1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
|
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18008675309 (0x4316693ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Mother Nature, OU=Everything, CN=Name constraint
Validity
Not Before: Dec 1 06:07:08 2016 GMT
Not After : Oct 21 18:25:03 2036 GMT
Subject: CN=gov.us, OU=Chaos, O=Extreme Discord/street=3210 Holly Mill Run, L=Tallahassee, ST=FL/postalCode=30062, C=US/serialNumber=1234567890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:ca:12:35:cf:eb:c3:5a:28:a7:3d:b7:7f:2e:32:
0c:c9:72:dd:13:33:a5:2f:c0:48:07:ef:db:13:d9:
87:1f:56:c4:b2:1a:55:73:a6:61:c9:b9:c7:91:4a:
16:23:b2:f2:8a:c0:19:56:ce:79:93:d0:5a:0d:89:
b0:f4:4b:99:44:95:78:43:94:ea:2a:88:80:38:f4:
71:53:6b:58:aa:fd:b5:0b:7f:cb:9c:cd:4c:66:06:
c8:95:53:6f:47:09:0c:07:71:78:da:0c:71:e7:fe:
88:f1:14:5c:4c:4e:de:e4:04:97:1a:59:76:31:48:
bc:d7:48:03:47:74:5f:5e:4d:18:da:75:77:4e:17:
f4:f8:93:79:c6:33:bf:7b:3d:64:7c:3f:bd:81:47:
b5:76:14:24:b2:03:0d:c1:c2:31:f2:73:15:13:71:
3e:94:2c:6f:13:e2:89:fd:c8:41:9c:45:8d:da:1f:
cb:6c:47:90:cc:5a:9e:bd:67:57:29:7e:1c:b9:f4:
00:98:d3:32:a8:eb:5f:7d:c3:0c:41:f4:31:d4:c4:
3f:bd:96:79:0b:b5:33:40:0f:d8:9a:dc:8c:a1:d4:
b1:51:2c:c6:3e:a8:2b:e7:0e:1f:1d:22:0d:38:4a:
c0:4f:5e:c1:63:b9:05:5b:26:39:42:52:ed:32:ca:
11:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment, Certificate Sign
X509v3 Extended Key Usage:
TLS Web Client Authentication, TLS Web Server Authentication
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Authority Key Identifier:
keyid:01:02:03
Authority Information Access:
OCSP - URI:http://theca.net/ocsp
CA Issuers - URI:http://theca.net/totallythecert.crt
X509v3 Subject Alternative Name:
DNS:www.example.com
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.36305.2
Policy: 1.2.3.4.5
X509v3 Name Constraints:
Permitted:
email:good_email@gg.com
email:LulMail
DNS:permitted.com
DirName: C = US, O = UIUC, OU = ECE, L = Champaign, ST = IL, street = 601 Wright St, postalCode = 61820, CN = uiuc.net
IP:74.125.224.72/255.255.0.0
Excluded:
email:bad_email@gg.com
email:LulMail
DNS:banned.com
DirName: C = US, O = Umich, OU = CS, L = Ann Arbor, ST = MI, street = 500 State St, postalCode = 48109, CN = umich.net
IP:192.168.1.1/255.255.0.0
Signature Algorithm: sha256WithRSAEncryption
7f:4f:7d:70:ac:c3:48:06:a1:cd:11:9d:ce:8b:bd:97:86:80:
f7:f8:5a:d3:98:28:cc:0d:38:36:a8:80:89:62:6e:56:db:f0:
c8:97:44:69:69:cb:25:d4:61:ef:a0:30:b6:82:7e:28:a6:07:
7e:30:49:9e:8b:73:c6:c7:3c:ca:ab:a8:34:c2:c8:93:f0:12:
c8:13:92:6c:e9:2d:8c:b8:77:33:71:a8:68:f6:cb:bb:bb:7c:
bf:69:02:16:2d:d5:c1:25:62:3c:4c:30:8f:38:80:46:77:26:
b2:30:45:37:24:ac:80:92:f3:d9:51:66:ec:b5:87:4f:a1:06:
3a:25:e0:92:6c:95:12:8b:a4:b7:1b:74:3a:be:c2:3c:0d:d9:
c8:7f:0f:9b:c7:1f:1a:56:d5:da:f9:7f:26:0a:3a:82:92:09:
19:9e:dc:ec:39:3a:01:09:4b:06:c3:db:52:45:4e:61:e8:97:
0e:9a:a7:89:aa:c2:1e:a9:3d:95:ec:27:72:35:3a:1f:88:0a:
c1:a0:3f:c7:f0:bf:fa:9c:41:ce:25:a5:1a:e5:2d:15:92:7e:
e7:46:f7:f4:96:a5:05:26:ef:a9:3f:e2:1b:a9:7a:f6:08:3e:
09:2e:6b:c3:e5:8c:16:20:97:7d:b7:97:f1:4b:ff:49:b9:70:
f4:15:6e:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
|
