*.telekom.ebf.de
Issued by GeoTrust TLS RSA CA G1
About this certificate
This digital certificate with serial number 0a:23:cc:be:19:46:6d:ac:c8:ab:a5:d0:3e:35:9a:d5 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.telekom.ebf.de
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0a:23:cc:be:19:46:6d:ac:c8:ab:a5:d0:3e:35:9a:d5Serial Number (int): 13478163020630168325180363559077780181
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 7a:73:96:4f:dd:f4:d0:06:26:bb:11:44:01:a1:3c:98:18:17:f1:eb
AuthorityKeyId: 94:4f:d4:5d:8b:e4:a4:e2:a6:80:fe:fd:d8:f9:00:ef:a3:be:02:57
Fingerprint (sha1): c9:e7:0d:1a:ab:e6:13:c5:1b:99:4f:eb:c6:76:7d:76:e6:e4:b9:cb
Fingerprint (sha256): f6:bd:76:98:c5:ca:01:c0:95:26:b3:be:9f:b8:5b:f6:d9:5d:8e:ba:d6:0b:78:b1:88:1f:d3:23:a3:74:58:f9
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
Check the revocation status for certificate *.telekom.ebf.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.telekom.ebf.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.telekom.ebf.de
telekom.ebf.de
telekom.ebf.de
Other certificates including the domain name ebf.de
(limited to 100 certificates)
adfs.ebf.de
gate.ebf.de
*.ebf.de
*.telekom.ebf.de
*.ebf.de
*.emea.ebf.de
gate.ebf.de
*.telekom.ebf.de
www.ebf.com
*.claas.ebf.de
*.ebf.de
*.ebf.de
www.ebf.com
ebf.com
support.ebf.com
pi-mdm.telekom.ebf.de
support.ebf.de
*.claas.ebf.de
support.ebf.com
*.ebf.de
www.ebf.com
*.ebf.de
support.ebf.de
*.claas.ebf.de
*.training.ebf.de
www.ebf.com
mbtech-mdm.telekom.ebf.de
ebf.de
*.emea.ebf.de
adfs.ebf.de
mbtech-mdm.telekom.ebf.de
*.telekom.ebf.de
www.ebf.com
support.ebf.de
support.ebf.com
*.ebf.de
beta-sentry.ebf.de
*.ebf.de
support.ebf.de
xm-test.ebf.de
*.telekom.ebf.de
*.ebf.de
*.telekom.ebf.de
*.telekom.ebf.de
ebf.com
www.ebf.com
*.ebf.de
support.ebf.com
*.ebf.de
access-sentry.telekom.ebf.de
*.telekom.ebf.de
one.ba.telekom.ebf.de
www.ebf.com
*.claas.ebf.de
*.telekom.ebf.de
ebf.de
www.ebf.com
gate.ebf.de
*.ebf.de
*.telekom.ebf.de
*.ebf.de
*.emea.ebf.de
gate.ebf.de
*.telekom.ebf.de
www.ebf.com
*.claas.ebf.de
*.ebf.de
*.ebf.de
www.ebf.com
ebf.com
support.ebf.com
pi-mdm.telekom.ebf.de
support.ebf.de
*.claas.ebf.de
support.ebf.com
*.ebf.de
www.ebf.com
*.ebf.de
support.ebf.de
*.claas.ebf.de
*.training.ebf.de
www.ebf.com
mbtech-mdm.telekom.ebf.de
ebf.de
*.emea.ebf.de
adfs.ebf.de
mbtech-mdm.telekom.ebf.de
*.telekom.ebf.de
www.ebf.com
support.ebf.de
support.ebf.com
*.ebf.de
beta-sentry.ebf.de
*.ebf.de
support.ebf.de
xm-test.ebf.de
*.telekom.ebf.de
*.ebf.de
*.telekom.ebf.de
*.telekom.ebf.de
ebf.com
www.ebf.com
*.ebf.de
support.ebf.com
*.ebf.de
access-sentry.telekom.ebf.de
