sslvpn2.vlada.cz
Issued by RapidSSL Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 0f:b1:68:be:03:27:07:c9:5c:71:94:90:26:22:f1:0d was issued on by DigiCert, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=sslvpn2.vlada.cz
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:b1:68:be:03:27:07:c9:5c:71:94:90:26:22:f1:0dSerial Number (int): 20859580905659699975206450359779389709
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: ea:0d:46:c4:8a:04:ab:92:a6:61:52:bf:6a:9c:c4:bb:32:83:c4:88
AuthorityKeyId: f0:9c:85:fd:a2:9f:7d:8f:c9:68:bb:d5:d4:89:4d:1d:be:d3:90:ff
Fingerprint (sha1): 6b:d8:7f:c3:2b:41:0e:73:42:60:7e:f8:d9:9a:5b:08:ef:71:93:ba
Fingerprint (sha256): ea:d9:d7:2e:44:08:3a:28:a0:ab:81:18:76:a8:30:ee:63:3f:a6:c3:be:a9:93:d8:b4:3e:43:06:d8:28:71:ab
Issuing Certificate URL: http://cacerts.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate sslvpn2.vlada.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sslvpn2.vlada.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sslvpn2.vlada.cz
www.sslvpn2.vlada.cz
www.sslvpn2.vlada.cz
Other certificates including the domain name vlada.cz
(limited to 100 certificates)
dotace-lidskaprava.vlada.cz
*.vlada.cz
oo.vlada.cz
sslvpn.vlada.cz
zakazky.vlada.cz
dapmobile.vlada.cz
zakazky.vlada.cz
*.vlada.cz
sslvpn.vlada.cz
sslvpn.vlada.cz
dotace-drogy.vlada.cz
wifiuvcr.vlada.cz
*.vlada.cz
cloud.vlada.cz
albatros.odok.cz
*.vlada.cz
vlada.cz
vlada.cz
oo.vlada.cz
zakazky.vlada.cz
vlada.cz
pis3.vlada.cz
www.vlada.cz
dotace-lidskaprava.vlada.cz
vlada.cz
www.vlada.cz
sslvpn.vlada.cz
zakazky.vlada.cz
dotace-lidskaprava.vlada.cz
zakazky.vlada.cz
dotace-drogy.vlada.cz
dotace-drogy.vlada.cz
alvao.vlada.cz
vlada.cz
dotace-lidskaprava.vlada.cz
vlada.cz
vlada.cz
vlada.cz
vlada.cz
cloud.vlada.cz
cixp.vlada.cz
dotace-drogy.vlada.cz
dotace-drogy.vlada.cz
wifiuvcr.vlada.cz
vlada.cz
dotace-lidskaprava.vlada.cz
dotace-lidskaprava.vlada.cz
pis3.vlada.cz
wifiuvcr.vlada.cz
*.vlada.cz
sslvpn.vlada.cz
antispam01.vlada.cz
dotace-lidskaprava.vlada.cz
www.vlada.cz
wifiuvcr.vlada.cz
cloud.vlada.cz
sslvpn2.vlada.cz
antispam02.vlada.cz
pis3.vlada.cz
vlada.cz
dapmobile.vlada.cz
*.vlada.cz
dotace-lidskaprava.vlada.cz
dotace-lidskaprava.vlada.cz
www.vlada.cz
*.vlada.cz
oo.vlada.cz
sslvpn.vlada.cz
zakazky.vlada.cz
dapmobile.vlada.cz
zakazky.vlada.cz
*.vlada.cz
sslvpn.vlada.cz
sslvpn.vlada.cz
dotace-drogy.vlada.cz
wifiuvcr.vlada.cz
*.vlada.cz
cloud.vlada.cz
albatros.odok.cz
*.vlada.cz
vlada.cz
vlada.cz
oo.vlada.cz
zakazky.vlada.cz
vlada.cz
pis3.vlada.cz
www.vlada.cz
dotace-lidskaprava.vlada.cz
vlada.cz
www.vlada.cz
sslvpn.vlada.cz
