Category Archives: Crypto

Sorting out Digital Certificates – Dec 2012 Boston Azure Meeting

Resolving “certificate for the given thumbprint could not be loaded” error with Azure Tools for Visual Studio

Recently I encountered a strange error when attempting some storage-related activities using Windows Azure Tools within Visual Studio 2012. When either adding a new storage account or changing Connection String settings I was met with:

The certificate for the given thumbprint could not be loaded from the Current User/Personal certificate store. Please install the certificate.

While I was able to resolve the error, I cannot reproduce it (and gave up trying), but if you face the same problem, hopefully this will help you.

Background

If Visual Studio was looking for a certificate, where was it looking? It turns out that the Windows Azure Tools for Visual Studio store some certificate related references in a file called Windows Azure Connections.xml in your personal settings area on Windows. This file is created on your behalf once you’ve created any Publish Profiles by Publishing Cloud Services to Windows Azure from Visual Studio.

The file lives here:

%UserProfile%\Documents\Visual Studio 2012\Settings\Windows Azure Connections.xml

On my Windows 8 development machine, this is:

C:\Users\billdev\My Documents\Visual Studio 2012\Settings\Windows Azure Connections.xml

The file contains the credentials you’d previously supplied during publishing and will look something like the following:

<?xml version=”1.0″?>
<NamedCredentials xmlns:xsi=”http://www.w3.org/2001/XMLSchema-instance” xmlns:xsd=”http://www.w3.org/2001/XMLSchema”>
<Items>
<NamedCredential>
<SubscriptionId>12345678-abcd-ae10-abba-01812e1e1000</SubscriptionId>
<IsImported>false</IsImported>
<ServiceEndpoint>https://management.core.windows.net/</ServiceEndpoint>
<CertificateThumbprint>A123B123C12333EC954471ED75C37D59003681F7</CertificateThumbprint>
<Name>Page of Photos</Name>
</NamedCredential>
</Items>
<LastUsedName>Page of Photos</LastUsedName>
</NamedCredentials>

Note that the NamedCredential XML element item may be repeated.

Problem

The problem turns out to be that one of the certificates referenced (identified by thumbprint via CertificateThumbprint XML element) either it is not installed properly locally, or not installed in the associated Windows Azure Subscription (identified by SubscriptionId XML element).

Solution

For each certificate referenced by a CertificateThumbprint element (there could be more than one, unlike the simple example shown above):

Make sure the certificate is installed in your Local Certificate store and contains a Private Key – which usually can be found in the Personal (or “My”) store name under the Current User certificates by using the Certificates Snap-in with Microsoft Management Console. (You can also use certmgr.exe or write your own code to dump certificate info). (If the certificate exists in your local certificate store then it is probably fine. It is not likely it is missing a Private Key. But it is possible.)
Make sure the certificate has been uploaded to the Windows Azure Portal for the SubscriptionId referenced within Windows Azure Connections.xml.

That’s it. Should work. Worst case you can delete each element of your Windows Azure Connections.xml profile and start over.

Specific Scenarios

These are the two specific scenarios where I saw the problem in case you are interested.

Scenario #1

This scenario failed whether or not a project was open.

Open the Server Explorer window in Visual Studio
Right-click on Windows Azure Storage, choose “Add New Storage Account…“, and the error dialog appears:
“The certificate for the given thumbprint could not be loaded from the Current User/Personal certificate store. Please install the certificate.”
This message is extra confusing since I don’t think there ought to be any certificates involved here. And no project/solution is open.

Scenario #2.

This scenario requires an open Azure project.

Open the UI tool for editing Azure configuration by opening your Cloud Project in Solution Explorer, drilling into Roles, and double-clicking on a Web Role or Worker Role project. The Role configuration editor window opens in Visual Studio.
Choose Settings, then Add Setting (which creates Setting1 of Type=String), change Setting1‘s Type to Connection String, and the click the “…” button at far right (to pop up the connection string edit window), and an error dialog appears:
“The certificate for the given thumbprint could not be loaded from the Current User/Personal certificate store. Please install the certificate.”

Here are the screen shots for the two error dialogs (slightly different).

Iterate through all certificates in the Certificate Store on Windows Azure

8 Replies

Pretty simple generic C# code to iterate through all certificates in the Windows Certificate Store and dump some metadata about each to standard output. Note that it really gets ALL certificates and doesn’t hard-code any stores or locations.

	// Iterates through all of the X.509 digital certificates installed in the certificate store
	// on a Windows operating system, dumping out some metadata about each. Each certificate, in
	// each Certificate Store, from each Certificate Location is included.
	//
	// Bill Wilder \| @codingoutloud \| Oct 2012
	// Original: https://gist.github.com/4005661

	using System;
	using System.Linq;
	using System.Security.Cryptography.X509Certificates;

	namespace DumpAllWindowsCerts
	{
	class Program
	{
	static void Main(string[] args)
	{
	foreach (var sl in Enum.GetValues(typeof (StoreLocation)))
	{
	Console.WriteLine(String.Format("Store Location: {0}", sl));
	foreach (var sn in Enum.GetValues(typeof (StoreName)))
	{
	var store = new X509Store((StoreName) sn, (StoreLocation) sl);
	store.Open(OpenFlags.ReadOnly);

	Console.WriteLine(String.Format(" Store Location/Store Name: {0}/{1}",
	store.Location, store.Name));
	foreach (X509Certificate2 c in store.Certificates)
	{
	Console.WriteLine(String.Format("{0} {1}/{2} {0}",
	new string('-', 15), store.Location, store.Name));
	if (!true)
	{
	var stop = true;
	}
	Console.WriteLine("{0}" +
	"\tCertificate Subject Name: {1}" +
	"\n\t Has private key? {2} Is archived? {3}" +
	"\n\t X.509 version: {4}" +
	"\n\t Key algorithm: {5} Signature algorithm: {6}" +
	"\n\t Issuer: {7}" +
	"\n\t {8} extensions",
	String.IsNullOrEmpty(c.FriendlyName)
	? "" : String.Format("\t[Store Friendly Name: {0}]\n", c.FriendlyName),
	c.SubjectName.Name,
	// FriendlyName is a store concept, not cert?
	c.HasPrivateKey, c.Archived,
	c.Version,
	c.GetKeyAlgorithm(), c.SignatureAlgorithm,
	c.IssuerName.Name,
	c.Extensions.Count);
	foreach (var ext in c.Extensions)
	{
	Console.WriteLine("\t OID = {0} {1}", ext.Oid.FriendlyName,
	ext.Critical ? "[Critical]" : "");
	}
	}
	store.Close();
	}
	}
	}
	}
	}

view raw DumpAllWindowsCerts.cs hosted with ❤ by GitHub

And just for fun, here is a dump of the certificates running on a Windows Azure Web Role (I did not install any add’l certificates on this instance):

