*.diatem.net
Issued by GlobalSign GCC R3 DV TLS CA 2020
About this certificate
This digital certificate with serial number 54:eb:39:2d:60:6b:ea:c0:d0:7b:49:54 was issued on by GlobalSign nv-sa.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.diatem.net
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate will expire on
Certificate Details
Serial Number (hex): 54:eb:39:2d:60:6b:ea:c0:d0:7b:49:54Serial Number (int): 26281108404543335479646046548
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: a6:75:b6:fa:17:07:f8:69:39:b4:27:23:62:29:ab:7b:78:01:7a:61
AuthorityKeyId: 0d:98:c0:73:7f:ab:bd:bd:d9:47:4b:49:ad:0a:4a:0c:ac:3e:c7:7c
Fingerprint (sha1): 02:6f:36:a8:ca:40:8d:5f:65:6c:6d:60:6f:6f:89:32:22:92:11:9e
Fingerprint (sha256): e2:85:c5:79:66:6e:ab:d3:aa:c9:1a:d4:71:a5:02:00:9f:90:87:15:bf:73:04:1d:cf:10:d0:a9:c5:76:d7:01
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsgccr3dvtlsca2020CRL Distribution Point: http://crl.globalsign.com/gsgccr3dvtlsca2020.crl
Check the revocation status for certificate *.diatem.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.diatem.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.diatem.net
diatem.net
diatem.net
Other certificates including the domain name diatem.net
(limited to 100 certificates)
status.autospf.com
status.autospf.com
status.mediaconnect.no
status.autospf.com
*.diatem.net
status.waps.solutions
status.autospf.com
*.diatem.net
status.mediaconnect.no
status.autospf.com
jabber.diatem.net
status.waps.solutions
*.diatem.net
swing.diatem.net
status.warrantywise.co.uk
status.warrantywise.co.uk
status.waps.solutions
status.synccentral.eu
status.autospf.com
status.zoho.sa
status.virtual-developer.com
status.autospf.com
status.warrantywise.co.uk
status.justaftermidnight.io
status.diatem.net
status.skynetexpress.com
status.autospf.com
swing.diatem.net
status.autospf.com
exchange.diatem.net
status.limonadadigital.com
status.autospf.com
status.virtual-developer.com
status.warrantywise.co.uk
status.autospf.com
status.allgreenhosting.global
*.diatem.net
*.diatem.net
status.justaftermidnight.io
status.synccentral.eu
status.autospf.com
exchange.diatem.net
status.diatem.net
status.justaftermidnight.io
*.diatem.net
status.autospf.com
status.autospf.com
status.allgreenhosting.global
status.autospf.com
jabber.diatem.net
status.mycubes.nl
status.autospf.com
status.mycubes.nl
status.limonadadigital.com
status.autospf.com
status.autospf.com
jabber.diatem.net
status.waps.solutions
fr.status.oodrive.com
*.diatem.net
swing.diatem.net
status.autospf.com
status.mediaconnect.no
status.virtual-developer.com
jabber.diatem.net
status.autospf.com
status.limonadadigital.com
*.diatem.net
fr.status.oodrive.com
status.justaftermidnight.io
status.allgreenhosting.global
swing.diatem.net
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.mediaconnect.no
status.autospf.com
status.mycubes.nl
jabber.diatem.net
status.autospf.com
*.diatem.net
*.diatem.net
status.virtual-developer.com
jabber.diatem.net
status.autospf.com
status.allgreenhosting.global
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.mediaconnect.no
status.autospf.com
