www.ebf.com
Issued by GeoTrust TLS RSA CA G1
About this certificate
This digital certificate with serial number 04:35:fe:cf:ff:1b:e6:a9:04:34:cd:9c:5f:11:9f:af was issued on by DigiCert Inc.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.ebf.com
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:35:fe:cf:ff:1b:e6:a9:04:34:cd:9c:5f:11:9f:afSerial Number (int): 5597271927863385096599398146278268847
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 16:83:da:14:08:8d:93:8e:91:9a:51:a0:f5:c7:f8:b3:a9:27:37:24
AuthorityKeyId: 94:4f:d4:5d:8b:e4:a4:e2:a6:80:fe:fd:d8:f9:00:ef:a3:be:02:57
Fingerprint (sha1): 5b:9b:5a:49:15:cb:67:fb:0c:67:6e:8b:41:5e:3b:fc:23:f8:aa:f1
Fingerprint (sha256): fc:dd:14:92:db:c8:3f:67:56:2e:14:28:d8:a4:ff:44:96:4d:cf:e4:10:d6:e2:ad:30:dc:f1:77:54:2b:b0:c5
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
Check the revocation status for certificate www.ebf.com
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ebf.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.ebf.com
www.ebf.de
www.ebf.us
ebf.com
ebf.de
ebf.us
www.ebf.de
www.ebf.us
ebf.com
ebf.de
ebf.us
Other certificates including the domain name ebf.com
(limited to 100 certificates)
*.ebf.com
support.ebf.com
adfs.cloud.ebf.com
emm-cloud-sentry.ebf.com
emm-cloud-sentry.ebf.com
www.ebf.com
adfs.cloud.ebf.com
www.ebf.com
ebf.com
support.ebf.com
*.test4.ebf.com
m.ebf.com
support.ebf.com
*.vodafone.ebf.com
www.ebf.com
*.cdn.ebf.com
www.ebf.com
zm.ebf.com
*.unite-staging.ebf.com
*.unite-staging.ebf.com
www.ebf.com
support.ebf.com
www.partner.ebf.com
ebf.com
www.ebf.com
support.ebf.com
*.vodafone.ebf.com
www.ebf.com
www.ebf.com
support.ebf.com
adfs.cloud.ebf.com
emm-cloud-sentry.ebf.com
emm-cloud-sentry.ebf.com
www.ebf.com
adfs.cloud.ebf.com
www.ebf.com
ebf.com
support.ebf.com
*.test4.ebf.com
m.ebf.com
support.ebf.com
*.vodafone.ebf.com
www.ebf.com
*.cdn.ebf.com
www.ebf.com
zm.ebf.com
*.unite-staging.ebf.com
*.unite-staging.ebf.com
www.ebf.com
support.ebf.com
www.partner.ebf.com
ebf.com
www.ebf.com
support.ebf.com
*.vodafone.ebf.com
www.ebf.com
www.ebf.com
Certificate
The complete raw certificate details for www.ebf.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHSTCCBjGgAwIBAgIQBDX+z/8b5qkENM2cXxGfrzANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZHZW9UcnVzdCBUTFMgUlNBIENBIEcx MB4XDTI0MDEzMDAwMDAwMFoXDTI1MDEyOTIzNTk1OVowFjEUMBIGA1UEAxMLd3d3 LmViZi5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDLMtWlMZ82 AmBX2eq43XtJzH5TFlJ1TCVJo15+cb8rZ5InsVDE9/dQUjvooqlruHmn5xbwT/0N 0P6Jpgm/ttp0p8q0xjt2+9EDb6xatSM53QiNaxVB3HSvk/F7JSZa/f5gu5fE6nDc WWXr9/yrsFPmnQSUyinIBGOZbnh3abDfOA6JvH3jSdzfROaHEkzXJV5Qp9ZLV86l or97dcuU0qzoZ+EUIWyzds7asnJNOIcNBUPz8B5DDE/fBzRgBC73GyXEQSsVglzz iMK8wudZT4+9gWANtKK9oFWs9usV5lanvpHgx2ZwcLX5BUkyzKDFEtB+M/aNthwd