www.otpbank.com.ua
- OTP BANK PUBLIC JOINT STOCK COMPANY -
Issued by GeoTrust EV SSL CA - G4
About this certificate
This digital certificate with serial number 49:47:8d:9b:b9:4b:06:c0:e9:77:31:6b:f6:e7:fa:e4 was issued on by GeoTrust Inc..
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
OTP BANK PUBLIC JOINT STOCK COMPANY
Company registration number:
21685166
Organization: OTP BANK PUBLIC JOINT STOCK COMPANY
Organization unit: IT Division
Organization: OTP BANK PUBLIC JOINT STOCK COMPANY
Organization unit: IT Division
State / Province:
Kiev
Locality: Kiev
Country: UA
Locality: Kiev
Country: UA
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 49:47:8d:9b:b9:4b:06:c0:e9:77:31:6b:f6:e7:fa:e4Serial Number (int): 97405168926719564226322347746715499236
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: de:cf:5c:50:b7:ae:02:1f:15:17:aa:16:e8:0d:b5:28:9d:6a:5a:f3
Fingerprint (sha1): a2:ee:38:d4:32:02:26:58:8a:68:5b:86:d5:60:ca:8c:0a:74:5a:2e
Fingerprint (sha256): ea:d1:07:7b:e7:02:d3:be:f8:20:29:5f:e6:73:7e:c1:3e:41:64:2b:e2:c3:02:9e:84:1b:fe:ac:a3:d6:27:99
Issuing Certificate URL: http://gm.symcb.com/gm.crt
Revocation information
OCSP Server: http://gm.symcd.comCRL Distribution Point: http://gm.symcb.com/gm.crl
Check the revocation status for certificate www.otpbank.com.ua
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.otpbank.com.ua
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
en.otpbank.com.ua
ru.otpbank.com.ua
www.otpbank.com.ua
otpbank.com.ua
ru.otpbank.com.ua
www.otpbank.com.ua
otpbank.com.ua
Other certificates including the domain name otpbank.com.ua
(limited to 100 certificates)
ra.otpbank.com.ua
bpmmarketiis.otpbank.com.ua
ra.otpbank.com.ua
ua.otpbank.com.ua
chatclb.otpbank.com.ua
www.otpbank.com.ua
livechat.otpbank.com.ua
www.otpbank.com.ua
ra.otpbank.com.ua
ua.otpbank.com.ua
*.otpbank.com.ua
ua.otpbank.com.ua
gateway.otpbank.com.ua
tender.otpbank.com.ua
ibank.otpbank.com.ua
www.otpbank.com.ua
gateway.otpbank.com.ua
uaafasttack.otpbank.com.ua
rdweb.otpbank.com.ua
chatclb.otpbank.com.ua
ibank.otpbank.com.ua
*.otpbank.com.ua
www.otpbank.com.ua
ibank.otpbank.com.ua
lmsmoco.otpbank.com.ua
www.otpbank.com.ua
www.otpbank.com.ua
gw.otpbank.com.ua
ibank.otpbank.com.ua
gw.otpbank.com.ua
rdweb.otpbank.com.ua
ua.otpbank.com.ua
uaafasttacktst.otpbank.com.ua
rdweb.otpbank.com.ua
ua.otpbank.com.ua
livechat.otpbank.com.ua
www.otpbank.com.ua
www.otpbank.com.ua
*.otpbank.com.ua
chatclb.otpbank.com.ua
mailgw02.otpbank.com.ua
www.otpbank.com.ua
www.otpbank.com.ua
www.otpbank.com.ua
uaafasttacktst.otpbank.com.ua
uaanginxprod.otpbank.com.ua
www.otpbank.com.ua
storage.otpbank.com.ua
chatclb.otpbank.com.ua
*.otpbank.com.ua
broker.otpbank.com.ua
www.otpbank.com.ua
uaaspamedge.otpbank.com.ua
ua.otpbank.com.ua
rdweb.otpbank.com.ua
ibank.otpbank.com.ua
livechat.otpbank.com.ua
broker.otpbank.com.ua
uaaspamedge01.otpbank.com.ua
www.otpbank.com.ua
chatclb.otpbank.com.ua
www.otpbank.com.ua
own.otpbank.com.ua
www.otpbank.com.ua
ua.otpbank.com.ua
ua.otpbank.com.ua
mailgw02.otpbank.com.ua
www.otpbank.com.ua
chatclb.otpbank.com.ua
uaaspamedge02.otpbank.com.ua
storage.otpbank.com.ua
www.otpbank.com.ua
ua.otpbank.com.ua
www.otpbank.com.ua
own.otpbank.com.ua
www.otpbank.com.ua
www.otpbank.com.ua
own.otpbank.com.ua
sip.otpbank.com.ua
livechat.otpbank.com.ua
ibankpilot.otpbank.com.ua
ua.otpbank.com.ua
www.otpbank.com.ua
bpmmarketiis.otpbank.com.ua
ra.otpbank.com.ua
ua.otpbank.com.ua
chatclb.otpbank.com.ua