*.diatem.net
status.waps.solutions
status.autospf.com
*.diatem.net
status.mediaconnect.no
status.autospf.com
jabber.diatem.net
status.waps.solutions
*.diatem.net
swing.diatem.net
status.warrantywise.co.uk
status.warrantywise.co.uk
status.waps.solutions
status.synccentral.eu
status.autospf.com
status.zoho.sa
status.virtual-developer.com
status.autospf.com
status.warrantywise.co.uk
status.justaftermidnight.io
status.diatem.net
status.skynetexpress.com
status.autospf.com
swing.diatem.net
status.autospf.com
exchange.diatem.net
status.limonadadigital.com
status.autospf.com
status.virtual-developer.com
status.warrantywise.co.uk
status.autospf.com
status.allgreenhosting.global
*.diatem.net
*.diatem.net
status.justaftermidnight.io
status.synccentral.eu
status.autospf.com
exchange.diatem.net
status.diatem.net
status.justaftermidnight.io
*.diatem.net
status.autospf.com
status.autospf.com
status.allgreenhosting.global
status.autospf.com
jabber.diatem.net
status.mycubes.nl
status.autospf.com
status.mycubes.nl
status.limonadadigital.com
status.autospf.com
status.autospf.com
jabber.diatem.net
status.waps.solutions
fr.status.oodrive.com
*.diatem.net
swing.diatem.net
status.autospf.com
status.mediaconnect.no
status.virtual-developer.com
jabber.diatem.net
status.autospf.com
status.limonadadigital.com
*.diatem.net
fr.status.oodrive.com
status.justaftermidnight.io
status.allgreenhosting.global
swing.diatem.net
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.autospf.com
status.mediaconnect.no
status.autospf.com
status.mycubes.nl
jabber.diatem.net
status.autospf.com
*.diatem.net
*.diatem.net
status.virtual-developer.com
jabber.diatem.net
status.autospf.com
status.allgreenhosting.global
status.autospf.com
status.autospf.com
status.autospf.com
Certificate
The complete raw certificate details for *.diatem.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTTCCBTWgAwIBAgIMVOs5LWBr6sDQe0lUMA0GCSqGSIb3DQEBCwUAMFMxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSkwJwYDVQQDEyBH bG9iYWxTaWduIEdDQyBSMyBEViBUTFMgQ0EgMjAyMDAeFw0yNDAxMjUxNzE0MDJa Fw0yNTAyMjUxNzE0MDFaMBcxFTATBgNVBAMMDCouZGlhdGVtLm5ldDCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALjt0uBkdKT6ZAEVxNz1nPWwm002Hr5I i7q92xxgABkfuO7XsqOXIEedRAn0NP9tIsabStAZ2RU/wSD9s5jYCTkBF8RDc4cQ bBm6yWes4/hwCwVokoSQfEKEkD43rWS/kWNJqyNfGILgArk+TxDR+V8n9AgZkPia PEOtfuI+IaZzwAEfHt46h80f19ZST/cl5qFKj0EUVeuOnXLT4eWkoP2GXqYGT9tW 5/cGyRT253KUkeVaECpz75/g0WmaDZKlHsvTwVqtno67t62psrMTpR/yPL8N23yy Gz+uQg0sQWNNAncC8BXNrCPiGpJGT9CpTQGBMBh9DhvBqogfW9W7IFUCAwEAAaOC A1swggNXMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMIGTBggrBgEFBQcB AQSBhjCBgzBGBggrBgEFBQcwAoY6aHR0cDovL3NlY3VyZS5nbG9iYWxzaWduLmNv bS9jYWNlcnQvZ3NnY2NyM2R2dGxzY2EyMDIwLmNydDA5BggrBgEFBQcwAYYtaHR0 cDovL29jc3AuZ2xvYmFsc2lnbi5jb20vZ3NnY2NyM2R2dGxzY2EyMDIwMFYGA1Ud IARPME0wQQYJKwYBBAGgMgEKMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vd3d3Lmds b2JhbHNpZ24uY29tL3JlcG9zaXRvcnkvMAgGBmeBDAECATBBBgNVHR8EOjA4MDag NKAyhjBodHRwOi8vY3JsLmdsb2JhbHNpZ24uY29tL2dzZ2NjcjNkdnRsc2NhMjAy MC5jcmwwIwYDVR0RBBwwGoIMKi5kaWF0ZW0ubmV0ggpkaWF0ZW0ubmV0MB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAfBgNVHSMEGDAWgBQNmMBzf6u9vdlH