	Store Location: CurrentUser
	Store Location/Store Name: CurrentUser/AddressBook
	Store Location/Store Name: CurrentUser/AuthRoot
	Certificate (some fields): for OU=Security Communication EV RootCA1, O="SECOM Trust Systems CO.,LTD.", C=JP - has private key False by OU=Security Communication EV RootCA1, O="SECOM Trust Systems CO.,LTD.", C=JP
	Certificate (some fields): for CN=D-TRUST Root Class 3 CA 2007, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 3 CA 2007, O=D-Trust GmbH, C=DE
	Certificate (some fields): for OU=certSIGN ROOT CA, O=certSIGN, C=RO - has private key False by OU=certSIGN ROOT CA, O=certSIGN, C=RO
	Certificate (some fields): for E=scr@registradores.org, STREET=Principe de Vergara 72 28006 Madrid, CN=Certificado de la Clave Principal, OU=Certificado Raiz, OU=Certificado Propio, O=Servicio de Certificacion del Colegio de Registradores (SCR), C=es - has private key False by E=scr@registradores.org, STREET=Principe de Vergara 72 28006 Madrid, CN=Certificado de la Clave Principal, OU=Certificado Raiz, OU=Certificado Propio, O=Servicio de Certificacion del Colegio de Registradores (SCR), C=es
	Certificate (some fields): for CN=VRK Gov. Root CA, OU=Varmennepalvelut, OU=Certification Authority Services, O=Vaestorekisterikeskus CA, S=Finland, C=FI - has private key False by CN=VRK Gov. Root CA, OU=Varmennepalvelut, OU=Certification Authority Services, O=Vaestorekisterikeskus CA, S=Finland, C=FI
	Certificate (some fields): for CN=Certeurope Root CA 2, OU=0002 434202180, O=Certeurope, C=FR - has private key False by CN=Certeurope Root CA 2, OU=0002 434202180, O=Certeurope, C=FR
	Certificate (some fields): for CN=Correo Uruguayo - Root CA, OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY - has private key False by CN=Correo Uruguayo - Root CA, OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY
	Certificate (some fields): for C=IL, O=ComSign, CN=ComSign Secured CA - has private key False by C=IL, O=ComSign, CN=ComSign Secured CA
	Certificate (some fields): for CN=AffirmTrust Commercial, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Commercial, O=AffirmTrust, C=US
	Certificate (some fields): for CN=CertRSA01, OU=ROOTCA, O=KISA, C=KR - has private key False by CN=CertRSA01, OU=ROOTCA, O=KISA, C=KR
	Certificate (some fields): for O=Government Root Certification Authority, C=TW - has private key False by O=Government Root Certification Authority, C=TW
	Certificate (some fields): for CN=Class 3TS Primary CA, O=Certplus, C=FR - has private key False by CN=Class 3TS Primary CA, O=Certplus, C=FR
	Certificate (some fields): for CN=Actalis Authentication Root CA, O=Actalis S.p.A./03358520967, L=Milan, C=IT - has private key False by CN=Actalis Authentication Root CA, O=Actalis S.p.A./03358520967, L=Milan, C=IT
	Certificate (some fields): for CN=thawte Primary Root CA - G3, OU="(c) 2008 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US - has private key False by CN=thawte Primary Root CA - G3, OU="(c) 2008 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US
	Certificate (some fields): for O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Aralik 2007, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi - has private key False by O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Aralik 2007, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=Public Notary Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU - has private key False by CN=Public Notary Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU
	Certificate (some fields): for E=pkiadmin@trustcentre.co.za, CN=SAPO Class 2 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA - has private key False by E=pkiadmin@trustcentre.co.za, CN=SAPO Class 2 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA
	Certificate (some fields): for OU=Trustis EVS Root CA, O=Trustis Limited, C=GB - has private key False by OU=Trustis EVS Root CA, O=Trustis Limited, C=GB
	Certificate (some fields): for CN=NetLock Platina (Class Platinum) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU - has private key False by CN=NetLock Platina (Class Platinum) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST (UPS) RootCA, OU=United Parcel Service, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST (UPS) RootCA, OU=United Parcel Service, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=WellsSecure Public Root Certificate Authority, OU=Wells Fargo Bank NA, O=Wells Fargo WellsSecure, C=US - has private key False by CN=WellsSecure Public Root Certificate Authority, OU=Wells Fargo Bank NA, O=Wells Fargo WellsSecure, C=US
	Certificate (some fields): for CN=Telekom-Control-Kommission Top 1, O=Telekom-Control-Kommission, C=AT - has private key False by CN=Telekom-Control-Kommission Top 1, O=Telekom-Control-Kommission, C=AT
	Certificate (some fields): for CN=GeoTrust Universal CA, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Universal CA, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=A-Trust-Qual-01, OU=A-Trust-Qual-01, O=A-Trust Ges. fr Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-Qual-01, OU=A-Trust-Qual-01, O=A-Trust Ges. fr Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 1 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network - has private key False by E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 1 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
	Certificate (some fields): for CN=D-TRUST Qualified Root CA 1 2007:PN, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Qualified Root CA 1 2007:PN, O=D-Trust GmbH, C=DE
	Certificate (some fields): for CN=NetLock Expressz (Class C) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU - has private key False by CN=NetLock Expressz (Class C) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU
	Certificate (some fields): for C=IL, O=ComSign, CN=ComSign CA - has private key False by C=IL, O=ComSign, CN=ComSign CA
	Certificate (some fields): for CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for C=ES, O=EDICOM, OU=PKI, CN=ACEDICOM Root - has private key False by C=ES, O=EDICOM, OU=PKI, CN=ACEDICOM Root
	Certificate (some fields): for E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Hongkong Post Root CA, O=Hongkong Post, C=HK - has private key False by CN=Hongkong Post Root CA, O=Hongkong Post, C=HK
	Certificate (some fields): for CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW - has private key False by CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW
	Certificate (some fields): for CN=Cisco Root CA 2048, O=Cisco Systems - has private key False by CN=Cisco Root CA 2048, O=Cisco Systems
	Certificate (some fields): for CN=QuoVadis Root Certification Authority, OU=Root Certification Authority, O=QuoVadis Limited, C=BM - has private key False by CN=QuoVadis Root Certification Authority, OU=Root Certification Authority, O=QuoVadis Limited, C=BM
	Certificate (some fields): for CN=GeoTrust Global CA, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Global CA, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=e-Guven Kok Elektronik Sertifika Hizmet Saglayicisi, O=Elektronik Bilgi Guvenligi A.S., C=TR - has private key False by CN=e-Guven Kok Elektronik Sertifika Hizmet Saglayicisi, O=Elektronik Bilgi Guvenligi A.S., C=TR
	Certificate (some fields): for E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano - has private key False by E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano
	Certificate (some fields): for CN=GTE CyberTrust Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US - has private key False by CN=GTE CyberTrust Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=Buypass Class 3 Root CA, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 3 Root CA, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for CN=DST Root CA X3, O=Digital Signature Trust Co. - has private key False by CN=DST Root CA X3, O=Digital Signature Trust Co.
	Certificate (some fields): for CN=CA DATEV BT 01, O=DATEV eG, C=DE - has private key False by CN=CA DATEV BT 01, O=DATEV eG, C=DE
	Certificate (some fields): for CN=Equifax Secure eBusiness CA-1, O=Equifax Secure Inc., C=US - has private key False by CN=Equifax Secure eBusiness CA-1, O=Equifax Secure Inc., C=US
	Certificate (some fields): for E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=Certification & PKI, O=ANCE, C=TN - has private key False by E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=Certification & PKI, O=ANCE, C=TN
	Certificate (some fields): for CN=SwissSign Gold CA - G2, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Gold CA - G2, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=AffirmTrust Premium, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Premium, O=AffirmTrust, C=US
	Certificate (some fields): for CN=Hongkong Post Root CA 1, O=Hongkong Post, C=HK - has private key False by CN=Hongkong Post Root CA 1, O=Hongkong Post, C=HK
	Certificate (some fields): for CN=Posta CA Root, CN=AIA, CN=Public Key Services, CN=Services, CN=Configuration, DC=ca, DC=posta, DC=rs - has private key False by CN=Posta CA Root, CN=AIA, CN=Public Key Services, CN=Services, CN=Configuration, DC=ca, DC=posta, DC=rs
	Certificate (some fields): for CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3 - has private key False by CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3
	Certificate (some fields): for CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE - has private key False by CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
	Certificate (some fields): for CN=A-Trust-nQual-03, OU=A-Trust-nQual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-nQual-03, OU=A-Trust-nQual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for CN=Class 3 Primary CA, O=Certplus, C=FR - has private key False by CN=Class 3 Primary CA, O=Certplus, C=FR
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for OU=I.CA - Accredited Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Qualified Certification Authority, 09/2009", C=CZ - has private key False by OU=I.CA - Accredited Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Qualified Certification Authority, 09/2009", C=CZ
	Certificate (some fields): for OU=Equifax Secure Certificate Authority, O=Equifax, C=US - has private key False by OU=Equifax Secure Certificate Authority, O=Equifax, C=US
	Certificate (some fields): for CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=USERTrust ECC Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US - has private key False by CN=USERTrust ECC Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US
	Certificate (some fields): for OU=Certisign Autoridade Certificadora AC3S, O=Certisign Certificadora Digital Ltda., L=Rio de Janeiro, S=Rio de Janeiro, C=BR - has private key False by OU=Certisign Autoridade Certificadora AC3S, O=Certisign Certificadora Digital Ltda., L=Rio de Janeiro, S=Rio de Janeiro, C=BR
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=main01@ipsca.com, CN=ipsCA Main CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES - has private key False by E=main01@ipsca.com, CN=ipsCA Main CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST (NRF) RootCA, OU=National Retail Federation, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST (NRF) RootCA, OU=National Retail Federation, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW - has private key False by CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW
	Certificate (some fields): for CN=ANF Server CA, SERIALNUMBER=G63287510, OU=ANF Clase 1 CA, O=ANF Autoridad de Certificaci¢n, L=Barcelona (see current address at https://www.anf.es/address/), S=Barcelona, C=ES - has private key False by CN=ANF Server CA, SERIALNUMBER=G63287510, OU=ANF Clase 1 CA, O=ANF Autoridad de Certificaci¢n, L=Barcelona (see current address at https://www.anf.es/address/), S=Barcelona, C=ES
	Certificate (some fields): for OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=pkiadmin@trustcentre.co.za, CN=SAPO Class 4 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA - has private key False by E=pkiadmin@trustcentre.co.za, CN=SAPO Class 4 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA
	Certificate (some fields): for CN=AC Ra¡z Certic mara S.A., O=Sociedad Cameral de Certificaci¢n Digital - Certic mara S.A., C=CO - has private key False by CN=AC Ra¡z Certic mara S.A., O=Sociedad Cameral de Certificaci¢n Digital - Certic mara S.A., C=CO
	Certificate (some fields): for CN=Echoworx Root CA2, OU=Certification Services, O=Echoworx Corporation, L=Toronto, S=Ontario, C=CA - has private key False by CN=Echoworx Root CA2, OU=Certification Services, O=Echoworx Corporation, L=Toronto, S=Ontario, C=CA
	Certificate (some fields): for CN=Common Policy, OU=FBCA, O=U.S. Government, C=us - has private key False by CN=Common Policy, OU=FBCA, O=U.S. Government, C=us
	Certificate (some fields): for CN=SecureSign RootCA1, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA1, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for CN=QuoVadis Root CA 2, O=QuoVadis Limited, C=BM - has private key False by CN=QuoVadis Root CA 2, O=QuoVadis Limited, C=BM
	Certificate (some fields): for E=pki@sk.ee, CN=EE Certification Centre Root CA, O=AS Sertifitseerimiskeskus, C=EE - has private key False by E=pki@sk.ee, CN=EE Certification Centre Root CA, O=AS Sertifitseerimiskeskus, C=EE
	Certificate (some fields): for CN=LuxTrust Global Root, O=LuxTrust s.a., C=LU - has private key False by CN=LuxTrust Global Root, O=LuxTrust s.a., C=LU
	Certificate (some fields): for CN=E-ME SSI (RCA), OU=Sertifikacijas pakalpojumu dala, C=LV - has private key False by CN=E-ME SSI (RCA), OU=Sertifikacijas pakalpojumu dala, C=LV
	Certificate (some fields): for CN=VeriSign Class 4 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 4 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Swiss Government Root CA II, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH - has private key False by CN=Swiss Government Root CA II, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH
	Certificate (some fields): for CN=Gatekeeper Root CA, OU=Gatekeeper PKI, O=eSign Australia - has private key False by CN=Gatekeeper Root CA, OU=Gatekeeper PKI, O=eSign Australia
	Certificate (some fields): for CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE - has private key False by CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE
	Certificate (some fields): for CN=E-CERT ROOT CA, E=sclientes@ccs.cl, OU=Autoridad Certificadora, O=E-CERTCHILE, L=Santiago, S=Region Metropolitana, C=CL - has private key False by CN=E-CERT ROOT CA, E=sclientes@ccs.cl, OU=Autoridad Certificadora, O=E-CERTCHILE, L=Santiago, S=Region Metropolitana, C=CL
	Certificate (some fields): for O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri - has private key False by O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri
	Certificate (some fields): for CN=ANCERT Certificados Notariales, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados Notariales, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES
	Certificate (some fields): for CN=CCA India 2011, O=India PKI, C=IN - has private key False by CN=CCA India 2011, O=India PKI, C=IN
	Certificate (some fields): for CN=S-TRUST Authentication and Encryption Root CA 2005:PN, O=Deutscher Sparkassen Verlag GmbH, L=Stuttgart, S=Baden-Wuerttemberg (BW), C=DE - has private key False by CN=S-TRUST Authentication and Encryption Root CA 2005:PN, O=Deutscher Sparkassen Verlag GmbH, L=Stuttgart, S=Baden-Wuerttemberg (BW), C=DE
	Certificate (some fields): for CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, S=Western Cape, C=ZA - has private key False by CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, S=Western Cape, C=ZA
	Certificate (some fields): for OU=DST-Entrust GTI CA, O=Digital Signature Trust Co., C=US - has private key False by OU=DST-Entrust GTI CA, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE - has private key False by CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE
	Certificate (some fields): for CN=Root CA, OU=GPKI, O=Government of Korea, C=KR - has private key False by CN=Root CA, OU=GPKI, O=Government of Korea, C=KR
	Certificate (some fields): for OU=AC RAIZ FNMT-RCM, O=FNMT-RCM, C=ES - has private key False by OU=AC RAIZ FNMT-RCM, O=FNMT-RCM, C=ES
	Certificate (some fields): for CN=AffirmTrust Premium ECC, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Premium ECC, O=AffirmTrust, C=US
	Certificate (some fields): for CN=XRamp Global Certification Authority, O=XRamp Security Services Inc, OU=www.xrampsecurity.com, C=US - has private key False by CN=XRamp Global Certification Authority, O=XRamp Security Services Inc, OU=www.xrampsecurity.com, C=US
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST RootCA X1, OU=DSTCA X1, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST RootCA X1, OU=DSTCA X1, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=Starfield Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Starfield Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi - has private key False by O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=AC RAIZ DNIE, OU=DNIE, O=DIRECCION GENERAL DE LA POLICIA, C=ES - has private key False by CN=AC RAIZ DNIE, OU=DNIE, O=DIRECCION GENERAL DE LA POLICIA, C=ES
	Certificate (some fields): for CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US - has private key False by CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
	Certificate (some fields): for OU=POSTArCA, O=POSTA, C=SI - has private key False by OU=POSTArCA, O=POSTA, C=SI
	Certificate (some fields): for CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE - has private key False by CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE
	Certificate (some fields): for E=pkiadmin@trustcentre.co.za, CN=SAPO Class 3 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA - has private key False by E=pkiadmin@trustcentre.co.za, CN=SAPO Class 3 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA
	Certificate (some fields): for OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=Certigna, O=Dhimyotis, C=FR - has private key False by CN=Certigna, O=Dhimyotis, C=FR
	Certificate (some fields): for CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, C=ES - has private key False by CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, C=ES
	Certificate (some fields): for CN=TC TrustCenter Class 2 CA II, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Class 2 CA II, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for C=IL, O=ComSign Ltd., CN=ComSign Global Root CA - has private key False by C=IL, O=ComSign Ltd., CN=ComSign Global Root CA
	Certificate (some fields): for OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=US - has private key False by OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=US
	Certificate (some fields): for CN=NetLock Kozjegyzoi (Class A) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, S=Hungary, C=HU - has private key False by CN=NetLock Kozjegyzoi (Class A) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, S=Hungary, C=HU
	Certificate (some fields): for CN=CA DATEV STD 02, O=DATEV eG, C=DE - has private key False by CN=CA DATEV STD 02, O=DATEV eG, C=DE
	Certificate (some fields): for OU=DSTCA E2, O=Digital Signature Trust Co., C=US - has private key False by OU=DSTCA E2, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for O=Prvni certifikacni autorita a.s., CN=I.CA - Standard root certificate, C=CZ - has private key False by O=Prvni certifikacni autorita a.s., CN=I.CA - Standard root certificate, C=CZ
	Certificate (some fields): for CN=thawte Primary Root CA - G2, OU="(c) 2007 thawte, Inc. - For authorized use only", O="thawte, Inc.", C=US - has private key False by CN=thawte Primary Root CA - G2, OU="(c) 2007 thawte, Inc. - For authorized use only", O="thawte, Inc.", C=US
	Certificate (some fields): for CN=GeoTrust Global CA 2, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Global CA 2, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=Autoridade Certificadora Raiz Brasileira v2, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR - has private key False by CN=Autoridade Certificadora Raiz Brasileira v2, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR
	Certificate (some fields): for E=ca@firmaprofesional.com, CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, L=C/ Muntaner 244 Barcelona, C=ES - has private key False by E=ca@firmaprofesional.com, CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, L=C/ Muntaner 244 Barcelona, C=ES
	Certificate (some fields): for CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US - has private key False by CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
	Certificate (some fields): for CN=Serasa Certificate Authority I, OU=Serasa CA I, O=Serasa S.A., C=BR - has private key False by CN=Serasa Certificate Authority I, OU=Serasa CA I, O=Serasa S.A., C=BR
	Certificate (some fields): for CN=TC TrustCenter Class 4 CA II, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Class 4 CA II, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Certipost E-Trust Primary Normalised CA, O=Certipost s.a./n.v., C=BE - has private key False by CN=Certipost E-Trust Primary Normalised CA, O=Certipost s.a./n.v., C=BE
	Certificate (some fields): for OID.0.9.2342.19200300.100.1.3=ca@digsigtrust.com, CN=Baltimore EZ by DST, O=Digital Signature Trust Co., C=US - has private key False by OID.0.9.2342.19200300.100.1.3=ca@digsigtrust.com, CN=Baltimore EZ by DST, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=TC TrustCenter Time Stamping CA, OU=TC TrustCenter Time Stamping CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by CN=TC TrustCenter Time Stamping CA, OU=TC TrustCenter Time Stamping CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for CN=SwissSign Platinum Root CA - G3, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Platinum Root CA - G3, O=SwissSign AG, C=CH
	Certificate (some fields): for OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Swiss Government Root CA I, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH - has private key False by CN=Swiss Government Root CA I, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH
	Certificate (some fields): for CN=PostSignum Root QCA 2, O="Cesk posta, s.p. [IC 47114983]", C=CZ - has private key False by CN=PostSignum Root QCA 2, O="Cesk posta, s.p. [IC 47114983]", C=CZ
	Certificate (some fields): for CN=Buypass Class 2 CA 1, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 2 CA 1, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for CN=Root CA Generalitat Valenciana, OU=PKIGVA, O=Generalitat Valenciana, C=ES - has private key False by CN=Root CA Generalitat Valenciana, OU=PKIGVA, O=Generalitat Valenciana, C=ES
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=COMODO ECC Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=COMODO ECC Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=Serasa Certificate Authority III, OU=Serasa CA III, O=Serasa S.A., C=BR - has private key False by CN=Serasa Certificate Authority III, OU=Serasa CA III, O=Serasa S.A., C=BR
	Certificate (some fields): for CN=KEYNECTIS ROOT CA, OU=ROOT, O=KEYNECTIS, C=FR - has private key False by CN=KEYNECTIS ROOT CA, OU=ROOT, O=KEYNECTIS, C=FR
	Certificate (some fields): for CN=SwissSign Silver CA - G2, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Silver CA - G2, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US - has private key False by CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US - has private key False by CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=CCA India 2007, O=India PKI, C=IN - has private key False by CN=CCA India 2007, O=India PKI, C=IN
	Certificate (some fields): for CN=VI Registru Centras RCSC (RootCA), OU=Registru Centro Sertifikavimo Centras, O=VI Registru Centras - I.k. 124110246, C=LT - has private key False by CN=VI Registru Centras RCSC (RootCA), OU=Registru Centro Sertifikavimo Centras, O=VI Registru Centras - I.k. 124110246, C=LT
	Certificate (some fields): for CN=D-TRUST Root Class 3 CA 2 EV 2009, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 3 CA 2 EV 2009, O=D-Trust GmbH, C=DE
	Certificate (some fields): for OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for OU=Application CA G2, O=LGPKI, C=JP - has private key False by OU=Application CA G2, O=LGPKI, C=JP
	Certificate (some fields): for CN=TC TrustCenter Universal CA III, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Universal CA III, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for CN=CA DATEV INT 02, O=DATEV eG, C=DE - has private key False by CN=CA DATEV INT 02, O=DATEV eG, C=DE
	Certificate (some fields): for CN=Wells Fargo Root Certificate Authority, OU=Wells Fargo Certification Authority, O=Wells Fargo, C=US - has private key False by CN=Wells Fargo Root Certificate Authority, OU=Wells Fargo Certification Authority, O=Wells Fargo, C=US
	Certificate (some fields): for CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for CN=thawte Primary Root CA, OU="(c) 2006 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US - has private key False by CN=thawte Primary Root CA, OU="(c) 2006 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US
	Certificate (some fields): for CN=Actalis Authentication CA G1, O=Actalis S.p.A./03358520967, L=Milano, C=IT - has private key False by CN=Actalis Authentication CA G1, O=Actalis S.p.A./03358520967, L=Milano, C=IT
	Certificate (some fields): for CN=Verizon Global Root CA, OU=OmniRoot, O=Verizon Business, C=US - has private key False by CN=Verizon Global Root CA, OU=OmniRoot, O=Verizon Business, C=US
	Certificate (some fields): for CN=GTE CyberTrust Root, O=GTE Corporation, C=US - has private key False by CN=GTE CyberTrust Root, O=GTE Corporation, C=US
	Certificate (some fields): for OU=I.CA - Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Standard Certification Authority, 09/2009", C=CZ - has private key False by OU=I.CA - Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Standard Certification Authority, 09/2009", C=CZ
	Certificate (some fields): for OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for OID.0.9.2342.19200300.100.1.3=correo_cert@correo.com.uy, CN=SERVICIOS DE CERTIFICACION - A.N.C., OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY - has private key False by OID.0.9.2342.19200300.100.1.3=correo_cert@correo.com.uy, CN=SERVICIOS DE CERTIFICACION - A.N.C., OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY
	Certificate (some fields): for CN=Federal Common Policy CA, OU=FPKI, O=U.S. Government, C=US - has private key False by CN=Federal Common Policy CA, OU=FPKI, O=U.S. Government, C=US
	Certificate (some fields): for CN=Microsoft Root Certificate Authority 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US - has private key False by CN=Microsoft Root Certificate Authority 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
	Certificate (some fields): for CN=Autoridade Certificadora Raiz Brasileira, S=DF, L=Brasilia, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR - has private key False by CN=Autoridade Certificadora Raiz Brasileira, S=DF, L=Brasilia, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR
	Certificate (some fields): for CN=SecureSign RootCA3, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA3, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for E=a-cert@argedaten.at, O=Arge Daten Oesterreichische Gesellschaft fuer Datenschutz, L=Vienna, S=Austria, C=AT - has private key False by E=a-cert@argedaten.at, O=Arge Daten Oesterreichische Gesellschaft fuer Datenschutz, L=Vienna, S=Austria, C=AT
	Certificate (some fields): for CN=GeoTrust Primary Certification Authority - G2, OU=(c) 2007 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Primary Certification Authority - G2, OU=(c) 2007 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=SwissSign Silver Root CA - G3, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Silver Root CA - G3, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See http://www.entrust.net/legal-terms, O="Entrust, Inc.", C=US - has private key False by CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See http://www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
	Certificate (some fields): for CN=TC TrustCenter Universal CA II, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Universal CA II, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for C=TR, O=EBG Bilisim Teknolojileri ve Hizmetleri A.S., CN=EBG Elektronik Sertifika Hizmet Saglayicisi - has private key False by C=TR, O=EBG Bilisim Teknolojileri ve Hizmetleri A.S., CN=EBG Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for CN=CNNIC ROOT, O=CNNIC, C=CN - has private key False by CN=CNNIC ROOT, O=CNNIC, C=CN
	Certificate (some fields): for CN=Certificado Empresarial Clase-A, O=Certicamara S.A. Entidad de Certificacion, L=Carrera 9 16-21 Bogota, C=CO - has private key False by CN=Certificado Empresarial Clase-A, O=Certicamara S.A. Entidad de Certificacion, L=Carrera 9 16-21 Bogota, C=CO
	Certificate (some fields): for E=info@e-szigno.hu, CN=Microsec e-Szigno Root CA 2009, O=Microsec Ltd., L=Budapest, C=HU - has private key False by E=info@e-szigno.hu, CN=Microsec e-Szigno Root CA 2009, O=Microsec Ltd., L=Budapest, C=HU
	Certificate (some fields): for CN=Macao Post eSignTrust Root Certification Authority, O=Macao Post, C=MO - has private key False by CN=Macao Post eSignTrust Root Certification Authority, O=Macao Post, C=MO
	Certificate (some fields): for CN=NetLock Uzleti (Class B) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU - has private key False by CN=NetLock Uzleti (Class B) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU
	Certificate (some fields): for CN=SecureTrust CA, O=SecureTrust Corporation, C=US - has private key False by CN=SecureTrust CA, O=SecureTrust Corporation, C=US
	Certificate (some fields): for CN=TDC OCES CA, O=TDC, C=DK - has private key False by CN=TDC OCES CA, O=TDC, C=DK
	Certificate (some fields): for CN=America Online Root Certification Authority 2, O=America Online Inc., C=US - has private key False by CN=America Online Root Certification Authority 2, O=America Online Inc., C=US
	Certificate (some fields): for CN=Deutsche Telekom Root CA 2, OU=T-TeleSec Trust Center, O=Deutsche Telekom AG, C=DE - has private key False by CN=Deutsche Telekom Root CA 2, OU=T-TeleSec Trust Center, O=Deutsche Telekom AG, C=DE
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for CN=UCA Root, O=UniTrust, C=CN - has private key False by CN=UCA Root, O=UniTrust, C=CN
	Certificate (some fields): for OU=DSTCA E1, O=Digital Signature Trust Co., C=US - has private key False by OU=DSTCA E1, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=ComSign Advanced Security CA - has private key False by CN=ComSign Advanced Security CA
	Certificate (some fields): for CN=TC TrustCenter Class 3 CA II, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Class 3 CA II, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for CN=Halcom CA PO 2, O=Halcom, C=SI - has private key False by CN=Halcom CA PO 2, O=Halcom, C=SI
	Certificate (some fields): for OU=sigov-ca, O=state-institutions, C=si - has private key False by OU=sigov-ca, O=state-institutions, C=si
	Certificate (some fields): for OU=ApplicationCA, O=Japanese Government, C=JP - has private key False by OU=ApplicationCA, O=Japanese Government, C=JP
	Certificate (some fields): for CN=Autoridad de Certificacion de la Abogacia, O=Consejo General de la Abogacia NIF:Q-2863006I, C=ES - has private key False by CN=Autoridad de Certificacion de la Abogacia, O=Consejo General de la Abogacia NIF:Q-2863006I, C=ES
	Certificate (some fields): for CN=ANCERT Certificados CGN V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados CGN V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES
	Certificate (some fields): for CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US - has private key False by CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US
	Certificate (some fields): for E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon, OID.2.5.4.45=#030F005345432D3833303130312D395639 - has private key False by E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon, OID.2.5.4.45=#030F005345432D3833303130312D395639
	Certificate (some fields): for O=SecureNet CA Class B, C=au - has private key False by O=SecureNet CA Class B, C=au
	Certificate (some fields): for E=admin@digsigtrust.com, CN=ABA.ECOM Root CA, O="ABA.ECOM, INC.", L=Washington, S=DC, C=US - has private key False by E=admin@digsigtrust.com, CN=ABA.ECOM Root CA, O="ABA.ECOM, INC.", L=Washington, S=DC, C=US
	Certificate (some fields): for O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi - has private key False by O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Chambers of Commerce Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU - has private key False by CN=Chambers of Commerce Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU
	Certificate (some fields): for CN=Swisscom Root CA 2, OU=Digital Certificate Services, O=Swisscom, C=ch - has private key False by CN=Swisscom Root CA 2, OU=Digital Certificate Services, O=Swisscom, C=ch
	Certificate (some fields): for CN=Common Policy, OU=FBCA, O=U.S. Government, C=us - has private key False by CN=Common Policy, OU=FBCA, O=U.S. Government, C=us
	Certificate (some fields): for OU=DST (ANX Network) CA, O=Digital Signature Trust Co., C=US - has private key False by OU=DST (ANX Network) CA, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=GPKIRootCA1, OU=GPKI, O=Government of Korea, C=KR - has private key False by CN=GPKIRootCA1, OU=GPKI, O=Government of Korea, C=KR
	Certificate (some fields): for CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2 - has private key False by CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2
	Certificate (some fields): for O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri - has private key False by O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri
	Certificate (some fields): for CN=Certipost E-Trust Primary Qualified CA, O=Certipost s.a./n.v., C=BE - has private key False by CN=Certipost E-Trust Primary Qualified CA, O=Certipost s.a./n.v., C=BE
	Certificate (some fields): for OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Class 2 Primary CA, O=Certplus, C=FR - has private key False by CN=Class 2 Primary CA, O=Certplus, C=FR
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 1 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 1 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US - has private key False by CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US
	Certificate (some fields): for CN=Autoridade Certificadora Raiz Brasileira v1, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR - has private key False by CN=Autoridade Certificadora Raiz Brasileira v1, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR
	Certificate (some fields): for CN=eSign Imperito Primary Root CA, OU=Public Secure Services, O=eSign Australia - has private key False by CN=eSign Imperito Primary Root CA, OU=Public Secure Services, O=eSign Australia
	Certificate (some fields): for CN=Visa eCommerce Root, OU=Visa International Service Association, O=VISA, C=US - has private key False by CN=Visa eCommerce Root, OU=Visa International Service Association, O=VISA, C=US
	Certificate (some fields): for CN=ANCERT Certificados Notariales V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados Notariales V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES
	Certificate (some fields): for CN=Chambers of Commerce Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU - has private key False by CN=Chambers of Commerce Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU
	Certificate (some fields): for CN=AdminCA-CD-T01, OU=Certification Authorities, OU=Services, O=admin, C=CH - has private key False by CN=AdminCA-CD-T01, OU=Certification Authorities, OU=Services, O=admin, C=CH
	Certificate (some fields): for CN=TC TrustCenter Universal CA I, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Universal CA I, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for C=ES, L=MADRID, O=MINISTERIO DE TRABAJO E INMIGRACION, OU=SUBDIRECCION GENERAL DE PROCESO DE DATOS, OU=PRESTADOR DE SERVICIOS DE CERTIFICACION MTIN, SERIALNUMBER=S2819001E, CN=AC1 RAIZ MTIN - has private key False by C=ES, L=MADRID, O=MINISTERIO DE TRABAJO E INMIGRACION, OU=SUBDIRECCION GENERAL DE PROCESO DE DATOS, OU=PRESTADOR DE SERVICIOS DE CERTIFICACION MTIN, SERIALNUMBER=S2819001E, CN=AC1 RAIZ MTIN
	Certificate (some fields): for CN=Primary Utility Root CA, OU=Public Secure Services, O=eSign Australia - has private key False by CN=Primary Utility Root CA, OU=Public Secure Services, O=eSign Australia
	Certificate (some fields): for CN=Class 1 Primary CA, O=Certplus, C=FR - has private key False by CN=Class 1 Primary CA, O=Certplus, C=FR
	Certificate (some fields): for E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 3 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network - has private key False by E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 3 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
	Certificate (some fields): for E=ca@digsigtrust.com, CN=Xcert EZ by DST, O=Xcert EZ by DST, L=Salt Lake City, S=Utah, C=US - has private key False by E=ca@digsigtrust.com, CN=Xcert EZ by DST, O=Xcert EZ by DST, L=Salt Lake City, S=Utah, C=US
	Certificate (some fields): for OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST RootCA X2, OU=DSTCA X2, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST RootCA X2, OU=DSTCA X2, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=A-Trust-Qual-02, OU=A-Trust-Qual-02, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-Qual-02, OU=A-Trust-Qual-02, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for OU=ePKI Root Certification Authority, O="Chunghwa Telecom Co., Ltd.", C=TW - has private key False by OU=ePKI Root Certification Authority, O="Chunghwa Telecom Co., Ltd.", C=TW
	Certificate (some fields): for CN=CESAM, OU=0002 542044524, O=NATIXIS, C=FR - has private key False by CN=CESAM, OU=0002 542044524, O=NATIXIS, C=FR
	Certificate (some fields): for O="Prvn¡ certifikacn¡ autorita, a.s.", CN=I.CA - Qualified root certificate, C=CZ - has private key False by O="Prvn¡ certifikacn¡ autorita, a.s.", CN=I.CA - Qualified root certificate, C=CZ
	Certificate (some fields): for E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Certum CA, O=Unizeto Sp. z o.o., C=PL - has private key False by CN=Certum CA, O=Unizeto Sp. z o.o., C=PL
	Certificate (some fields): for CN=VeriSign Class 2 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 2 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Buypass Class 3 CA 1, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 3 CA 1, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for E=igca@sgdn.pm.gouv.fr, CN=IGC/A, OU=DCSSI, O=PM/SGDN, L=Paris, S=France, C=FR - has private key False by E=igca@sgdn.pm.gouv.fr, CN=IGC/A, OU=DCSSI, O=PM/SGDN, L=Paris, S=France, C=FR
	Certificate (some fields): for CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US - has private key False by CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
	Certificate (some fields): for CN=KISA RootCA 3, OU=Korea Certification Authority Central, O=KISA, C=KR - has private key False by CN=KISA RootCA 3, OU=Korea Certification Authority Central, O=KISA, C=KR
	Certificate (some fields): for CN=Cybertrust Global Root, O="Cybertrust, Inc" - has private key False by CN=Cybertrust Global Root, O="Cybertrust, Inc"
	Certificate (some fields): for OU=Security Communication RootCA2, O="SECOM Trust Systems CO.,LTD.", C=JP - has private key False by OU=Security Communication RootCA2, O="SECOM Trust Systems CO.,LTD.", C=JP
	Certificate (some fields): for CN=Swisscom Root CA 1, OU=Digital Certificate Services, O=Swisscom, C=ch - has private key False by CN=Swisscom Root CA 1, OU=Digital Certificate Services, O=Swisscom, C=ch
	Certificate (some fields): for CN=UTN-USERFirst-Network Applications, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Network Applications, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=Starfield Services Root Certificate Authority, OU=http://certificates.starfieldtech.com/repository/, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Starfield Services Root Certificate Authority, OU=http://certificates.starfieldtech.com/repository/, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for CN=SSC Root CA A, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT - has private key False by CN=SSC Root CA A, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT
	Certificate (some fields): for CN=Visa Information Delivery Root CA, OU=Visa International Service Association, O=VISA, C=US - has private key False by CN=Visa Information Delivery Root CA, OU=Visa International Service Association, O=VISA, C=US
	Certificate (some fields): for CN=Staat der Nederlanden Root CA - G2, O=Staat der Nederlanden, C=NL - has private key False by CN=Staat der Nederlanden Root CA - G2, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for CN=OISTE WISeKey Global Root GA CA, OU=OISTE Foundation Endorsed, OU=Copyright (c) 2005, O=WISeKey, C=CH - has private key False by CN=OISTE WISeKey Global Root GA CA, OU=OISTE Foundation Endorsed, OU=Copyright (c) 2005, O=WISeKey, C=CH
	Certificate (some fields): for CN=D-TRUST Root Class 3 CA 2 2009, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 3 CA 2 2009, O=D-Trust GmbH, C=DE
	Certificate (some fields): for CN=UTN - DATACorp SGC, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN - DATACorp SGC, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=SwissSign Platinum CA - G2, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Platinum CA - G2, O=SwissSign AG, C=CH
	Certificate (some fields): for OU=Netrust CA1, O=Netrust Certificate Authority 1, C=SG - has private key False by OU=Netrust CA1, O=Netrust Certificate Authority 1, C=SG
	Certificate (some fields): for CN=T-TeleSec GlobalRoot Class 3, OU=T-Systems Trust Center, O=T-Systems Enterprise Services GmbH, C=DE - has private key False by CN=T-TeleSec GlobalRoot Class 3, OU=T-Systems Trust Center, O=T-Systems Enterprise Services GmbH, C=DE
	Certificate (some fields): for OU=Certisign - Autoridade Certificadora - AC4, O=Certisign Certificadora Digital Ltda., C=BR - has private key False by OU=Certisign - Autoridade Certificadora - AC4, O=Certisign Certificadora Digital Ltda., C=BR
	Certificate (some fields): for CN=CA DATEV INT 01, O=DATEV eG, C=DE - has private key False by CN=CA DATEV INT 01, O=DATEV eG, C=DE
	Certificate (some fields): for CN=A-Trust-nQual-01, OU=A-Trust-nQual-01, O=A-Trust, C=AT - has private key False by CN=A-Trust-nQual-01, OU=A-Trust-nQual-01, O=A-Trust, C=AT
	Certificate (some fields): for CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net - has private key False by CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net
	Certificate (some fields): for CN=China Internet Network Information Center EV Certificates Root, O=China Internet Network Information Center, C=CN - has private key False by CN=China Internet Network Information Center EV Certificates Root, O=China Internet Network Information Center, C=CN