U7AVO4RUYyuyMOK9JHUzF6M5VM96tKyg0tXUBonEgM8kLmNwPg4QDXGI5V4YSTFS avEYzXYMA2ekCzFPWDostKBZ7Y5gwPsG0b/cMdVHrS+LfIvOXtopIhlRhBX9JMAa s3qwteijN+74jCNMgJyRSIh0iQ/wDVNbvu5dQibW2W+Hma4qCf5V8L2+6EZ1QJim T0+5r0tNx4dp3mZXMDgX2srCfILTI++cLiTGyXrjQX6RT1lBiQ2bFY/e6PYUwtb4 2JEfqeFkmc2YavwAphlc4JtukgNkgmZz0oTzRGnq6zezy3LzLAvvvqE5oHuU0Cvk Kcoc3c3t3y72CTc1rRioqIJrIGdvo0ulMQIDAQABo4IDRzCCA0MwHwYDVR0jBBgw FoAUlE/UXYvkpOKmgP792PkA76O+AlcwHQYDVR0OBBYEFBaD2hQIjZOOkZpRoPXH +LOpJzckMEcGA1UdEQRAMD6CC3d3dy5lYmYuY29tggp3d3cuZWJmLmRlggp3d3cu ZWJmLnVzggdlYmYuY29tggZlYmYuZGWCBmViZi51czA+BgNVHSAENzA1MDMGBmeB DAECATApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA/ BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vY2RwLmdlb3RydXN0LmNvbS9HZW9UcnVz dFRMU1JTQUNBRzEuY3JsMHYGCCsGAQUFBwEBBGowaDAmBggrBgEFBQcwAYYaaHR0 cDovL3N0YXR1cy5nZW90cnVzdC5jb20wPgYIKwYBBQUHMAKGMmh0dHA6Ly9jYWNl cnRzLmdlb3RydXN0LmNvbS9HZW9UcnVzdFRMU1JTQUNBRzEuY3J0MAwGA1UdEwEB /wQCMAAwggGABgorBgEEAdZ5AgQCBIIBcASCAWwBagB3AE51oydcmhDDOFts1N8/ Uusd8OCOG41pwLH6ZLFimjnfAAABjVnJTuwAAAQDAEgwRgIhANapyN33FBjIxaHg xofaDpzS5owYBFqkXiOJ5ubdDfN3AiEA9iPg8f2kBymq64ECkiB9K93tf5GbNvH7 MUGhQ8lteqYAdwB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAY1Z yU7IAAAEAwBIMEYCIQDu3uPPckgc2GitR4J31lpzOW1hGOmTWy7ApvdS2d8OLwIh ALhRYRekT44NuZDj3ZE/9zltdLTglZd1wC4bsceyCybKAHYA5tIxY0B3jMEQQQbX cbnOwdJA9paEhvu6hzId/R43jlAAAAGNWclO8AAABAMARzBFAiEAjkpnTrcjVPXW C5GqhAzAOLrc+26ZHHBGF+l1iPYqrakCIHaGanq9sABQN97JIiYycVg2YDfdwNC9 6EJA0rPpS7TvMA0GCSqGSIb3DQEBCwUAA4IBAQBOVcxgucTfRY3d/psYQOFur9rZ Vfrvuupf3n8QbePEEKeVYxPgyBPtdu0VRhvWQMtk6oMaSlpHZl/mUO9yDsg9k/U5 bFtkeSTaFXCB+41t6p5kXmHVvg5G/PrJkUrYNzL0mVs9wN0oBWfao/0KbeO1eAOm tpWUGFO4UZ+ibpV3OgoEJ3gPbw+mwbgn1ucJDszKsgua8jNBCsFONFwOuGXpPdZC +ViAE5zzuVK61PMyTzPZQn2utvz/yjHWO2rFfGAxzHcwnJ6InWyHd9CHsxdyFYG2 6caZ3cuuHuomEkH1fvzhxMw7yrRjGRLkW+I9sRcjiPhdcLKockSynNq52yv7 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyzLVpTGfNgJgV9nquN17 Scx+UxZSdUwlSaNefnG/K2eSJ7FQxPf3UFI76KKpa7h5p+cW8E/9DdD+iaYJv7ba dKfKtMY7dvvRA2+sWrUjOd0IjWsVQdx0r5PxeyUmWv3+YLuXxOpw3Fll6/f8q7BT 5p0ElMopyARjmW54d2mw3zgOibx940nc30TmhxJM1yVeUKfWS1fOpaK/e3XLlNKs 6GfhFCFss3bO2rJyTTiHDQVD8/AeQwxP3wc0YAQu9xslxEErFYJc84jCvMLnWU+P vYFgDbSivaBVrPbrFeZWp76R4MdmcHC1+QVJMsygxRLQfjP2jbYcHVOwFTuEVGMr sjDivSR1MxejOVTPerSsoNLV1AaJxIDPJC5jcD4OEA1xiOVeGEkxUmrxGM12DANn pAsxT1g6LLSgWe2OYMD7BtG/3DHVR60vi3yLzl7aKSIZUYQV/STAGrN6sLXoozfu +IwjTICckUiIdIkP8A1TW77uXUIm1tlvh5muKgn+VfC9vuhGdUCYpk9Pua9LTceH ad5mVzA4F9rKwnyC0yPvnC4kxsl640F+kU9ZQYkNmxWP3uj2FMLW+NiRH6nhZJnN mGr8AKYZXOCbbpIDZIJmc9KE80Rp6us3s8ty8ywL776hOaB7lNAr5CnKHN3N7d8u 9gk3Na0YqKiCayBnb6NLpTECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5597271927863385096599398146278268847 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust TLS RSA CA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-29 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ebf.