sasvpn03.pok.ibm.com
- IBM -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 1f:81:52:4b:37:ac:10:f0:00:00:00:00:50:ea:2c:9e was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
IBM
Organization:
IBM
State / Province:
Kansas
Locality: Lenexa
Country: US
Locality: Lenexa
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 1f:81:52:4b:37:ac:10:f0:00:00:00:00:50:ea:2c:9eSerial Number (int): 41877543281012763597128534689447554206
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 9b:fa:43:aa:e4:64:38:e5:90:9b:78:cb:df:c0:85:90:a6:39:2a:23
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): ee:0d:22:a6:f3:85:a2:f4:39:78:4e:b8:a9:b1:45:8a:a6:07:3c:b6
Fingerprint (sha256): 00:01:78:cb:5d:68:8a:2c:e3:f8:b2:7f:3c:6e:d8:dc:f8:62:ee:63:be:13:c5:44:6c:3a:f3:e2:72:94:15:4e
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate sasvpn03.pok.ibm.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sasvpn03.pok.ibm.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sasvpn03.pok.ibm.com
Other certificates including the domain name ibm.com
(limited to 100 certificates)
sasvpn03.pok.ibm.com
webdk.dst.ibm.com
eventstreams.cloud.ibm.com
*.admin.cfapps.sapcp.cloud.ibm.com
eu-de-2-0.eu-de.apiconnect.test.cloud.ibm.com
www-919.ibm.com
*.cau.ibm.com
w3-501.ibm.com
statuspage.io
iespccu.sras.ibm.com
devops.test.cloud.ibm.com
prod-0.eu-de.apiconnect.cloud.ibm.com
sni.cloudflaressl.com
ssl515828.cloudflaressl.com
statuspage.io
iha01wdc.private.us-south.websphereappsvr.cloud.ibm.com
el01.podc.sl.edst.ibm.com
sni.cloudflaressl.com
sni.cloudflaressl.com
mhasportal.mhas.ibm.com
ssl965152.cloudflaressl.com
watsonwork.ibm.com
gbnh2is220sdmxm.uk.ibm.com
gbsjira.in.edst.ibm.com
sni.cloudflaressl.com
ssl942376.cloudflaressl.com
ic-prestage-1-1.eu-de.apiconnect.test.cloud.ibm.com
sni.cloudflaressl.com
*.us-south.db2oncloud.cloud.ibm.com
ssl965007.cloudflaressl.com
*.cloudantnosqldb.cloud.ibm.com
statuspage.io
www.ess5.de.smi.ibm.com
download3.boulder.ibm.com
statuspage.io
dev-api-us.sec.ibm.com
web-chat.assistant.watson.cloud.ibm.com
containers.cloud.ibm.com
eu.smi.ibm.com
d24bml09.br.ibm.com
*.swg.usma.ibm.com
ssl748572.cloudflaressl.com
statuspage.io
mea.newsroom.ibm.com
frgr11ng23008.ng2.mop.ssm.sdc.gts.ibm.com
*.resource-controller.preprod.cloud.ibm.com
sni.cloudflaressl.com
ssl944689.cloudflaressl.com
resource-controller.cloud.ibm.com
sni.cloudflaressl.com
sni.cloudflaressl.com
domino.research.ibm.com
www.ibm.com
appflow.test.saas.ibm.com
staples.us-east.apiconnect.cloud.ibm.com
sni.cloudflaressl.com
ssl903019.cloudflaressl.com
ssl875348.cloudflaressl.com
service5.boulder.ibm.com
confluence-dev.wce.ibm.com
*.iacs.ibm.com
*.tools.ibm.com
w3.tap.ibm.com
ssl439395.cloudflaressl.com
sni.cloudflaressl.com
ssl876250.cloudflaressl.com
sni.cloudflaressl.com
status-beta.cloud.tenable.com
ssl505185.cloudflaressl.com
sni.cloudflaressl.com
hostedb2-scale-fyp.eu-de.db2oncloud.cloud.ibm.com
*.bastionx.cloud.ibm.com
ssoqa-mssiam.sec.ibm.com
ocp-550002y9v5-qx16.cloud.techzone.ibm.com
ssl389895.cloudflaressl.com
*.sandbox.maximomro.ibmiot.ibm.com
eventstreams.cloud.ibm.com
www.ibm.com
statuspage.io
isrvce.ibm.com
sni.cloudflaressl.com
eu-gb.monitoring.test.cloud.ibm.com
sni.cloudflaressl.com
ctl-remote-access-ps.boulder.us.sni.ibm.com
sni.cloudflaressl.com