S0mtCkoMrD7HfDAdBgNVHQ4EFgQUpnW2+hcH+Gk5tCcjYimre3gBemEwggGABgor BgEEAdZ5AgQCBIIBcASCAWwBagB2AObSMWNAd4zBEEEG13G5zsHSQPaWhIb7uocy Hf0eN45QAAABjUGdSogAAAQDAEcwRQIhAOnQ9h2Hhmn1e5rfz/vKKUKnKfD6sMMG 6CK24pTJ2DbQAiB7VsKBCgvw1MNKLGBMUTvPRvZ0X/tCwTPe8suaOLvQqgB3AE51 oydcmhDDOFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABjUGdTXYAAAQDAEgwRgIh AJKGEI6cj+m2H2+5OGM48o+1J2Hhuv068IYrydDpbTtvAiEA801SMIPKB3j6mdas 85TBpqcN2h0cMYws0TMQYkq0LfEAdwDgkrP8DB3I52g2H95huZZNClJ4GYpy1nLE sE2lbW9UBAAAAY1BnUs+AAAEAwBIMEYCIQDINuxW+WJcMMYZG+HVT2GmbT7jPUTs UC+GI2D5bw4jlQIhAL37IYdqzFMCWyMbaZLb8AArICftgb/fQ3CFEn/QybfVMA0G CSqGSIb3DQEBCwUAA4IBAQBqgeGHLVRLVctLySTlIBEV79OwJYQqpZaKAAbu/E4y HiYlBOWbrAixOPPt7XXHyDByimLrMIeC6Cpyd+U+3B2xs5CZj40cgmzkTL8hkE+S +QOtoJvMuEIcHipoQu2GVQPDvQMTjBDhTtsG++oOvj5EOsdc7zxhFn2q/4MahNPm KiGjhtVgVq/IKUvzMpqPg4A46qI5PKbx6iOGADAMtLOvpUnDLWc6T0rfvanpqKn9 DA+QY9jO4Ix1OLtX7LN4/eDJfwViELlWSyJzLOSuK31uua3LvhxXC2MD/RqM/Nnd a7I8vgqYGsDkghQrgIyl1nwwDS2D+JW5JCW586KUx+ga -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuO3S4GR0pPpkARXE3PWc 9bCbTTYevkiLur3bHGAAGR+47teyo5cgR51ECfQ0/20ixptK0BnZFT/BIP2zmNgJ OQEXxENzhxBsGbrJZ6zj+HALBWiShJB8QoSQPjetZL+RY0mrI18YguACuT5PENH5 Xyf0CBmQ+Jo8Q61+4j4hpnPAAR8e3jqHzR/X1lJP9yXmoUqPQRRV646dctPh5aSg /YZepgZP21bn9wbJFPbncpSR5VoQKnPvn+DRaZoNkqUey9PBWq2ejru3ramysxOl H/I8vw3bfLIbP65CDSxBY00CdwLwFc2sI+IakkZP0KlNAYEwGH0OG8GqiB9b1bsg VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 26281108404543335479646046548 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign GCC R3 DV TLS CA 2020' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-25 17:14:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-25 17:14:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.diatem.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23345123369110048815387790013814161489643816465762896103955828225699473167911986872623673302657136672586480623135180144725171656052247804737616546520335426959960833117022018213543633909341386482906780208351597527467818141901805428279122752951475738165643789261518400935512461338456837864112600870730235811159814849898631143162664244968218137662314612363301836881839713844118260772981413172183772069400031455610621783616743281121802455550302400532623670629307342832665988523953603663830107132357198654575981433698692163620430862901890654609737795630650873404254399800568704684167572864071968984712103682704466956197973 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (134 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsgccr3dvtlsca2020' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10 (globalsignDVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsgccr3dvtlsca2020.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.diatem.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'diatem.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0d98c0737fabbdbdd9474b49ad0a4a0cac3ec77c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a675b6fa1707f86939b427236229ab7b78017a61 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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