	Certificate (some fields): for OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=CERTICAMARA S.A., O=Entidad de Certificacion Digital Abierta Certicamara S.A., C=CO, L=Bogota AV Calle 26 N 68D-35 - has private key False by CN=CERTICAMARA S.A., O=Entidad de Certificacion Digital Abierta Certicamara S.A., C=CO, L=Bogota AV Calle 26 N 68D-35
	Certificate (some fields): for OU=Certisign - Autoridade Certificadora - AC2, O=Certisign Certificadora Digital Ltda., C=BR - has private key False by OU=Certisign - Autoridade Certificadora - AC2, O=Certisign Certificadora Digital Ltda., C=BR
	Certificate (some fields): for CN=VeriSign Class 3 Public Primary Certification Authority - G5, OU="(c) 2006 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G5, OU="(c) 2006 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Global Chambersign Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU - has private key False by CN=Global Chambersign Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU
	Certificate (some fields): for E=Info@izenpe.com, CN=Izenpe.com, L=Avda del Mediterraneo Etorbidea 3 - 01010 Vitoria-Gasteiz, O=IZENPE S.A. - CIF A-01337260-RMerc.Vitoria-Gasteiz T1055 F62 S8, C=ES - has private key False by E=Info@izenpe.com, CN=Izenpe.com, L=Avda del Mediterraneo Etorbidea 3 - 01010 Vitoria-Gasteiz, O=IZENPE S.A. - CIF A-01337260-RMerc.Vitoria-Gasteiz T1055 F62 S8, C=ES
	Certificate (some fields): for CN=D-TRUST Root Class 2 CA 2007, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 2 CA 2007, O=D-Trust GmbH, C=DE
	Certificate (some fields): for CN=Buypass Class 2 Root CA, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 2 Root CA, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for CN=Go Daddy Root Certificate Authority - G2, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Go Daddy Root Certificate Authority - G2, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US - has private key False by OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US
	Certificate (some fields): for OU=FNMT Clase 2 CA, O=FNMT, C=ES - has private key False by OU=FNMT Clase 2 CA, O=FNMT, C=ES
	Certificate (some fields): for CN=PersonalID Trustworthy RootCA 2011, OU=Certificate Services, O=PersonalID Ltd., C=IL - has private key False by CN=PersonalID Trustworthy RootCA 2011, OU=Certificate Services, O=PersonalID Ltd., C=IL
	Certificate (some fields): for CN=TeliaSonera Root CA v1, O=TeliaSonera - has private key False by CN=TeliaSonera Root CA v1, O=TeliaSonera
	Certificate (some fields): for CN=A-Trust-Qual-03, OU=A-Trust-Qual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-Qual-03, OU=A-Trust-Qual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for E=personal-basic@thawte.com, CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=personal-basic@thawte.com, CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Juur-SK, O=AS Sertifitseerimiskeskus, C=EE, E=pki@sk.ee - has private key False by CN=Juur-SK, O=AS Sertifitseerimiskeskus, C=EE, E=pki@sk.ee
	Certificate (some fields): for CN=DST ACES CA X6, OU=DST ACES, O=Digital Signature Trust, C=US - has private key False by CN=DST ACES CA X6, OU=DST ACES, O=Digital Signature Trust, C=US
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=SSC Root CA B, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT - has private key False by CN=SSC Root CA B, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT
	Certificate (some fields): for OU=sigen-ca, O=state-institutions, C=si - has private key False by OU=sigen-ca, O=state-institutions, C=si
	Certificate (some fields): for CN=StartCom Certification Authority, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL - has private key False by CN=StartCom Certification Authority, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL
	Certificate (some fields): for E=global01@ipsca.com, CN=ipsCA Global CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES - has private key False by E=global01@ipsca.com, CN=ipsCA Global CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES
	Certificate (some fields): for CN=SecureSign RootCA11, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA11, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for OU=Trustis FPS Root CA, O=Trustis Limited, C=GB - has private key False by OU=Trustis FPS Root CA, O=Trustis Limited, C=GB
	Certificate (some fields): for CN=Secure Global CA, O=SecureTrust Corporation, C=US - has private key False by CN=Secure Global CA, O=SecureTrust Corporation, C=US
	Certificate (some fields): for E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano - has private key False by E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano
	Certificate (some fields): for OU=Equifax Secure eBusiness CA-2, O=Equifax Secure, C=US - has private key False by OU=Equifax Secure eBusiness CA-2, O=Equifax Secure, C=US
	Certificate (some fields): for CN=CA DATEV BT 02, O=DATEV eG, C=DE - has private key False by CN=CA DATEV BT 02, O=DATEV eG, C=DE
	Certificate (some fields): for CN=America Online Root Certification Authority 1, O=America Online Inc., C=US - has private key False by CN=America Online Root Certification Authority 1, O=America Online Inc., C=US
	Certificate (some fields): for CN=ECRaizEstado, O=SCEE, C=PT - has private key False by CN=ECRaizEstado, O=SCEE, C=PT
	Certificate (some fields): for CN=Sonera Class2 CA, O=Sonera, C=FI - has private key False by CN=Sonera Class2 CA, O=Sonera, C=FI
	Certificate (some fields): for CN=GeoTrust Universal CA 2, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Universal CA 2, O=GeoTrust Inc., C=US
	Certificate (some fields): for OU=Security Communication RootCA1, O=SECOM Trust.net, C=JP - has private key False by OU=Security Communication RootCA1, O=SECOM Trust.net, C=JP
	Certificate (some fields): for E=personal-premium@thawte.com, CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=personal-premium@thawte.com, CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=VeriSign Universal Root Certification Authority, OU="(c) 2008 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Universal Root Certification Authority, OU="(c) 2008 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon - has private key False by E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon
	Certificate (some fields): for E=info@globaltrust.info, CN=GLOBALTRUST, OU=GLOBALTRUST Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, S=Austria, L=Vienna, C=AT - has private key False by E=info@globaltrust.info, CN=GLOBALTRUST, OU=GLOBALTRUST Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, S=Austria, L=Vienna, C=AT
	Certificate (some fields): for CN=Global Chambersign Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU - has private key False by CN=Global Chambersign Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU
	Certificate (some fields): for CN=GeoTrust Primary Certification Authority, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Primary Certification Authority, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=Serasa Certificate Authority II, OU=Serasa CA II, O=Serasa S.A., C=BR - has private key False by CN=Serasa Certificate Authority II, OU=Serasa CA II, O=Serasa S.A., C=BR
	Certificate (some fields): for E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network - has private key False by E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
	Certificate (some fields): for CN=Izenpe.com, O=IZENPE S.A., C=ES - has private key False by CN=Izenpe.com, O=IZENPE S.A., C=ES
	Certificate (some fields): for E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=ANCE WEB, O=ANCE, C=TN - has private key False by E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=ANCE WEB, O=ANCE, C=TN
	Certificate (some fields): for CN=Certinomis - Autorit‚ Racine, OU=0002 433998903, O=Certinomis, C=FR - has private key False by CN=Certinomis - Autorit‚ Racine, OU=0002 433998903, O=Certinomis, C=FR
	Certificate (some fields): for C=DE, O=Atos, CN=Atos TrustedRoot 2011 - has private key False by C=DE, O=Atos, CN=Atos TrustedRoot 2011
	Certificate (some fields): for CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US - has private key False by CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US
	Certificate (some fields): for CN=CA Disig, O=Disig a.s., L=Bratislava, C=SK - has private key False by CN=CA Disig, O=Disig a.s., L=Bratislava, C=SK
	Certificate (some fields): for E=info@a-cert.at, CN=A-CERT ADVANCED, OU=A-CERT Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, L=Vienna, S=Austria, C=AT - has private key False by E=info@a-cert.at, CN=A-CERT ADVANCED, OU=A-CERT Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, L=Vienna, S=Austria, C=AT
	Certificate (some fields): for CN=AffirmTrust Networking, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Networking, O=AffirmTrust, C=US
	Certificate (some fields): for CN=EC-ACC, OU=Jerarquia Entitats de Certificacio Catalanes, OU=Vegeu https://www.catcert.net/verarrel (c)03, OU=Serveis Publics de Certificacio, O=Agencia Catalana de Certificacio (NIF Q-0801176-I), C=ES - has private key False by CN=EC-ACC, OU=Jerarquia Entitats de Certificacio Catalanes, OU=Vegeu https://www.catcert.net/verarrel (c)03, OU=Serveis Publics de Certificacio, O=Agencia Catalana de Certificacio (NIF Q-0801176-I), C=ES
	Certificate (some fields): for OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US - has private key False by OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Admin-Root-CA, OU=Certification Authorities, OU=Services, O=admin, C=ch - has private key False by CN=Admin-Root-CA, OU=Certification Authorities, OU=Services, O=admin, C=ch
	Certificate (some fields): for OU=RSA Security 2048 V3, O=RSA Security Inc - has private key False by OU=RSA Security 2048 V3, O=RSA Security Inc
	Certificate (some fields): for E=ips@mail.ips.es, CN=IPS SERVIDORES, OU=Certificaciones, O=IPS Seguridad CA, L=BARCELONA, S=BARCELONA, C=ES - has private key False by E=ips@mail.ips.es, CN=IPS SERVIDORES, OU=Certificaciones, O=IPS Seguridad CA, L=BARCELONA, S=BARCELONA, C=ES
	Certificate (some fields): for OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for CN=SSC Root CA C, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT - has private key False by CN=SSC Root CA C, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT
	Certificate (some fields): for E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Microsec e-Szigno Root CA, OU=e-Szigno CA, O=Microsec Ltd., L=Budapest, C=HU - has private key False by CN=Microsec e-Szigno Root CA, OU=e-Szigno CA, O=Microsec Ltd., L=Budapest, C=HU
	Certificate (some fields): for CN=VeriSign Class 3 Public Primary Certification Authority - G4, OU="(c) 2007 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G4, OU="(c) 2007 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for OU=TDC Internet Root CA, O=TDC Internet, C=DK - has private key False by OU=TDC Internet Root CA, O=TDC Internet, C=DK
	Certificate (some fields): for CN=Class 3P Primary CA, O=Certplus, C=FR - has private key False by CN=Class 3P Primary CA, O=Certplus, C=FR
	Certificate (some fields): for CN=Registradores de Espa¤a - CA Ra¡z, OU=Certificado Propio, O=Colegio de Registradores de la Propiedad y Mercantiles de Espa¤a, C=ES - has private key False by CN=Registradores de Espa¤a - CA Ra¡z, OU=Certificado Propio, O=Colegio de Registradores de la Propiedad y Mercantiles de Espa¤a, C=ES
	Certificate (some fields): for CN=GPKIRootCA, OU=GPKI, O=Government of Korea, C=KR - has private key False by CN=GPKIRootCA, OU=GPKI, O=Government of Korea, C=KR
	Certificate (some fields): for E=personal-freemail@thawte.com, CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=personal-freemail@thawte.com, CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=VeriSign Class 1 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 1 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=QuoVadis Root CA 3, O=QuoVadis Limited, C=BM - has private key False by CN=QuoVadis Root CA 3, O=QuoVadis Limited, C=BM
	Certificate (some fields): for CN=TšBITAK UEKAE K”k Sertifika Hizmet Saglayicisi - Srm 3, OU=Kamu Sertifikasyon Merkezi, OU=Ulusal Elektronik ve Kriptoloji Arastirma Enstits - UEKAE, O=Trkiye Bilimsel ve Teknolojik Arastirma Kurumu - TšBITAK, L=Gebze - Kocaeli, C=TR - has private key False by CN=TšBITAK UEKAE K”k Sertifika Hizmet Saglayicisi - Srm 3, OU=Kamu Sertifikasyon Merkezi, OU=Ulusal Elektronik ve Kriptoloji Arastirma Enstits - UEKAE, O=Trkiye Bilimsel ve Teknolojik Arastirma Kurumu - TšBITAK, L=Gebze - Kocaeli, C=TR
	Certificate (some fields): for CN=IGC/A AC racine Etat francais, OU=0002 130007669, O=ANSSI, C=FR - has private key False by CN=IGC/A AC racine Etat francais, OU=0002 130007669, O=ANSSI, C=FR
	Certificate (some fields): for CN=SITHS CA v3, O=Carelink, C=SE - has private key False by CN=SITHS CA v3, O=Carelink, C=SE
	Certificate (some fields): for CN=CA DATEV STD 01, O=DATEV eG, C=DE - has private key False by CN=CA DATEV STD 01, O=DATEV eG, C=DE
	Certificate (some fields): for CN=VeriSign Class 3 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Swedish Government Root Authority v1, O=Swedish Social Insurance Agency, C=SE - has private key False by CN=Swedish Government Root Authority v1, O=Swedish Social Insurance Agency, C=SE
	Certificate (some fields): for CN=ANCERT Certificados CGN, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados CGN, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES
	Certificate (some fields): for CN=Staat der Nederlanden Root CA, O=Staat der Nederlanden, C=NL - has private key False by CN=Staat der Nederlanden Root CA, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for CN=ANCERT Corporaciones de Derecho Publico, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES - has private key False by CN=ANCERT Corporaciones de Derecho Publico, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES
	Certificate (some fields): for CN=UCA Global Root, O=UniTrust, C=CN - has private key False by CN=UCA Global Root, O=UniTrust, C=CN
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=SwissSign Gold Root CA - G3, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Gold Root CA - G3, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=VAS Latvijas Pasts SSI(RCA), OU=Sertifikacijas pakalpojumi, O=VAS Latvijas Pasts - Vien.reg.Nr.40003052790, C=LV - has private key False by CN=VAS Latvijas Pasts SSI(RCA), OU=Sertifikacijas pakalpojumi, O=VAS Latvijas Pasts - Vien.reg.Nr.40003052790, C=LV
	Certificate (some fields): for CN=Certum Trusted Network CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL - has private key False by CN=Certum Trusted Network CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL
	Certificate (some fields): for CN=Sonera Class1 CA, O=Sonera, C=FI - has private key False by CN=Sonera Class1 CA, O=Sonera, C=FI
	Certificate (some fields): for CN=NetLock Arany (Class Gold) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU - has private key False by CN=NetLock Arany (Class Gold) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU
	Certificate (some fields): for CN=DigiCert Assured ID Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US - has private key False by CN=DigiCert Assured ID Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
	Certificate (some fields): for CN=Certipost E-Trust TOP Root CA, O=Certipost s.a./n.v., C=BE - has private key False by CN=Certipost E-Trust TOP Root CA, O=Certipost s.a./n.v., C=BE
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for O=ACNLB, C=SI - has private key False by O=ACNLB, C=SI
	Certificate (some fields): for C=BG + O=InfoNotary PLC + DC=root-ca + CN=InfoNotary CSP Root + OU=InfoNotary CSP Root + E=csp@infonotary.com - has private key False by C=BG + O=InfoNotary PLC + DC=root-ca + CN=InfoNotary CSP Root + OU=InfoNotary CSP Root + E=csp@infonotary.com
	Certificate (some fields): for CN=Halcom CA FO, O=Halcom, C=SI - has private key False by CN=Halcom CA FO, O=Halcom, C=SI
	Certificate (some fields): for CN=GeoTrust Primary Certification Authority - G3, OU=(c) 2008 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Primary Certification Authority - G3, OU=(c) 2008 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE - has private key False by CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE
	Certificate (some fields): for CN=KISA RootCA 1, OU=Korea Certification Authority Central, O=KISA, C=KR - has private key False by CN=KISA RootCA 1, OU=Korea Certification Authority Central, O=KISA, C=KR
	Certificate (some fields): for E=info@netlock.hu, CN=NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU - has private key False by E=info@netlock.hu, CN=NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU
	Certificate (some fields): for CN=SecureSign RootCA2, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA2, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for OU=Certisign Autoridade Certificadora AC1S, O=Certisign Certificadora Digital Ltda., C=BR - has private key False by OU=Certisign Autoridade Certificadora AC1S, O=Certisign Certificadora Digital Ltda., C=BR
	Store Location/Store Name: CurrentUser/CA
	Certificate (some fields): for CN=Root Agency - has private key False by CN=Root Agency
	Certificate (some fields): for OU=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign, OU=VeriSign International Server CA - Class 3, OU="VeriSign, Inc.", O=VeriSign Trust Network - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=VeriSign Class 2 CA - Individual Subscriber, OU="www.verisign.com/repository/RPA Incorp. By Ref.,LIAB.LTD(c)98", OU=VeriSign Trust Network, O="VeriSign, Inc." - has private key False by OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=VeriSign Class 3 Secure Server CA - G3, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G5, OU="(c) 2006 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=VeriSign Class 1 CA Individual Subscriber-Persona Not Validated, OU="www.verisign.com/repository/RPA Incorp. By Ref.,LIAB.LTD(c)98", OU=VeriSign Trust Network, O="VeriSign, Inc." - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Microsoft Windows Hardware Compatibility, OU=Microsoft Corporation, OU=Microsoft Windows Hardware Compatibility Intermediate CA, OU=Copyright (c) 1997 Microsoft Corp. - has private key False by CN=Microsoft Root Authority, OU=Microsoft Corporation, OU=Copyright (c) 1997 Microsoft Corp.
	Store Location/Store Name: CurrentUser/Disallowed
	Certificate (some fields): for CN=Microsoft Enforced Licensing Registration Authority CA (SHA1), O=Microsoft Corporation, L=Redmond, S=Washington, C=US - has private key False by CN=Microsoft Root Certificate Authority, DC=microsoft, DC=com
	Certificate (some fields): for E=info@diginotar.nl, CN=DigiNotar Services 1024 CA, O=DigiNotar, C=NL - has private key False by CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US
	Certificate (some fields): for CN=login.yahoo.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=login.live.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for E=info@diginotar.nl, CN=DigiNotar Root CA, O=DigiNotar, C=NL - has private key False by E=info@diginotar.nl, CN=DigiNotar Root CA, O=DigiNotar, C=NL
	Certificate (some fields): for CN=DigiNotar Cyber CA, O=DigiNotar, C=NL - has private key False by CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=DigiNotar PKIoverheid CA Overheid, O=DigiNotar B.V., C=NL - has private key False by CN=Staat der Nederlanden Overheid CA, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for E=info@diginotar.nl, CN=DigiNotar Cyber CA, O=DigiNotar, C=NL - has private key False by CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=Digisign Server ID - (Enrich), OU=457608-K, O=Digicert Sdn. Bhd., C=MY - has private key False by CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net
	Certificate (some fields): for E=info@diginotar.nl, CN=DigiNotar Root CA, O=DigiNotar, C=NL - has private key False by CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US
	Certificate (some fields): for CN=login.yahoo.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for OU=Microsoft Corporation, CN=Microsoft Corporation, L=Redmond, S=Washington, C=US, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU="www.verisign.com/repository/CPS Incorp. by Ref.,LIAB.LTD(c)96", OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for CN=mail.google.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=login.yahoo.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for OU=Software, CN=Microsoft Corporation, L=Washington, S=DC, C=US, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU="www.verisign.com/repository/CPS Incorp. by Ref.,LIAB.LTD(c)96", OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for CN=global trustee, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Global Trustee, O=Global Trustee, STREET=Sea Village 10, L=Tampa, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=DigiNotar PKIoverheid CA Organisatie - G2, O=DigiNotar B.V., C=NL - has private key False by CN=Staat der Nederlanden Organisatie CA - G2, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for CN=Digisign Server ID (Enrich), OU=457608-K, O=Digicert Sdn. Bhd., C=MY - has private key False by CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=login.skype.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for E=info@diginotar.nl, CN=DigiNotar Root CA G2, O=DigiNotar, C=NL - has private key False by E=info@diginotar.nl, CN=DigiNotar Root CA G2, O=DigiNotar, C=NL
	Certificate (some fields): for CN=DigiNotar PKIoverheid CA Overheid en Bedrijven, O=DigiNotar B.V., C=NL - has private key False by CN=Staat der Nederlanden Overheid CA, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for CN=Microsoft Enforced Licensing Intermediate PCA, OU=Copyright (c) 1999 Microsoft Corp., O=Microsoft Corporation, L=Redmond, S=Washington, C=US - has private key False by CN=Microsoft Root Authority, OU=Microsoft Corporation, OU=Copyright (c) 1997 Microsoft Corp.
	Certificate (some fields): for E=info@diginotar.nl, CN=DigiNotar Root CA, O=DigiNotar, C=NL - has private key False by CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US
	Certificate (some fields): for CN=addons.mozilla.org, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=DigiNotar Cyber CA, O=DigiNotar, C=NL - has private key False by CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=Microsoft Enforced Licensing Intermediate PCA, OU=Copyright (c) 1999 Microsoft Corp., O=Microsoft Corporation, L=Redmond, S=Washington, C=US - has private key False by CN=Microsoft Root Authority, OU=Microsoft Corporation, OU=Copyright (c) 1997 Microsoft Corp.
	Certificate (some fields): for CN=www.google.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Store Location/Store Name: CurrentUser/My
	Store Location/Store Name: CurrentUser/Root
	Certificate (some fields): for CN=Microsoft Root Certificate Authority, DC=microsoft, DC=com - has private key False by CN=Microsoft Root Certificate Authority, DC=microsoft, DC=com
	Certificate (some fields): for CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, S=Western Cape, C=ZA - has private key False by CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Microsoft Root Authority, OU=Microsoft Corporation, OU=Copyright (c) 1997 Microsoft Corp. - has private key False by CN=Microsoft Root Authority, OU=Microsoft Corporation, OU=Copyright (c) 1997 Microsoft Corp.
	Certificate (some fields): for CN=Microsoft Authenticode(tm) Root Authority, O=MSFT, C=US - has private key False by CN=Microsoft Authenticode(tm) Root Authority, O=MSFT, C=US
	Certificate (some fields): for CN=Microsoft Root Certificate Authority 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US - has private key False by CN=Microsoft Root Certificate Authority 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
	Certificate (some fields): for OU=Copyright (c) 1997 Microsoft Corp., OU=Microsoft Time Stamping Service Root, OU=Microsoft Corporation, O=Microsoft Trust Network - has private key False by OU=Copyright (c) 1997 Microsoft Corp., OU=Microsoft Time Stamping Service Root, OU=Microsoft Corporation, O=Microsoft Trust Network
	Certificate (some fields): for OU="NO LIABILITY ACCEPTED, (c)97 VeriSign, Inc.", OU=VeriSign Time Stamping Service Root, OU="VeriSign, Inc.", O=VeriSign Trust Network - has private key False by OU="NO LIABILITY ACCEPTED, (c)97 VeriSign, Inc.", OU=VeriSign Time Stamping Service Root, OU="VeriSign, Inc.", O=VeriSign Trust Network
	Certificate (some fields): for OU=Security Communication EV RootCA1, O="SECOM Trust Systems CO.,LTD.", C=JP - has private key False by OU=Security Communication EV RootCA1, O="SECOM Trust Systems CO.,LTD.", C=JP
	Certificate (some fields): for CN=D-TRUST Root Class 3 CA 2007, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 3 CA 2007, O=D-Trust GmbH, C=DE
	Certificate (some fields): for OU=certSIGN ROOT CA, O=certSIGN, C=RO - has private key False by OU=certSIGN ROOT CA, O=certSIGN, C=RO
	Certificate (some fields): for E=scr@registradores.org, STREET=Principe de Vergara 72 28006 Madrid, CN=Certificado de la Clave Principal, OU=Certificado Raiz, OU=Certificado Propio, O=Servicio de Certificacion del Colegio de Registradores (SCR), C=es - has private key False by E=scr@registradores.org, STREET=Principe de Vergara 72 28006 Madrid, CN=Certificado de la Clave Principal, OU=Certificado Raiz, OU=Certificado Propio, O=Servicio de Certificacion del Colegio de Registradores (SCR), C=es
	Certificate (some fields): for CN=VRK Gov. Root CA, OU=Varmennepalvelut, OU=Certification Authority Services, O=Vaestorekisterikeskus CA, S=Finland, C=FI - has private key False by CN=VRK Gov. Root CA, OU=Varmennepalvelut, OU=Certification Authority Services, O=Vaestorekisterikeskus CA, S=Finland, C=FI
	Certificate (some fields): for CN=Certeurope Root CA 2, OU=0002 434202180, O=Certeurope, C=FR - has private key False by CN=Certeurope Root CA 2, OU=0002 434202180, O=Certeurope, C=FR
	Certificate (some fields): for CN=Correo Uruguayo - Root CA, OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY - has private key False by CN=Correo Uruguayo - Root CA, OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY
	Certificate (some fields): for C=IL, O=ComSign, CN=ComSign Secured CA - has private key False by C=IL, O=ComSign, CN=ComSign Secured CA
	Certificate (some fields): for CN=AffirmTrust Commercial, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Commercial, O=AffirmTrust, C=US
	Certificate (some fields): for CN=CertRSA01, OU=ROOTCA, O=KISA, C=KR - has private key False by CN=CertRSA01, OU=ROOTCA, O=KISA, C=KR
	Certificate (some fields): for O=Government Root Certification Authority, C=TW - has private key False by O=Government Root Certification Authority, C=TW
	Certificate (some fields): for CN=Class 3TS Primary CA, O=Certplus, C=FR - has private key False by CN=Class 3TS Primary CA, O=Certplus, C=FR
	Certificate (some fields): for CN=Actalis Authentication Root CA, O=Actalis S.p.A./03358520967, L=Milan, C=IT - has private key False by CN=Actalis Authentication Root CA, O=Actalis S.p.A./03358520967, L=Milan, C=IT
	Certificate (some fields): for CN=thawte Primary Root CA - G3, OU="(c) 2008 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US - has private key False by CN=thawte Primary Root CA - G3, OU="(c) 2008 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US
	Certificate (some fields): for O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Aralik 2007, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi - has private key False by O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Aralik 2007, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=Public Notary Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU - has private key False by CN=Public Notary Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU
	Certificate (some fields): for E=pkiadmin@trustcentre.co.za, CN=SAPO Class 2 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA - has private key False by E=pkiadmin@trustcentre.co.za, CN=SAPO Class 2 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA
	Certificate (some fields): for OU=Trustis EVS Root CA, O=Trustis Limited, C=GB - has private key False by OU=Trustis EVS Root CA, O=Trustis Limited, C=GB
	Certificate (some fields): for CN=NetLock Platina (Class Platinum) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU - has private key False by CN=NetLock Platina (Class Platinum) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST (UPS) RootCA, OU=United Parcel Service, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST (UPS) RootCA, OU=United Parcel Service, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=WellsSecure Public Root Certificate Authority, OU=Wells Fargo Bank NA, O=Wells Fargo WellsSecure, C=US - has private key False by CN=WellsSecure Public Root Certificate Authority, OU=Wells Fargo Bank NA, O=Wells Fargo WellsSecure, C=US
	Certificate (some fields): for CN=Telekom-Control-Kommission Top 1, O=Telekom-Control-Kommission, C=AT - has private key False by CN=Telekom-Control-Kommission Top 1, O=Telekom-Control-Kommission, C=AT
	Certificate (some fields): for CN=GeoTrust Universal CA, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Universal CA, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=A-Trust-Qual-01, OU=A-Trust-Qual-01, O=A-Trust Ges. fr Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-Qual-01, OU=A-Trust-Qual-01, O=A-Trust Ges. fr Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 1 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network - has private key False by E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 1 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
	Certificate (some fields): for CN=D-TRUST Qualified Root CA 1 2007:PN, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Qualified Root CA 1 2007:PN, O=D-Trust GmbH, C=DE
	Certificate (some fields): for CN=NetLock Expressz (Class C) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU - has private key False by CN=NetLock Expressz (Class C) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU
	Certificate (some fields): for C=IL, O=ComSign, CN=ComSign CA - has private key False by C=IL, O=ComSign, CN=ComSign CA
	Certificate (some fields): for CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for C=ES, O=EDICOM, OU=PKI, CN=ACEDICOM Root - has private key False by C=ES, O=EDICOM, OU=PKI, CN=ACEDICOM Root
	Certificate (some fields): for E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Hongkong Post Root CA, O=Hongkong Post, C=HK - has private key False by CN=Hongkong Post Root CA, O=Hongkong Post, C=HK
	Certificate (some fields): for CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW - has private key False by CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW
	Certificate (some fields): for CN=Cisco Root CA 2048, O=Cisco Systems - has private key False by CN=Cisco Root CA 2048, O=Cisco Systems
	Certificate (some fields): for CN=QuoVadis Root Certification Authority, OU=Root Certification Authority, O=QuoVadis Limited, C=BM - has private key False by CN=QuoVadis Root Certification Authority, OU=Root Certification Authority, O=QuoVadis Limited, C=BM
	Certificate (some fields): for CN=GeoTrust Global CA, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Global CA, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=e-Guven Kok Elektronik Sertifika Hizmet Saglayicisi, O=Elektronik Bilgi Guvenligi A.S., C=TR - has private key False by CN=e-Guven Kok Elektronik Sertifika Hizmet Saglayicisi, O=Elektronik Bilgi Guvenligi A.S., C=TR
	Certificate (some fields): for E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano - has private key False by E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano
	Certificate (some fields): for CN=GTE CyberTrust Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US - has private key False by CN=GTE CyberTrust Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=Buypass Class 3 Root CA, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 3 Root CA, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for CN=DST Root CA X3, O=Digital Signature Trust Co. - has private key False by CN=DST Root CA X3, O=Digital Signature Trust Co.
	Certificate (some fields): for CN=CA DATEV BT 01, O=DATEV eG, C=DE - has private key False by CN=CA DATEV BT 01, O=DATEV eG, C=DE
	Certificate (some fields): for CN=Equifax Secure eBusiness CA-1, O=Equifax Secure Inc., C=US - has private key False by CN=Equifax Secure eBusiness CA-1, O=Equifax Secure Inc., C=US
	Certificate (some fields): for E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=Certification & PKI, O=ANCE, C=TN - has private key False by E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=Certification & PKI, O=ANCE, C=TN
	Certificate (some fields): for CN=SwissSign Gold CA - G2, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Gold CA - G2, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=AffirmTrust Premium, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Premium, O=AffirmTrust, C=US
	Certificate (some fields): for CN=Hongkong Post Root CA 1, O=Hongkong Post, C=HK - has private key False by CN=Hongkong Post Root CA 1, O=Hongkong Post, C=HK
	Certificate (some fields): for CN=Posta CA Root, CN=AIA, CN=Public Key Services, CN=Services, CN=Configuration, DC=ca, DC=posta, DC=rs - has private key False by CN=Posta CA Root, CN=AIA, CN=Public Key Services, CN=Services, CN=Configuration, DC=ca, DC=posta, DC=rs
	Certificate (some fields): for CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3 - has private key False by CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3
	Certificate (some fields): for CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE - has private key False by CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
	Certificate (some fields): for CN=A-Trust-nQual-03, OU=A-Trust-nQual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-nQual-03, OU=A-Trust-nQual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for CN=Class 3 Primary CA, O=Certplus, C=FR - has private key False by CN=Class 3 Primary CA, O=Certplus, C=FR
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for OU=I.CA - Accredited Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Qualified Certification Authority, 09/2009", C=CZ - has private key False by OU=I.CA - Accredited Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Qualified Certification Authority, 09/2009", C=CZ
	Certificate (some fields): for OU=Equifax Secure Certificate Authority, O=Equifax, C=US - has private key False by OU=Equifax Secure Certificate Authority, O=Equifax, C=US
	Certificate (some fields): for CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=USERTrust ECC Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US - has private key False by CN=USERTrust ECC Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US
	Certificate (some fields): for OU=Certisign Autoridade Certificadora AC3S, O=Certisign Certificadora Digital Ltda., L=Rio de Janeiro, S=Rio de Janeiro, C=BR - has private key False by OU=Certisign Autoridade Certificadora AC3S, O=Certisign Certificadora Digital Ltda., L=Rio de Janeiro, S=Rio de Janeiro, C=BR
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=main01@ipsca.com, CN=ipsCA Main CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES - has private key False by E=main01@ipsca.com, CN=ipsCA Main CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST (NRF) RootCA, OU=National Retail Federation, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST (NRF) RootCA, OU=National Retail Federation, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW - has private key False by CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW
	Certificate (some fields): for CN=ANF Server CA, SERIALNUMBER=G63287510, OU=ANF Clase 1 CA, O=ANF Autoridad de Certificaci¢n, L=Barcelona (see current address at https://www.anf.es/address/), S=Barcelona, C=ES - has private key False by CN=ANF Server CA, SERIALNUMBER=G63287510, OU=ANF Clase 1 CA, O=ANF Autoridad de Certificaci¢n, L=Barcelona (see current address at https://www.anf.es/address/), S=Barcelona, C=ES
	Certificate (some fields): for OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=pkiadmin@trustcentre.co.za, CN=SAPO Class 4 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA - has private key False by E=pkiadmin@trustcentre.co.za, CN=SAPO Class 4 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA
	Certificate (some fields): for CN=AC Ra¡z Certic mara S.A., O=Sociedad Cameral de Certificaci¢n Digital - Certic mara S.A., C=CO - has private key False by CN=AC Ra¡z Certic mara S.A., O=Sociedad Cameral de Certificaci¢n Digital - Certic mara S.A., C=CO
	Certificate (some fields): for CN=Echoworx Root CA2, OU=Certification Services, O=Echoworx Corporation, L=Toronto, S=Ontario, C=CA - has private key False by CN=Echoworx Root CA2, OU=Certification Services, O=Echoworx Corporation, L=Toronto, S=Ontario, C=CA
	Certificate (some fields): for CN=Common Policy, OU=FBCA, O=U.S. Government, C=us - has private key False by CN=Common Policy, OU=FBCA, O=U.S. Government, C=us
	Certificate (some fields): for CN=SecureSign RootCA1, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA1, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for CN=QuoVadis Root CA 2, O=QuoVadis Limited, C=BM - has private key False by CN=QuoVadis Root CA 2, O=QuoVadis Limited, C=BM
	Certificate (some fields): for E=pki@sk.ee, CN=EE Certification Centre Root CA, O=AS Sertifitseerimiskeskus, C=EE - has private key False by E=pki@sk.ee, CN=EE Certification Centre Root CA, O=AS Sertifitseerimiskeskus, C=EE
	Certificate (some fields): for CN=LuxTrust Global Root, O=LuxTrust s.a., C=LU - has private key False by CN=LuxTrust Global Root, O=LuxTrust s.a., C=LU
	Certificate (some fields): for CN=E-ME SSI (RCA), OU=Sertifikacijas pakalpojumu dala, C=LV - has private key False by CN=E-ME SSI (RCA), OU=Sertifikacijas pakalpojumu dala, C=LV
	Certificate (some fields): for CN=VeriSign Class 4 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 4 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Swiss Government Root CA II, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH - has private key False by CN=Swiss Government Root CA II, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH
	Certificate (some fields): for CN=Gatekeeper Root CA, OU=Gatekeeper PKI, O=eSign Australia - has private key False by CN=Gatekeeper Root CA, OU=Gatekeeper PKI, O=eSign Australia
	Certificate (some fields): for CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE - has private key False by CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE
	Certificate (some fields): for CN=E-CERT ROOT CA, E=sclientes@ccs.cl, OU=Autoridad Certificadora, O=E-CERTCHILE, L=Santiago, S=Region Metropolitana, C=CL - has private key False by CN=E-CERT ROOT CA, E=sclientes@ccs.cl, OU=Autoridad Certificadora, O=E-CERTCHILE, L=Santiago, S=Region Metropolitana, C=CL
	Certificate (some fields): for O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri - has private key False by O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri
	Certificate (some fields): for CN=ANCERT Certificados Notariales, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados Notariales, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES
	Certificate (some fields): for CN=CCA India 2011, O=India PKI, C=IN - has private key False by CN=CCA India 2011, O=India PKI, C=IN
	Certificate (some fields): for CN=S-TRUST Authentication and Encryption Root CA 2005:PN, O=Deutscher Sparkassen Verlag GmbH, L=Stuttgart, S=Baden-Wuerttemberg (BW), C=DE - has private key False by CN=S-TRUST Authentication and Encryption Root CA 2005:PN, O=Deutscher Sparkassen Verlag GmbH, L=Stuttgart, S=Baden-Wuerttemberg (BW), C=DE
	Certificate (some fields): for CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, S=Western Cape, C=ZA - has private key False by CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, S=Western Cape, C=ZA
	Certificate (some fields): for OU=DST-Entrust GTI CA, O=Digital Signature Trust Co., C=US - has private key False by OU=DST-Entrust GTI CA, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE - has private key False by CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE
	Certificate (some fields): for CN=Root CA, OU=GPKI, O=Government of Korea, C=KR - has private key False by CN=Root CA, OU=GPKI, O=Government of Korea, C=KR
	Certificate (some fields): for OU=AC RAIZ FNMT-RCM, O=FNMT-RCM, C=ES - has private key False by OU=AC RAIZ FNMT-RCM, O=FNMT-RCM, C=ES
	Certificate (some fields): for CN=AffirmTrust Premium ECC, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Premium ECC, O=AffirmTrust, C=US
	Certificate (some fields): for CN=XRamp Global Certification Authority, O=XRamp Security Services Inc, OU=www.xrampsecurity.com, C=US - has private key False by CN=XRamp Global Certification Authority, O=XRamp Security Services Inc, OU=www.xrampsecurity.com, C=US
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST RootCA X1, OU=DSTCA X1, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST RootCA X1, OU=DSTCA X1, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=Starfield Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Starfield Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi - has private key False by O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=AC RAIZ DNIE, OU=DNIE, O=DIRECCION GENERAL DE LA POLICIA, C=ES - has private key False by CN=AC RAIZ DNIE, OU=DNIE, O=DIRECCION GENERAL DE LA POLICIA, C=ES
	Certificate (some fields): for CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US - has private key False by CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
	Certificate (some fields): for OU=POSTArCA, O=POSTA, C=SI - has private key False by OU=POSTArCA, O=POSTA, C=SI
	Certificate (some fields): for CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE - has private key False by CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE
	Certificate (some fields): for E=pkiadmin@trustcentre.co.za, CN=SAPO Class 3 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA - has private key False by E=pkiadmin@trustcentre.co.za, CN=SAPO Class 3 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA
	Certificate (some fields): for OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=Certigna, O=Dhimyotis, C=FR - has private key False by CN=Certigna, O=Dhimyotis, C=FR
	Certificate (some fields): for CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, C=ES - has private key False by CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, C=ES
	Certificate (some fields): for CN=TC TrustCenter Class 2 CA II, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Class 2 CA II, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for C=IL, O=ComSign Ltd., CN=ComSign Global Root CA - has private key False by C=IL, O=ComSign Ltd., CN=ComSign Global Root CA
	Certificate (some fields): for OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=US - has private key False by OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=US
	Certificate (some fields): for CN=NetLock Kozjegyzoi (Class A) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, S=Hungary, C=HU - has private key False by CN=NetLock Kozjegyzoi (Class A) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, S=Hungary, C=HU
	Certificate (some fields): for CN=CA DATEV STD 02, O=DATEV eG, C=DE - has private key False by CN=CA DATEV STD 02, O=DATEV eG, C=DE