msciftpgw.im-ies.ibm.com
hub.8b6a-441cd40b.eu-de.apiconnect.cloud.ibm.com
sni.cloudflaressl.com
*.rmc.test.cloud.ibm.com
sni.cloudflaressl.com
celsiusnetworkstatus.com
monitor.jumio.com
*.icds.ibm.com
ssl419666.cloudflaressl.com
ssl943434.cloudflaressl.com
sni.cloudflaressl.com
ssl942441.cloudflaressl.com
*.cf.sapcp.cloud.ibm.com
bpg-auth-tst.partnerworld.ibm.com
iga-bld-hde-01p.boulder.ibm.com
webdk.dst.ibm.com
eventstreams.cloud.ibm.com
*.admin.cfapps.sapcp.cloud.ibm.com
eu-de-2-0.eu-de.apiconnect.test.cloud.ibm.com
www-919.ibm.com
*.cau.ibm.com
w3-501.ibm.com
statuspage.io
iespccu.sras.ibm.com
devops.test.cloud.ibm.com
prod-0.eu-de.apiconnect.cloud.ibm.com
sni.cloudflaressl.com
ssl515828.cloudflaressl.com
statuspage.io
iha01wdc.private.us-south.websphereappsvr.cloud.ibm.com
el01.podc.sl.edst.ibm.com
sni.cloudflaressl.com
sni.cloudflaressl.com
mhasportal.mhas.ibm.com
ssl965152.cloudflaressl.com
watsonwork.ibm.com
gbnh2is220sdmxm.uk.ibm.com
gbsjira.in.edst.ibm.com
sni.cloudflaressl.com
ssl942376.cloudflaressl.com
ic-prestage-1-1.eu-de.apiconnect.test.cloud.ibm.com
sni.cloudflaressl.com
*.us-south.db2oncloud.cloud.ibm.com
ssl965007.cloudflaressl.com
*.cloudantnosqldb.cloud.ibm.com
statuspage.io
www.ess5.de.smi.ibm.com
download3.boulder.ibm.com
statuspage.io
dev-api-us.sec.ibm.com
web-chat.assistant.watson.cloud.ibm.com
containers.cloud.ibm.com
eu.smi.ibm.com
d24bml09.br.ibm.com
*.swg.usma.ibm.com
ssl748572.cloudflaressl.com
statuspage.io
mea.newsroom.ibm.com
frgr11ng23008.ng2.mop.ssm.sdc.gts.ibm.com
*.resource-controller.preprod.cloud.ibm.com
sni.cloudflaressl.com
ssl944689.cloudflaressl.com
resource-controller.cloud.ibm.com
sni.cloudflaressl.com
sni.cloudflaressl.com
domino.research.ibm.com
www.ibm.com
appflow.test.saas.ibm.com
staples.us-east.apiconnect.cloud.ibm.com
sni.cloudflaressl.com
ssl903019.cloudflaressl.com
ssl875348.cloudflaressl.com
service5.boulder.ibm.com
confluence-dev.wce.ibm.com
*.iacs.ibm.com
*.tools.ibm.com
w3.tap.ibm.com
ssl439395.cloudflaressl.com
sni.cloudflaressl.com
ssl876250.cloudflaressl.com
sni.cloudflaressl.com
status-beta.cloud.tenable.com
ssl505185.cloudflaressl.com
sni.cloudflaressl.com
hostedb2-scale-fyp.eu-de.db2oncloud.cloud.ibm.com
*.bastionx.cloud.ibm.com
ssoqa-mssiam.sec.ibm.com
ocp-550002y9v5-qx16.cloud.techzone.ibm.com
ssl389895.cloudflaressl.com
*.sandbox.maximomro.ibmiot.ibm.com
eventstreams.cloud.ibm.com
www.ibm.com
statuspage.io
isrvce.ibm.com
sni.cloudflaressl.com
eu-gb.monitoring.test.cloud.ibm.com
sni.cloudflaressl.com
ctl-remote-access-ps.boulder.us.sni.ibm.com
sni.cloudflaressl.com
msciftpgw.im-ies.ibm.com
hub.8b6a-441cd40b.eu-de.apiconnect.cloud.ibm.com
sni.cloudflaressl.com
*.rmc.test.cloud.ibm.com
sni.cloudflaressl.com
celsiusnetworkstatus.com
monitor.jumio.com
*.icds.ibm.com
ssl419666.cloudflaressl.com
ssl943434.cloudflaressl.com
sni.cloudflaressl.com
ssl942441.cloudflaressl.com
*.cf.sapcp.cloud.ibm.com
bpg-auth-tst.partnerworld.ibm.com
iga-bld-hde-01p.boulder.ibm.com
Certificate