www.otpbank.com.ua
livechat.otpbank.com.ua
www.otpbank.com.ua
ra.otpbank.com.ua
ua.otpbank.com.ua
*.otpbank.com.ua
ua.otpbank.com.ua
gateway.otpbank.com.ua
tender.otpbank.com.ua
ibank.otpbank.com.ua
www.otpbank.com.ua
gateway.otpbank.com.ua
uaafasttack.otpbank.com.ua
rdweb.otpbank.com.ua
chatclb.otpbank.com.ua
ibank.otpbank.com.ua
*.otpbank.com.ua
www.otpbank.com.ua
ibank.otpbank.com.ua
lmsmoco.otpbank.com.ua
www.otpbank.com.ua
www.otpbank.com.ua
gw.otpbank.com.ua
ibank.otpbank.com.ua
gw.otpbank.com.ua
rdweb.otpbank.com.ua
ua.otpbank.com.ua
uaafasttacktst.otpbank.com.ua
rdweb.otpbank.com.ua
ua.otpbank.com.ua
livechat.otpbank.com.ua
www.otpbank.com.ua
www.otpbank.com.ua
*.otpbank.com.ua
chatclb.otpbank.com.ua
mailgw02.otpbank.com.ua
www.otpbank.com.ua
www.otpbank.com.ua
www.otpbank.com.ua
uaafasttacktst.otpbank.com.ua
uaanginxprod.otpbank.com.ua
www.otpbank.com.ua
storage.otpbank.com.ua
chatclb.otpbank.com.ua
*.otpbank.com.ua
broker.otpbank.com.ua
www.otpbank.com.ua
uaaspamedge.otpbank.com.ua
ua.otpbank.com.ua
rdweb.otpbank.com.ua
ibank.otpbank.com.ua
livechat.otpbank.com.ua
broker.otpbank.com.ua
uaaspamedge01.otpbank.com.ua
www.otpbank.com.ua
chatclb.otpbank.com.ua
www.otpbank.com.ua
own.otpbank.com.ua
www.otpbank.com.ua
ua.otpbank.com.ua
ua.otpbank.com.ua
mailgw02.otpbank.com.ua
www.otpbank.com.ua
chatclb.otpbank.com.ua
uaaspamedge02.otpbank.com.ua
storage.otpbank.com.ua
www.otpbank.com.ua
ua.otpbank.com.ua
www.otpbank.com.ua
own.otpbank.com.ua
www.otpbank.com.ua
www.otpbank.com.ua
own.otpbank.com.ua
sip.otpbank.com.ua
livechat.otpbank.com.ua
ibankpilot.otpbank.com.ua
ua.otpbank.com.ua
www.otpbank.com.ua
Certificate
The complete raw certificate details for www.otpbank.com.ua in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHEDCCBfigAwIBAgIQSUeNm7lLBsDpdzFr9uf65DANBgkqhkiG9w0BAQsFADBH MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEgMB4GA1UEAxMX R2VvVHJ1c3QgRVYgU1NMIENBIC0gRzQwHhcNMTYwOTEyMDAwMDAwWhcNMTgwOTEy MjM1OTU5WjCB0zETMBEGCysGAQQBgjc8AgEDEwJVQTEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xETAPBgNVBAUTCDIxNjg1MTY2MQswCQYDVQQGEwJVQTEN MAsGA1UECAwES2lldjENMAsGA1UEBwwES2lldjEsMCoGA1UECgwjT1RQIEJBTksg UFVCTElDIEpPSU5UIFNUT0NLIENPTVBBTlkxFDASBgNVBAsMC0lUIERpdmlzaW9u MRswGQYDVQQDDBJ3d3cub3RwYmFuay5jb20udWEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8ZUuBC5W/ee+D5MmmXkYdwd75DYNRotalBxUCxOnjDcOm xZgLETA9UkaDSIKjNtvpPxi3rb27wZnEba2vv/oA+XA2mYi3csvXgxYq85CYVD4Z n3pVcPmSq+w1lKdj1MU4n4TdYgqgrbTM+Q5FURgCDXo9j6/inJl7Ad6IKq5MHVRW cbVACH5GtG4HXpxT97I3ofpLFa+nGlkvogCPst5MEvs8OyuwzNixHw4UqPlAJfFP up1rsUgH8U0dDeV43OHECNWfEsUhiXzsWkgvVgfzZ9cmWpEzMMewGj+Vooteg9AH UhrZfhNdQet5ZSNzACk1L+gCab05HiLCHIDS3WwHAgMBAAGjggNpMIIDZTBTBgNV HREETDBKghFlbi5vdHBiYW5rLmNvbS51YYIRcnUub3RwYmFuay5jb20udWGCEnd3 dy5vdHBiYW5rLmNvbS51YYIOb3RwYmFuay5jb20udWEwCQYDVR0TBAIwADAOBgNV HQ8BAf8EBAMCBaAwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL2dtLnN5bWNiLmNv bS9nbS5jcmwwgakGA1UdIASBoTCBnjCBkgYJKwYBBAHwIgEGMIGEMD8GCCsGAQUF BwIBFjNodHRwczovL3d3dy5nZW90cnVzdC5jb20vcmVzb3VyY2VzL3JlcG9zaXRv cnkvbGVnYWwwQQYIKwYBBQUHAgIwNQwzaHR0cHM6Ly93d3cuZ2VvdHJ1c3QuY29t L3Jlc291cmNlcy9yZXBvc2l0b3J5L2xlZ2FsMAcGBWeBDAEBMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAfBgNVHSMEGDAWgBTez1xQt64CHxUXqhboDbUo nWpa8zBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly9nbS5zeW1j ZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9nbS5zeW1jYi5jb20vZ20uY3J0MIIB fwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdwDd6x0reg1PpiCLga2BaHB+Lo6dAdVc iI09EcTNtuy+zAAAAVce5O2sAAAEAwBIMEYCIQDZQ51t3zMHVq8xbHmW7J5WywFL DHU/hGTYpgAYqse8/QIhAN8CGF5omuMS+EAwxnUFalZntHUagsKIAHSW6Q0DmSmx AHYApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFXHuTu9gAABAMA RzBFAiBhe4xp7dLe+9MWFkUQuPkayxenHih1ephGanUZnPXs4gIhAPOIUyFJh3cK WNKRTShS06Ovnlb0bGbxgkE/bjmEtpq0AHYAaPaY+B9kgr46jO65KB1M/HFRXWeT 1ETRCmesu09P+8QAAAFXHuTu5QAABAMARzBFAiBDCTYc3xO2aBIoXwVSsMY+81Es 7Y7hJYPALGgq95inQAIhAK2ElLcZqQ2YszXPHiag9ARjOUnLAe/1PA1xz4C0Q6Tb MA0GCSqGSIb3DQEBCwUAA4IBAQCFoxL0CjeQayROKXNoDdqFMoBX1iodV3DrNy+4 YAa5g2xlyGWMQoEScRpC5M0LGT5NARlRG3QBPFGyufixIPSDpf/tZn6AHyj6B4Rw G0lOtNUx/FrzAVwUt/cEWE3XC2hjC1GqPZXaeyDzPccP1PUA9kGLnriDNb6LoHdA y51mxBJHgrimv3ifFPs5WOVdx5Z/p33y0P49JJQ2iTSTAojhsxjf+IeUu2Ko3cPa rPySKpnleBXwtfQVmrbo63Ufxf/F66ljXni5dfKcE0R/P7l9dTkKo6bG0BmHElBC 7PQruFaAwMoEfz9wo8ne+J8LauSlt6oJGtqqRZ7nmBRsIu3L -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGVLgQuVv3nvg+TJpl5G HcHe+Q2DUaLWpQcVAsTp4w3DpsWYCxEwPVJGg0iCozbb6T8Yt629u8GZxG2tr7/6 APlwNpmIt3LL14MWKvOQmFQ+GZ96VXD5kqvsNZSnY9TFOJ+E3WIKoK20zPkORVEY Ag16PY+v4pyZewHeiCquTB1UVnG1QAh+RrRuB16cU/eyN6H6SxWvpxpZL6IAj7Le TBL7PDsrsMzYsR8OFKj5QCXxT7qda7FIB/FNHQ3leNzhxAjVnxLFIYl87FpIL1YH 82fXJlqRMzDHsBo/laKLXoPQB1Ia2X4TXUHreWUjcwApNS/oAmm9OR4iwhyA0t1s BwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 97405168926719564226322347746715499236 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust EV SSL CA - G4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'UA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '21685166' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'UA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Kiev' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Kiev' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'OTP BANK PUBLIC JOINT STOCK COMPANY' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT Division' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.otpbank.com.ua' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23782751729136922142833911714882375391252149434155725556658869325911082104427754249135965365123197313718253480397717434929283654689065500958369075053939355602954665905824723172854260277446706004279303625766651599334159435481599799747420672600672129458217057559452277104045178133439421790902501220574623529339086508188146355319427388539454627215157663467099744088611291545820468725447981364522619646708609141144794837475634204066849112859690782956785422562555733655333912211353075121626663232195635363221991509608166098889707954049028006785907302816439410861043728268707832737736387880953420776103625377854264784546823 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (76 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'en.otpbank.com.ua' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ru.otpbank.com.ua' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.otpbank.com.ua' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'otpbank.com.ua' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gm.symcb.com/gm.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (161 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.14370.1.6 (GeoTrust EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName decf5c50b7ae021f1517aa16e80db5289d6a5af3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gm.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gm.symcb.com/gm.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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