	Certificate (some fields): for OU=DSTCA E2, O=Digital Signature Trust Co., C=US - has private key False by OU=DSTCA E2, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for O=Prvni certifikacni autorita a.s., CN=I.CA - Standard root certificate, C=CZ - has private key False by O=Prvni certifikacni autorita a.s., CN=I.CA - Standard root certificate, C=CZ
	Certificate (some fields): for CN=thawte Primary Root CA - G2, OU="(c) 2007 thawte, Inc. - For authorized use only", O="thawte, Inc.", C=US - has private key False by CN=thawte Primary Root CA - G2, OU="(c) 2007 thawte, Inc. - For authorized use only", O="thawte, Inc.", C=US
	Certificate (some fields): for CN=GeoTrust Global CA 2, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Global CA 2, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=Autoridade Certificadora Raiz Brasileira v2, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR - has private key False by CN=Autoridade Certificadora Raiz Brasileira v2, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR
	Certificate (some fields): for E=ca@firmaprofesional.com, CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, L=C/ Muntaner 244 Barcelona, C=ES - has private key False by E=ca@firmaprofesional.com, CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, L=C/ Muntaner 244 Barcelona, C=ES
	Certificate (some fields): for CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US - has private key False by CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
	Certificate (some fields): for CN=Serasa Certificate Authority I, OU=Serasa CA I, O=Serasa S.A., C=BR - has private key False by CN=Serasa Certificate Authority I, OU=Serasa CA I, O=Serasa S.A., C=BR
	Certificate (some fields): for CN=TC TrustCenter Class 4 CA II, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Class 4 CA II, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Certipost E-Trust Primary Normalised CA, O=Certipost s.a./n.v., C=BE - has private key False by CN=Certipost E-Trust Primary Normalised CA, O=Certipost s.a./n.v., C=BE
	Certificate (some fields): for OID.0.9.2342.19200300.100.1.3=ca@digsigtrust.com, CN=Baltimore EZ by DST, O=Digital Signature Trust Co., C=US - has private key False by OID.0.9.2342.19200300.100.1.3=ca@digsigtrust.com, CN=Baltimore EZ by DST, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=TC TrustCenter Time Stamping CA, OU=TC TrustCenter Time Stamping CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by CN=TC TrustCenter Time Stamping CA, OU=TC TrustCenter Time Stamping CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for CN=SwissSign Platinum Root CA - G3, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Platinum Root CA - G3, O=SwissSign AG, C=CH
	Certificate (some fields): for OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Swiss Government Root CA I, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH - has private key False by CN=Swiss Government Root CA I, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH
	Certificate (some fields): for CN=PostSignum Root QCA 2, O="Cesk posta, s.p. [IC 47114983]", C=CZ - has private key False by CN=PostSignum Root QCA 2, O="Cesk posta, s.p. [IC 47114983]", C=CZ
	Certificate (some fields): for CN=Buypass Class 2 CA 1, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 2 CA 1, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for CN=Root CA Generalitat Valenciana, OU=PKIGVA, O=Generalitat Valenciana, C=ES - has private key False by CN=Root CA Generalitat Valenciana, OU=PKIGVA, O=Generalitat Valenciana, C=ES
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=COMODO ECC Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=COMODO ECC Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=Serasa Certificate Authority III, OU=Serasa CA III, O=Serasa S.A., C=BR - has private key False by CN=Serasa Certificate Authority III, OU=Serasa CA III, O=Serasa S.A., C=BR
	Certificate (some fields): for CN=KEYNECTIS ROOT CA, OU=ROOT, O=KEYNECTIS, C=FR - has private key False by CN=KEYNECTIS ROOT CA, OU=ROOT, O=KEYNECTIS, C=FR
	Certificate (some fields): for CN=SwissSign Silver CA - G2, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Silver CA - G2, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US - has private key False by CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US - has private key False by CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=CCA India 2007, O=India PKI, C=IN - has private key False by CN=CCA India 2007, O=India PKI, C=IN
	Certificate (some fields): for CN=VI Registru Centras RCSC (RootCA), OU=Registru Centro Sertifikavimo Centras, O=VI Registru Centras - I.k. 124110246, C=LT - has private key False by CN=VI Registru Centras RCSC (RootCA), OU=Registru Centro Sertifikavimo Centras, O=VI Registru Centras - I.k. 124110246, C=LT
	Certificate (some fields): for CN=D-TRUST Root Class 3 CA 2 EV 2009, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 3 CA 2 EV 2009, O=D-Trust GmbH, C=DE
	Certificate (some fields): for OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for OU=Application CA G2, O=LGPKI, C=JP - has private key False by OU=Application CA G2, O=LGPKI, C=JP
	Certificate (some fields): for CN=TC TrustCenter Universal CA III, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Universal CA III, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for CN=CA DATEV INT 02, O=DATEV eG, C=DE - has private key False by CN=CA DATEV INT 02, O=DATEV eG, C=DE
	Certificate (some fields): for CN=Wells Fargo Root Certificate Authority, OU=Wells Fargo Certification Authority, O=Wells Fargo, C=US - has private key False by CN=Wells Fargo Root Certificate Authority, OU=Wells Fargo Certification Authority, O=Wells Fargo, C=US
	Certificate (some fields): for CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for CN=thawte Primary Root CA, OU="(c) 2006 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US - has private key False by CN=thawte Primary Root CA, OU="(c) 2006 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US
	Certificate (some fields): for CN=Actalis Authentication CA G1, O=Actalis S.p.A./03358520967, L=Milano, C=IT - has private key False by CN=Actalis Authentication CA G1, O=Actalis S.p.A./03358520967, L=Milano, C=IT
	Certificate (some fields): for CN=Verizon Global Root CA, OU=OmniRoot, O=Verizon Business, C=US - has private key False by CN=Verizon Global Root CA, OU=OmniRoot, O=Verizon Business, C=US
	Certificate (some fields): for CN=GTE CyberTrust Root, O=GTE Corporation, C=US - has private key False by CN=GTE CyberTrust Root, O=GTE Corporation, C=US
	Certificate (some fields): for OU=I.CA - Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Standard Certification Authority, 09/2009", C=CZ - has private key False by OU=I.CA - Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Standard Certification Authority, 09/2009", C=CZ
	Certificate (some fields): for OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for OID.0.9.2342.19200300.100.1.3=correo_cert@correo.com.uy, CN=SERVICIOS DE CERTIFICACION - A.N.C., OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY - has private key False by OID.0.9.2342.19200300.100.1.3=correo_cert@correo.com.uy, CN=SERVICIOS DE CERTIFICACION - A.N.C., OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY
	Certificate (some fields): for CN=Federal Common Policy CA, OU=FPKI, O=U.S. Government, C=US - has private key False by CN=Federal Common Policy CA, OU=FPKI, O=U.S. Government, C=US
	Certificate (some fields): for CN=Microsoft Root Certificate Authority 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US - has private key False by CN=Microsoft Root Certificate Authority 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
	Certificate (some fields): for CN=Autoridade Certificadora Raiz Brasileira, S=DF, L=Brasilia, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR - has private key False by CN=Autoridade Certificadora Raiz Brasileira, S=DF, L=Brasilia, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR
	Certificate (some fields): for CN=SecureSign RootCA3, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA3, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for E=a-cert@argedaten.at, O=Arge Daten Oesterreichische Gesellschaft fuer Datenschutz, L=Vienna, S=Austria, C=AT - has private key False by E=a-cert@argedaten.at, O=Arge Daten Oesterreichische Gesellschaft fuer Datenschutz, L=Vienna, S=Austria, C=AT
	Certificate (some fields): for CN=GeoTrust Primary Certification Authority - G2, OU=(c) 2007 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Primary Certification Authority - G2, OU=(c) 2007 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=SwissSign Silver Root CA - G3, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Silver Root CA - G3, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See http://www.entrust.net/legal-terms, O="Entrust, Inc.", C=US - has private key False by CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See http://www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
	Certificate (some fields): for CN=TC TrustCenter Universal CA II, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Universal CA II, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for C=TR, O=EBG Bilisim Teknolojileri ve Hizmetleri A.S., CN=EBG Elektronik Sertifika Hizmet Saglayicisi - has private key False by C=TR, O=EBG Bilisim Teknolojileri ve Hizmetleri A.S., CN=EBG Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for CN=CNNIC ROOT, O=CNNIC, C=CN - has private key False by CN=CNNIC ROOT, O=CNNIC, C=CN
	Certificate (some fields): for CN=Certificado Empresarial Clase-A, O=Certicamara S.A. Entidad de Certificacion, L=Carrera 9 16-21 Bogota, C=CO - has private key False by CN=Certificado Empresarial Clase-A, O=Certicamara S.A. Entidad de Certificacion, L=Carrera 9 16-21 Bogota, C=CO
	Certificate (some fields): for E=info@e-szigno.hu, CN=Microsec e-Szigno Root CA 2009, O=Microsec Ltd., L=Budapest, C=HU - has private key False by E=info@e-szigno.hu, CN=Microsec e-Szigno Root CA 2009, O=Microsec Ltd., L=Budapest, C=HU
	Certificate (some fields): for CN=Macao Post eSignTrust Root Certification Authority, O=Macao Post, C=MO - has private key False by CN=Macao Post eSignTrust Root Certification Authority, O=Macao Post, C=MO
	Certificate (some fields): for CN=NetLock Uzleti (Class B) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU - has private key False by CN=NetLock Uzleti (Class B) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU
	Certificate (some fields): for CN=SecureTrust CA, O=SecureTrust Corporation, C=US - has private key False by CN=SecureTrust CA, O=SecureTrust Corporation, C=US
	Certificate (some fields): for CN=TDC OCES CA, O=TDC, C=DK - has private key False by CN=TDC OCES CA, O=TDC, C=DK
	Certificate (some fields): for CN=America Online Root Certification Authority 2, O=America Online Inc., C=US - has private key False by CN=America Online Root Certification Authority 2, O=America Online Inc., C=US
	Certificate (some fields): for CN=Deutsche Telekom Root CA 2, OU=T-TeleSec Trust Center, O=Deutsche Telekom AG, C=DE - has private key False by CN=Deutsche Telekom Root CA 2, OU=T-TeleSec Trust Center, O=Deutsche Telekom AG, C=DE
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for CN=UCA Root, O=UniTrust, C=CN - has private key False by CN=UCA Root, O=UniTrust, C=CN
	Certificate (some fields): for OU=DSTCA E1, O=Digital Signature Trust Co., C=US - has private key False by OU=DSTCA E1, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=ComSign Advanced Security CA - has private key False by CN=ComSign Advanced Security CA
	Certificate (some fields): for CN=TC TrustCenter Class 3 CA II, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Class 3 CA II, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for CN=Halcom CA PO 2, O=Halcom, C=SI - has private key False by CN=Halcom CA PO 2, O=Halcom, C=SI
	Certificate (some fields): for OU=sigov-ca, O=state-institutions, C=si - has private key False by OU=sigov-ca, O=state-institutions, C=si
	Certificate (some fields): for OU=ApplicationCA, O=Japanese Government, C=JP - has private key False by OU=ApplicationCA, O=Japanese Government, C=JP
	Certificate (some fields): for CN=Autoridad de Certificacion de la Abogacia, O=Consejo General de la Abogacia NIF:Q-2863006I, C=ES - has private key False by CN=Autoridad de Certificacion de la Abogacia, O=Consejo General de la Abogacia NIF:Q-2863006I, C=ES
	Certificate (some fields): for CN=ANCERT Certificados CGN V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados CGN V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES
	Certificate (some fields): for CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US - has private key False by CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US
	Certificate (some fields): for E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon, OID.2.5.4.45=#030F005345432D3833303130312D395639 - has private key False by E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon, OID.2.5.4.45=#030F005345432D3833303130312D395639
	Certificate (some fields): for O=SecureNet CA Class B, C=au - has private key False by O=SecureNet CA Class B, C=au
	Certificate (some fields): for E=admin@digsigtrust.com, CN=ABA.ECOM Root CA, O="ABA.ECOM, INC.", L=Washington, S=DC, C=US - has private key False by E=admin@digsigtrust.com, CN=ABA.ECOM Root CA, O="ABA.ECOM, INC.", L=Washington, S=DC, C=US
	Certificate (some fields): for O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi - has private key False by O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Chambers of Commerce Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU - has private key False by CN=Chambers of Commerce Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU
	Certificate (some fields): for CN=Swisscom Root CA 2, OU=Digital Certificate Services, O=Swisscom, C=ch - has private key False by CN=Swisscom Root CA 2, OU=Digital Certificate Services, O=Swisscom, C=ch
	Certificate (some fields): for CN=Common Policy, OU=FBCA, O=U.S. Government, C=us - has private key False by CN=Common Policy, OU=FBCA, O=U.S. Government, C=us
	Certificate (some fields): for OU=DST (ANX Network) CA, O=Digital Signature Trust Co., C=US - has private key False by OU=DST (ANX Network) CA, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=GPKIRootCA1, OU=GPKI, O=Government of Korea, C=KR - has private key False by CN=GPKIRootCA1, OU=GPKI, O=Government of Korea, C=KR
	Certificate (some fields): for CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2 - has private key False by CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2
	Certificate (some fields): for O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri - has private key False by O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri
	Certificate (some fields): for CN=Certipost E-Trust Primary Qualified CA, O=Certipost s.a./n.v., C=BE - has private key False by CN=Certipost E-Trust Primary Qualified CA, O=Certipost s.a./n.v., C=BE
	Certificate (some fields): for OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Class 2 Primary CA, O=Certplus, C=FR - has private key False by CN=Class 2 Primary CA, O=Certplus, C=FR
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 1 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 1 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US - has private key False by CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US
	Certificate (some fields): for CN=Autoridade Certificadora Raiz Brasileira v1, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR - has private key False by CN=Autoridade Certificadora Raiz Brasileira v1, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR
	Certificate (some fields): for CN=eSign Imperito Primary Root CA, OU=Public Secure Services, O=eSign Australia - has private key False by CN=eSign Imperito Primary Root CA, OU=Public Secure Services, O=eSign Australia
	Certificate (some fields): for CN=Visa eCommerce Root, OU=Visa International Service Association, O=VISA, C=US - has private key False by CN=Visa eCommerce Root, OU=Visa International Service Association, O=VISA, C=US
	Certificate (some fields): for CN=ANCERT Certificados Notariales V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados Notariales V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES
	Certificate (some fields): for CN=Chambers of Commerce Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU - has private key False by CN=Chambers of Commerce Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU
	Certificate (some fields): for CN=AdminCA-CD-T01, OU=Certification Authorities, OU=Services, O=admin, C=CH - has private key False by CN=AdminCA-CD-T01, OU=Certification Authorities, OU=Services, O=admin, C=CH
	Certificate (some fields): for CN=TC TrustCenter Universal CA I, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Universal CA I, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for C=ES, L=MADRID, O=MINISTERIO DE TRABAJO E INMIGRACION, OU=SUBDIRECCION GENERAL DE PROCESO DE DATOS, OU=PRESTADOR DE SERVICIOS DE CERTIFICACION MTIN, SERIALNUMBER=S2819001E, CN=AC1 RAIZ MTIN - has private key False by C=ES, L=MADRID, O=MINISTERIO DE TRABAJO E INMIGRACION, OU=SUBDIRECCION GENERAL DE PROCESO DE DATOS, OU=PRESTADOR DE SERVICIOS DE CERTIFICACION MTIN, SERIALNUMBER=S2819001E, CN=AC1 RAIZ MTIN
	Certificate (some fields): for CN=Primary Utility Root CA, OU=Public Secure Services, O=eSign Australia - has private key False by CN=Primary Utility Root CA, OU=Public Secure Services, O=eSign Australia
	Certificate (some fields): for CN=Class 1 Primary CA, O=Certplus, C=FR - has private key False by CN=Class 1 Primary CA, O=Certplus, C=FR
	Certificate (some fields): for E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 3 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network - has private key False by E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 3 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
	Certificate (some fields): for E=ca@digsigtrust.com, CN=Xcert EZ by DST, O=Xcert EZ by DST, L=Salt Lake City, S=Utah, C=US - has private key False by E=ca@digsigtrust.com, CN=Xcert EZ by DST, O=Xcert EZ by DST, L=Salt Lake City, S=Utah, C=US
	Certificate (some fields): for OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST RootCA X2, OU=DSTCA X2, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST RootCA X2, OU=DSTCA X2, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=A-Trust-Qual-02, OU=A-Trust-Qual-02, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-Qual-02, OU=A-Trust-Qual-02, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for OU=ePKI Root Certification Authority, O="Chunghwa Telecom Co., Ltd.", C=TW - has private key False by OU=ePKI Root Certification Authority, O="Chunghwa Telecom Co., Ltd.", C=TW
	Certificate (some fields): for CN=CESAM, OU=0002 542044524, O=NATIXIS, C=FR - has private key False by CN=CESAM, OU=0002 542044524, O=NATIXIS, C=FR
	Certificate (some fields): for O="Prvn¡ certifikacn¡ autorita, a.s.", CN=I.CA - Qualified root certificate, C=CZ - has private key False by O="Prvn¡ certifikacn¡ autorita, a.s.", CN=I.CA - Qualified root certificate, C=CZ
	Certificate (some fields): for E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Certum CA, O=Unizeto Sp. z o.o., C=PL - has private key False by CN=Certum CA, O=Unizeto Sp. z o.o., C=PL
	Certificate (some fields): for CN=VeriSign Class 2 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 2 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Buypass Class 3 CA 1, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 3 CA 1, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for E=igca@sgdn.pm.gouv.fr, CN=IGC/A, OU=DCSSI, O=PM/SGDN, L=Paris, S=France, C=FR - has private key False by E=igca@sgdn.pm.gouv.fr, CN=IGC/A, OU=DCSSI, O=PM/SGDN, L=Paris, S=France, C=FR
	Certificate (some fields): for CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US - has private key False by CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
	Certificate (some fields): for CN=KISA RootCA 3, OU=Korea Certification Authority Central, O=KISA, C=KR - has private key False by CN=KISA RootCA 3, OU=Korea Certification Authority Central, O=KISA, C=KR
	Certificate (some fields): for CN=Cybertrust Global Root, O="Cybertrust, Inc" - has private key False by CN=Cybertrust Global Root, O="Cybertrust, Inc"
	Certificate (some fields): for OU=Security Communication RootCA2, O="SECOM Trust Systems CO.,LTD.", C=JP - has private key False by OU=Security Communication RootCA2, O="SECOM Trust Systems CO.,LTD.", C=JP
	Certificate (some fields): for CN=Swisscom Root CA 1, OU=Digital Certificate Services, O=Swisscom, C=ch - has private key False by CN=Swisscom Root CA 1, OU=Digital Certificate Services, O=Swisscom, C=ch
	Certificate (some fields): for CN=UTN-USERFirst-Network Applications, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Network Applications, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=Starfield Services Root Certificate Authority, OU=http://certificates.starfieldtech.com/repository/, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Starfield Services Root Certificate Authority, OU=http://certificates.starfieldtech.com/repository/, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for CN=SSC Root CA A, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT - has private key False by CN=SSC Root CA A, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT
	Certificate (some fields): for CN=Visa Information Delivery Root CA, OU=Visa International Service Association, O=VISA, C=US - has private key False by CN=Visa Information Delivery Root CA, OU=Visa International Service Association, O=VISA, C=US
	Certificate (some fields): for CN=Staat der Nederlanden Root CA - G2, O=Staat der Nederlanden, C=NL - has private key False by CN=Staat der Nederlanden Root CA - G2, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for CN=OISTE WISeKey Global Root GA CA, OU=OISTE Foundation Endorsed, OU=Copyright (c) 2005, O=WISeKey, C=CH - has private key False by CN=OISTE WISeKey Global Root GA CA, OU=OISTE Foundation Endorsed, OU=Copyright (c) 2005, O=WISeKey, C=CH
	Certificate (some fields): for CN=D-TRUST Root Class 3 CA 2 2009, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 3 CA 2 2009, O=D-Trust GmbH, C=DE
	Certificate (some fields): for CN=UTN - DATACorp SGC, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN - DATACorp SGC, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=SwissSign Platinum CA - G2, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Platinum CA - G2, O=SwissSign AG, C=CH
	Certificate (some fields): for OU=Netrust CA1, O=Netrust Certificate Authority 1, C=SG - has private key False by OU=Netrust CA1, O=Netrust Certificate Authority 1, C=SG
	Certificate (some fields): for CN=T-TeleSec GlobalRoot Class 3, OU=T-Systems Trust Center, O=T-Systems Enterprise Services GmbH, C=DE - has private key False by CN=T-TeleSec GlobalRoot Class 3, OU=T-Systems Trust Center, O=T-Systems Enterprise Services GmbH, C=DE
	Certificate (some fields): for OU=Certisign - Autoridade Certificadora - AC4, O=Certisign Certificadora Digital Ltda., C=BR - has private key False by OU=Certisign - Autoridade Certificadora - AC4, O=Certisign Certificadora Digital Ltda., C=BR
	Certificate (some fields): for CN=CA DATEV INT 01, O=DATEV eG, C=DE - has private key False by CN=CA DATEV INT 01, O=DATEV eG, C=DE
	Certificate (some fields): for CN=A-Trust-nQual-01, OU=A-Trust-nQual-01, O=A-Trust, C=AT - has private key False by CN=A-Trust-nQual-01, OU=A-Trust-nQual-01, O=A-Trust, C=AT
	Certificate (some fields): for CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net - has private key False by CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net
	Certificate (some fields): for CN=China Internet Network Information Center EV Certificates Root, O=China Internet Network Information Center, C=CN - has private key False by CN=China Internet Network Information Center EV Certificates Root, O=China Internet Network Information Center, C=CN
	Certificate (some fields): for OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=CERTICAMARA S.A., O=Entidad de Certificacion Digital Abierta Certicamara S.A., C=CO, L=Bogota AV Calle 26 N 68D-35 - has private key False by CN=CERTICAMARA S.A., O=Entidad de Certificacion Digital Abierta Certicamara S.A., C=CO, L=Bogota AV Calle 26 N 68D-35
	Certificate (some fields): for OU=Certisign - Autoridade Certificadora - AC2, O=Certisign Certificadora Digital Ltda., C=BR - has private key False by OU=Certisign - Autoridade Certificadora - AC2, O=Certisign Certificadora Digital Ltda., C=BR
	Certificate (some fields): for CN=VeriSign Class 3 Public Primary Certification Authority - G5, OU="(c) 2006 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G5, OU="(c) 2006 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Global Chambersign Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU - has private key False by CN=Global Chambersign Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU
	Certificate (some fields): for E=Info@izenpe.com, CN=Izenpe.com, L=Avda del Mediterraneo Etorbidea 3 - 01010 Vitoria-Gasteiz, O=IZENPE S.A. - CIF A-01337260-RMerc.Vitoria-Gasteiz T1055 F62 S8, C=ES - has private key False by E=Info@izenpe.com, CN=Izenpe.com, L=Avda del Mediterraneo Etorbidea 3 - 01010 Vitoria-Gasteiz, O=IZENPE S.A. - CIF A-01337260-RMerc.Vitoria-Gasteiz T1055 F62 S8, C=ES
	Certificate (some fields): for CN=D-TRUST Root Class 2 CA 2007, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 2 CA 2007, O=D-Trust GmbH, C=DE
	Certificate (some fields): for CN=Buypass Class 2 Root CA, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 2 Root CA, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for CN=Go Daddy Root Certificate Authority - G2, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Go Daddy Root Certificate Authority - G2, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US - has private key False by OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US
	Certificate (some fields): for OU=FNMT Clase 2 CA, O=FNMT, C=ES - has private key False by OU=FNMT Clase 2 CA, O=FNMT, C=ES
	Certificate (some fields): for CN=PersonalID Trustworthy RootCA 2011, OU=Certificate Services, O=PersonalID Ltd., C=IL - has private key False by CN=PersonalID Trustworthy RootCA 2011, OU=Certificate Services, O=PersonalID Ltd., C=IL
	Certificate (some fields): for CN=TeliaSonera Root CA v1, O=TeliaSonera - has private key False by CN=TeliaSonera Root CA v1, O=TeliaSonera
	Certificate (some fields): for CN=A-Trust-Qual-03, OU=A-Trust-Qual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-Qual-03, OU=A-Trust-Qual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for E=personal-basic@thawte.com, CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=personal-basic@thawte.com, CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Juur-SK, O=AS Sertifitseerimiskeskus, C=EE, E=pki@sk.ee - has private key False by CN=Juur-SK, O=AS Sertifitseerimiskeskus, C=EE, E=pki@sk.ee
	Certificate (some fields): for CN=DST ACES CA X6, OU=DST ACES, O=Digital Signature Trust, C=US - has private key False by CN=DST ACES CA X6, OU=DST ACES, O=Digital Signature Trust, C=US
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=SSC Root CA B, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT - has private key False by CN=SSC Root CA B, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT
	Certificate (some fields): for OU=sigen-ca, O=state-institutions, C=si - has private key False by OU=sigen-ca, O=state-institutions, C=si
	Certificate (some fields): for CN=StartCom Certification Authority, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL - has private key False by CN=StartCom Certification Authority, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL
	Certificate (some fields): for E=global01@ipsca.com, CN=ipsCA Global CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES - has private key False by E=global01@ipsca.com, CN=ipsCA Global CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES
	Certificate (some fields): for CN=SecureSign RootCA11, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA11, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for OU=Trustis FPS Root CA, O=Trustis Limited, C=GB - has private key False by OU=Trustis FPS Root CA, O=Trustis Limited, C=GB
	Certificate (some fields): for CN=Secure Global CA, O=SecureTrust Corporation, C=US - has private key False by CN=Secure Global CA, O=SecureTrust Corporation, C=US
	Certificate (some fields): for E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano - has private key False by E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano
	Certificate (some fields): for OU=Equifax Secure eBusiness CA-2, O=Equifax Secure, C=US - has private key False by OU=Equifax Secure eBusiness CA-2, O=Equifax Secure, C=US
	Certificate (some fields): for CN=CA DATEV BT 02, O=DATEV eG, C=DE - has private key False by CN=CA DATEV BT 02, O=DATEV eG, C=DE
	Certificate (some fields): for CN=America Online Root Certification Authority 1, O=America Online Inc., C=US - has private key False by CN=America Online Root Certification Authority 1, O=America Online Inc., C=US
	Certificate (some fields): for CN=ECRaizEstado, O=SCEE, C=PT - has private key False by CN=ECRaizEstado, O=SCEE, C=PT
	Certificate (some fields): for CN=Sonera Class2 CA, O=Sonera, C=FI - has private key False by CN=Sonera Class2 CA, O=Sonera, C=FI
	Certificate (some fields): for CN=GeoTrust Universal CA 2, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Universal CA 2, O=GeoTrust Inc., C=US
	Certificate (some fields): for OU=Security Communication RootCA1, O=SECOM Trust.net, C=JP - has private key False by OU=Security Communication RootCA1, O=SECOM Trust.net, C=JP
	Certificate (some fields): for E=personal-premium@thawte.com, CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=personal-premium@thawte.com, CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=VeriSign Universal Root Certification Authority, OU="(c) 2008 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Universal Root Certification Authority, OU="(c) 2008 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon - has private key False by E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon
	Certificate (some fields): for E=info@globaltrust.info, CN=GLOBALTRUST, OU=GLOBALTRUST Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, S=Austria, L=Vienna, C=AT - has private key False by E=info@globaltrust.info, CN=GLOBALTRUST, OU=GLOBALTRUST Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, S=Austria, L=Vienna, C=AT
	Certificate (some fields): for CN=Global Chambersign Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU - has private key False by CN=Global Chambersign Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU
	Certificate (some fields): for CN=GeoTrust Primary Certification Authority, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Primary Certification Authority, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=Serasa Certificate Authority II, OU=Serasa CA II, O=Serasa S.A., C=BR - has private key False by CN=Serasa Certificate Authority II, OU=Serasa CA II, O=Serasa S.A., C=BR
	Certificate (some fields): for E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network - has private key False by E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
	Certificate (some fields): for CN=Izenpe.com, O=IZENPE S.A., C=ES - has private key False by CN=Izenpe.com, O=IZENPE S.A., C=ES
	Certificate (some fields): for E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=ANCE WEB, O=ANCE, C=TN - has private key False by E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=ANCE WEB, O=ANCE, C=TN
	Certificate (some fields): for CN=Certinomis - Autorit‚ Racine, OU=0002 433998903, O=Certinomis, C=FR - has private key False by CN=Certinomis - Autorit‚ Racine, OU=0002 433998903, O=Certinomis, C=FR
	Certificate (some fields): for C=DE, O=Atos, CN=Atos TrustedRoot 2011 - has private key False by C=DE, O=Atos, CN=Atos TrustedRoot 2011
	Certificate (some fields): for CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US - has private key False by CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US
	Certificate (some fields): for CN=CA Disig, O=Disig a.s., L=Bratislava, C=SK - has private key False by CN=CA Disig, O=Disig a.s., L=Bratislava, C=SK
	Certificate (some fields): for E=info@a-cert.at, CN=A-CERT ADVANCED, OU=A-CERT Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, L=Vienna, S=Austria, C=AT - has private key False by E=info@a-cert.at, CN=A-CERT ADVANCED, OU=A-CERT Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, L=Vienna, S=Austria, C=AT
	Certificate (some fields): for CN=AffirmTrust Networking, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Networking, O=AffirmTrust, C=US
	Certificate (some fields): for CN=EC-ACC, OU=Jerarquia Entitats de Certificacio Catalanes, OU=Vegeu https://www.catcert.net/verarrel (c)03, OU=Serveis Publics de Certificacio, O=Agencia Catalana de Certificacio (NIF Q-0801176-I), C=ES - has private key False by CN=EC-ACC, OU=Jerarquia Entitats de Certificacio Catalanes, OU=Vegeu https://www.catcert.net/verarrel (c)03, OU=Serveis Publics de Certificacio, O=Agencia Catalana de Certificacio (NIF Q-0801176-I), C=ES
	Certificate (some fields): for OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US - has private key False by OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Admin-Root-CA, OU=Certification Authorities, OU=Services, O=admin, C=ch - has private key False by CN=Admin-Root-CA, OU=Certification Authorities, OU=Services, O=admin, C=ch
	Certificate (some fields): for OU=RSA Security 2048 V3, O=RSA Security Inc - has private key False by OU=RSA Security 2048 V3, O=RSA Security Inc
	Certificate (some fields): for E=ips@mail.ips.es, CN=IPS SERVIDORES, OU=Certificaciones, O=IPS Seguridad CA, L=BARCELONA, S=BARCELONA, C=ES - has private key False by E=ips@mail.ips.es, CN=IPS SERVIDORES, OU=Certificaciones, O=IPS Seguridad CA, L=BARCELONA, S=BARCELONA, C=ES
	Certificate (some fields): for OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for CN=SSC Root CA C, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT - has private key False by CN=SSC Root CA C, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT
	Certificate (some fields): for E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Microsec e-Szigno Root CA, OU=e-Szigno CA, O=Microsec Ltd., L=Budapest, C=HU - has private key False by CN=Microsec e-Szigno Root CA, OU=e-Szigno CA, O=Microsec Ltd., L=Budapest, C=HU
	Certificate (some fields): for CN=VeriSign Class 3 Public Primary Certification Authority - G4, OU="(c) 2007 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G4, OU="(c) 2007 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for OU=TDC Internet Root CA, O=TDC Internet, C=DK - has private key False by OU=TDC Internet Root CA, O=TDC Internet, C=DK
	Certificate (some fields): for CN=Class 3P Primary CA, O=Certplus, C=FR - has private key False by CN=Class 3P Primary CA, O=Certplus, C=FR
	Certificate (some fields): for CN=Registradores de Espa¤a - CA Ra¡z, OU=Certificado Propio, O=Colegio de Registradores de la Propiedad y Mercantiles de Espa¤a, C=ES - has private key False by CN=Registradores de Espa¤a - CA Ra¡z, OU=Certificado Propio, O=Colegio de Registradores de la Propiedad y Mercantiles de Espa¤a, C=ES
	Certificate (some fields): for CN=GPKIRootCA, OU=GPKI, O=Government of Korea, C=KR - has private key False by CN=GPKIRootCA, OU=GPKI, O=Government of Korea, C=KR
	Certificate (some fields): for E=personal-freemail@thawte.com, CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=personal-freemail@thawte.com, CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=VeriSign Class 1 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 1 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=QuoVadis Root CA 3, O=QuoVadis Limited, C=BM - has private key False by CN=QuoVadis Root CA 3, O=QuoVadis Limited, C=BM
	Certificate (some fields): for CN=TšBITAK UEKAE K”k Sertifika Hizmet Saglayicisi - Srm 3, OU=Kamu Sertifikasyon Merkezi, OU=Ulusal Elektronik ve Kriptoloji Arastirma Enstits - UEKAE, O=Trkiye Bilimsel ve Teknolojik Arastirma Kurumu - TšBITAK, L=Gebze - Kocaeli, C=TR - has private key False by CN=TšBITAK UEKAE K”k Sertifika Hizmet Saglayicisi - Srm 3, OU=Kamu Sertifikasyon Merkezi, OU=Ulusal Elektronik ve Kriptoloji Arastirma Enstits - UEKAE, O=Trkiye Bilimsel ve Teknolojik Arastirma Kurumu - TšBITAK, L=Gebze - Kocaeli, C=TR
	Certificate (some fields): for CN=IGC/A AC racine Etat francais, OU=0002 130007669, O=ANSSI, C=FR - has private key False by CN=IGC/A AC racine Etat francais, OU=0002 130007669, O=ANSSI, C=FR
	Certificate (some fields): for CN=SITHS CA v3, O=Carelink, C=SE - has private key False by CN=SITHS CA v3, O=Carelink, C=SE
	Certificate (some fields): for CN=CA DATEV STD 01, O=DATEV eG, C=DE - has private key False by CN=CA DATEV STD 01, O=DATEV eG, C=DE
	Certificate (some fields): for CN=VeriSign Class 3 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Swedish Government Root Authority v1, O=Swedish Social Insurance Agency, C=SE - has private key False by CN=Swedish Government Root Authority v1, O=Swedish Social Insurance Agency, C=SE
	Certificate (some fields): for CN=ANCERT Certificados CGN, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados CGN, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES
	Certificate (some fields): for CN=Staat der Nederlanden Root CA, O=Staat der Nederlanden, C=NL - has private key False by CN=Staat der Nederlanden Root CA, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for CN=ANCERT Corporaciones de Derecho Publico, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES - has private key False by CN=ANCERT Corporaciones de Derecho Publico, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES
	Certificate (some fields): for CN=UCA Global Root, O=UniTrust, C=CN - has private key False by CN=UCA Global Root, O=UniTrust, C=CN
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=SwissSign Gold Root CA - G3, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Gold Root CA - G3, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=VAS Latvijas Pasts SSI(RCA), OU=Sertifikacijas pakalpojumi, O=VAS Latvijas Pasts - Vien.reg.Nr.40003052790, C=LV - has private key False by CN=VAS Latvijas Pasts SSI(RCA), OU=Sertifikacijas pakalpojumi, O=VAS Latvijas Pasts - Vien.reg.Nr.40003052790, C=LV
	Certificate (some fields): for CN=Certum Trusted Network CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL - has private key False by CN=Certum Trusted Network CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL
	Certificate (some fields): for CN=Sonera Class1 CA, O=Sonera, C=FI - has private key False by CN=Sonera Class1 CA, O=Sonera, C=FI
	Certificate (some fields): for CN=NetLock Arany (Class Gold) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU - has private key False by CN=NetLock Arany (Class Gold) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU
	Certificate (some fields): for CN=DigiCert Assured ID Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US - has private key False by CN=DigiCert Assured ID Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
	Certificate (some fields): for CN=Certipost E-Trust TOP Root CA, O=Certipost s.a./n.v., C=BE - has private key False by CN=Certipost E-Trust TOP Root CA, O=Certipost s.a./n.v., C=BE
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for O=ACNLB, C=SI - has private key False by O=ACNLB, C=SI
	Certificate (some fields): for C=BG + O=InfoNotary PLC + DC=root-ca + CN=InfoNotary CSP Root + OU=InfoNotary CSP Root + E=csp@infonotary.com - has private key False by C=BG + O=InfoNotary PLC + DC=root-ca + CN=InfoNotary CSP Root + OU=InfoNotary CSP Root + E=csp@infonotary.com
	Certificate (some fields): for CN=Halcom CA FO, O=Halcom, C=SI - has private key False by CN=Halcom CA FO, O=Halcom, C=SI
	Certificate (some fields): for CN=GeoTrust Primary Certification Authority - G3, OU=(c) 2008 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Primary Certification Authority - G3, OU=(c) 2008 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE - has private key False by CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE
	Certificate (some fields): for CN=KISA RootCA 1, OU=Korea Certification Authority Central, O=KISA, C=KR - has private key False by CN=KISA RootCA 1, OU=Korea Certification Authority Central, O=KISA, C=KR
	Certificate (some fields): for E=info@netlock.hu, CN=NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU - has private key False by E=info@netlock.hu, CN=NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU
	Certificate (some fields): for CN=SecureSign RootCA2, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA2, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for OU=Certisign Autoridade Certificadora AC1S, O=Certisign Certificadora Digital Ltda., C=BR - has private key False by OU=Certisign Autoridade Certificadora AC1S, O=Certisign Certificadora Digital Ltda., C=BR
	Store Location/Store Name: CurrentUser/TrustedPeople
	Store Location/Store Name: CurrentUser/TrustedPublisher
	Store Location: LocalMachine
	Store Location/Store Name: LocalMachine/AddressBook
	Store Location/Store Name: LocalMachine/AuthRoot
	Certificate (some fields): for OU=Security Communication EV RootCA1, O="SECOM Trust Systems CO.,LTD.", C=JP - has private key False by OU=Security Communication EV RootCA1, O="SECOM Trust Systems CO.,LTD.", C=JP
	Certificate (some fields): for CN=D-TRUST Root Class 3 CA 2007, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 3 CA 2007, O=D-Trust GmbH, C=DE
	Certificate (some fields): for OU=certSIGN ROOT CA, O=certSIGN, C=RO - has private key False by OU=certSIGN ROOT CA, O=certSIGN, C=RO
	Certificate (some fields): for E=scr@registradores.org, STREET=Principe de Vergara 72 28006 Madrid, CN=Certificado de la Clave Principal, OU=Certificado Raiz, OU=Certificado Propio, O=Servicio de Certificacion del Colegio de Registradores (SCR), C=es - has private key False by E=scr@registradores.org, STREET=Principe de Vergara 72 28006 Madrid, CN=Certificado de la Clave Principal, OU=Certificado Raiz, OU=Certificado Propio, O=Servicio de Certificacion del Colegio de Registradores (SCR), C=es
	Certificate (some fields): for CN=VRK Gov. Root CA, OU=Varmennepalvelut, OU=Certification Authority Services, O=Vaestorekisterikeskus CA, S=Finland, C=FI - has private key False by CN=VRK Gov. Root CA, OU=Varmennepalvelut, OU=Certification Authority Services, O=Vaestorekisterikeskus CA, S=Finland, C=FI
	Certificate (some fields): for CN=Certeurope Root CA 2, OU=0002 434202180, O=Certeurope, C=FR - has private key False by CN=Certeurope Root CA 2, OU=0002 434202180, O=Certeurope, C=FR
	Certificate (some fields): for CN=Correo Uruguayo - Root CA, OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY - has private key False by CN=Correo Uruguayo - Root CA, OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY
	Certificate (some fields): for C=IL, O=ComSign, CN=ComSign Secured CA - has private key False by C=IL, O=ComSign, CN=ComSign Secured CA
	Certificate (some fields): for CN=AffirmTrust Commercial, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Commercial, O=AffirmTrust, C=US