The complete raw certificate details for sasvpn03.pok.ibm.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFOTCCBCGgAwIBAgIQH4FSSzesEPAAAAAAUOosnjANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0x ODExMTUxMjM1MjNaFw0yMTAyMTQxMzA1MjJaMFwxCzAJBgNVBAYTAlVTMQ8wDQYD VQQIEwZLYW5zYXMxDzANBgNVBAcTBkxlbmV4YTEMMAoGA1UEChMDSUJNMR0wGwYD VQQDExRzYXN2cG4wMy5wb2suaWJtLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKkfMlP5LfGoGeceqFPSO5l0ibd1sueOzQHtenSJccUga2LKYeEI EyDVfdkKTy1qoKMXQaa3R0MBb2aGN5WccEsEvjzu8U+R/nbPnUuLG5q8NM00OZSx S7gYX4eb0rQKdMGi3/GK6LHL09aoMPTZypeYR2SlRPw7j3tF5rKvL2hzTRwdkwB7 72dujtvWvmGdUlh1Df8rzlAFwvZvVfgxOJaMzyLbNo4re6GUCDTMxKGNWCRgnLsr +4WWCq/Uk511RkePN6FC7bQBak2CQ5cYnY3JcKRALUBxcf4HVK2zVuwdgP7v0qSr jMYWzrQPV/b6s1eNee5ilgoVTkWNO2PV1mMCAwEAAaOCAZYwggGSMBMGCisGAQQB 1nkCBAMBAf8EAgUAMB8GA1UdEQQYMBaCFHNhc3ZwbjAzLnBvay5pYm0uY29tMA4G A1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAzBgNVHR8ELDAqMCig JqAkhiJodHRwOi8vY3JsLmVudHJ1c3QubmV0L2xldmVsMWsuY3JsMEsGA1UdIARE MEIwNgYKYIZIAYb6bAoBBTAoMCYGCCsGAQUFBwIBFhpodHRwOi8vd3d3LmVudHJ1 c3QubmV0L3JwYTAIBgZngQwBAgIwaAYIKwYBBQUHAQEEXDBaMCMGCCsGAQUFBzAB hhdodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAzBggrBgEFBQcwAoYnaHR0cDovL2Fp YS5lbnRydXN0Lm5ldC9sMWstY2hhaW4yNTYuY2VyMB8GA1UdIwQYMBaAFIKicHTd vFM/z3vU981/p2DGCky/MB0GA1UdDgQWBBSb+kOq5GQ45ZCbeMvfwIWQpjkqIzAJ BgNVHRMEAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQBGfBbzyDTWosvfvrSvpaJ+rJaR uxWbDPsQ8GmV9kh8qQ/9Vb2IWERsS0XKmJ47JzYUzZhm4bGOsCObmqm8Hw8Jv9Hf RZjdTKIWrBaZM/NqEISi8Piu0OTOYsFjrM6WeG3rGlhCJ+7reK05INEs+kv9ZG6Q 0HEEw3IVTyHnKmjgg0qBKcnUMSS8/inznPw1OGad/8PFHTaGwZO7G7lpyAtlovJd oX4vQ/J0Ff4smhejgk1AT/tTZl4L8CfUrV5xItHzHezpEWi1DovxMDlYKwJ1zSRr Car+pm1G/N9ZXbiHxK879ppxeUFJ5/Hqno1uRDDz2AWfP6+v0HCT5GkKzd/1 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqR8yU/kt8agZ5x6oU9I7 mXSJt3Wy547NAe16dIlxxSBrYsph4QgTINV92QpPLWqgoxdBprdHQwFvZoY3lZxw SwS+PO7xT5H+ds+dS4sbmrw0zTQ5lLFLuBhfh5vStAp0waLf8YroscvT1qgw9NnK l5hHZKVE/DuPe0Xmsq8vaHNNHB2TAHvvZ26O29a+YZ1SWHUN/yvOUAXC9m9V+DE4 lozPIts2jit7oZQINMzEoY1YJGCcuyv7hZYKr9STnXVGR483oULttAFqTYJDlxid jclwpEAtQHFx/gdUrbNW7B2A/u/SpKuMxhbOtA9X9vqzV4157mKWChVORY07Y9XW YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 41877543281012763597128534689447554206 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-15 12:35:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-14 13:05:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Kansas' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Lenexa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IBM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sasvpn03.pok.ibm.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21349657153037478266310303891356817344409560149124554431316322685930180208129677808231276178274460951611099678412360819753088715807831908907525752734952450779836353733848998690807220146583446291995203337663378665402004324713337397039679608650775230884525007329579938764877171669305800803122410619256219739878789573901834226073805580935926258064290442621656958817866738256041888988887654762641995858800191350249906726976192261244054104735065093708164928000789197308380293586057319984023316679657945893786250839015241728159098201651784177732120826226270335861058897838975924936672198024701983568785488960982127692076643 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sasvpn03.pok.ibm.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9bfa43aae46438e5909b78cbdfc08590a6392a23 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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