zakazky.vlada.cz
dotace-lidskaprava.vlada.cz
zakazky.vlada.cz
dotace-drogy.vlada.cz
dotace-drogy.vlada.cz
alvao.vlada.cz
vlada.cz
dotace-lidskaprava.vlada.cz
vlada.cz
vlada.cz
vlada.cz
vlada.cz
cloud.vlada.cz
cixp.vlada.cz
dotace-drogy.vlada.cz
dotace-drogy.vlada.cz
wifiuvcr.vlada.cz
vlada.cz
dotace-lidskaprava.vlada.cz
dotace-lidskaprava.vlada.cz
pis3.vlada.cz
wifiuvcr.vlada.cz
*.vlada.cz
sslvpn.vlada.cz
antispam01.vlada.cz
dotace-lidskaprava.vlada.cz
www.vlada.cz
wifiuvcr.vlada.cz
cloud.vlada.cz
sslvpn2.vlada.cz
antispam02.vlada.cz
pis3.vlada.cz
vlada.cz
dapmobile.vlada.cz
*.vlada.cz
dotace-lidskaprava.vlada.cz
dotace-lidskaprava.vlada.cz
www.vlada.cz
Certificate
The complete raw certificate details for sslvpn2.vlada.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHpDCCBYygAwIBAgIQD7FovgMnB8lccZSQJiLxDTANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K1JhcGlkU1NMIEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjIxMTI4MDAwMDAwWhcNMjMxMDA3MjM1OTU5WjAbMRkwFwYDVQQDExBzc2x2cG4y LnZsYWRhLmN6MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6z8TxBv aWFVPSwI/9IheAGyaAbwa3WBLOB6Gu+vc/md6No5RkaHevODUcPXTNdvoQfcl8Z9 XxBNtKYb0lvKK0pxU9XkczZ63dh6dCawoBJfKwa/YhvIMCQV0+Xir3KtIj7LUvbe uo5P9B3sXSyNCdiPlZ5y9V2YMhNmkxWi//0oS02vpBeZeE74UppSC0fQ7hJHiQ+6 n9hYNXjJa7uNG3v2dF3cvlC8XC8qlnV1KLzPjnwDhuCL9z53LP0kW6QO1iczJzAl SsDpjJABMr/11/Hc8CnIvJHM6UabI3WCMx/yMHbSCFIwpU/4AHhzhwoaBx2OxJGk X3C5G2Jmeb0ioQIDAQABo4IDoTCCA50wHwYDVR0jBBgwFoAU8JyF/aKffY/JaLvV 1IlNHb7TkP8wHQYDVR0OBBYEFOoNRsSKBKuSpmFSv2qcxLsyg8SIMDEGA1UdEQQq MCiCEHNzbHZwbjIudmxhZGEuY3qCFHd3dy5zc2x2cG4yLnZsYWRhLmN6MA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwgZ8GA1Ud HwSBlzCBlDBIoEagRIZCaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL1JhcGlkU1NM R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEuY3JsMEigRqBEhkJodHRwOi8v Y3JsNC5kaWdpY2VydC5jb20vUmFwaWRTU0xHbG9iYWxUTFNSU0E0MDk2U0hBMjU2 MjAyMkNBMS5jcmwwPgYDVR0gBDcwNTAzBgZngQwBAgEwKTAnBggrBgEFBQcCARYb aHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMIGHBggrBgEFBQcBAQR7MHkwJAYI KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBRBggrBgEFBQcwAoZF aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL1JhcGlkU1NMR2xvYmFsVExTUlNB NDA5NlNIQTI1NjIwMjJDQTEuY3J0MAkGA1UdEwQCMAAwggGABgorBgEEAdZ5AgQC BIIBcASCAWwBagB3AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAAB hL1kxMwAAAQDAEgwRgIhAP7rNkBEx+/8KMZH/lsZHV6Ff6t2kQgts/ZDk54ahc+s AiEAtEghu1ykIJQ8oknYg7ryJnsFRcyrra/bMx+4uGhsss0AdwCzc3cH4YRQ+GOG 1gWp3BEJSnktsWcMC4fc8AMOeTalmgAAAYS9ZMUXAAAEAwBIMEYCIQCHvzMfQgg3 GHtT34nG0dtYOBQPKuxFs1ghJ78YVv4OqgIhAJ0ntcKSUTrXaIB/3PPvLsUhX9Je