	Certificate (some fields): for CN=CertRSA01, OU=ROOTCA, O=KISA, C=KR - has private key False by CN=CertRSA01, OU=ROOTCA, O=KISA, C=KR
	Certificate (some fields): for O=Government Root Certification Authority, C=TW - has private key False by O=Government Root Certification Authority, C=TW
	Certificate (some fields): for CN=Class 3TS Primary CA, O=Certplus, C=FR - has private key False by CN=Class 3TS Primary CA, O=Certplus, C=FR
	Certificate (some fields): for CN=Actalis Authentication Root CA, O=Actalis S.p.A./03358520967, L=Milan, C=IT - has private key False by CN=Actalis Authentication Root CA, O=Actalis S.p.A./03358520967, L=Milan, C=IT
	Certificate (some fields): for CN=thawte Primary Root CA - G3, OU="(c) 2008 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US - has private key False by CN=thawte Primary Root CA - G3, OU="(c) 2008 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US
	Certificate (some fields): for O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Aralik 2007, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi - has private key False by O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Aralik 2007, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=Public Notary Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU - has private key False by CN=Public Notary Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU
	Certificate (some fields): for E=pkiadmin@trustcentre.co.za, CN=SAPO Class 2 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA - has private key False by E=pkiadmin@trustcentre.co.za, CN=SAPO Class 2 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA
	Certificate (some fields): for OU=Trustis EVS Root CA, O=Trustis Limited, C=GB - has private key False by OU=Trustis EVS Root CA, O=Trustis Limited, C=GB
	Certificate (some fields): for CN=NetLock Platina (Class Platinum) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU - has private key False by CN=NetLock Platina (Class Platinum) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST (UPS) RootCA, OU=United Parcel Service, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST (UPS) RootCA, OU=United Parcel Service, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=WellsSecure Public Root Certificate Authority, OU=Wells Fargo Bank NA, O=Wells Fargo WellsSecure, C=US - has private key False by CN=WellsSecure Public Root Certificate Authority, OU=Wells Fargo Bank NA, O=Wells Fargo WellsSecure, C=US
	Certificate (some fields): for CN=Telekom-Control-Kommission Top 1, O=Telekom-Control-Kommission, C=AT - has private key False by CN=Telekom-Control-Kommission Top 1, O=Telekom-Control-Kommission, C=AT
	Certificate (some fields): for CN=GeoTrust Universal CA, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Universal CA, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=A-Trust-Qual-01, OU=A-Trust-Qual-01, O=A-Trust Ges. fr Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-Qual-01, OU=A-Trust-Qual-01, O=A-Trust Ges. fr Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 1 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network - has private key False by E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 1 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
	Certificate (some fields): for CN=D-TRUST Qualified Root CA 1 2007:PN, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Qualified Root CA 1 2007:PN, O=D-Trust GmbH, C=DE
	Certificate (some fields): for CN=NetLock Expressz (Class C) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU - has private key False by CN=NetLock Expressz (Class C) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU
	Certificate (some fields): for C=IL, O=ComSign, CN=ComSign CA - has private key False by C=IL, O=ComSign, CN=ComSign CA
	Certificate (some fields): for CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for C=ES, O=EDICOM, OU=PKI, CN=ACEDICOM Root - has private key False by C=ES, O=EDICOM, OU=PKI, CN=ACEDICOM Root
	Certificate (some fields): for E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Hongkong Post Root CA, O=Hongkong Post, C=HK - has private key False by CN=Hongkong Post Root CA, O=Hongkong Post, C=HK
	Certificate (some fields): for CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW - has private key False by CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW
	Certificate (some fields): for CN=Cisco Root CA 2048, O=Cisco Systems - has private key False by CN=Cisco Root CA 2048, O=Cisco Systems
	Certificate (some fields): for CN=QuoVadis Root Certification Authority, OU=Root Certification Authority, O=QuoVadis Limited, C=BM - has private key False by CN=QuoVadis Root Certification Authority, OU=Root Certification Authority, O=QuoVadis Limited, C=BM
	Certificate (some fields): for CN=GeoTrust Global CA, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Global CA, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=e-Guven Kok Elektronik Sertifika Hizmet Saglayicisi, O=Elektronik Bilgi Guvenligi A.S., C=TR - has private key False by CN=e-Guven Kok Elektronik Sertifika Hizmet Saglayicisi, O=Elektronik Bilgi Guvenligi A.S., C=TR
	Certificate (some fields): for E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano - has private key False by E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano
	Certificate (some fields): for CN=GTE CyberTrust Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US - has private key False by CN=GTE CyberTrust Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=Buypass Class 3 Root CA, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 3 Root CA, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for CN=DST Root CA X3, O=Digital Signature Trust Co. - has private key False by CN=DST Root CA X3, O=Digital Signature Trust Co.
	Certificate (some fields): for CN=CA DATEV BT 01, O=DATEV eG, C=DE - has private key False by CN=CA DATEV BT 01, O=DATEV eG, C=DE
	Certificate (some fields): for CN=Equifax Secure eBusiness CA-1, O=Equifax Secure Inc., C=US - has private key False by CN=Equifax Secure eBusiness CA-1, O=Equifax Secure Inc., C=US
	Certificate (some fields): for E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=Certification & PKI, O=ANCE, C=TN - has private key False by E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=Certification & PKI, O=ANCE, C=TN
	Certificate (some fields): for CN=SwissSign Gold CA - G2, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Gold CA - G2, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=AffirmTrust Premium, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Premium, O=AffirmTrust, C=US
	Certificate (some fields): for CN=Hongkong Post Root CA 1, O=Hongkong Post, C=HK - has private key False by CN=Hongkong Post Root CA 1, O=Hongkong Post, C=HK
	Certificate (some fields): for CN=Posta CA Root, CN=AIA, CN=Public Key Services, CN=Services, CN=Configuration, DC=ca, DC=posta, DC=rs - has private key False by CN=Posta CA Root, CN=AIA, CN=Public Key Services, CN=Services, CN=Configuration, DC=ca, DC=posta, DC=rs
	Certificate (some fields): for CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3 - has private key False by CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3
	Certificate (some fields): for CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE - has private key False by CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
	Certificate (some fields): for CN=A-Trust-nQual-03, OU=A-Trust-nQual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-nQual-03, OU=A-Trust-nQual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for CN=Class 3 Primary CA, O=Certplus, C=FR - has private key False by CN=Class 3 Primary CA, O=Certplus, C=FR
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for OU=I.CA - Accredited Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Qualified Certification Authority, 09/2009", C=CZ - has private key False by OU=I.CA - Accredited Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Qualified Certification Authority, 09/2009", C=CZ
	Certificate (some fields): for OU=Equifax Secure Certificate Authority, O=Equifax, C=US - has private key False by OU=Equifax Secure Certificate Authority, O=Equifax, C=US
	Certificate (some fields): for CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=USERTrust ECC Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US - has private key False by CN=USERTrust ECC Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US
	Certificate (some fields): for OU=Certisign Autoridade Certificadora AC3S, O=Certisign Certificadora Digital Ltda., L=Rio de Janeiro, S=Rio de Janeiro, C=BR - has private key False by OU=Certisign Autoridade Certificadora AC3S, O=Certisign Certificadora Digital Ltda., L=Rio de Janeiro, S=Rio de Janeiro, C=BR
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=main01@ipsca.com, CN=ipsCA Main CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES - has private key False by E=main01@ipsca.com, CN=ipsCA Main CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST (NRF) RootCA, OU=National Retail Federation, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST (NRF) RootCA, OU=National Retail Federation, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW - has private key False by CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW
	Certificate (some fields): for CN=ANF Server CA, SERIALNUMBER=G63287510, OU=ANF Clase 1 CA, O=ANF Autoridad de Certificaci¢n, L=Barcelona (see current address at https://www.anf.es/address/), S=Barcelona, C=ES - has private key False by CN=ANF Server CA, SERIALNUMBER=G63287510, OU=ANF Clase 1 CA, O=ANF Autoridad de Certificaci¢n, L=Barcelona (see current address at https://www.anf.es/address/), S=Barcelona, C=ES
	Certificate (some fields): for OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=pkiadmin@trustcentre.co.za, CN=SAPO Class 4 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA - has private key False by E=pkiadmin@trustcentre.co.za, CN=SAPO Class 4 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA
	Certificate (some fields): for CN=AC Ra¡z Certic mara S.A., O=Sociedad Cameral de Certificaci¢n Digital - Certic mara S.A., C=CO - has private key False by CN=AC Ra¡z Certic mara S.A., O=Sociedad Cameral de Certificaci¢n Digital - Certic mara S.A., C=CO
	Certificate (some fields): for CN=Echoworx Root CA2, OU=Certification Services, O=Echoworx Corporation, L=Toronto, S=Ontario, C=CA - has private key False by CN=Echoworx Root CA2, OU=Certification Services, O=Echoworx Corporation, L=Toronto, S=Ontario, C=CA
	Certificate (some fields): for CN=Common Policy, OU=FBCA, O=U.S. Government, C=us - has private key False by CN=Common Policy, OU=FBCA, O=U.S. Government, C=us
	Certificate (some fields): for CN=SecureSign RootCA1, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA1, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for CN=QuoVadis Root CA 2, O=QuoVadis Limited, C=BM - has private key False by CN=QuoVadis Root CA 2, O=QuoVadis Limited, C=BM
	Certificate (some fields): for E=pki@sk.ee, CN=EE Certification Centre Root CA, O=AS Sertifitseerimiskeskus, C=EE - has private key False by E=pki@sk.ee, CN=EE Certification Centre Root CA, O=AS Sertifitseerimiskeskus, C=EE
	Certificate (some fields): for CN=LuxTrust Global Root, O=LuxTrust s.a., C=LU - has private key False by CN=LuxTrust Global Root, O=LuxTrust s.a., C=LU
	Certificate (some fields): for CN=E-ME SSI (RCA), OU=Sertifikacijas pakalpojumu dala, C=LV - has private key False by CN=E-ME SSI (RCA), OU=Sertifikacijas pakalpojumu dala, C=LV
	Certificate (some fields): for CN=VeriSign Class 4 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 4 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Swiss Government Root CA II, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH - has private key False by CN=Swiss Government Root CA II, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH
	Certificate (some fields): for CN=Gatekeeper Root CA, OU=Gatekeeper PKI, O=eSign Australia - has private key False by CN=Gatekeeper Root CA, OU=Gatekeeper PKI, O=eSign Australia
	Certificate (some fields): for CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE - has private key False by CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE
	Certificate (some fields): for CN=E-CERT ROOT CA, E=sclientes@ccs.cl, OU=Autoridad Certificadora, O=E-CERTCHILE, L=Santiago, S=Region Metropolitana, C=CL - has private key False by CN=E-CERT ROOT CA, E=sclientes@ccs.cl, OU=Autoridad Certificadora, O=E-CERTCHILE, L=Santiago, S=Region Metropolitana, C=CL
	Certificate (some fields): for O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri - has private key False by O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri
	Certificate (some fields): for CN=ANCERT Certificados Notariales, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados Notariales, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES
	Certificate (some fields): for CN=CCA India 2011, O=India PKI, C=IN - has private key False by CN=CCA India 2011, O=India PKI, C=IN
	Certificate (some fields): for CN=S-TRUST Authentication and Encryption Root CA 2005:PN, O=Deutscher Sparkassen Verlag GmbH, L=Stuttgart, S=Baden-Wuerttemberg (BW), C=DE - has private key False by CN=S-TRUST Authentication and Encryption Root CA 2005:PN, O=Deutscher Sparkassen Verlag GmbH, L=Stuttgart, S=Baden-Wuerttemberg (BW), C=DE
	Certificate (some fields): for CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, S=Western Cape, C=ZA - has private key False by CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, S=Western Cape, C=ZA
	Certificate (some fields): for OU=DST-Entrust GTI CA, O=Digital Signature Trust Co., C=US - has private key False by OU=DST-Entrust GTI CA, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE - has private key False by CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE
	Certificate (some fields): for CN=Root CA, OU=GPKI, O=Government of Korea, C=KR - has private key False by CN=Root CA, OU=GPKI, O=Government of Korea, C=KR
	Certificate (some fields): for OU=AC RAIZ FNMT-RCM, O=FNMT-RCM, C=ES - has private key False by OU=AC RAIZ FNMT-RCM, O=FNMT-RCM, C=ES
	Certificate (some fields): for CN=AffirmTrust Premium ECC, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Premium ECC, O=AffirmTrust, C=US
	Certificate (some fields): for CN=XRamp Global Certification Authority, O=XRamp Security Services Inc, OU=www.xrampsecurity.com, C=US - has private key False by CN=XRamp Global Certification Authority, O=XRamp Security Services Inc, OU=www.xrampsecurity.com, C=US
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST RootCA X1, OU=DSTCA X1, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST RootCA X1, OU=DSTCA X1, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=Starfield Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Starfield Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi - has private key False by O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=AC RAIZ DNIE, OU=DNIE, O=DIRECCION GENERAL DE LA POLICIA, C=ES - has private key False by CN=AC RAIZ DNIE, OU=DNIE, O=DIRECCION GENERAL DE LA POLICIA, C=ES
	Certificate (some fields): for CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US - has private key False by CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
	Certificate (some fields): for OU=POSTArCA, O=POSTA, C=SI - has private key False by OU=POSTArCA, O=POSTA, C=SI
	Certificate (some fields): for CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE - has private key False by CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE
	Certificate (some fields): for E=pkiadmin@trustcentre.co.za, CN=SAPO Class 3 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA - has private key False by E=pkiadmin@trustcentre.co.za, CN=SAPO Class 3 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA
	Certificate (some fields): for OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=Certigna, O=Dhimyotis, C=FR - has private key False by CN=Certigna, O=Dhimyotis, C=FR
	Certificate (some fields): for CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, C=ES - has private key False by CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, C=ES
	Certificate (some fields): for CN=TC TrustCenter Class 2 CA II, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Class 2 CA II, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for C=IL, O=ComSign Ltd., CN=ComSign Global Root CA - has private key False by C=IL, O=ComSign Ltd., CN=ComSign Global Root CA
	Certificate (some fields): for OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=US - has private key False by OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=US
	Certificate (some fields): for CN=NetLock Kozjegyzoi (Class A) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, S=Hungary, C=HU - has private key False by CN=NetLock Kozjegyzoi (Class A) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, S=Hungary, C=HU
	Certificate (some fields): for CN=CA DATEV STD 02, O=DATEV eG, C=DE - has private key False by CN=CA DATEV STD 02, O=DATEV eG, C=DE
	Certificate (some fields): for OU=DSTCA E2, O=Digital Signature Trust Co., C=US - has private key False by OU=DSTCA E2, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for O=Prvni certifikacni autorita a.s., CN=I.CA - Standard root certificate, C=CZ - has private key False by O=Prvni certifikacni autorita a.s., CN=I.CA - Standard root certificate, C=CZ
	Certificate (some fields): for CN=thawte Primary Root CA - G2, OU="(c) 2007 thawte, Inc. - For authorized use only", O="thawte, Inc.", C=US - has private key False by CN=thawte Primary Root CA - G2, OU="(c) 2007 thawte, Inc. - For authorized use only", O="thawte, Inc.", C=US
	Certificate (some fields): for CN=GeoTrust Global CA 2, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Global CA 2, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=Autoridade Certificadora Raiz Brasileira v2, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR - has private key False by CN=Autoridade Certificadora Raiz Brasileira v2, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR
	Certificate (some fields): for E=ca@firmaprofesional.com, CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, L=C/ Muntaner 244 Barcelona, C=ES - has private key False by E=ca@firmaprofesional.com, CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, L=C/ Muntaner 244 Barcelona, C=ES
	Certificate (some fields): for CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US - has private key False by CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
	Certificate (some fields): for CN=Serasa Certificate Authority I, OU=Serasa CA I, O=Serasa S.A., C=BR - has private key False by CN=Serasa Certificate Authority I, OU=Serasa CA I, O=Serasa S.A., C=BR
	Certificate (some fields): for CN=TC TrustCenter Class 4 CA II, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Class 4 CA II, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Certipost E-Trust Primary Normalised CA, O=Certipost s.a./n.v., C=BE - has private key False by CN=Certipost E-Trust Primary Normalised CA, O=Certipost s.a./n.v., C=BE
	Certificate (some fields): for OID.0.9.2342.19200300.100.1.3=ca@digsigtrust.com, CN=Baltimore EZ by DST, O=Digital Signature Trust Co., C=US - has private key False by OID.0.9.2342.19200300.100.1.3=ca@digsigtrust.com, CN=Baltimore EZ by DST, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=TC TrustCenter Time Stamping CA, OU=TC TrustCenter Time Stamping CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by CN=TC TrustCenter Time Stamping CA, OU=TC TrustCenter Time Stamping CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for CN=SwissSign Platinum Root CA - G3, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Platinum Root CA - G3, O=SwissSign AG, C=CH
	Certificate (some fields): for OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Swiss Government Root CA I, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH - has private key False by CN=Swiss Government Root CA I, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH
	Certificate (some fields): for CN=PostSignum Root QCA 2, O="Cesk posta, s.p. [IC 47114983]", C=CZ - has private key False by CN=PostSignum Root QCA 2, O="Cesk posta, s.p. [IC 47114983]", C=CZ
	Certificate (some fields): for CN=Buypass Class 2 CA 1, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 2 CA 1, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for CN=Root CA Generalitat Valenciana, OU=PKIGVA, O=Generalitat Valenciana, C=ES - has private key False by CN=Root CA Generalitat Valenciana, OU=PKIGVA, O=Generalitat Valenciana, C=ES
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=COMODO ECC Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=COMODO ECC Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=Serasa Certificate Authority III, OU=Serasa CA III, O=Serasa S.A., C=BR - has private key False by CN=Serasa Certificate Authority III, OU=Serasa CA III, O=Serasa S.A., C=BR
	Certificate (some fields): for CN=KEYNECTIS ROOT CA, OU=ROOT, O=KEYNECTIS, C=FR - has private key False by CN=KEYNECTIS ROOT CA, OU=ROOT, O=KEYNECTIS, C=FR
	Certificate (some fields): for CN=SwissSign Silver CA - G2, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Silver CA - G2, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US - has private key False by CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US - has private key False by CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=CCA India 2007, O=India PKI, C=IN - has private key False by CN=CCA India 2007, O=India PKI, C=IN
	Certificate (some fields): for CN=VI Registru Centras RCSC (RootCA), OU=Registru Centro Sertifikavimo Centras, O=VI Registru Centras - I.k. 124110246, C=LT - has private key False by CN=VI Registru Centras RCSC (RootCA), OU=Registru Centro Sertifikavimo Centras, O=VI Registru Centras - I.k. 124110246, C=LT
	Certificate (some fields): for CN=D-TRUST Root Class 3 CA 2 EV 2009, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 3 CA 2 EV 2009, O=D-Trust GmbH, C=DE
	Certificate (some fields): for OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for OU=Application CA G2, O=LGPKI, C=JP - has private key False by OU=Application CA G2, O=LGPKI, C=JP
	Certificate (some fields): for CN=TC TrustCenter Universal CA III, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Universal CA III, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for CN=CA DATEV INT 02, O=DATEV eG, C=DE - has private key False by CN=CA DATEV INT 02, O=DATEV eG, C=DE
	Certificate (some fields): for CN=Wells Fargo Root Certificate Authority, OU=Wells Fargo Certification Authority, O=Wells Fargo, C=US - has private key False by CN=Wells Fargo Root Certificate Authority, OU=Wells Fargo Certification Authority, O=Wells Fargo, C=US
	Certificate (some fields): for CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for CN=thawte Primary Root CA, OU="(c) 2006 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US - has private key False by CN=thawte Primary Root CA, OU="(c) 2006 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US
	Certificate (some fields): for CN=Actalis Authentication CA G1, O=Actalis S.p.A./03358520967, L=Milano, C=IT - has private key False by CN=Actalis Authentication CA G1, O=Actalis S.p.A./03358520967, L=Milano, C=IT
	Certificate (some fields): for CN=Verizon Global Root CA, OU=OmniRoot, O=Verizon Business, C=US - has private key False by CN=Verizon Global Root CA, OU=OmniRoot, O=Verizon Business, C=US
	Certificate (some fields): for CN=GTE CyberTrust Root, O=GTE Corporation, C=US - has private key False by CN=GTE CyberTrust Root, O=GTE Corporation, C=US
	Certificate (some fields): for OU=I.CA - Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Standard Certification Authority, 09/2009", C=CZ - has private key False by OU=I.CA - Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Standard Certification Authority, 09/2009", C=CZ
	Certificate (some fields): for OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for OID.0.9.2342.19200300.100.1.3=correo_cert@correo.com.uy, CN=SERVICIOS DE CERTIFICACION - A.N.C., OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY - has private key False by OID.0.9.2342.19200300.100.1.3=correo_cert@correo.com.uy, CN=SERVICIOS DE CERTIFICACION - A.N.C., OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY
	Certificate (some fields): for CN=Federal Common Policy CA, OU=FPKI, O=U.S. Government, C=US - has private key False by CN=Federal Common Policy CA, OU=FPKI, O=U.S. Government, C=US
	Certificate (some fields): for CN=Microsoft Root Certificate Authority 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US - has private key False by CN=Microsoft Root Certificate Authority 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
	Certificate (some fields): for CN=Autoridade Certificadora Raiz Brasileira, S=DF, L=Brasilia, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR - has private key False by CN=Autoridade Certificadora Raiz Brasileira, S=DF, L=Brasilia, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR
	Certificate (some fields): for CN=SecureSign RootCA3, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA3, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for E=a-cert@argedaten.at, O=Arge Daten Oesterreichische Gesellschaft fuer Datenschutz, L=Vienna, S=Austria, C=AT - has private key False by E=a-cert@argedaten.at, O=Arge Daten Oesterreichische Gesellschaft fuer Datenschutz, L=Vienna, S=Austria, C=AT
	Certificate (some fields): for CN=GeoTrust Primary Certification Authority - G2, OU=(c) 2007 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Primary Certification Authority - G2, OU=(c) 2007 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=SwissSign Silver Root CA - G3, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Silver Root CA - G3, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See http://www.entrust.net/legal-terms, O="Entrust, Inc.", C=US - has private key False by CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See http://www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
	Certificate (some fields): for CN=TC TrustCenter Universal CA II, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Universal CA II, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for C=TR, O=EBG Bilisim Teknolojileri ve Hizmetleri A.S., CN=EBG Elektronik Sertifika Hizmet Saglayicisi - has private key False by C=TR, O=EBG Bilisim Teknolojileri ve Hizmetleri A.S., CN=EBG Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for CN=CNNIC ROOT, O=CNNIC, C=CN - has private key False by CN=CNNIC ROOT, O=CNNIC, C=CN
	Certificate (some fields): for CN=Certificado Empresarial Clase-A, O=Certicamara S.A. Entidad de Certificacion, L=Carrera 9 16-21 Bogota, C=CO - has private key False by CN=Certificado Empresarial Clase-A, O=Certicamara S.A. Entidad de Certificacion, L=Carrera 9 16-21 Bogota, C=CO
	Certificate (some fields): for E=info@e-szigno.hu, CN=Microsec e-Szigno Root CA 2009, O=Microsec Ltd., L=Budapest, C=HU - has private key False by E=info@e-szigno.hu, CN=Microsec e-Szigno Root CA 2009, O=Microsec Ltd., L=Budapest, C=HU
	Certificate (some fields): for CN=Macao Post eSignTrust Root Certification Authority, O=Macao Post, C=MO - has private key False by CN=Macao Post eSignTrust Root Certification Authority, O=Macao Post, C=MO
	Certificate (some fields): for CN=NetLock Uzleti (Class B) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU - has private key False by CN=NetLock Uzleti (Class B) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU
	Certificate (some fields): for CN=SecureTrust CA, O=SecureTrust Corporation, C=US - has private key False by CN=SecureTrust CA, O=SecureTrust Corporation, C=US
	Certificate (some fields): for CN=TDC OCES CA, O=TDC, C=DK - has private key False by CN=TDC OCES CA, O=TDC, C=DK
	Certificate (some fields): for CN=America Online Root Certification Authority 2, O=America Online Inc., C=US - has private key False by CN=America Online Root Certification Authority 2, O=America Online Inc., C=US
	Certificate (some fields): for CN=Deutsche Telekom Root CA 2, OU=T-TeleSec Trust Center, O=Deutsche Telekom AG, C=DE - has private key False by CN=Deutsche Telekom Root CA 2, OU=T-TeleSec Trust Center, O=Deutsche Telekom AG, C=DE
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for CN=UCA Root, O=UniTrust, C=CN - has private key False by CN=UCA Root, O=UniTrust, C=CN
	Certificate (some fields): for OU=DSTCA E1, O=Digital Signature Trust Co., C=US - has private key False by OU=DSTCA E1, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=ComSign Advanced Security CA - has private key False by CN=ComSign Advanced Security CA
	Certificate (some fields): for CN=TC TrustCenter Class 3 CA II, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Class 3 CA II, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for CN=Halcom CA PO 2, O=Halcom, C=SI - has private key False by CN=Halcom CA PO 2, O=Halcom, C=SI
	Certificate (some fields): for OU=sigov-ca, O=state-institutions, C=si - has private key False by OU=sigov-ca, O=state-institutions, C=si
	Certificate (some fields): for OU=ApplicationCA, O=Japanese Government, C=JP - has private key False by OU=ApplicationCA, O=Japanese Government, C=JP
	Certificate (some fields): for CN=Autoridad de Certificacion de la Abogacia, O=Consejo General de la Abogacia NIF:Q-2863006I, C=ES - has private key False by CN=Autoridad de Certificacion de la Abogacia, O=Consejo General de la Abogacia NIF:Q-2863006I, C=ES
	Certificate (some fields): for CN=ANCERT Certificados CGN V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados CGN V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES
	Certificate (some fields): for CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US - has private key False by CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US
	Certificate (some fields): for E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon, OID.2.5.4.45=#030F005345432D3833303130312D395639 - has private key False by E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon, OID.2.5.4.45=#030F005345432D3833303130312D395639
	Certificate (some fields): for O=SecureNet CA Class B, C=au - has private key False by O=SecureNet CA Class B, C=au
	Certificate (some fields): for E=admin@digsigtrust.com, CN=ABA.ECOM Root CA, O="ABA.ECOM, INC.", L=Washington, S=DC, C=US - has private key False by E=admin@digsigtrust.com, CN=ABA.ECOM Root CA, O="ABA.ECOM, INC.", L=Washington, S=DC, C=US
	Certificate (some fields): for O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi - has private key False by O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Chambers of Commerce Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU - has private key False by CN=Chambers of Commerce Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU
	Certificate (some fields): for CN=Swisscom Root CA 2, OU=Digital Certificate Services, O=Swisscom, C=ch - has private key False by CN=Swisscom Root CA 2, OU=Digital Certificate Services, O=Swisscom, C=ch
	Certificate (some fields): for CN=Common Policy, OU=FBCA, O=U.S. Government, C=us - has private key False by CN=Common Policy, OU=FBCA, O=U.S. Government, C=us
	Certificate (some fields): for OU=DST (ANX Network) CA, O=Digital Signature Trust Co., C=US - has private key False by OU=DST (ANX Network) CA, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=GPKIRootCA1, OU=GPKI, O=Government of Korea, C=KR - has private key False by CN=GPKIRootCA1, OU=GPKI, O=Government of Korea, C=KR
	Certificate (some fields): for CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2 - has private key False by CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2
	Certificate (some fields): for O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri - has private key False by O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri
	Certificate (some fields): for CN=Certipost E-Trust Primary Qualified CA, O=Certipost s.a./n.v., C=BE - has private key False by CN=Certipost E-Trust Primary Qualified CA, O=Certipost s.a./n.v., C=BE
	Certificate (some fields): for OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Class 2 Primary CA, O=Certplus, C=FR - has private key False by CN=Class 2 Primary CA, O=Certplus, C=FR
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 1 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 1 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US - has private key False by CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US
	Certificate (some fields): for CN=Autoridade Certificadora Raiz Brasileira v1, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR - has private key False by CN=Autoridade Certificadora Raiz Brasileira v1, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR
	Certificate (some fields): for CN=eSign Imperito Primary Root CA, OU=Public Secure Services, O=eSign Australia - has private key False by CN=eSign Imperito Primary Root CA, OU=Public Secure Services, O=eSign Australia
	Certificate (some fields): for CN=Visa eCommerce Root, OU=Visa International Service Association, O=VISA, C=US - has private key False by CN=Visa eCommerce Root, OU=Visa International Service Association, O=VISA, C=US
	Certificate (some fields): for CN=ANCERT Certificados Notariales V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados Notariales V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES
	Certificate (some fields): for CN=Chambers of Commerce Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU - has private key False by CN=Chambers of Commerce Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU
	Certificate (some fields): for CN=AdminCA-CD-T01, OU=Certification Authorities, OU=Services, O=admin, C=CH - has private key False by CN=AdminCA-CD-T01, OU=Certification Authorities, OU=Services, O=admin, C=CH
	Certificate (some fields): for CN=TC TrustCenter Universal CA I, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Universal CA I, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for C=ES, L=MADRID, O=MINISTERIO DE TRABAJO E INMIGRACION, OU=SUBDIRECCION GENERAL DE PROCESO DE DATOS, OU=PRESTADOR DE SERVICIOS DE CERTIFICACION MTIN, SERIALNUMBER=S2819001E, CN=AC1 RAIZ MTIN - has private key False by C=ES, L=MADRID, O=MINISTERIO DE TRABAJO E INMIGRACION, OU=SUBDIRECCION GENERAL DE PROCESO DE DATOS, OU=PRESTADOR DE SERVICIOS DE CERTIFICACION MTIN, SERIALNUMBER=S2819001E, CN=AC1 RAIZ MTIN
	Certificate (some fields): for CN=Primary Utility Root CA, OU=Public Secure Services, O=eSign Australia - has private key False by CN=Primary Utility Root CA, OU=Public Secure Services, O=eSign Australia
	Certificate (some fields): for CN=Class 1 Primary CA, O=Certplus, C=FR - has private key False by CN=Class 1 Primary CA, O=Certplus, C=FR
	Certificate (some fields): for E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 3 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network - has private key False by E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 3 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
	Certificate (some fields): for E=ca@digsigtrust.com, CN=Xcert EZ by DST, O=Xcert EZ by DST, L=Salt Lake City, S=Utah, C=US - has private key False by E=ca@digsigtrust.com, CN=Xcert EZ by DST, O=Xcert EZ by DST, L=Salt Lake City, S=Utah, C=US
	Certificate (some fields): for OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST RootCA X2, OU=DSTCA X2, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST RootCA X2, OU=DSTCA X2, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=A-Trust-Qual-02, OU=A-Trust-Qual-02, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-Qual-02, OU=A-Trust-Qual-02, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for OU=ePKI Root Certification Authority, O="Chunghwa Telecom Co., Ltd.", C=TW - has private key False by OU=ePKI Root Certification Authority, O="Chunghwa Telecom Co., Ltd.", C=TW
	Certificate (some fields): for CN=CESAM, OU=0002 542044524, O=NATIXIS, C=FR - has private key False by CN=CESAM, OU=0002 542044524, O=NATIXIS, C=FR
	Certificate (some fields): for O="Prvn¡ certifikacn¡ autorita, a.s.", CN=I.CA - Qualified root certificate, C=CZ - has private key False by O="Prvn¡ certifikacn¡ autorita, a.s.", CN=I.CA - Qualified root certificate, C=CZ
	Certificate (some fields): for E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Certum CA, O=Unizeto Sp. z o.o., C=PL - has private key False by CN=Certum CA, O=Unizeto Sp. z o.o., C=PL
	Certificate (some fields): for CN=VeriSign Class 2 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 2 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Buypass Class 3 CA 1, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 3 CA 1, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for E=igca@sgdn.pm.gouv.fr, CN=IGC/A, OU=DCSSI, O=PM/SGDN, L=Paris, S=France, C=FR - has private key False by E=igca@sgdn.pm.gouv.fr, CN=IGC/A, OU=DCSSI, O=PM/SGDN, L=Paris, S=France, C=FR
	Certificate (some fields): for CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US - has private key False by CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
	Certificate (some fields): for CN=KISA RootCA 3, OU=Korea Certification Authority Central, O=KISA, C=KR - has private key False by CN=KISA RootCA 3, OU=Korea Certification Authority Central, O=KISA, C=KR
	Certificate (some fields): for CN=Cybertrust Global Root, O="Cybertrust, Inc" - has private key False by CN=Cybertrust Global Root, O="Cybertrust, Inc"
	Certificate (some fields): for OU=Security Communication RootCA2, O="SECOM Trust Systems CO.,LTD.", C=JP - has private key False by OU=Security Communication RootCA2, O="SECOM Trust Systems CO.,LTD.", C=JP
	Certificate (some fields): for CN=Swisscom Root CA 1, OU=Digital Certificate Services, O=Swisscom, C=ch - has private key False by CN=Swisscom Root CA 1, OU=Digital Certificate Services, O=Swisscom, C=ch
	Certificate (some fields): for CN=UTN-USERFirst-Network Applications, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Network Applications, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=Starfield Services Root Certificate Authority, OU=http://certificates.starfieldtech.com/repository/, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Starfield Services Root Certificate Authority, OU=http://certificates.starfieldtech.com/repository/, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for CN=SSC Root CA A, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT - has private key False by CN=SSC Root CA A, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT
	Certificate (some fields): for CN=Visa Information Delivery Root CA, OU=Visa International Service Association, O=VISA, C=US - has private key False by CN=Visa Information Delivery Root CA, OU=Visa International Service Association, O=VISA, C=US
	Certificate (some fields): for CN=Staat der Nederlanden Root CA - G2, O=Staat der Nederlanden, C=NL - has private key False by CN=Staat der Nederlanden Root CA - G2, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for CN=OISTE WISeKey Global Root GA CA, OU=OISTE Foundation Endorsed, OU=Copyright (c) 2005, O=WISeKey, C=CH - has private key False by CN=OISTE WISeKey Global Root GA CA, OU=OISTE Foundation Endorsed, OU=Copyright (c) 2005, O=WISeKey, C=CH
	Certificate (some fields): for CN=D-TRUST Root Class 3 CA 2 2009, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 3 CA 2 2009, O=D-Trust GmbH, C=DE
	Certificate (some fields): for CN=UTN - DATACorp SGC, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN - DATACorp SGC, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=SwissSign Platinum CA - G2, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Platinum CA - G2, O=SwissSign AG, C=CH
	Certificate (some fields): for OU=Netrust CA1, O=Netrust Certificate Authority 1, C=SG - has private key False by OU=Netrust CA1, O=Netrust Certificate Authority 1, C=SG
	Certificate (some fields): for CN=T-TeleSec GlobalRoot Class 3, OU=T-Systems Trust Center, O=T-Systems Enterprise Services GmbH, C=DE - has private key False by CN=T-TeleSec GlobalRoot Class 3, OU=T-Systems Trust Center, O=T-Systems Enterprise Services GmbH, C=DE
	Certificate (some fields): for OU=Certisign - Autoridade Certificadora - AC4, O=Certisign Certificadora Digital Ltda., C=BR - has private key False by OU=Certisign - Autoridade Certificadora - AC4, O=Certisign Certificadora Digital Ltda., C=BR
	Certificate (some fields): for CN=CA DATEV INT 01, O=DATEV eG, C=DE - has private key False by CN=CA DATEV INT 01, O=DATEV eG, C=DE
	Certificate (some fields): for CN=A-Trust-nQual-01, OU=A-Trust-nQual-01, O=A-Trust, C=AT - has private key False by CN=A-Trust-nQual-01, OU=A-Trust-nQual-01, O=A-Trust, C=AT
	Certificate (some fields): for CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net - has private key False by CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net
	Certificate (some fields): for CN=China Internet Network Information Center EV Certificates Root, O=China Internet Network Information Center, C=CN - has private key False by CN=China Internet Network Information Center EV Certificates Root, O=China Internet Network Information Center, C=CN
	Certificate (some fields): for OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=CERTICAMARA S.A., O=Entidad de Certificacion Digital Abierta Certicamara S.A., C=CO, L=Bogota AV Calle 26 N 68D-35 - has private key False by CN=CERTICAMARA S.A., O=Entidad de Certificacion Digital Abierta Certicamara S.A., C=CO, L=Bogota AV Calle 26 N 68D-35
	Certificate (some fields): for OU=Certisign - Autoridade Certificadora - AC2, O=Certisign Certificadora Digital Ltda., C=BR - has private key False by OU=Certisign - Autoridade Certificadora - AC2, O=Certisign Certificadora Digital Ltda., C=BR
	Certificate (some fields): for CN=VeriSign Class 3 Public Primary Certification Authority - G5, OU="(c) 2006 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G5, OU="(c) 2006 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Global Chambersign Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU - has private key False by CN=Global Chambersign Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU
	Certificate (some fields): for E=Info@izenpe.com, CN=Izenpe.com, L=Avda del Mediterraneo Etorbidea 3 - 01010 Vitoria-Gasteiz, O=IZENPE S.A. - CIF A-01337260-RMerc.Vitoria-Gasteiz T1055 F62 S8, C=ES - has private key False by E=Info@izenpe.com, CN=Izenpe.com, L=Avda del Mediterraneo Etorbidea 3 - 01010 Vitoria-Gasteiz, O=IZENPE S.A. - CIF A-01337260-RMerc.Vitoria-Gasteiz T1055 F62 S8, C=ES
	Certificate (some fields): for CN=D-TRUST Root Class 2 CA 2007, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 2 CA 2007, O=D-Trust GmbH, C=DE
	Certificate (some fields): for CN=Buypass Class 2 Root CA, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 2 Root CA, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for CN=Go Daddy Root Certificate Authority - G2, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Go Daddy Root Certificate Authority - G2, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US - has private key False by OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US
	Certificate (some fields): for OU=FNMT Clase 2 CA, O=FNMT, C=ES - has private key False by OU=FNMT Clase 2 CA, O=FNMT, C=ES