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 828977850800825984736375771101931487588004880401175903007206442058456306057672229904421660952221258217318122533647185528152330873473406598111105154676467644014854827964757042793914981650234606362270558883031772424346168526855660410950232132336675628517046940871586440527582562063222568464607486323612728505122559878852356394741275888096105884433858669175824831088222249447780577265225308236930592485185212133495366774091175227828118052204235276685181540634031247701496289870039994077404030105915468012144903158157409094008758143680041111395817745680394062641889257211995643603305341581715589233512087508903404486667296619934768731567566754866899137766598317947887762907776929355265711332258102846234936650220237403585456765499575281673061932772515928388814367565382889112948618830579244315768567055214035347678010406896292742332399610795099250396560410864009374631316359325920771015060009677606098474789205542498638784039209527077235645641936466361098253314552524997906275316738123424638963239257876632852608593358289938719863651635134837677440426707916614340409218608840136256793714688999506294750790618101991253281430099360899175470777396495182705087307927842513472675895691204900927443095108939263334939167568848685178601096324401 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 944fd45d8be4a4e2a680fefdd8f900efa3be0257 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1683da14088d938e919a51a0f5c7f8b3a9273724 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (64 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ebf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ebf.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ebf.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ebf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ebf.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ebf.us' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 016a0077004e75a3275c9a10c3385b6cd4df3f52eb1df0e08e1b8d69c0b1fa64b1629a39df0000018d59c94eec0000040300483046022100d6a9c8ddf71418c8c5a1e0c687da0e9cd2e68c18045aa45e2389e6e6dd0df377022100f623e0f1fda40729aaeb810292207d2bdded7f919b36f1fb3141a143c96d7aa60077007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b80000018d59c94ec80000040300483046022100eedee3cf72481cd868ad478277d65a73396d6118e9935b2ec0a6f752d9df0e2f022100b8516117a44f8e0db990e3dd913ff7396d74b4e0959775c02e1bb1c7b20b26ca007600e6d2316340778cc1104106d771b9cec1d240f6968486fbba87321dfd1e378e500000018d59c94ef000000403004730450221008e4a674eb72354f5d60b91aa840cc038badcfb6e991c704617e97588f62aada9022076866a7abdb0005037dec92226327158366037ddc0d0bde84240d2b3e94bb4ef . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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