*.truecarcorp.com
- TrueCar, Inc. -
Issued by thawte SSL CA - G2
About this certificate
This digital certificate with serial number 33:44:05:07:93:3e:f2:83:7d:f2:cf:92:7b:03:da:d4 was issued on by thawte, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
TrueCar, Inc.
Organization:
TrueCar, Inc.
Organization unit: Production Engineering
Organization unit: Production Engineering
State / Province:
California
Locality: Santa Monica
Country: US
Locality: Santa Monica
Country: US
thawte, Inc.
Organization:
thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 33:44:05:07:93:3e:f2:83:7d:f2:cf:92:7b:03:da:d4Serial Number (int): 68143805983626628737878421364357192404
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60
Fingerprint (sha1): 1d:88:a5:e4:28:9d:2d:cc:d8:b0:dd:8a:d4:73:86:a0:4a:a7:99:71
Fingerprint (sha256): f8:3a:60:07:ea:34:46:cd:c8:3a:b6:0a:82:f4:5e:03:32:5b:ca:e9:06:ce:9a:42:fe:58:9c:8f:1f:77:d9:de
Issuing Certificate URL: http://tj.symcb.com/tj.crt
Revocation information
OCSP Server: http://tj.symcd.comCRL Distribution Point: http://tj.symcb.com/tj.crl
Check the revocation status for certificate *.truecarcorp.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.truecarcorp.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.truecarcorp.com
truecarcorp.com
truecarcorp.com
Other certificates including the domain name truecarcorp.com
(limited to 100 certificates)
*.truecarcorp.com
vpn.chi.truecarcorp.com
*.corp.tc
vpn.west.truecarcorp.com
*.truecarcorp.com
ise.corp.truecarcorp.com
*.corp.tc
ise.corp.truecarcorp.com
*.corp.tc
*.truecarcorp.com
vpn.lax.truecarcorp.com
vpn2.lax.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
*.corp.tc
vpn.lax.truecarcorp.com
vpn.lax.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
vpn.lax.truecarcorp.com
vpn.lax.truecarcorp.com
vpn.chi.truecarcorp.com
vpn.lax.truecarcorp.com
*.truecarcorp.com
*.corp.tc
*.truecarcorp.com
*.truecarcorp.com
vpn.chi.truecarcorp.com
*.corp.tc
vpn.west.truecarcorp.com
*.truecarcorp.com
ise.corp.truecarcorp.com
*.corp.tc
ise.corp.truecarcorp.com
*.corp.tc
*.truecarcorp.com
vpn.lax.truecarcorp.com
vpn2.lax.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
*.corp.tc
vpn.lax.truecarcorp.com
vpn.lax.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
vpn.lax.truecarcorp.com
vpn.lax.truecarcorp.com
vpn.chi.truecarcorp.com
vpn.lax.truecarcorp.com
*.truecarcorp.com
*.corp.tc
*.truecarcorp.com
*.truecarcorp.com
Certificate
The complete raw certificate details for *.truecarcorp.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYDCCBUigAwIBAgIQM0QFB5M+8oN98s+SewPa1DANBgkqhkiG9w0BAQsFADBB MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMRswGQYDVQQDExJ0 aGF3dGUgU1NMIENBIC0gRzIwHhcNMTYwMjIyMDAwMDAwWhcNMTgwMzIzMjM1OTU5 WjCBjjELMAkGA1UEBhMCVVMxEzARBgNVBAgMCkNhbGlmb3JuaWExFTATBgNVBAcM DFNhbnRhIE1vbmljYTEWMBQGA1UECgwNVHJ1ZUNhciwgSW5jLjEfMB0GA1UECwwW UHJvZHVjdGlvbiBFbmdpbmVlcmluZzEaMBgGA1UEAwwRKi50cnVlY2FyY29ycC5j b20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMYwrWZXfBm2hAColt Q7xvRivdjjtYVeqYBQgFwv1Q2VJ2433DA+wF7zykMUcEVEgPQPrVjDe+bfR9cANo mrmvTgz/7LeR6RcyBY6arArjr4u2T9ZdoYjdsO+cdIRFTlYdeGY6X+DC10Hjvfw0 lUbhlW142zqzSRhVXcx9ofyAhQCF8v/7wlUoM+1AbWV3IXZ1swI+MLy3QQtIQQHW 7xB2R0mBLSXbV9qk4ObzlunwoJC6t94uPb38o1RZgzABm2l05fkmb7vm4ATiZ1JS 