	Certificate (some fields): for CN=PersonalID Trustworthy RootCA 2011, OU=Certificate Services, O=PersonalID Ltd., C=IL - has private key False by CN=PersonalID Trustworthy RootCA 2011, OU=Certificate Services, O=PersonalID Ltd., C=IL
	Certificate (some fields): for CN=TeliaSonera Root CA v1, O=TeliaSonera - has private key False by CN=TeliaSonera Root CA v1, O=TeliaSonera
	Certificate (some fields): for CN=A-Trust-Qual-03, OU=A-Trust-Qual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-Qual-03, OU=A-Trust-Qual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for E=personal-basic@thawte.com, CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=personal-basic@thawte.com, CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Juur-SK, O=AS Sertifitseerimiskeskus, C=EE, E=pki@sk.ee - has private key False by CN=Juur-SK, O=AS Sertifitseerimiskeskus, C=EE, E=pki@sk.ee
	Certificate (some fields): for CN=DST ACES CA X6, OU=DST ACES, O=Digital Signature Trust, C=US - has private key False by CN=DST ACES CA X6, OU=DST ACES, O=Digital Signature Trust, C=US
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=SSC Root CA B, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT - has private key False by CN=SSC Root CA B, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT
	Certificate (some fields): for OU=sigen-ca, O=state-institutions, C=si - has private key False by OU=sigen-ca, O=state-institutions, C=si
	Certificate (some fields): for CN=StartCom Certification Authority, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL - has private key False by CN=StartCom Certification Authority, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL
	Certificate (some fields): for E=global01@ipsca.com, CN=ipsCA Global CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES - has private key False by E=global01@ipsca.com, CN=ipsCA Global CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES
	Certificate (some fields): for CN=SecureSign RootCA11, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA11, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for OU=Trustis FPS Root CA, O=Trustis Limited, C=GB - has private key False by OU=Trustis FPS Root CA, O=Trustis Limited, C=GB
	Certificate (some fields): for CN=Secure Global CA, O=SecureTrust Corporation, C=US - has private key False by CN=Secure Global CA, O=SecureTrust Corporation, C=US
	Certificate (some fields): for E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano - has private key False by E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano
	Certificate (some fields): for OU=Equifax Secure eBusiness CA-2, O=Equifax Secure, C=US - has private key False by OU=Equifax Secure eBusiness CA-2, O=Equifax Secure, C=US
	Certificate (some fields): for CN=CA DATEV BT 02, O=DATEV eG, C=DE - has private key False by CN=CA DATEV BT 02, O=DATEV eG, C=DE
	Certificate (some fields): for CN=America Online Root Certification Authority 1, O=America Online Inc., C=US - has private key False by CN=America Online Root Certification Authority 1, O=America Online Inc., C=US
	Certificate (some fields): for CN=ECRaizEstado, O=SCEE, C=PT - has private key False by CN=ECRaizEstado, O=SCEE, C=PT
	Certificate (some fields): for CN=Sonera Class2 CA, O=Sonera, C=FI - has private key False by CN=Sonera Class2 CA, O=Sonera, C=FI
	Certificate (some fields): for CN=GeoTrust Universal CA 2, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Universal CA 2, O=GeoTrust Inc., C=US
	Certificate (some fields): for OU=Security Communication RootCA1, O=SECOM Trust.net, C=JP - has private key False by OU=Security Communication RootCA1, O=SECOM Trust.net, C=JP
	Certificate (some fields): for E=personal-premium@thawte.com, CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=personal-premium@thawte.com, CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=VeriSign Universal Root Certification Authority, OU="(c) 2008 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Universal Root Certification Authority, OU="(c) 2008 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon - has private key False by E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon
	Certificate (some fields): for E=info@globaltrust.info, CN=GLOBALTRUST, OU=GLOBALTRUST Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, S=Austria, L=Vienna, C=AT - has private key False by E=info@globaltrust.info, CN=GLOBALTRUST, OU=GLOBALTRUST Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, S=Austria, L=Vienna, C=AT
	Certificate (some fields): for CN=Global Chambersign Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU - has private key False by CN=Global Chambersign Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU
	Certificate (some fields): for CN=GeoTrust Primary Certification Authority, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Primary Certification Authority, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=Serasa Certificate Authority II, OU=Serasa CA II, O=Serasa S.A., C=BR - has private key False by CN=Serasa Certificate Authority II, OU=Serasa CA II, O=Serasa S.A., C=BR
	Certificate (some fields): for E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network - has private key False by E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
	Certificate (some fields): for CN=Izenpe.com, O=IZENPE S.A., C=ES - has private key False by CN=Izenpe.com, O=IZENPE S.A., C=ES
	Certificate (some fields): for E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=ANCE WEB, O=ANCE, C=TN - has private key False by E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=ANCE WEB, O=ANCE, C=TN
	Certificate (some fields): for CN=Certinomis - Autorit‚ Racine, OU=0002 433998903, O=Certinomis, C=FR - has private key False by CN=Certinomis - Autorit‚ Racine, OU=0002 433998903, O=Certinomis, C=FR
	Certificate (some fields): for C=DE, O=Atos, CN=Atos TrustedRoot 2011 - has private key False by C=DE, O=Atos, CN=Atos TrustedRoot 2011
	Certificate (some fields): for CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US - has private key False by CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US
	Certificate (some fields): for CN=CA Disig, O=Disig a.s., L=Bratislava, C=SK - has private key False by CN=CA Disig, O=Disig a.s., L=Bratislava, C=SK
	Certificate (some fields): for E=info@a-cert.at, CN=A-CERT ADVANCED, OU=A-CERT Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, L=Vienna, S=Austria, C=AT - has private key False by E=info@a-cert.at, CN=A-CERT ADVANCED, OU=A-CERT Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, L=Vienna, S=Austria, C=AT
	Certificate (some fields): for CN=AffirmTrust Networking, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Networking, O=AffirmTrust, C=US
	Certificate (some fields): for CN=EC-ACC, OU=Jerarquia Entitats de Certificacio Catalanes, OU=Vegeu https://www.catcert.net/verarrel (c)03, OU=Serveis Publics de Certificacio, O=Agencia Catalana de Certificacio (NIF Q-0801176-I), C=ES - has private key False by CN=EC-ACC, OU=Jerarquia Entitats de Certificacio Catalanes, OU=Vegeu https://www.catcert.net/verarrel (c)03, OU=Serveis Publics de Certificacio, O=Agencia Catalana de Certificacio (NIF Q-0801176-I), C=ES
	Certificate (some fields): for OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US - has private key False by OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Admin-Root-CA, OU=Certification Authorities, OU=Services, O=admin, C=ch - has private key False by CN=Admin-Root-CA, OU=Certification Authorities, OU=Services, O=admin, C=ch
	Certificate (some fields): for OU=RSA Security 2048 V3, O=RSA Security Inc - has private key False by OU=RSA Security 2048 V3, O=RSA Security Inc
	Certificate (some fields): for E=ips@mail.ips.es, CN=IPS SERVIDORES, OU=Certificaciones, O=IPS Seguridad CA, L=BARCELONA, S=BARCELONA, C=ES - has private key False by E=ips@mail.ips.es, CN=IPS SERVIDORES, OU=Certificaciones, O=IPS Seguridad CA, L=BARCELONA, S=BARCELONA, C=ES
	Certificate (some fields): for OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for CN=SSC Root CA C, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT - has private key False by CN=SSC Root CA C, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT
	Certificate (some fields): for E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Microsec e-Szigno Root CA, OU=e-Szigno CA, O=Microsec Ltd., L=Budapest, C=HU - has private key False by CN=Microsec e-Szigno Root CA, OU=e-Szigno CA, O=Microsec Ltd., L=Budapest, C=HU
	Certificate (some fields): for CN=VeriSign Class 3 Public Primary Certification Authority - G4, OU="(c) 2007 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G4, OU="(c) 2007 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for OU=TDC Internet Root CA, O=TDC Internet, C=DK - has private key False by OU=TDC Internet Root CA, O=TDC Internet, C=DK
	Certificate (some fields): for CN=Class 3P Primary CA, O=Certplus, C=FR - has private key False by CN=Class 3P Primary CA, O=Certplus, C=FR
	Certificate (some fields): for CN=Registradores de Espa¤a - CA Ra¡z, OU=Certificado Propio, O=Colegio de Registradores de la Propiedad y Mercantiles de Espa¤a, C=ES - has private key False by CN=Registradores de Espa¤a - CA Ra¡z, OU=Certificado Propio, O=Colegio de Registradores de la Propiedad y Mercantiles de Espa¤a, C=ES
	Certificate (some fields): for CN=GPKIRootCA, OU=GPKI, O=Government of Korea, C=KR - has private key False by CN=GPKIRootCA, OU=GPKI, O=Government of Korea, C=KR
	Certificate (some fields): for E=personal-freemail@thawte.com, CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=personal-freemail@thawte.com, CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=VeriSign Class 1 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 1 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=QuoVadis Root CA 3, O=QuoVadis Limited, C=BM - has private key False by CN=QuoVadis Root CA 3, O=QuoVadis Limited, C=BM
	Certificate (some fields): for CN=TšBITAK UEKAE K”k Sertifika Hizmet Saglayicisi - Srm 3, OU=Kamu Sertifikasyon Merkezi, OU=Ulusal Elektronik ve Kriptoloji Arastirma Enstits - UEKAE, O=Trkiye Bilimsel ve Teknolojik Arastirma Kurumu - TšBITAK, L=Gebze - Kocaeli, C=TR - has private key False by CN=TšBITAK UEKAE K”k Sertifika Hizmet Saglayicisi - Srm 3, OU=Kamu Sertifikasyon Merkezi, OU=Ulusal Elektronik ve Kriptoloji Arastirma Enstits - UEKAE, O=Trkiye Bilimsel ve Teknolojik Arastirma Kurumu - TšBITAK, L=Gebze - Kocaeli, C=TR
	Certificate (some fields): for CN=IGC/A AC racine Etat francais, OU=0002 130007669, O=ANSSI, C=FR - has private key False by CN=IGC/A AC racine Etat francais, OU=0002 130007669, O=ANSSI, C=FR
	Certificate (some fields): for CN=SITHS CA v3, O=Carelink, C=SE - has private key False by CN=SITHS CA v3, O=Carelink, C=SE
	Certificate (some fields): for CN=CA DATEV STD 01, O=DATEV eG, C=DE - has private key False by CN=CA DATEV STD 01, O=DATEV eG, C=DE
	Certificate (some fields): for CN=VeriSign Class 3 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Swedish Government Root Authority v1, O=Swedish Social Insurance Agency, C=SE - has private key False by CN=Swedish Government Root Authority v1, O=Swedish Social Insurance Agency, C=SE
	Certificate (some fields): for CN=ANCERT Certificados CGN, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados CGN, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES
	Certificate (some fields): for CN=Staat der Nederlanden Root CA, O=Staat der Nederlanden, C=NL - has private key False by CN=Staat der Nederlanden Root CA, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for CN=ANCERT Corporaciones de Derecho Publico, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES - has private key False by CN=ANCERT Corporaciones de Derecho Publico, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES
	Certificate (some fields): for CN=UCA Global Root, O=UniTrust, C=CN - has private key False by CN=UCA Global Root, O=UniTrust, C=CN
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=SwissSign Gold Root CA - G3, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Gold Root CA - G3, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=VAS Latvijas Pasts SSI(RCA), OU=Sertifikacijas pakalpojumi, O=VAS Latvijas Pasts - Vien.reg.Nr.40003052790, C=LV - has private key False by CN=VAS Latvijas Pasts SSI(RCA), OU=Sertifikacijas pakalpojumi, O=VAS Latvijas Pasts - Vien.reg.Nr.40003052790, C=LV
	Certificate (some fields): for CN=Certum Trusted Network CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL - has private key False by CN=Certum Trusted Network CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL
	Certificate (some fields): for CN=Sonera Class1 CA, O=Sonera, C=FI - has private key False by CN=Sonera Class1 CA, O=Sonera, C=FI
	Certificate (some fields): for CN=NetLock Arany (Class Gold) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU - has private key False by CN=NetLock Arany (Class Gold) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU
	Certificate (some fields): for CN=DigiCert Assured ID Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US - has private key False by CN=DigiCert Assured ID Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
	Certificate (some fields): for CN=Certipost E-Trust TOP Root CA, O=Certipost s.a./n.v., C=BE - has private key False by CN=Certipost E-Trust TOP Root CA, O=Certipost s.a./n.v., C=BE
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for O=ACNLB, C=SI - has private key False by O=ACNLB, C=SI
	Certificate (some fields): for C=BG + O=InfoNotary PLC + DC=root-ca + CN=InfoNotary CSP Root + OU=InfoNotary CSP Root + E=csp@infonotary.com - has private key False by C=BG + O=InfoNotary PLC + DC=root-ca + CN=InfoNotary CSP Root + OU=InfoNotary CSP Root + E=csp@infonotary.com
	Certificate (some fields): for CN=Halcom CA FO, O=Halcom, C=SI - has private key False by CN=Halcom CA FO, O=Halcom, C=SI
	Certificate (some fields): for CN=GeoTrust Primary Certification Authority - G3, OU=(c) 2008 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Primary Certification Authority - G3, OU=(c) 2008 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE - has private key False by CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE
	Certificate (some fields): for CN=KISA RootCA 1, OU=Korea Certification Authority Central, O=KISA, C=KR - has private key False by CN=KISA RootCA 1, OU=Korea Certification Authority Central, O=KISA, C=KR
	Certificate (some fields): for E=info@netlock.hu, CN=NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU - has private key False by E=info@netlock.hu, CN=NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU
	Certificate (some fields): for CN=SecureSign RootCA2, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA2, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for OU=Certisign Autoridade Certificadora AC1S, O=Certisign Certificadora Digital Ltda., C=BR - has private key False by OU=Certisign Autoridade Certificadora AC1S, O=Certisign Certificadora Digital Ltda., C=BR
	Store Location/Store Name: LocalMachine/CA
	Certificate (some fields): for CN=Root Agency - has private key False by CN=Root Agency
	Certificate (some fields): for OU=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign, OU=VeriSign International Server CA - Class 3, OU="VeriSign, Inc.", O=VeriSign Trust Network - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=VeriSign Class 2 CA - Individual Subscriber, OU="www.verisign.com/repository/RPA Incorp. By Ref.,LIAB.LTD(c)98", OU=VeriSign Trust Network, O="VeriSign, Inc." - has private key False by OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=VeriSign Class 3 Secure Server CA - G3, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G5, OU="(c) 2006 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=VeriSign Class 1 CA Individual Subscriber-Persona Not Validated, OU="www.verisign.com/repository/RPA Incorp. By Ref.,LIAB.LTD(c)98", OU=VeriSign Trust Network, O="VeriSign, Inc." - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Microsoft Windows Hardware Compatibility, OU=Microsoft Corporation, OU=Microsoft Windows Hardware Compatibility Intermediate CA, OU=Copyright (c) 1997 Microsoft Corp. - has private key False by CN=Microsoft Root Authority, OU=Microsoft Corporation, OU=Copyright (c) 1997 Microsoft Corp.
	Store Location/Store Name: LocalMachine/Disallowed
	Certificate (some fields): for CN=Microsoft Enforced Licensing Registration Authority CA (SHA1), O=Microsoft Corporation, L=Redmond, S=Washington, C=US - has private key False by CN=Microsoft Root Certificate Authority, DC=microsoft, DC=com
	Certificate (some fields): for E=info@diginotar.nl, CN=DigiNotar Services 1024 CA, O=DigiNotar, C=NL - has private key False by CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US
	Certificate (some fields): for CN=login.yahoo.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=login.live.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for E=info@diginotar.nl, CN=DigiNotar Root CA, O=DigiNotar, C=NL - has private key False by E=info@diginotar.nl, CN=DigiNotar Root CA, O=DigiNotar, C=NL
	Certificate (some fields): for CN=DigiNotar Cyber CA, O=DigiNotar, C=NL - has private key False by CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=DigiNotar PKIoverheid CA Overheid, O=DigiNotar B.V., C=NL - has private key False by CN=Staat der Nederlanden Overheid CA, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for E=info@diginotar.nl, CN=DigiNotar Cyber CA, O=DigiNotar, C=NL - has private key False by CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=Digisign Server ID - (Enrich), OU=457608-K, O=Digicert Sdn. Bhd., C=MY - has private key False by CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net
	Certificate (some fields): for E=info@diginotar.nl, CN=DigiNotar Root CA, O=DigiNotar, C=NL - has private key False by CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US
	Certificate (some fields): for CN=login.yahoo.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for OU=Microsoft Corporation, CN=Microsoft Corporation, L=Redmond, S=Washington, C=US, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU="www.verisign.com/repository/CPS Incorp. by Ref.,LIAB.LTD(c)96", OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for CN=mail.google.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=login.yahoo.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for OU=Software, CN=Microsoft Corporation, L=Washington, S=DC, C=US, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU="www.verisign.com/repository/CPS Incorp. by Ref.,LIAB.LTD(c)96", OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for CN=global trustee, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Global Trustee, O=Global Trustee, STREET=Sea Village 10, L=Tampa, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=DigiNotar PKIoverheid CA Organisatie - G2, O=DigiNotar B.V., C=NL - has private key False by CN=Staat der Nederlanden Organisatie CA - G2, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for CN=Digisign Server ID (Enrich), OU=457608-K, O=Digicert Sdn. Bhd., C=MY - has private key False by CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=login.skype.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for E=info@diginotar.nl, CN=DigiNotar Root CA G2, O=DigiNotar, C=NL - has private key False by E=info@diginotar.nl, CN=DigiNotar Root CA G2, O=DigiNotar, C=NL
	Certificate (some fields): for CN=DigiNotar PKIoverheid CA Overheid en Bedrijven, O=DigiNotar B.V., C=NL - has private key False by CN=Staat der Nederlanden Overheid CA, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for CN=Microsoft Enforced Licensing Intermediate PCA, OU=Copyright (c) 1999 Microsoft Corp., O=Microsoft Corporation, L=Redmond, S=Washington, C=US - has private key False by CN=Microsoft Root Authority, OU=Microsoft Corporation, OU=Copyright (c) 1997 Microsoft Corp.
	Certificate (some fields): for E=info@diginotar.nl, CN=DigiNotar Root CA, O=DigiNotar, C=NL - has private key False by CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US
	Certificate (some fields): for CN=addons.mozilla.org, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=DigiNotar Cyber CA, O=DigiNotar, C=NL - has private key False by CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=Microsoft Enforced Licensing Intermediate PCA, OU=Copyright (c) 1999 Microsoft Corp., O=Microsoft Corporation, L=Redmond, S=Washington, C=US - has private key False by CN=Microsoft Root Authority, OU=Microsoft Corporation, OU=Copyright (c) 1997 Microsoft Corp.
	Certificate (some fields): for CN=www.google.com, OU=PlatinumSSL, OU=Hosted by GTI Group Corporation, OU=Tech Dept., O=Google Ltd., STREET=Sea Village 10, L=English, S=Florida, PostalCode=38477, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Store Location/Store Name: LocalMachine/My
	Certificate (some fields): for CN=FullOSTransport - has private key True by CN=FullOSTransport
	Certificate (some fields): for CN=Windows Azure Tools - has private key True by CN=Windows Azure Tools
	Store Location/Store Name: LocalMachine/Root
	Certificate (some fields): for CN=Microsoft Root Certificate Authority, DC=microsoft, DC=com - has private key False by CN=Microsoft Root Certificate Authority, DC=microsoft, DC=com
	Certificate (some fields): for CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, S=Western Cape, C=ZA - has private key False by CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Microsoft Root Authority, OU=Microsoft Corporation, OU=Copyright (c) 1997 Microsoft Corp. - has private key False by CN=Microsoft Root Authority, OU=Microsoft Corporation, OU=Copyright (c) 1997 Microsoft Corp.
	Certificate (some fields): for CN=Microsoft Authenticode(tm) Root Authority, O=MSFT, C=US - has private key False by CN=Microsoft Authenticode(tm) Root Authority, O=MSFT, C=US
	Certificate (some fields): for CN=Microsoft Root Certificate Authority 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US - has private key False by CN=Microsoft Root Certificate Authority 2010, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
	Certificate (some fields): for OU=Copyright (c) 1997 Microsoft Corp., OU=Microsoft Time Stamping Service Root, OU=Microsoft Corporation, O=Microsoft Trust Network - has private key False by OU=Copyright (c) 1997 Microsoft Corp., OU=Microsoft Time Stamping Service Root, OU=Microsoft Corporation, O=Microsoft Trust Network
	Certificate (some fields): for OU="NO LIABILITY ACCEPTED, (c)97 VeriSign, Inc.", OU=VeriSign Time Stamping Service Root, OU="VeriSign, Inc.", O=VeriSign Trust Network - has private key False by OU="NO LIABILITY ACCEPTED, (c)97 VeriSign, Inc.", OU=VeriSign Time Stamping Service Root, OU="VeriSign, Inc.", O=VeriSign Trust Network
	Certificate (some fields): for OU=Security Communication EV RootCA1, O="SECOM Trust Systems CO.,LTD.", C=JP - has private key False by OU=Security Communication EV RootCA1, O="SECOM Trust Systems CO.,LTD.", C=JP
	Certificate (some fields): for CN=D-TRUST Root Class 3 CA 2007, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 3 CA 2007, O=D-Trust GmbH, C=DE
	Certificate (some fields): for OU=certSIGN ROOT CA, O=certSIGN, C=RO - has private key False by OU=certSIGN ROOT CA, O=certSIGN, C=RO
	Certificate (some fields): for E=scr@registradores.org, STREET=Principe de Vergara 72 28006 Madrid, CN=Certificado de la Clave Principal, OU=Certificado Raiz, OU=Certificado Propio, O=Servicio de Certificacion del Colegio de Registradores (SCR), C=es - has private key False by E=scr@registradores.org, STREET=Principe de Vergara 72 28006 Madrid, CN=Certificado de la Clave Principal, OU=Certificado Raiz, OU=Certificado Propio, O=Servicio de Certificacion del Colegio de Registradores (SCR), C=es
	Certificate (some fields): for CN=VRK Gov. Root CA, OU=Varmennepalvelut, OU=Certification Authority Services, O=Vaestorekisterikeskus CA, S=Finland, C=FI - has private key False by CN=VRK Gov. Root CA, OU=Varmennepalvelut, OU=Certification Authority Services, O=Vaestorekisterikeskus CA, S=Finland, C=FI
	Certificate (some fields): for CN=Certeurope Root CA 2, OU=0002 434202180, O=Certeurope, C=FR - has private key False by CN=Certeurope Root CA 2, OU=0002 434202180, O=Certeurope, C=FR
	Certificate (some fields): for CN=Correo Uruguayo - Root CA, OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY - has private key False by CN=Correo Uruguayo - Root CA, OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY
	Certificate (some fields): for C=IL, O=ComSign, CN=ComSign Secured CA - has private key False by C=IL, O=ComSign, CN=ComSign Secured CA
	Certificate (some fields): for CN=AffirmTrust Commercial, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Commercial, O=AffirmTrust, C=US
	Certificate (some fields): for CN=CertRSA01, OU=ROOTCA, O=KISA, C=KR - has private key False by CN=CertRSA01, OU=ROOTCA, O=KISA, C=KR
	Certificate (some fields): for O=Government Root Certification Authority, C=TW - has private key False by O=Government Root Certification Authority, C=TW
	Certificate (some fields): for CN=Class 3TS Primary CA, O=Certplus, C=FR - has private key False by CN=Class 3TS Primary CA, O=Certplus, C=FR
	Certificate (some fields): for CN=Actalis Authentication Root CA, O=Actalis S.p.A./03358520967, L=Milan, C=IT - has private key False by CN=Actalis Authentication Root CA, O=Actalis S.p.A./03358520967, L=Milan, C=IT
	Certificate (some fields): for CN=thawte Primary Root CA - G3, OU="(c) 2008 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US - has private key False by CN=thawte Primary Root CA - G3, OU="(c) 2008 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US
	Certificate (some fields): for O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Aralik 2007, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi - has private key False by O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Aralik 2007, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=COMODO Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=Public Notary Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU - has private key False by CN=Public Notary Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU
	Certificate (some fields): for E=pkiadmin@trustcentre.co.za, CN=SAPO Class 2 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA - has private key False by E=pkiadmin@trustcentre.co.za, CN=SAPO Class 2 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA
	Certificate (some fields): for OU=Trustis EVS Root CA, O=Trustis Limited, C=GB - has private key False by OU=Trustis EVS Root CA, O=Trustis Limited, C=GB
	Certificate (some fields): for CN=NetLock Platina (Class Platinum) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU - has private key False by CN=NetLock Platina (Class Platinum) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST (UPS) RootCA, OU=United Parcel Service, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST (UPS) RootCA, OU=United Parcel Service, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=WellsSecure Public Root Certificate Authority, OU=Wells Fargo Bank NA, O=Wells Fargo WellsSecure, C=US - has private key False by CN=WellsSecure Public Root Certificate Authority, OU=Wells Fargo Bank NA, O=Wells Fargo WellsSecure, C=US
	Certificate (some fields): for CN=Telekom-Control-Kommission Top 1, O=Telekom-Control-Kommission, C=AT - has private key False by CN=Telekom-Control-Kommission Top 1, O=Telekom-Control-Kommission, C=AT
	Certificate (some fields): for CN=GeoTrust Universal CA, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Universal CA, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=A-Trust-Qual-01, OU=A-Trust-Qual-01, O=A-Trust Ges. fr Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-Qual-01, OU=A-Trust-Qual-01, O=A-Trust Ges. fr Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 1 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network - has private key False by E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 1 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
	Certificate (some fields): for CN=D-TRUST Qualified Root CA 1 2007:PN, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Qualified Root CA 1 2007:PN, O=D-Trust GmbH, C=DE
	Certificate (some fields): for CN=NetLock Expressz (Class C) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU - has private key False by CN=NetLock Expressz (Class C) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU
	Certificate (some fields): for C=IL, O=ComSign, CN=ComSign CA - has private key False by C=IL, O=ComSign, CN=ComSign CA
	Certificate (some fields): for CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for C=ES, O=EDICOM, OU=PKI, CN=ACEDICOM Root - has private key False by C=ES, O=EDICOM, OU=PKI, CN=ACEDICOM Root
	Certificate (some fields): for E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Hongkong Post Root CA, O=Hongkong Post, C=HK - has private key False by CN=Hongkong Post Root CA, O=Hongkong Post, C=HK
	Certificate (some fields): for CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW - has private key False by CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW
	Certificate (some fields): for CN=Cisco Root CA 2048, O=Cisco Systems - has private key False by CN=Cisco Root CA 2048, O=Cisco Systems
	Certificate (some fields): for CN=QuoVadis Root Certification Authority, OU=Root Certification Authority, O=QuoVadis Limited, C=BM - has private key False by CN=QuoVadis Root Certification Authority, OU=Root Certification Authority, O=QuoVadis Limited, C=BM
	Certificate (some fields): for CN=GeoTrust Global CA, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Global CA, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=e-Guven Kok Elektronik Sertifika Hizmet Saglayicisi, O=Elektronik Bilgi Guvenligi A.S., C=TR - has private key False by CN=e-Guven Kok Elektronik Sertifika Hizmet Saglayicisi, O=Elektronik Bilgi Guvenligi A.S., C=TR
	Certificate (some fields): for E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano - has private key False by E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano
	Certificate (some fields): for CN=GTE CyberTrust Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US - has private key False by CN=GTE CyberTrust Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=Buypass Class 3 Root CA, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 3 Root CA, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for CN=DST Root CA X3, O=Digital Signature Trust Co. - has private key False by CN=DST Root CA X3, O=Digital Signature Trust Co.
	Certificate (some fields): for CN=CA DATEV BT 01, O=DATEV eG, C=DE - has private key False by CN=CA DATEV BT 01, O=DATEV eG, C=DE
	Certificate (some fields): for CN=Equifax Secure eBusiness CA-1, O=Equifax Secure Inc., C=US - has private key False by CN=Equifax Secure eBusiness CA-1, O=Equifax Secure Inc., C=US
	Certificate (some fields): for E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=Certification & PKI, O=ANCE, C=TN - has private key False by E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=Certification & PKI, O=ANCE, C=TN
	Certificate (some fields): for CN=SwissSign Gold CA - G2, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Gold CA - G2, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=AffirmTrust Premium, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Premium, O=AffirmTrust, C=US
	Certificate (some fields): for CN=Hongkong Post Root CA 1, O=Hongkong Post, C=HK - has private key False by CN=Hongkong Post Root CA 1, O=Hongkong Post, C=HK
	Certificate (some fields): for CN=Posta CA Root, CN=AIA, CN=Public Key Services, CN=Services, CN=Configuration, DC=ca, DC=posta, DC=rs - has private key False by CN=Posta CA Root, CN=AIA, CN=Public Key Services, CN=Services, CN=Configuration, DC=ca, DC=posta, DC=rs
	Certificate (some fields): for CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3 - has private key False by CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R3
	Certificate (some fields): for CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE - has private key False by CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
	Certificate (some fields): for CN=A-Trust-nQual-03, OU=A-Trust-nQual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-nQual-03, OU=A-Trust-nQual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for CN=Class 3 Primary CA, O=Certplus, C=FR - has private key False by CN=Class 3 Primary CA, O=Certplus, C=FR
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for OU=I.CA - Accredited Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Qualified Certification Authority, 09/2009", C=CZ - has private key False by OU=I.CA - Accredited Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Qualified Certification Authority, 09/2009", C=CZ
	Certificate (some fields): for OU=Equifax Secure Certificate Authority, O=Equifax, C=US - has private key False by OU=Equifax Secure Certificate Authority, O=Equifax, C=US
	Certificate (some fields): for CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=USERTrust ECC Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US - has private key False by CN=USERTrust ECC Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US
	Certificate (some fields): for OU=Certisign Autoridade Certificadora AC3S, O=Certisign Certificadora Digital Ltda., L=Rio de Janeiro, S=Rio de Janeiro, C=BR - has private key False by OU=Certisign Autoridade Certificadora AC3S, O=Certisign Certificadora Digital Ltda., L=Rio de Janeiro, S=Rio de Janeiro, C=BR
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=main01@ipsca.com, CN=ipsCA Main CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES - has private key False by E=main01@ipsca.com, CN=ipsCA Main CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST (NRF) RootCA, OU=National Retail Federation, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST (NRF) RootCA, OU=National Retail Federation, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW - has private key False by CN=TWCA Root Certification Authority, OU=Root CA, O=TAIWAN-CA, C=TW
	Certificate (some fields): for CN=ANF Server CA, SERIALNUMBER=G63287510, OU=ANF Clase 1 CA, O=ANF Autoridad de Certificaci¢n, L=Barcelona (see current address at https://www.anf.es/address/), S=Barcelona, C=ES - has private key False by CN=ANF Server CA, SERIALNUMBER=G63287510, OU=ANF Clase 1 CA, O=ANF Autoridad de Certificaci¢n, L=Barcelona (see current address at https://www.anf.es/address/), S=Barcelona, C=ES
	Certificate (some fields): for OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=pkiadmin@trustcentre.co.za, CN=SAPO Class 4 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA - has private key False by E=pkiadmin@trustcentre.co.za, CN=SAPO Class 4 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA
	Certificate (some fields): for CN=AC Ra¡z Certic mara S.A., O=Sociedad Cameral de Certificaci¢n Digital - Certic mara S.A., C=CO - has private key False by CN=AC Ra¡z Certic mara S.A., O=Sociedad Cameral de Certificaci¢n Digital - Certic mara S.A., C=CO
	Certificate (some fields): for CN=Echoworx Root CA2, OU=Certification Services, O=Echoworx Corporation, L=Toronto, S=Ontario, C=CA - has private key False by CN=Echoworx Root CA2, OU=Certification Services, O=Echoworx Corporation, L=Toronto, S=Ontario, C=CA
	Certificate (some fields): for CN=Common Policy, OU=FBCA, O=U.S. Government, C=us - has private key False by CN=Common Policy, OU=FBCA, O=U.S. Government, C=us
	Certificate (some fields): for CN=SecureSign RootCA1, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA1, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for CN=QuoVadis Root CA 2, O=QuoVadis Limited, C=BM - has private key False by CN=QuoVadis Root CA 2, O=QuoVadis Limited, C=BM
	Certificate (some fields): for E=pki@sk.ee, CN=EE Certification Centre Root CA, O=AS Sertifitseerimiskeskus, C=EE - has private key False by E=pki@sk.ee, CN=EE Certification Centre Root CA, O=AS Sertifitseerimiskeskus, C=EE
	Certificate (some fields): for CN=LuxTrust Global Root, O=LuxTrust s.a., C=LU - has private key False by CN=LuxTrust Global Root, O=LuxTrust s.a., C=LU
	Certificate (some fields): for CN=E-ME SSI (RCA), OU=Sertifikacijas pakalpojumu dala, C=LV - has private key False by CN=E-ME SSI (RCA), OU=Sertifikacijas pakalpojumu dala, C=LV
	Certificate (some fields): for CN=VeriSign Class 4 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 4 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Swiss Government Root CA II, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH - has private key False by CN=Swiss Government Root CA II, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH
	Certificate (some fields): for CN=Gatekeeper Root CA, OU=Gatekeeper PKI, O=eSign Australia - has private key False by CN=Gatekeeper Root CA, OU=Gatekeeper PKI, O=eSign Australia
	Certificate (some fields): for CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE - has private key False by CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE
	Certificate (some fields): for CN=E-CERT ROOT CA, E=sclientes@ccs.cl, OU=Autoridad Certificadora, O=E-CERTCHILE, L=Santiago, S=Region Metropolitana, C=CL - has private key False by CN=E-CERT ROOT CA, E=sclientes@ccs.cl, OU=Autoridad Certificadora, O=E-CERTCHILE, L=Santiago, S=Region Metropolitana, C=CL
	Certificate (some fields): for O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri - has private key False by O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri
	Certificate (some fields): for CN=ANCERT Certificados Notariales, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados Notariales, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES
	Certificate (some fields): for CN=CCA India 2011, O=India PKI, C=IN - has private key False by CN=CCA India 2011, O=India PKI, C=IN
	Certificate (some fields): for CN=S-TRUST Authentication and Encryption Root CA 2005:PN, O=Deutscher Sparkassen Verlag GmbH, L=Stuttgart, S=Baden-Wuerttemberg (BW), C=DE - has private key False by CN=S-TRUST Authentication and Encryption Root CA 2005:PN, O=Deutscher Sparkassen Verlag GmbH, L=Stuttgart, S=Baden-Wuerttemberg (BW), C=DE
	Certificate (some fields): for CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, S=Western Cape, C=ZA - has private key False by CN=Thawte Timestamping CA, OU=Thawte Certification, O=Thawte, L=Durbanville, S=Western Cape, C=ZA
	Certificate (some fields): for OU=DST-Entrust GTI CA, O=Digital Signature Trust Co., C=US - has private key False by OU=DST-Entrust GTI CA, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE - has private key False by CN=Post.Trust Root CA, OU=Post.Trust Ltd., O=An Post, C=IE
	Certificate (some fields): for CN=Root CA, OU=GPKI, O=Government of Korea, C=KR - has private key False by CN=Root CA, OU=GPKI, O=Government of Korea, C=KR
	Certificate (some fields): for OU=AC RAIZ FNMT-RCM, O=FNMT-RCM, C=ES - has private key False by OU=AC RAIZ FNMT-RCM, O=FNMT-RCM, C=ES
	Certificate (some fields): for CN=AffirmTrust Premium ECC, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Premium ECC, O=AffirmTrust, C=US
	Certificate (some fields): for CN=XRamp Global Certification Authority, O=XRamp Security Services Inc, OU=www.xrampsecurity.com, C=US - has private key False by CN=XRamp Global Certification Authority, O=XRamp Security Services Inc, OU=www.xrampsecurity.com, C=US
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST RootCA X1, OU=DSTCA X1, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST RootCA X1, OU=DSTCA X1, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=Starfield Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Starfield Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi - has private key False by O=TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S. (c) Kasim 2005, L=Ankara, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=AC RAIZ DNIE, OU=DNIE, O=DIRECCION GENERAL DE LA POLICIA, C=ES - has private key False by CN=AC RAIZ DNIE, OU=DNIE, O=DIRECCION GENERAL DE LA POLICIA, C=ES
	Certificate (some fields): for CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US - has private key False by CN=Entrust Root Certification Authority, OU="(c) 2006 Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, O="Entrust, Inc.", C=US
	Certificate (some fields): for OU=POSTArCA, O=POSTA, C=SI - has private key False by OU=POSTArCA, O=POSTA, C=SI
	Certificate (some fields): for CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE - has private key False by CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE
	Certificate (some fields): for E=pkiadmin@trustcentre.co.za, CN=SAPO Class 3 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA - has private key False by E=pkiadmin@trustcentre.co.za, CN=SAPO Class 3 Root CA, OU=SAPO Trust Centre, O=South African Post Office Limited, L=Somerset West, S=Western Cape, C=ZA
	Certificate (some fields): for OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=Certigna, O=Dhimyotis, C=FR - has private key False by CN=Certigna, O=Dhimyotis, C=FR
	Certificate (some fields): for CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, C=ES - has private key False by CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, C=ES
	Certificate (some fields): for CN=TC TrustCenter Class 2 CA II, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Class 2 CA II, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for C=IL, O=ComSign Ltd., CN=ComSign Global Root CA - has private key False by C=IL, O=ComSign Ltd., CN=ComSign Global Root CA
	Certificate (some fields): for OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=US - has private key False by OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=US
	Certificate (some fields): for CN=NetLock Kozjegyzoi (Class A) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, S=Hungary, C=HU - has private key False by CN=NetLock Kozjegyzoi (Class A) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, S=Hungary, C=HU
	Certificate (some fields): for CN=CA DATEV STD 02, O=DATEV eG, C=DE - has private key False by CN=CA DATEV STD 02, O=DATEV eG, C=DE
	Certificate (some fields): for OU=DSTCA E2, O=Digital Signature Trust Co., C=US - has private key False by OU=DSTCA E2, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for O=Prvni certifikacni autorita a.s., CN=I.CA - Standard root certificate, C=CZ - has private key False by O=Prvni certifikacni autorita a.s., CN=I.CA - Standard root certificate, C=CZ
	Certificate (some fields): for CN=thawte Primary Root CA - G2, OU="(c) 2007 thawte, Inc. - For authorized use only", O="thawte, Inc.", C=US - has private key False by CN=thawte Primary Root CA - G2, OU="(c) 2007 thawte, Inc. - For authorized use only", O="thawte, Inc.", C=US
	Certificate (some fields): for CN=GeoTrust Global CA 2, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Global CA 2, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=Autoridade Certificadora Raiz Brasileira v2, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR - has private key False by CN=Autoridade Certificadora Raiz Brasileira v2, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR
	Certificate (some fields): for E=ca@firmaprofesional.com, CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, L=C/ Muntaner 244 Barcelona, C=ES - has private key False by E=ca@firmaprofesional.com, CN=Autoridad de Certificacion Firmaprofesional CIF A62634068, L=C/ Muntaner 244 Barcelona, C=ES
