking.novagence.fr
tls01.novagence.com
couchdb-testbanks.do.anantaplex.fr
parking.novagence.fr
tls01.novagence.com
parking.novagence.fr
rabbitmq-skem.do.sepamail.galitt.com
tls01.novagence.com
tls01.novagence.com
rabbitmq-testbanks.do.sepamail.galitt.com
tls01.novagence.com
www.galitt.com
docker-registry.do.sepamail.galitt.com
*.galitt.com
tls01.novagence.com
parking.novagence.fr
skem.sepamail.galitt.com
bnke.sepamail.galitt.com
elk-testbnke-01.do.sepamail.galitt.com
soprasteria.com
tls01.novagence.com
elk-skem-01.do.sepamail.galitt.com
services.galitt.com
parking.novagence.fr
couchdb-testbanks.do.sepamail.galitt.com
consul-clustera-node1.do.sepamail.galitt.com
*.galitt.com
docker-registry.do.sepamail.galitt.com
jenkins.do.sepamail.galitt.com
*.galitt.com
tls01.novagence.com
*.galitt.com
parking.novagence.fr
parking.novagence.fr
loy-ppaid-catti.galitt.com
loy-ppaid-catti.galitt.com
*.galitt.com
parking.novagence.fr
elk-testbnkf-01.do.sepamail.galitt.com
parking.novagence.fr
tls01.novagence.com
parking.novagence.fr
loy-ppaid-catti.galitt.com
support.galitt.com
parking.novagence.fr
couchdb-skem.do.sepamail.galitt.com
tls01.novagence.com
*.galitt.com
parking.novagence.fr
support.galitt.com
loy-ppaid-catti.galitt.com
tls01.novagence.com
*.galitt.com
elk-skem-01.do.sepamail.galitt.com
tls01.novagence.com
parking.novagence.fr
couchdb-skem.do.sepamail.galitt.com
*.galitt.com
fidelitecatti.galitt.com
rabbitmq-skem.do.sepamail.galitt.com
tls01.novagence.com
referential-mirror.do.sepamail.galitt.com
services.galitt.com
tls01.novagence.com
tls01.novagence.com
*.galitt.com
tls01.novagence.com
tls01.novagence.com
fidelitecatti.galitt.com
consul-clustera-node1.do.sepamail.galitt.com
parking.novagence.fr
*.galitt.com
*.galitt.com
tls01.novagence.com
elk-skem-01.do.sepamail.galitt.com
tls01.novagence.com
*.galitt.com
Certificate
The complete raw certificate details for *.galitt.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEmDCCA4CgAwIBAgIQcvkgjJit9ua89x2pEYieijANBgkqhkiG9w0BAQUFADA8 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRYwFAYDVQQDEw1U aGF3dGUgU1NMIENBMB4XDTE0MDEwMjAwMDAwMFoXDTE1MDMwMzIzNTk1OVowbTEL MAkGA1UEBhMCRlIxFzAVBgNVBAgTDkhBVVRTIERFIFNFSU5FMR0wGwYDVQQHFBRC T1VMT0dORSBCSUxMQU5DT1VSVDEPMA0GA1UEChQGR0FMSVRUMRUwEwYDVQQDFAwq LmdhbGl0dC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7XuES /hGOYKKB2rDvle3C49smUtui++bUdso4dO4CBGv1yoUhPtEw9IhMV4rH3zDKHWGS AjIn71LPFkbYt128r3/o8OI63zwTOEBI7fuAflzXdsA/swcEqAXwjoNYlyqFDXOb rNG6daPJvaL9MwiQcdjPY3O4h11lX0L8SdKZ/1pvdFmweBdWhYa13+wha5o7Fqgj j6yf6eW+sJ0nTiHPGRhAYE3yVEtz5mUilsK8O7j/iwlwoosesvtUsDUw39i4xqdl nsCnLMgpOhfyYyJ35lrKoGJYU3mxJ1jW4V0cEmAqOQCmnvqPCV/gyO4Zb+MBX4zQ y9ku4T6bYF76LdBLAgMBAAGjggFjMIIBXzAXBgNVHREEEDAOggwqLmdhbGl0dC5j b20wCQYDVR0TBAIwADBCBgNVHSAEOzA5MDcGCmCGSAGG+EUBBzYwKTAnBggrBgEF BQcCARYbaHR0cHM6Ly93d3cudGhhd3RlLmNvbS9jcHMvMA4GA1UdDwEB/wQEAwIF oDAfBgNVHSMEGDAWgBSnooO7NEVAPfzVME8SuT6hAZ/22zA6BgNVHR8EMzAxMC+g LaArhilodHRwOi8vc3ZyLW92LWNybC50aGF3dGUuY29tL1RoYXd0ZU9WLmNybDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwaQYIKwYBBQUHAQEEXTBbMCIG CCsGAQUFBzABhhZodHRwOi8vb2NzcC50aGF3dGUuY29tMDUGCCsGAQUFBzAChilo dHRwOi8vc3ZyLW92LWFpYS50aGF3dGUuY29tL1RoYXd0ZU9WLmNlcjANBgkqhkiG 9w0BAQUFAAOCAQEAcbTDrCLmxTfoq5EiPMyd27hvZpM6tHvtMoDOa/cNLQTES/P1 DvyuJlt78czRiyPWUsN1vOEwUGDbRTeOjYrodnyJ08d1is2iMAdNRMQj/2Vxd3p5 a2QnFdYqENbz00GC8nwPktAnzKgzFo78JCC59CkwEmUYFsTV856UVcdxx9QHYElU TRds0IqDeOHDjPvA7a46qwNnkVek5tWOpRO5R1VNYuurorQjxSKq4Siq79pH98kM h8dOveEqSOSFtL434iQcQwevDpKfvT7nneEOZK59bEoX75vduDANC0pwFWWR9Izo SdyEo1w5X/DPUS748yp2YCyfvqrYxsTtbVuALw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+17hEv4RjmCigdqw75Xt wuPbJlLbovvm1HbKOHTuAgRr9cqFIT7RMPSITFeKx98wyh1hkgIyJ+9SzxZG2Ldd vK9/6PDiOt88EzhASO37gH5c13bAP7MHBKgF8I6DWJcqhQ1zm6zRunWjyb2i/TMI kHHYz2NzuIddZV9C/EnSmf9ab3RZsHgXVoWGtd/sIWuaOxaoI4+sn+nlvrCdJ04h zxkYQGBN8lRLc+ZlIpbCvDu4/4sJcKKLHrL7VLA1MN/YuManZZ7ApyzIKToX8mMi d+ZayqBiWFN5sSdY1uFdHBJgKjkApp76jwlf4MjuGW/jAV+M0MvZLuE+m2Be+i3Q SwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 152825533613557682059159016655798443658 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-01-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-03-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HAUTS DE SEINE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'BOULOGNE BILLANCOURT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'GALITT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String '*.galitt.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31732601221817161434244765072925637973165524528845641573560334185427422124617731109430426063054340920020838555061355210115899747316289094278698476296686939635874802333609209809937239724470728411681112618824224948494955173123405342960025065767946365986412071950898953239876225369841205552881559006294902496337775062878745317026811049121410938835970001720498394064123246734514094097200853875782329673261135717731133231278946029524416588360666576399080421809102611738196514869300874627425226896955881740385140689925728967392943621836657538235244288625126824889033551117819188348278094721122551076163590193162231990833227 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.galitt.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a7a283bb3445403dfcd5304f12b93ea1019ff6db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-aia.thawte.com/ThawteOV.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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