*.telekom.ebf.de
one.ba.telekom.ebf.de
www.ebf.com
*.claas.ebf.de
*.telekom.ebf.de
ebf.de
www.ebf.com
Certificate
The complete raw certificate details for *.telekom.ebf.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHMTCCBhmgAwIBAgIQCiPMvhlGbazIq6XQPjWa1TANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZHZW9UcnVzdCBUTFMgUlNBIENBIEcx MB4XDTI0MDQwNDAwMDAwMFoXDTI1MDQwMzIzNTk1OVowGzEZMBcGA1UEAwwQKi50 ZWxla29tLmViZi5kZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANaO C/oYBoxV8ekeYOglj6Wz9Rv8p1EixQ81j95n3UTpiZZwgBLtm4GR7R9HBeklYIig FtazipuzF6z4RAp4UAKFcQbxEgJpfs3cgLQqp06hrjk8hvgpLd06JeZ3cgubVY6a LhY42OG6dqFTgcIhYVHVf3AgR4Zf6fp4Jsy+5dtasX1UIj4Z6TGjm1o+iG33rO1I D8EwbXWr1xSZSjjYNyEsq1bQpnPRO0LQlTjuGhBeGoOXTONorHlxWI2LIvZr9h4W W2ywKJ1ACDS6bDWFQnp/okxsjVPojFrprEFWp/7nPAblNs1DVcYIIoJtQ0Z2SfCo Zq+eYnakKuZNiUqAlXLCc34TPMWHaCXjUGzvUL+IZnP7CSeSjPtfDyX8CUK9skbQ t1xJvS2dHzAg+6FvFfHm+sWvXRSujvH1PufHde6oglDK/dnvACYcoqNxIj3Ao7cJ GX6SCp0MmOTim8mHSnB4fID2ASV00KlMWvN3gdfdDrpb8vV+M/CPrlvyWgiAKu01 x6TREU5126H/JiKvuqhFDL5XGu9BlDlQGs1BhhASy0i42u8QgRvi58BAjRI2NZlm fQESXTTm0b77agHNK1gSpTkrqxjdd6HavU8TqceBgWTLpFNP8ZDxr96p2RU36SVV 2PRSGZdGNhqETXlWRT1EDTzPUnwRRGJ0gGdXW1gZAgMBAAGjggMqMIIDJjAfBgNV HSMEGDAWgBSUT9Rdi+Sk4qaA/v3Y+QDvo74CVzAdBgNVHQ4EFgQUenOWT9300AYm uxFEAaE8mBgX8eswKwYDVR0RBCQwIoIQKi50ZWxla29tLmViZi5kZYIOdGVsZWtv bS5lYmYuZGUwPgYDVR0gBDcwNTAzBgZngQwBAgEwKTAnBggrBgEFBQcCARYbaHR0 cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDov L2NkcC5nZW90cnVzdC5jb20vR2VvVHJ1c3RUTFNSU0FDQUcxLmNybDB2BggrBgEF BQcBAQRqMGgwJgYIKwYBBQUHMAGGGmh0dHA6Ly9zdGF0dXMuZ2VvdHJ1c3QuY29t MD4GCCsGAQUFBzAChjJodHRwOi8vY2FjZXJ0cy5nZW90cnVzdC5jb20vR2VvVHJ1 c3RUTFNSU0FDQUcxLmNydDAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSC AW8EggFrAWkAdgBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAY6p iuySAAAEAwBHMEUCIQCB6Auy/Js5RL2OL2xB0Cz9vlz54oQ3sl43hm7L7cg8RQIg MsXiJr1/qKU0G7DnWUirdqYva9Dn03nb4G+6XJiucuoAdgB9WR4S4XgqexxhZ3xe /fjQh1wUoE6VnrkDL9kOjC55uAAAAY6piuyUAAAEAwBHMEUCIAQGJ2M9ivilGQ3M W6A33tlVurXQ68OaR9177DsVPTEVAiEA5VreFQs71d4kQrS53i65pg5rwYwKOwM2 s92CGAv4fC4AdwDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAY6p iuypAAAEAwBIMEYCIQD4/yjjBmDzhmnvNvZBTvEL0fenzgP0LvFiUWk9sOd2ywIh AMQoCSHzBKmThbF8FfSVuvWzHhirxiKnYJ5HRJN/aBw/MA0GCSqGSIb3DQEBCwUA A4IBAQCWh4UGnt7lLGSvsXhhSMmAePidSpEZXsscdDe8OfYUe9YJbu9n7OO1fIdK ZELA4yMB4IZNs6Jp58QQkLcEb+AJLf3IMFaIsfZXT3XEvxpXVj14Jp1cdnzVRDWc 1GIt/ftMSMLRZS0n9VJQwHYwnzP04lDNbt6vynjtOem28taH0eBdVprFBpoO5CKH Qkf8kl8hwN7Eveko3te/NoJ1dRSiUdSkybaMvAFv+iUuUJComJmy8kMHeP7OryKP v6vd8u94UepO2KFJHSKeSPMQ1JO6N708gugtUY1Ltebg9M2m/1fnz24Rb+5z8cCI u1wHbEXoWQT/eLAxQGBT5z4nZhIo -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1o4L+hgGjFXx6R5g6CWP pbP1G/ynUSLFDzWP3mfdROmJlnCAEu2bgZHtH0cF6SVgiKAW1rOKm7MXrPhECnhQ AoVxBvESAml+zdyAtCqnTqGuOTyG+Ckt3Tol5ndyC5tVjpouFjjY4bp2oVOBwiFh UdV/cCBHhl/p+ngmzL7l21qxfVQiPhnpMaObWj6Ibfes7UgPwTBtdavXFJlKONg3 ISyrVtCmc9E7QtCVOO4aEF4ag5dM42iseXFYjYsi9mv2HhZbbLAonUAINLpsNYVC en+iTGyNU+iMWumsQVan/uc8BuU2zUNVxggigm1DRnZJ8Khmr55idqQq5k2JSoCV csJzfhM8xYdoJeNQbO9Qv4hmc/sJJ5KM+18PJfwJQr2yRtC3XEm9LZ0fMCD7oW8V 8eb6xa9dFK6O8fU+58d17qiCUMr92e8AJhyio3EiPcCjtwkZfpIKnQyY5OKbyYdK cHh8gPYBJXTQqUxa83eB190Oulvy9X4z8I+uW/JaCIAq7TXHpNERTnXbof8mIq+6 qEUMvlca70GUOVAazUGGEBLLSLja7xCBG+LnwECNEjY1mWZ9ARJdNObRvvtqAc0r WBKlOSurGN13odq9TxOpx4GBZMukU0/xkPGv3qnZFTfpJVXY9FIZl0Y2GoRNeVZF PUQNPM9SfBFEYnSAZ1dbWBkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13478163020630168325180363559077780181 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.telekom.ebf.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 875307503694253167011034402693777379808463197489623176042111744553252375516018404373204157295094858331675418645586247792046082998452900206807565084688500980832661757929252163092493340998182754195981807458774727374780253145995028480170733126107785106601733711705699282379116074967645850463291369014363159828166132410545027337840698995898010271181677279657435624379671292205832838865480863642532157923345644715505155590619454561428231130400935900464777197550837529546934190283374202529221202897518046718330438983230767682240641456868806714587027506875333617249158874160704152059849472443818457313308213762936945111834801546370737718326853904857419478903890680479272418380248148133745974699275989659101768123298491307077523682793590463930350174522972344556341065469470825212420776760455036445821730428980637888442191685945553820742979200196695222357010314804662070084581521163335507443084504118106290158169115418991648563535378340925912339402366973092620657572922039049847955531881542365287692052188888064861862632802720009642202119758703722789803390344813849080786456292922573203475378671111475614946653108348366437243295919051069775753966230947856407307897191033172411616947281503576509122133387544418331544443932578176621225237501977 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 944fd45d8be4a4e2a680fefdd8f900efa3be0257 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7a73964fddf4d00626bb114401a13c981817f1eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.telekom.ebf.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'telekom.ebf.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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