	Certificate (some fields): for CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US - has private key False by CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
	Certificate (some fields): for CN=Serasa Certificate Authority I, OU=Serasa CA I, O=Serasa S.A., C=BR - has private key False by CN=Serasa Certificate Authority I, OU=Serasa CA I, O=Serasa S.A., C=BR
	Certificate (some fields): for CN=TC TrustCenter Class 4 CA II, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Class 4 CA II, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Certipost E-Trust Primary Normalised CA, O=Certipost s.a./n.v., C=BE - has private key False by CN=Certipost E-Trust Primary Normalised CA, O=Certipost s.a./n.v., C=BE
	Certificate (some fields): for OID.0.9.2342.19200300.100.1.3=ca@digsigtrust.com, CN=Baltimore EZ by DST, O=Digital Signature Trust Co., C=US - has private key False by OID.0.9.2342.19200300.100.1.3=ca@digsigtrust.com, CN=Baltimore EZ by DST, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=TC TrustCenter Time Stamping CA, OU=TC TrustCenter Time Stamping CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by CN=TC TrustCenter Time Stamping CA, OU=TC TrustCenter Time Stamping CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for CN=SwissSign Platinum Root CA - G3, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Platinum Root CA - G3, O=SwissSign AG, C=CH
	Certificate (some fields): for OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Swiss Government Root CA I, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH - has private key False by CN=Swiss Government Root CA I, OU=Certification Authorities, OU=Services, O=The Federal Authorities of the Swiss Confederation, C=CH
	Certificate (some fields): for CN=PostSignum Root QCA 2, O="Cesk posta, s.p. [IC 47114983]", C=CZ - has private key False by CN=PostSignum Root QCA 2, O="Cesk posta, s.p. [IC 47114983]", C=CZ
	Certificate (some fields): for CN=Buypass Class 2 CA 1, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 2 CA 1, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for CN=Root CA Generalitat Valenciana, OU=PKIGVA, O=Generalitat Valenciana, C=ES - has private key False by CN=Root CA Generalitat Valenciana, OU=PKIGVA, O=Generalitat Valenciana, C=ES
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=COMODO ECC Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB - has private key False by CN=COMODO ECC Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
	Certificate (some fields): for CN=Serasa Certificate Authority III, OU=Serasa CA III, O=Serasa S.A., C=BR - has private key False by CN=Serasa Certificate Authority III, OU=Serasa CA III, O=Serasa S.A., C=BR
	Certificate (some fields): for CN=KEYNECTIS ROOT CA, OU=ROOT, O=KEYNECTIS, C=FR - has private key False by CN=KEYNECTIS ROOT CA, OU=ROOT, O=KEYNECTIS, C=FR
	Certificate (some fields): for CN=SwissSign Silver CA - G2, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Silver CA - G2, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US - has private key False by CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), O=Entrust.net, C=US
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US - has private key False by CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US
	Certificate (some fields): for CN=CCA India 2007, O=India PKI, C=IN - has private key False by CN=CCA India 2007, O=India PKI, C=IN
	Certificate (some fields): for CN=VI Registru Centras RCSC (RootCA), OU=Registru Centro Sertifikavimo Centras, O=VI Registru Centras - I.k. 124110246, C=LT - has private key False by CN=VI Registru Centras RCSC (RootCA), OU=Registru Centro Sertifikavimo Centras, O=VI Registru Centras - I.k. 124110246, C=LT
	Certificate (some fields): for CN=D-TRUST Root Class 3 CA 2 EV 2009, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 3 CA 2 EV 2009, O=D-Trust GmbH, C=DE
	Certificate (some fields): for OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Individual Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for OU=Application CA G2, O=LGPKI, C=JP - has private key False by OU=Application CA G2, O=LGPKI, C=JP
	Certificate (some fields): for CN=TC TrustCenter Universal CA III, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Universal CA III, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for CN=CA DATEV INT 02, O=DATEV eG, C=DE - has private key False by CN=CA DATEV INT 02, O=DATEV eG, C=DE
	Certificate (some fields): for CN=Wells Fargo Root Certificate Authority, OU=Wells Fargo Certification Authority, O=Wells Fargo, C=US - has private key False by CN=Wells Fargo Root Certificate Authority, OU=Wells Fargo Certification Authority, O=Wells Fargo, C=US
	Certificate (some fields): for CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Starfield Services Root Certificate Authority - G2, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for CN=thawte Primary Root CA, OU="(c) 2006 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US - has private key False by CN=thawte Primary Root CA, OU="(c) 2006 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US
	Certificate (some fields): for CN=Actalis Authentication CA G1, O=Actalis S.p.A./03358520967, L=Milano, C=IT - has private key False by CN=Actalis Authentication CA G1, O=Actalis S.p.A./03358520967, L=Milano, C=IT
	Certificate (some fields): for CN=Verizon Global Root CA, OU=OmniRoot, O=Verizon Business, C=US - has private key False by CN=Verizon Global Root CA, OU=OmniRoot, O=Verizon Business, C=US
	Certificate (some fields): for CN=GTE CyberTrust Root, O=GTE Corporation, C=US - has private key False by CN=GTE CyberTrust Root, O=GTE Corporation, C=US
	Certificate (some fields): for OU=I.CA - Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Standard Certification Authority, 09/2009", C=CZ - has private key False by OU=I.CA - Provider of Certification Services, O="Prvn¡ certifikacn¡ autorita, a.s.", CN="I.CA - Standard Certification Authority, 09/2009", C=CZ
	Certificate (some fields): for OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for OID.0.9.2342.19200300.100.1.3=correo_cert@correo.com.uy, CN=SERVICIOS DE CERTIFICACION - A.N.C., OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY - has private key False by OID.0.9.2342.19200300.100.1.3=correo_cert@correo.com.uy, CN=SERVICIOS DE CERTIFICACION - A.N.C., OU=SERVICIOS ELECTRONICOS, O=ADMINISTRACION NACIONAL DE CORREOS, C=UY
	Certificate (some fields): for CN=Federal Common Policy CA, OU=FPKI, O=U.S. Government, C=US - has private key False by CN=Federal Common Policy CA, OU=FPKI, O=U.S. Government, C=US
	Certificate (some fields): for CN=Microsoft Root Certificate Authority 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US - has private key False by CN=Microsoft Root Certificate Authority 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
	Certificate (some fields): for CN=Autoridade Certificadora Raiz Brasileira, S=DF, L=Brasilia, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR - has private key False by CN=Autoridade Certificadora Raiz Brasileira, S=DF, L=Brasilia, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR
	Certificate (some fields): for CN=SecureSign RootCA3, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA3, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for E=a-cert@argedaten.at, O=Arge Daten Oesterreichische Gesellschaft fuer Datenschutz, L=Vienna, S=Austria, C=AT - has private key False by E=a-cert@argedaten.at, O=Arge Daten Oesterreichische Gesellschaft fuer Datenschutz, L=Vienna, S=Austria, C=AT
	Certificate (some fields): for CN=GeoTrust Primary Certification Authority - G2, OU=(c) 2007 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Primary Certification Authority - G2, OU=(c) 2007 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=SwissSign Silver Root CA - G3, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Silver Root CA - G3, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See http://www.entrust.net/legal-terms, O="Entrust, Inc.", C=US - has private key False by CN=Entrust Root Certification Authority - G2, OU="(c) 2009 Entrust, Inc. - for authorized use only", OU=See http://www.entrust.net/legal-terms, O="Entrust, Inc.", C=US
	Certificate (some fields): for CN=TC TrustCenter Universal CA II, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Universal CA II, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for C=TR, O=EBG Bilisim Teknolojileri ve Hizmetleri A.S., CN=EBG Elektronik Sertifika Hizmet Saglayicisi - has private key False by C=TR, O=EBG Bilisim Teknolojileri ve Hizmetleri A.S., CN=EBG Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for CN=CNNIC ROOT, O=CNNIC, C=CN - has private key False by CN=CNNIC ROOT, O=CNNIC, C=CN
	Certificate (some fields): for CN=Certificado Empresarial Clase-A, O=Certicamara S.A. Entidad de Certificacion, L=Carrera 9 16-21 Bogota, C=CO - has private key False by CN=Certificado Empresarial Clase-A, O=Certicamara S.A. Entidad de Certificacion, L=Carrera 9 16-21 Bogota, C=CO
	Certificate (some fields): for E=info@e-szigno.hu, CN=Microsec e-Szigno Root CA 2009, O=Microsec Ltd., L=Budapest, C=HU - has private key False by E=info@e-szigno.hu, CN=Microsec e-Szigno Root CA 2009, O=Microsec Ltd., L=Budapest, C=HU
	Certificate (some fields): for CN=Macao Post eSignTrust Root Certification Authority, O=Macao Post, C=MO - has private key False by CN=Macao Post eSignTrust Root Certification Authority, O=Macao Post, C=MO
	Certificate (some fields): for CN=NetLock Uzleti (Class B) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU - has private key False by CN=NetLock Uzleti (Class B) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU
	Certificate (some fields): for CN=SecureTrust CA, O=SecureTrust Corporation, C=US - has private key False by CN=SecureTrust CA, O=SecureTrust Corporation, C=US
	Certificate (some fields): for CN=TDC OCES CA, O=TDC, C=DK - has private key False by CN=TDC OCES CA, O=TDC, C=DK
	Certificate (some fields): for CN=America Online Root Certification Authority 2, O=America Online Inc., C=US - has private key False by CN=America Online Root Certification Authority 2, O=America Online Inc., C=US
	Certificate (some fields): for CN=Deutsche Telekom Root CA 2, OU=T-TeleSec Trust Center, O=Deutsche Telekom AG, C=DE - has private key False by CN=Deutsche Telekom Root CA 2, OU=T-TeleSec Trust Center, O=Deutsche Telekom AG, C=DE
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for CN=UCA Root, O=UniTrust, C=CN - has private key False by CN=UCA Root, O=UniTrust, C=CN
	Certificate (some fields): for OU=DSTCA E1, O=Digital Signature Trust Co., C=US - has private key False by OU=DSTCA E1, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=ComSign Advanced Security CA - has private key False by CN=ComSign Advanced Security CA
	Certificate (some fields): for CN=TC TrustCenter Class 3 CA II, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Class 3 CA II, OU=TC TrustCenter Class 3 CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for CN=Halcom CA PO 2, O=Halcom, C=SI - has private key False by CN=Halcom CA PO 2, O=Halcom, C=SI
	Certificate (some fields): for OU=sigov-ca, O=state-institutions, C=si - has private key False by OU=sigov-ca, O=state-institutions, C=si
	Certificate (some fields): for OU=ApplicationCA, O=Japanese Government, C=JP - has private key False by OU=ApplicationCA, O=Japanese Government, C=JP
	Certificate (some fields): for CN=Autoridad de Certificacion de la Abogacia, O=Consejo General de la Abogacia NIF:Q-2863006I, C=ES - has private key False by CN=Autoridad de Certificacion de la Abogacia, O=Consejo General de la Abogacia NIF:Q-2863006I, C=ES
	Certificate (some fields): for CN=ANCERT Certificados CGN V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados CGN V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES
	Certificate (some fields): for CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US - has private key False by CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US
	Certificate (some fields): for E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon, OID.2.5.4.45=#030F005345432D3833303130312D395639 - has private key False by E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon, OID.2.5.4.45=#030F005345432D3833303130312D395639
	Certificate (some fields): for O=SecureNet CA Class B, C=au - has private key False by O=SecureNet CA Class B, C=au
	Certificate (some fields): for E=admin@digsigtrust.com, CN=ABA.ECOM Root CA, O="ABA.ECOM, INC.", L=Washington, S=DC, C=US - has private key False by E=admin@digsigtrust.com, CN=ABA.ECOM Root CA, O="ABA.ECOM, INC.", L=Washington, S=DC, C=US
	Certificate (some fields): for O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi - has private key False by O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Sertifika Hizmet Saglayicisi
	Certificate (some fields): for OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Chambers of Commerce Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU - has private key False by CN=Chambers of Commerce Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU
	Certificate (some fields): for CN=Swisscom Root CA 2, OU=Digital Certificate Services, O=Swisscom, C=ch - has private key False by CN=Swisscom Root CA 2, OU=Digital Certificate Services, O=Swisscom, C=ch
	Certificate (some fields): for CN=Common Policy, OU=FBCA, O=U.S. Government, C=us - has private key False by CN=Common Policy, OU=FBCA, O=U.S. Government, C=us
	Certificate (some fields): for OU=DST (ANX Network) CA, O=Digital Signature Trust Co., C=US - has private key False by OU=DST (ANX Network) CA, O=Digital Signature Trust Co., C=US
	Certificate (some fields): for CN=GPKIRootCA1, OU=GPKI, O=Government of Korea, C=KR - has private key False by CN=GPKIRootCA1, OU=GPKI, O=Government of Korea, C=KR
	Certificate (some fields): for CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2 - has private key False by CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2
	Certificate (some fields): for O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri - has private key False by O=(c) 2005 TšRKTRUST Bilgi Iletisim ve Bilisim Gvenligi Hizmetleri A.S., L=ANKARA, C=TR, CN=TšRKTRUST Elektronik Islem Hizmetleri
	Certificate (some fields): for CN=Certipost E-Trust Primary Qualified CA, O=Certipost s.a./n.v., C=BE - has private key False by CN=Certipost E-Trust Primary Qualified CA, O=Certipost s.a./n.v., C=BE
	Certificate (some fields): for OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Class 2 Primary CA, O=Certplus, C=FR - has private key False by CN=Class 2 Primary CA, O=Certplus, C=FR
	Certificate (some fields): for E=certificate@trustcenter.de, OU=TC TrustCenter Class 1 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE - has private key False by E=certificate@trustcenter.de, OU=TC TrustCenter Class 1 CA, O=TC TrustCenter for Security in Data Networks GmbH, L=Hamburg, S=Hamburg, C=DE
	Certificate (some fields): for CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US - has private key False by CN=Network Solutions Certificate Authority, O=Network Solutions L.L.C., C=US
	Certificate (some fields): for CN=Autoridade Certificadora Raiz Brasileira v1, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR - has private key False by CN=Autoridade Certificadora Raiz Brasileira v1, OU=Instituto Nacional de Tecnologia da Informacao - ITI, O=ICP-Brasil, C=BR
	Certificate (some fields): for CN=eSign Imperito Primary Root CA, OU=Public Secure Services, O=eSign Australia - has private key False by CN=eSign Imperito Primary Root CA, OU=Public Secure Services, O=eSign Australia
	Certificate (some fields): for CN=Visa eCommerce Root, OU=Visa International Service Association, O=VISA, C=US - has private key False by CN=Visa eCommerce Root, OU=Visa International Service Association, O=VISA, C=US
	Certificate (some fields): for CN=ANCERT Certificados Notariales V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados Notariales V2, O=Agencia Notarial de Certificacion S.L.U. - CIF B83395988, C=ES
	Certificate (some fields): for CN=Chambers of Commerce Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU - has private key False by CN=Chambers of Commerce Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU
	Certificate (some fields): for CN=AdminCA-CD-T01, OU=Certification Authorities, OU=Services, O=admin, C=CH - has private key False by CN=AdminCA-CD-T01, OU=Certification Authorities, OU=Services, O=admin, C=CH
	Certificate (some fields): for CN=TC TrustCenter Universal CA I, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE - has private key False by CN=TC TrustCenter Universal CA I, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE
	Certificate (some fields): for C=ES, L=MADRID, O=MINISTERIO DE TRABAJO E INMIGRACION, OU=SUBDIRECCION GENERAL DE PROCESO DE DATOS, OU=PRESTADOR DE SERVICIOS DE CERTIFICACION MTIN, SERIALNUMBER=S2819001E, CN=AC1 RAIZ MTIN - has private key False by C=ES, L=MADRID, O=MINISTERIO DE TRABAJO E INMIGRACION, OU=SUBDIRECCION GENERAL DE PROCESO DE DATOS, OU=PRESTADOR DE SERVICIOS DE CERTIFICACION MTIN, SERIALNUMBER=S2819001E, CN=AC1 RAIZ MTIN
	Certificate (some fields): for CN=Primary Utility Root CA, OU=Public Secure Services, O=eSign Australia - has private key False by CN=Primary Utility Root CA, OU=Public Secure Services, O=eSign Australia
	Certificate (some fields): for CN=Class 1 Primary CA, O=Certplus, C=FR - has private key False by CN=Class 1 Primary CA, O=Certplus, C=FR
	Certificate (some fields): for E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 3 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network - has private key False by E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 3 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
	Certificate (some fields): for E=ca@digsigtrust.com, CN=Xcert EZ by DST, O=Xcert EZ by DST, L=Salt Lake City, S=Utah, C=US - has private key False by E=ca@digsigtrust.com, CN=Xcert EZ by DST, O=Xcert EZ by DST, L=Salt Lake City, S=Utah, C=US
	Certificate (some fields): for OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for E=ca@digsigtrust.com, CN=DST RootCA X2, OU=DSTCA X2, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us - has private key False by E=ca@digsigtrust.com, CN=DST RootCA X2, OU=DSTCA X2, O=Digital Signature Trust Co., L=Salt Lake City, S=Utah, C=us
	Certificate (some fields): for CN=A-Trust-Qual-02, OU=A-Trust-Qual-02, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-Qual-02, OU=A-Trust-Qual-02, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for OU=ePKI Root Certification Authority, O="Chunghwa Telecom Co., Ltd.", C=TW - has private key False by OU=ePKI Root Certification Authority, O="Chunghwa Telecom Co., Ltd.", C=TW
	Certificate (some fields): for CN=CESAM, OU=0002 542044524, O=NATIXIS, C=FR - has private key False by CN=CESAM, OU=0002 542044524, O=NATIXIS, C=FR
	Certificate (some fields): for O="Prvn¡ certifikacn¡ autorita, a.s.", CN=I.CA - Qualified root certificate, C=CZ - has private key False by O="Prvn¡ certifikacn¡ autorita, a.s.", CN=I.CA - Qualified root certificate, C=CZ
	Certificate (some fields): for E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=premium-server@thawte.com, CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Certum CA, O=Unizeto Sp. z o.o., C=PL - has private key False by CN=Certum CA, O=Unizeto Sp. z o.o., C=PL
	Certificate (some fields): for CN=VeriSign Class 2 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 2 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Buypass Class 3 CA 1, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 3 CA 1, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for E=igca@sgdn.pm.gouv.fr, CN=IGC/A, OU=DCSSI, O=PM/SGDN, L=Paris, S=France, C=FR - has private key False by E=igca@sgdn.pm.gouv.fr, CN=IGC/A, OU=DCSSI, O=PM/SGDN, L=Paris, S=France, C=FR
	Certificate (some fields): for CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US - has private key False by CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
	Certificate (some fields): for CN=KISA RootCA 3, OU=Korea Certification Authority Central, O=KISA, C=KR - has private key False by CN=KISA RootCA 3, OU=Korea Certification Authority Central, O=KISA, C=KR
	Certificate (some fields): for CN=Cybertrust Global Root, O="Cybertrust, Inc" - has private key False by CN=Cybertrust Global Root, O="Cybertrust, Inc"
	Certificate (some fields): for OU=Security Communication RootCA2, O="SECOM Trust Systems CO.,LTD.", C=JP - has private key False by OU=Security Communication RootCA2, O="SECOM Trust Systems CO.,LTD.", C=JP
	Certificate (some fields): for CN=Swisscom Root CA 1, OU=Digital Certificate Services, O=Swisscom, C=ch - has private key False by CN=Swisscom Root CA 1, OU=Digital Certificate Services, O=Swisscom, C=ch
	Certificate (some fields): for CN=UTN-USERFirst-Network Applications, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Network Applications, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=Starfield Services Root Certificate Authority, OU=http://certificates.starfieldtech.com/repository/, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Starfield Services Root Certificate Authority, OU=http://certificates.starfieldtech.com/repository/, O="Starfield Technologies, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for CN=SSC Root CA A, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT - has private key False by CN=SSC Root CA A, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT
	Certificate (some fields): for CN=Visa Information Delivery Root CA, OU=Visa International Service Association, O=VISA, C=US - has private key False by CN=Visa Information Delivery Root CA, OU=Visa International Service Association, O=VISA, C=US
	Certificate (some fields): for CN=Staat der Nederlanden Root CA - G2, O=Staat der Nederlanden, C=NL - has private key False by CN=Staat der Nederlanden Root CA - G2, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for CN=OISTE WISeKey Global Root GA CA, OU=OISTE Foundation Endorsed, OU=Copyright (c) 2005, O=WISeKey, C=CH - has private key False by CN=OISTE WISeKey Global Root GA CA, OU=OISTE Foundation Endorsed, OU=Copyright (c) 2005, O=WISeKey, C=CH
	Certificate (some fields): for CN=D-TRUST Root Class 3 CA 2 2009, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 3 CA 2 2009, O=D-Trust GmbH, C=DE
	Certificate (some fields): for CN=UTN - DATACorp SGC, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN - DATACorp SGC, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for CN=SwissSign Platinum CA - G2, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Platinum CA - G2, O=SwissSign AG, C=CH
	Certificate (some fields): for OU=Netrust CA1, O=Netrust Certificate Authority 1, C=SG - has private key False by OU=Netrust CA1, O=Netrust Certificate Authority 1, C=SG
	Certificate (some fields): for CN=T-TeleSec GlobalRoot Class 3, OU=T-Systems Trust Center, O=T-Systems Enterprise Services GmbH, C=DE - has private key False by CN=T-TeleSec GlobalRoot Class 3, OU=T-Systems Trust Center, O=T-Systems Enterprise Services GmbH, C=DE
	Certificate (some fields): for OU=Certisign - Autoridade Certificadora - AC4, O=Certisign Certificadora Digital Ltda., C=BR - has private key False by OU=Certisign - Autoridade Certificadora - AC4, O=Certisign Certificadora Digital Ltda., C=BR
	Certificate (some fields): for CN=CA DATEV INT 01, O=DATEV eG, C=DE - has private key False by CN=CA DATEV INT 01, O=DATEV eG, C=DE
	Certificate (some fields): for CN=A-Trust-nQual-01, OU=A-Trust-nQual-01, O=A-Trust, C=AT - has private key False by CN=A-Trust-nQual-01, OU=A-Trust-nQual-01, O=A-Trust, C=AT
	Certificate (some fields): for CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net - has private key False by CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), O=Entrust.net
	Certificate (some fields): for CN=China Internet Network Information Center EV Certificates Root, O=China Internet Network Information Center, C=CN - has private key False by CN=China Internet Network Information Center EV Certificates Root, O=China Internet Network Information Center, C=CN
	Certificate (some fields): for OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US - has private key False by OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=CERTICAMARA S.A., O=Entidad de Certificacion Digital Abierta Certicamara S.A., C=CO, L=Bogota AV Calle 26 N 68D-35 - has private key False by CN=CERTICAMARA S.A., O=Entidad de Certificacion Digital Abierta Certicamara S.A., C=CO, L=Bogota AV Calle 26 N 68D-35
	Certificate (some fields): for OU=Certisign - Autoridade Certificadora - AC2, O=Certisign Certificadora Digital Ltda., C=BR - has private key False by OU=Certisign - Autoridade Certificadora - AC2, O=Certisign Certificadora Digital Ltda., C=BR
	Certificate (some fields): for CN=VeriSign Class 3 Public Primary Certification Authority - G5, OU="(c) 2006 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G5, OU="(c) 2006 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Global Chambersign Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU - has private key False by CN=Global Chambersign Root - 2008, O=AC Camerfirma S.A., SERIALNUMBER=A82743287, L=Madrid (see current address at http://www.camerfirma.com/address), C=EU
	Certificate (some fields): for E=Info@izenpe.com, CN=Izenpe.com, L=Avda del Mediterraneo Etorbidea 3 - 01010 Vitoria-Gasteiz, O=IZENPE S.A. - CIF A-01337260-RMerc.Vitoria-Gasteiz T1055 F62 S8, C=ES - has private key False by E=Info@izenpe.com, CN=Izenpe.com, L=Avda del Mediterraneo Etorbidea 3 - 01010 Vitoria-Gasteiz, O=IZENPE S.A. - CIF A-01337260-RMerc.Vitoria-Gasteiz T1055 F62 S8, C=ES
	Certificate (some fields): for CN=D-TRUST Root Class 2 CA 2007, O=D-Trust GmbH, C=DE - has private key False by CN=D-TRUST Root Class 2 CA 2007, O=D-Trust GmbH, C=DE
	Certificate (some fields): for CN=Buypass Class 2 Root CA, O=Buypass AS-983163327, C=NO - has private key False by CN=Buypass Class 2 Root CA, O=Buypass AS-983163327, C=NO
	Certificate (some fields): for CN=Go Daddy Root Certificate Authority - G2, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US - has private key False by CN=Go Daddy Root Certificate Authority - G2, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US
	Certificate (some fields): for OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US - has private key False by OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US
	Certificate (some fields): for OU=FNMT Clase 2 CA, O=FNMT, C=ES - has private key False by OU=FNMT Clase 2 CA, O=FNMT, C=ES
	Certificate (some fields): for CN=PersonalID Trustworthy RootCA 2011, OU=Certificate Services, O=PersonalID Ltd., C=IL - has private key False by CN=PersonalID Trustworthy RootCA 2011, OU=Certificate Services, O=PersonalID Ltd., C=IL
	Certificate (some fields): for CN=TeliaSonera Root CA v1, O=TeliaSonera - has private key False by CN=TeliaSonera Root CA v1, O=TeliaSonera
	Certificate (some fields): for CN=A-Trust-Qual-03, OU=A-Trust-Qual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT - has private key False by CN=A-Trust-Qual-03, OU=A-Trust-Qual-03, O=A-Trust Ges. f. Sicherheitssysteme im elektr. Datenverkehr GmbH, C=AT
	Certificate (some fields): for E=personal-basic@thawte.com, CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=personal-basic@thawte.com, CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Juur-SK, O=AS Sertifitseerimiskeskus, C=EE, E=pki@sk.ee - has private key False by CN=Juur-SK, O=AS Sertifitseerimiskeskus, C=EE, E=pki@sk.ee
	Certificate (some fields): for CN=DST ACES CA X6, OU=DST ACES, O=Digital Signature Trust, C=US - has private key False by CN=DST ACES CA X6, OU=DST ACES, O=Digital Signature Trust, C=US
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=SSC Root CA B, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT - has private key False by CN=SSC Root CA B, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT
	Certificate (some fields): for OU=sigen-ca, O=state-institutions, C=si - has private key False by OU=sigen-ca, O=state-institutions, C=si
	Certificate (some fields): for CN=StartCom Certification Authority, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL - has private key False by CN=StartCom Certification Authority, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL
	Certificate (some fields): for E=global01@ipsca.com, CN=ipsCA Global CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES - has private key False by E=global01@ipsca.com, CN=ipsCA Global CA Root, OU=ipsCA, O=IPS Certification Authority s.l. ipsCA, L=Madrid, S=Madrid, C=ES
	Certificate (some fields): for CN=SecureSign RootCA11, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA11, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for OU=Trustis FPS Root CA, O=Trustis Limited, C=GB - has private key False by OU=Trustis FPS Root CA, O=Trustis Limited, C=GB
	Certificate (some fields): for CN=Secure Global CA, O=SecureTrust Corporation, C=US - has private key False by CN=Secure Global CA, O=SecureTrust Corporation, C=US
	Certificate (some fields): for E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano - has private key False by E=acraiz@suscerte.gob.ve, OU=Superintendencia de Servicios de Certificacion Electronica, O=Sistema Nacional de Certificacion Electronica, S=Distrito Capital, L=Caracas, C=VE, CN=Autoridad de Certificacion Raiz del Estado Venezolano
	Certificate (some fields): for OU=Equifax Secure eBusiness CA-2, O=Equifax Secure, C=US - has private key False by OU=Equifax Secure eBusiness CA-2, O=Equifax Secure, C=US
	Certificate (some fields): for CN=CA DATEV BT 02, O=DATEV eG, C=DE - has private key False by CN=CA DATEV BT 02, O=DATEV eG, C=DE
	Certificate (some fields): for CN=America Online Root Certification Authority 1, O=America Online Inc., C=US - has private key False by CN=America Online Root Certification Authority 1, O=America Online Inc., C=US
	Certificate (some fields): for CN=ECRaizEstado, O=SCEE, C=PT - has private key False by CN=ECRaizEstado, O=SCEE, C=PT
	Certificate (some fields): for CN=Sonera Class2 CA, O=Sonera, C=FI - has private key False by CN=Sonera Class2 CA, O=Sonera, C=FI
	Certificate (some fields): for CN=GeoTrust Universal CA 2, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Universal CA 2, O=GeoTrust Inc., C=US
	Certificate (some fields): for OU=Security Communication RootCA1, O=SECOM Trust.net, C=JP - has private key False by OU=Security Communication RootCA1, O=SECOM Trust.net, C=JP
	Certificate (some fields): for E=personal-premium@thawte.com, CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=personal-premium@thawte.com, CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=VeriSign Universal Root Certification Authority, OU="(c) 2008 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Universal Root Certification Authority, OU="(c) 2008 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon - has private key False by E=acrse@economia.gob.mx, O=Secretaria de Economia, OU=Direccion General de Normatividad Mercantil, CN=Autoridad Certificadora Raiz de la Secretaria de Economia, STREET=Insurgentes Sur 1940, PostalCode=01030, C=MX, S=Distrito Federal, L=Alvaro Obregon
	Certificate (some fields): for E=info@globaltrust.info, CN=GLOBALTRUST, OU=GLOBALTRUST Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, S=Austria, L=Vienna, C=AT - has private key False by E=info@globaltrust.info, CN=GLOBALTRUST, OU=GLOBALTRUST Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, S=Austria, L=Vienna, C=AT
	Certificate (some fields): for CN=Global Chambersign Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU - has private key False by CN=Global Chambersign Root, OU=http://www.chambersign.org, O=AC Camerfirma SA CIF A82743287, C=EU
	Certificate (some fields): for CN=GeoTrust Primary Certification Authority, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Primary Certification Authority, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=Serasa Certificate Authority II, OU=Serasa CA II, O=Serasa S.A., C=BR - has private key False by CN=Serasa Certificate Authority II, OU=Serasa CA II, O=Serasa S.A., C=BR
	Certificate (some fields): for E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network - has private key False by E=info@valicert.com, CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCert, Inc.", L=ValiCert Validation Network
	Certificate (some fields): for CN=Izenpe.com, O=IZENPE S.A., C=ES - has private key False by CN=Izenpe.com, O=IZENPE S.A., C=ES
	Certificate (some fields): for E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=ANCE WEB, O=ANCE, C=TN - has private key False by E=ance@certification.tn, CN=Agence Nationale de Certification Electronique, OU=ANCE WEB, O=ANCE, C=TN
	Certificate (some fields): for CN=Certinomis - Autorit‚ Racine, OU=0002 433998903, O=Certinomis, C=FR - has private key False by CN=Certinomis - Autorit‚ Racine, OU=0002 433998903, O=Certinomis, C=FR
	Certificate (some fields): for C=DE, O=Atos, CN=Atos TrustedRoot 2011 - has private key False by C=DE, O=Atos, CN=Atos TrustedRoot 2011
	Certificate (some fields): for CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US - has private key False by CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US
	Certificate (some fields): for CN=CA Disig, O=Disig a.s., L=Bratislava, C=SK - has private key False by CN=CA Disig, O=Disig a.s., L=Bratislava, C=SK
	Certificate (some fields): for E=info@a-cert.at, CN=A-CERT ADVANCED, OU=A-CERT Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, L=Vienna, S=Austria, C=AT - has private key False by E=info@a-cert.at, CN=A-CERT ADVANCED, OU=A-CERT Certification Service, O=ARGE DATEN - Austrian Society for Data Protection, L=Vienna, S=Austria, C=AT
	Certificate (some fields): for CN=AffirmTrust Networking, O=AffirmTrust, C=US - has private key False by CN=AffirmTrust Networking, O=AffirmTrust, C=US
	Certificate (some fields): for CN=EC-ACC, OU=Jerarquia Entitats de Certificacio Catalanes, OU=Vegeu https://www.catcert.net/verarrel (c)03, OU=Serveis Publics de Certificacio, O=Agencia Catalana de Certificacio (NIF Q-0801176-I), C=ES - has private key False by CN=EC-ACC, OU=Jerarquia Entitats de Certificacio Catalanes, OU=Vegeu https://www.catcert.net/verarrel (c)03, OU=Serveis Publics de Certificacio, O=Agencia Catalana de Certificacio (NIF Q-0801176-I), C=ES
	Certificate (some fields): for OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US - has private key False by OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Admin-Root-CA, OU=Certification Authorities, OU=Services, O=admin, C=ch - has private key False by CN=Admin-Root-CA, OU=Certification Authorities, OU=Services, O=admin, C=ch
	Certificate (some fields): for OU=RSA Security 2048 V3, O=RSA Security Inc - has private key False by OU=RSA Security 2048 V3, O=RSA Security Inc
	Certificate (some fields): for E=ips@mail.ips.es, CN=IPS SERVIDORES, OU=Certificaciones, O=IPS Seguridad CA, L=BARCELONA, S=BARCELONA, C=ES - has private key False by E=ips@mail.ips.es, CN=IPS SERVIDORES, OU=Certificaciones, O=IPS Seguridad CA, L=BARCELONA, S=BARCELONA, C=ES
	Certificate (some fields): for OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet - has private key False by OU=VeriSign Commercial Software Publishers CA, O="VeriSign, Inc.", L=Internet
	Certificate (some fields): for CN=SSC Root CA C, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT - has private key False by CN=SSC Root CA C, OU=Certification Authority, O=Skaitmeninio sertifikavimo centras, C=LT
	Certificate (some fields): for E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=server-certs@thawte.com, CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=Microsec e-Szigno Root CA, OU=e-Szigno CA, O=Microsec Ltd., L=Budapest, C=HU - has private key False by CN=Microsec e-Szigno Root CA, OU=e-Szigno CA, O=Microsec Ltd., L=Budapest, C=HU
	Certificate (some fields): for CN=VeriSign Class 3 Public Primary Certification Authority - G4, OU="(c) 2007 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G4, OU="(c) 2007 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for OU=TDC Internet Root CA, O=TDC Internet, C=DK - has private key False by OU=TDC Internet Root CA, O=TDC Internet, C=DK
	Certificate (some fields): for CN=Class 3P Primary CA, O=Certplus, C=FR - has private key False by CN=Class 3P Primary CA, O=Certplus, C=FR
	Certificate (some fields): for CN=Registradores de Espa¤a - CA Ra¡z, OU=Certificado Propio, O=Colegio de Registradores de la Propiedad y Mercantiles de Espa¤a, C=ES - has private key False by CN=Registradores de Espa¤a - CA Ra¡z, OU=Certificado Propio, O=Colegio de Registradores de la Propiedad y Mercantiles de Espa¤a, C=ES
	Certificate (some fields): for CN=GPKIRootCA, OU=GPKI, O=Government of Korea, C=KR - has private key False by CN=GPKIRootCA, OU=GPKI, O=Government of Korea, C=KR
	Certificate (some fields): for E=personal-freemail@thawte.com, CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA - has private key False by E=personal-freemail@thawte.com, CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, S=Western Cape, C=ZA
	Certificate (some fields): for CN=VeriSign Class 1 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 1 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=QuoVadis Root CA 3, O=QuoVadis Limited, C=BM - has private key False by CN=QuoVadis Root CA 3, O=QuoVadis Limited, C=BM
	Certificate (some fields): for CN=TšBITAK UEKAE K”k Sertifika Hizmet Saglayicisi - Srm 3, OU=Kamu Sertifikasyon Merkezi, OU=Ulusal Elektronik ve Kriptoloji Arastirma Enstits - UEKAE, O=Trkiye Bilimsel ve Teknolojik Arastirma Kurumu - TšBITAK, L=Gebze - Kocaeli, C=TR - has private key False by CN=TšBITAK UEKAE K”k Sertifika Hizmet Saglayicisi - Srm 3, OU=Kamu Sertifikasyon Merkezi, OU=Ulusal Elektronik ve Kriptoloji Arastirma Enstits - UEKAE, O=Trkiye Bilimsel ve Teknolojik Arastirma Kurumu - TšBITAK, L=Gebze - Kocaeli, C=TR
	Certificate (some fields): for CN=IGC/A AC racine Etat francais, OU=0002 130007669, O=ANSSI, C=FR - has private key False by CN=IGC/A AC racine Etat francais, OU=0002 130007669, O=ANSSI, C=FR
	Certificate (some fields): for CN=SITHS CA v3, O=Carelink, C=SE - has private key False by CN=SITHS CA v3, O=Carelink, C=SE
	Certificate (some fields): for CN=CA DATEV STD 01, O=DATEV eG, C=DE - has private key False by CN=CA DATEV STD 01, O=DATEV eG, C=DE
	Certificate (some fields): for CN=VeriSign Class 3 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US - has private key False by CN=VeriSign Class 3 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only", OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=Swedish Government Root Authority v1, O=Swedish Social Insurance Agency, C=SE - has private key False by CN=Swedish Government Root Authority v1, O=Swedish Social Insurance Agency, C=SE
	Certificate (some fields): for CN=ANCERT Certificados CGN, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES - has private key False by CN=ANCERT Certificados CGN, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES
	Certificate (some fields): for CN=Staat der Nederlanden Root CA, O=Staat der Nederlanden, C=NL - has private key False by CN=Staat der Nederlanden Root CA, O=Staat der Nederlanden, C=NL
	Certificate (some fields): for CN=ANCERT Corporaciones de Derecho Publico, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES - has private key False by CN=ANCERT Corporaciones de Derecho Publico, O=Agencia Notarial de Certificacion S.L. Unipersonal - CIF B83395988, C=ES
	Certificate (some fields): for CN=UCA Global Root, O=UniTrust, C=CN - has private key False by CN=UCA Global Root, O=UniTrust, C=CN
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=SwissSign Gold Root CA - G3, O=SwissSign AG, C=CH - has private key False by CN=SwissSign Gold Root CA - G3, O=SwissSign AG, C=CH
	Certificate (some fields): for CN=VAS Latvijas Pasts SSI(RCA), OU=Sertifikacijas pakalpojumi, O=VAS Latvijas Pasts - Vien.reg.Nr.40003052790, C=LV - has private key False by CN=VAS Latvijas Pasts SSI(RCA), OU=Sertifikacijas pakalpojumi, O=VAS Latvijas Pasts - Vien.reg.Nr.40003052790, C=LV
	Certificate (some fields): for CN=Certum Trusted Network CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL - has private key False by CN=Certum Trusted Network CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL
	Certificate (some fields): for CN=Sonera Class1 CA, O=Sonera, C=FI - has private key False by CN=Sonera Class1 CA, O=Sonera, C=FI
	Certificate (some fields): for CN=NetLock Arany (Class Gold) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU - has private key False by CN=NetLock Arany (Class Gold) Fotan£s¡tv ny, OU=Tan£s¡tv nykiad¢k (Certification Services), O=NetLock Kft., L=Budapest, C=HU
	Certificate (some fields): for CN=DigiCert Assured ID Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US - has private key False by CN=DigiCert Assured ID Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
	Certificate (some fields): for CN=Certipost E-Trust TOP Root CA, O=Certipost s.a./n.v., C=BE - has private key False by CN=Certipost E-Trust TOP Root CA, O=Certipost s.a./n.v., C=BE
	Certificate (some fields): for OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US - has private key False by OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US
	Certificate (some fields): for CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US - has private key False by CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US
	Certificate (some fields): for O=ACNLB, C=SI - has private key False by O=ACNLB, C=SI
	Certificate (some fields): for C=BG + O=InfoNotary PLC + DC=root-ca + CN=InfoNotary CSP Root + OU=InfoNotary CSP Root + E=csp@infonotary.com - has private key False by C=BG + O=InfoNotary PLC + DC=root-ca + CN=InfoNotary CSP Root + OU=InfoNotary CSP Root + E=csp@infonotary.com
	Certificate (some fields): for CN=Halcom CA FO, O=Halcom, C=SI - has private key False by CN=Halcom CA FO, O=Halcom, C=SI
	Certificate (some fields): for CN=GeoTrust Primary Certification Authority - G3, OU=(c) 2008 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US - has private key False by CN=GeoTrust Primary Certification Authority - G3, OU=(c) 2008 GeoTrust Inc. - For authorized use only, O=GeoTrust Inc., C=US
	Certificate (some fields): for CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE - has private key False by CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE
	Certificate (some fields): for CN=KISA RootCA 1, OU=Korea Certification Authority Central, O=KISA, C=KR - has private key False by CN=KISA RootCA 1, OU=Korea Certification Authority Central, O=KISA, C=KR
	Certificate (some fields): for E=info@netlock.hu, CN=NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU - has private key False by E=info@netlock.hu, CN=NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado, OU=Tanusitvanykiadok, O=NetLock Halozatbiztonsagi Kft., L=Budapest, C=HU
	Certificate (some fields): for CN=SecureSign RootCA2, O="Japan Certification Services, Inc.", C=JP - has private key False by CN=SecureSign RootCA2, O="Japan Certification Services, Inc.", C=JP
	Certificate (some fields): for OU=Certisign Autoridade Certificadora AC1S, O=Certisign Certificadora Digital Ltda., C=BR - has private key False by OU=Certisign Autoridade Certificadora AC1S, O=Certisign Certificadora Digital Ltda., C=BR
	Store Location/Store Name: LocalMachine/TrustedPeople
	Store Location/Store Name: LocalMachine/TrustedPublisher