FvsEvtuY3EutcPkgAHYAtz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkA AAGEvWTE6QAABAMARzBFAiBqrTD0F2XbOtO/qW/zH5v23uWsn2qi+x4jU/rFOc/v EgIhAIzeeBSXI/e5Ahh0ghYEwHibkjtGfnpUhVQJY++YwV+iMA0GCSqGSIb3DQEB CwUAA4ICAQAVLXypgEwJSDW7Y9JvOSAWK0xV1FiEDrEhaOIzcVFFHuwmfB3Ig/je QC1XlsvLl+mefFIyffMk+YmVQ7i1VMtOzz3bS6/xWhd//o8vb6jKQm4GXfu2Uzj7 2luQrsIqXjbmlAA9wzxSVhYmLFZxPa1FXQyp5D7jyshrSDdwuC7R70NPBb/D5g9t zgFfpTW24TYCQnBAUbJE3PKI9sSBY3/0n9T2n9kXJwDdz4SOapxwHmb32Gcc0Xdt P3Xb5LbnILgKpo8CyJTVMNForLzzXIwTobsvMdUNP4WGMAInQ+T2XK8fEYQpHon+ GBbgc+tOG/iU10KAGe4wsI1l5Q7k2j3PeeTtLOd1jzXR/uJ8A2vu2Onni8PKUrv3 5FHbO4loGUlcG9UHHPrb7hrACVfd4fuYeXsQSsJGc3ff0zlTc/KHPhqg4dX1F8Jt oBM8sWSu03w8Md3CNSYj5vdIoa8Y8mJmXEddnvsHRPhu7SYQ9kCu0VljqyAHgUlC GcN7pfN8CWol3+LLao11NU4ecwub1/+O8zajpDJRL/cPqeYjbXBx5k3XB/CXQaFw BTZNErwZd5kCotYmu2gUYu8eLARHZz0K+tpZMc9hKudeyjTroT6E9VMJ+QoXuSoR 7pz0YCnz5NZo2idA63FIks2CmMdvKBWLkqhEfcBxarW1vm7FB6zR/g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6z8TxBvaWFVPSwI/9Ih eAGyaAbwa3WBLOB6Gu+vc/md6No5RkaHevODUcPXTNdvoQfcl8Z9XxBNtKYb0lvK K0pxU9XkczZ63dh6dCawoBJfKwa/YhvIMCQV0+Xir3KtIj7LUvbeuo5P9B3sXSyN CdiPlZ5y9V2YMhNmkxWi//0oS02vpBeZeE74UppSC0fQ7hJHiQ+6n9hYNXjJa7uN G3v2dF3cvlC8XC8qlnV1KLzPjnwDhuCL9z53LP0kW6QO1iczJzAlSsDpjJABMr/1 1/Hc8CnIvJHM6UabI3WCMx/yMHbSCFIwpU/4AHhzhwoaBx2OxJGkX3C5G2Jmeb0i oQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20859580905659699975206450359779389709 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-11-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sslvpn2.vlada.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21167099298794788368333960634119217096132593955717169433256581060789734166383560782363894882546433597317844805502404437943783471203803964628559697920389648466669817039247039243962659629927400065288250413202488408327849796675517452154719477926767240145115881409606845418420422083303629151535053896429749094721926527052442855654868458260544953065188097079437400345901963664725725294990518981587589605367078312082662940632789458703338718281159097667520404322537213240914655586108460299641767471111887918435491555383523598840676129843306517495153364280206423996730384122785936031520831793911008072197034155221379276677793 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f09c85fda29f7d8fc968bbd5d4894d1dbed390ff . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ea0d46c48a04ab92a66152bf6a9cc4bb3283c488 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sslvpn2.vlada.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sslvpn2.vlada.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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