1b4LJNkB2jXCs6RMVnPaj+Wb3MJLYTjm1tnkn1Ec2owRcRglf0CNQRLcme7B4ZMb yMcBAgMBAAGjggMEMIIDADAtBgNVHREEJjAkghEqLnRydWVjYXJjb3JwLmNvbYIP dHJ1ZWNhcmNvcnAuY29tMAkGA1UdEwQCMAAwbgYDVR0gBGcwZTBjBgZngQwBAgIw WTAmBggrBgEFBQcCARYaaHR0cHM6Ly93d3cudGhhd3RlLmNvbS9jcHMwLwYIKwYB BQUHAgIwIwwhaHR0cHM6Ly93d3cudGhhd3RlLmNvbS9yZXBvc2l0b3J5MA4GA1Ud DwEB/wQEAwIFoDAfBgNVHSMEGDAWgBTCT0hX/NFPmsBdOH0OBdvZLrVSYDArBgNV HR8EJDAiMCCgHqAchhpodHRwOi8vdGouc3ltY2IuY29tL3RqLmNybDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwVwYIKwYBBQUHAQEESzBJMB8GCCsGAQUF BzABhhNodHRwOi8vdGouc3ltY2QuY29tMCYGCCsGAQUFBzAChhpodHRwOi8vdGou c3ltY2IuY29tL3RqLmNydDCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFmAHYA3esd K3oNT6Ygi4GtgWhwfi6OnQHVXIiNPRHEzbbsvswAAAFTCugu/gAABAMARzBFAiB0 ObrlJRlxbpga+EHaIQO5t6AoPjKqeCG1ykyhNJ9liAIhAIGgqNP9HXp6Be1KKxh9 3RS6m0sEJpHHYUgBChlo6Gt4AHUApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fN DsgN3BAAAAFTCugvGwAABAMARjBEAiBpCalf7ZiiPLgKtEIr7GiJol3UcHxj24/P MDBcNzqWYAIgMg2yQ4PPw0kIFQtyPFLY+JrfJDikQv4cfdol6K0zXj8AdQBo9pj4 H2SCvjqM7rkoHUz8cVFdZ5PURNEKZ6y7T0/7xAAAAVMK6C82AAAEAwBGMEQCIAad M+uBVhfwUDhV4wLArZwNBON8mrarp6ON7Hw1IlK3AiBacBvDrw+9Ykms3eEstH6E i0m27D5tlXz97n1TXlkB7DANBgkqhkiG9w0BAQsFAAOCAQEAE5lf5jJ12Rtw1isR OUEpFzb1m4nc8k7ooQpWRERqGHbaDbHMV8pBBDOww13ffeMIFOr4QUOqm8JmhzoH lTNICu4NyRRYGDYrpWH1/8yV8o5DYCjeULSbEAatfmdkcTZyUpAFpnp3JeUbuwM+ cjEspDjJgOcG8UUGRgr007EY2T/IG9ZHWCCuuCR8aOS1goKoAlxFcrEfnLEJ85OC i2Xx5+lfkTbFFt7+kAdKqlKK0iKX9VntMfT88iXkwMnQJlhs1a+HCGlgOdT0uIax rT3tnlCh9swDSD/q9Y0CxT02De8E8DOait3yX8G6HRh5OAX7giqzmWp3MnVFPYgf 4kw+4Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzGMK1mV3wZtoQAqJbUO8 b0Yr3Y47WFXqmAUIBcL9UNlSduN9wwPsBe88pDFHBFRID0D61Yw3vm30fXADaJq5 r04M/+y3kekXMgWOmqwK46+Ltk/WXaGI3bDvnHSERU5WHXhmOl/gwtdB4738NJVG 4ZVteNs6s0kYVV3MfaH8gIUAhfL/+8JVKDPtQG1ldyF2dbMCPjC8t0ELSEEB1u8Q dkdJgS0l21fapODm85bp8KCQurfeLj29/KNUWYMwAZtpdOX5Jm+75uAE4mdSUtW+ CyTZAdo1wrOkTFZz2o/lm9zCS2E45tbZ5J9RHNqMEXEYJX9AjUES3JnuweGTG8jH AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 68143805983626628737878421364357192404 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-02-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-23 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Santa Monica' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'TrueCar, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Production Engineering' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.truecarcorp.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25801453808212894537021579025718725962577563335126394982421948371735155462815549694958036257580413965579406210345540230076452544813283882446801624848173553821787879378907205904293820822912299370264498470021898456850837050191569684384011769229344835206421085367398486634602233814166106158688588972030984692319151489072860521903515952089602385905503561816560344668129785828864107571595429413031981609028896449157921365628511811613780903895573002065375872027962601662250733756660793478949162089907798384892557462647781244991274555469937114720431289138572041472862485971377281453634822236024452713852673517291436407047937 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.truecarcorp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'truecarcorp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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