view raw windows-azure-certs.txt hosted with ❤ by GitHub

Three ways to tell if a .NET Assembly (DLL) has Strong Name

Three ways to tell if a .NET Assembly is Strongly Named (or has Strong Name)

Here are several convenient ways to tell whether a .NET assembly is strongly named. (English language note: I assume the form “strongly named” is preferred over “strong named” since that’s the form used in the output of the sn.exe tool shown immediately below.)

Towards the end, this post discusses use of Strong Names with Silverlight.

Then in the final section of this post the often confusing – though very important – differences between Strongly Named assemblies and Digitally Signed assemblies are clarified.

But first, here are three approaches for telling whether a .NET Assembly is Strongly Named...

Approach #1: Testing for Strong Name on Command Line or in a Script

You tell whether an Assembly/DLL has been successfully strong-named using the Strong Name Tool (sn.exe) (which can be found somewhere like here: C:\Program Files\Microsoft SDKs\Windows\v7.0A\bin\sn.exe) by running the following at the command line:

sn -vf System.Data.dll

Here are the results when running against a strongly named assembly, then one that is not strongly named.

C:\> sn -v C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Data.dll

Microsoft (R) .NET Framework Strong Name Utility  Version 4.0.30128.1
Copyright (c) Microsoft Corporation.  All rights reserved.
Assembly 'C:\...\System.Data.dll' is valid

C:\> sn -v C:\WINDOWS\ismif32.dll

Microsoft (R) .NET Framework Strong Name Utility  Version 4.0.30128.1
Copyright (c) Microsoft Corporation.  All rights reserved.
C:\WINDOWS\ismif32.dll does not represent a strongly named assembly

Since the return value from sn.exe is 0 (zero) when the strong name is in place, and 1 (one) if not correctly strong named, you can test for this in a script by examining ERRORLEVEL, as in the following (put it into a text file called “sn-test.bat” for example and run as “sn-test foo.dll”):

@ echo off

if "%1"=="" goto END 
sn -q -vf %1 > NUL 
if ERRORLEVEL 1 goto NOT_STRONG

:STRONG
echo Has strong name: %1
goto END

:NOT_STRONG
echo Not strong named: %1
goto END

:END

Note that this will tell you whether it has SOME strong name, but does not tell you which one. So this technique is not appropriate for all uses, but might help in, say, an automated script that checks your about-to-be-released assemblies to make sure you remembered to add the strong names to them. (See note below – “Strong Names not for Security”.)

If you need finer-grain control and wish to write low-level code to ascertain the strong-naming status of an assembly, you can do that too.

Approach #2: Viewing Strong Name Details with IL DASM

Visual Studio ships with a handy utility – the Microsoft Intermediate Language Disassembler (ILDASM.EXE (tutorial)) – which can be used for disassembling .NET binaries to peruse the contents, perhaps for viewing the method signatures or viewing the .NET Assembly Manifest. It is helpful to load an assembly using IL DASM and examine the manifest to see whether there is a strong name key available. Your first step is to load the desired Assembly using the ildasm.exe utility. On my Windows 7 machine, IL DASM is found at

C:\Program Files\Microsoft SDKs\Windows\v7.0A\bin\ildasm.exe

and you can load up the System.Drawing.dll .NET Assembly as in the following example:

C:\> ildasm C:\Windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll

Once loaded, you will see a screen like the one below.

Note the MANIFEST section highlighted. Double-click on MANIFEST which load the following screen of manifest-specific data:

Find the section for the Assembly you’ve loaded – in this case, System.Drawing and following the section (which is marked with the “.assembly System.Drawing” directive highlighted above, and the content begins with the opening brace (“{“) shown above, and ends with its matching brace later in the manifest, and shown below.

The highlighted part of the manifest is the public key for this assembly. This public key can also be seen using the sn.exe tool, as follows:

C:\> sn -Tp C:\Windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll echo Not strong named: %1

Microsoft (R) .NET Framework Strong Name Utility  Version 3.5.30729.1
Copyright (c) Microsoft Corporation.  All rights reserved.

Public key is 002400000480000094000000060200000024000052534131000400000100010007d1fa57c4aed9 f0a32e84aa0faefd0de9e8fd6aec8f87fb03766c834c99921eb23be79ad9d5dcc1dd9ad2361321 02900b723cf980957fc4e177108fc607774f29e8320e92ea05ece4e821c0a5efe8f1645c4c0c93 c1ab99285d622caa652c1dfad63d745d6f2de5f17e5eaf0fc4963d261c8a12436518206dc09334 4d5ad293

Public key token is b03f5f7f11d50a3a

Note that the Public key in the output from sn.exe matches the highlighted public key in the image immediately above it (of course you should ignore the spaces between pairs of digits in the screen shot).

If an assembly is not strongly named, the Public key will be missing from the manifest and will not be displayed by sn -Tp command.

Since IL DASM comes with both Visual Studio and with the .NET SDK, it is already on the desktop for most .NET Developers, and is therefore sometimes the handiest tool. The third option, .NET Reflector, is a third-party tool, though one adopted by many .NET Developers due to its awesomeness. Reflector conveniently shows more details about the strong name.

Approach #3: Viewing Strong Name Details with Reflector

You can load an assembly in the free version RedGate’s .NET Reflector and quickly see the strong name details – or lack thereof for non-strong named assemblies. In the image below, see at the bottom where the strong name string is highlighted. Note that the strong name has five parts (though the Culture is optional):

Simple Name or Assembly name without the “.dll” extension (“System.Data” in case of assembly “System.Data.dll”)
Assembly version (“2.0.0.0” in case of “System.Data.dll”)
Culture (“neutral” in case of “System.Data.dll”, but might be “en-us” for US English, or one of many others)
Public Key or PublicKeyToken (public part of the cryptographic public/private key pair used to strong name the assembly, “b77a5c561934e089” in case of “System.Data.dll”)
Processor Architecture – Defines the assembly’s format, such as MSIL (intermediate language) or x86 (binary for Intel x86 processors)

In the next image, see at the bottom where the LACK OF complete name string is highlighted; this assembly does not have a strong name to display, so “Name” field includes a null value for PublicKeyToken. (Note that in the real world, Spring.Core.dll is in fact released as strongly named by the good folks on the Spring.NET project; the screen shot below was done on a non-production version of that DLL.)

While you are at it… make Reflector the default program for “launching” assemblies (actually would need to be for all files ending in the .DLL extension, but Reflector is smart enough to not choke on non-.NET assemblies).

Approach #4: (Bonus!) Viewing Strong Name with Windows Explorer

This post promised three ways to tell if a .NET Assembly has a strong name – but here is a bonus 4th way. Windows Explorer will not show you the strong name characteristics of an assembly, with one exception – for assemblies in the Global Assembly Cache (GAC), strong name data is included in the Properties dialog. If you are examining the GAC, this can be handy.

Of course, if an assembly is in the GAC at all, it is strongly named by definition; assemblies are required by .NET to be strongly named to be allowed in the GAC.

Strong Naming for Silverlight

Silverlight also has support for strongly named assemblies, which is needed for the Cached Assembly Feature introduced in Silverlight 3.0.

(Silverlight 4 also introduces supports for digital signatures on XAP files, created by signtool.exe, which are validated by the Silverlight runtime for out-of-browser (OOB) applications running with elevated trust.)

Strongly Name Assembly != Digitally Signed Assembly

Strong Names and Digital Signatures are Orthogonal Concerns – Almost

Strongly Naming and Digitally Signing are largely orthogonal concerns. They have different purposes, different tools, and the digital certificates may come from different sources (for publicly distributed binaries, the certs for Digital Signing usually will come from a PKI source, though that is not essential for the Strong Naming certs).

The only dependency among them is that if the Assembly is to be Strongly Named, then the Strong Naming step has to happen before the Digital Signing step.

How do I check whether an assembly is Digitally Signed? You can run the following command to determine whether assembly “foo.dll” is digitally signed:

signtool verify /pa foo.dll

If you want to see the hash – for example, to compare with another assembly’s hash – then you can view it using the following command sequence:

signtool verify /v /pa /ph foo.dll | find "Hash"

Of course, you can use sn.exe and signtool.exe together (one after another) to examine an assembly to ascertain both whether it is strongly named and whether it has been digitally signed.

Strong Names are NOT for Security!

Finally, a word of caution… Strong names are about versioning, not about security. Strong names are more about avoiding DLL Hell (which is largely an accidental concern) than about avoiding hackers (which is deliberate). While a strong name may help alert you to tampering, realize that strong names can be hacked, and Microsoft emphasizes that strong-named assemblies do not give the same level of trust as digitally signing:

Strong names provide a strong integrity check. Passing the .NET Framework security checks guarantees that the contents of the assembly have not been changed since it was built. Note, however, that strong names in and of themselves do not imply a level of trust like that provided, for example, by a digital signature and supporting certificate.

Consider digitally signing your .NET assemblies if it is important to you or your customers that the origin of the assemblies be traceable and verifiable. One source of digital certificates that can be used for Digitally Signing assemblies is Verisign which has Authenticode Certificates.

Coding Out Loud

Yes, another noisy coder…

Category Archives: Crypto

Sorting out Digital Certificates – Dec 2012 Boston Azure Meeting

Resolving “certificate for the given thumbprint could not be loaded” error with Azure Tools for Visual Studio

Background

Problem

Solution

Specific Scenarios

Iterate through all certificates in the Certificate Store on Windows Azure

Three ways to tell if a .NET Assembly (DLL) has Strong Name

Three ways to tell if a .NET Assembly is Strongly Named (or has Strong Name)

Approach #1: Testing for Strong Name on Command Line or in a Script

Approach #2: Viewing Strong Name Details with IL DASM

Approach #3: Viewing Strong Name Details with Reflector

Approach #4: (Bonus!) Viewing Strong Name with Windows Explorer

Strong Naming for Silverlight

Strongly Name Assembly != Digitally Signed Assembly

Strong Names and Digital Signatures are Orthogonal Concerns – Almost

Strong Names are NOT for Security!

Share this:

Background

Problem

Solution

Specific Scenarios

Share this:

Share this:

Three ways to tell if a .NET Assembly is Strongly Named (or has Strong Name)

Approach #1: Testing for Strong Name on Command Line or in a Script

Approach #2: Viewing Strong Name Details with IL DASM

Approach #3: Viewing Strong Name Details with Reflector

Approach #4: (Bonus!) Viewing Strong Name with Windows Explorer

Strong Naming for Silverlight

Strongly Name Assembly != Digitally Signed Assembly

Strong Names and Digital Signatures are Orthogonal Concerns – Almost

Strong Names are NOT for Security!

Share this: