kpsuniversalofe.optum.com
- UnitedHealth Group Inc. -
Issued by COMODO RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 0f:cf:5b:2c:f0:0b:44:21:8b:37:63:a5:fa:44:46:e7 was issued on by COMODO CA Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
UnitedHealth Group Inc.
Organization:
UnitedHealth Group Inc.
Organization unit: Multi-Domain SSL
Organization unit: Multi-Domain SSL
Address:
9900 Bren Road East
Postal code: 55343
State / Province: Minnesota
Locality: Minnetonka
Country: US
Postal code: 55343
State / Province: Minnesota
Locality: Minnetonka
Country: US
COMODO CA Limited
Organization:
COMODO CA Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:cf:5b:2c:f0:0b:44:21:8b:37:63:a5:fa:44:46:e7Serial Number (int): 21015074646093552623135915202824128231
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 1f:ae:7e:c7:0e:05:3f:98:df:60:a6:5d:27:82:61:93:63:51:f3:d0
AuthorityKeyId: 9a:f3:2b:da:cf:ad:4f:b6:2f:bb:2a:48:48:2a:12:b7:1b:42:c1:24
Fingerprint (sha1): bc:7a:60:3e:8c:9d:96:33:64:01:f8:6b:f2:ba:62:f0:ca:c8:35:d0
Fingerprint (sha256): 00:1e:95:53:f3:4f:36:14:5a:38:8f:51:d6:fb:18:0c:35:7b:9f:c1:c7:41:00:74:36:99:c8:40:79:52:a7:82
Issuing Certificate URL: http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.comodoca.comCRL Distribution Point: http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate kpsuniversalofe.optum.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kpsuniversalofe.optum.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kpsuniversalofe.optum.com
kpsuniversalofe-dtc.optum.com
kpsuniversalofe-dtc.optum.com
Other certificates including the domain name optum.com
(limited to 100 certificates)
rxanalytics.optum.com
edi-278inq-master.optum.com
kpsuniversalofe.optum.com
login.agentmessagecenter-stage.optum.com
ie-wv-cm-dev.optum.com
wvie-admin.optum.com
ssopacorp-ctc-dev.uhg.com
service-now-auth-stage.optum.com
sps-stage.optum.com
cert00047-azurecdn.akamaized.net
epro.dev-eastus2.cs-np.o360.cloud
uho-tranzform.uhc.com
ie-pp-dev.optum.com
test-oc-mms.optum.com
myworkbench.optum.com
ma-appeal.optum.com
niv.optum.com
cert00022-azurecdn.akamaized.net
wsstg-healthid.optum.com
wem.uhc.com
stg-procare.optum.com
fulfillmentservices-optumclinic.optum.com
apimgr4.optum.com
prdasp-providerportal.optum.com
apimgr4.optum.com
irislite-uat.optum.com
superhero-stg.optum.com
stgfulfillmentservices-cpm.optum.com
edge-preferredone-stage.optum.com
healthid.optum.com
careers-test.unitedhealthgroup.com
wvie-provider-dtc.optum.com
prd-mtwc.optum.com
stg-etg.optum.com
cert00047-azurecdn.akamaized.net
azsp.optum.com
sps.optum.com
ie-clientportal-stg1.optum.com
impactintelligence.optum.com
securityplatform-stage.optum.com
appmgr-dev.linkhealth.com
prdirx-rxview.optum.com
api8.optum.com
image.partnerapp1.myworld.com
ltmelrstgcorp1.uhc.com
cert00007-azurecdn.akamaized.net
directconnect.optum.com
airflow.bahubali.cdml-dev.optum.com
ngis-bsm.optum.com
prod-oc360.optum.com
ssopacorp2extra-dev.uhg.com
edi-274prvdirinfo-bravo3.optum.com
edge-fbhealthplans-stage.optum.com
apsrp1660.uhc.com
apimgr4-stg.optum.com
demo-oidc.stepwise.optum.com
grafana.pr-2.hcc-pr.optum.com
trn-optumcare.optum.com
rxdoc.optum.com
cert00007-azurecdn.akamaized.net
rqns-tableau-stg.optum.com
optumcollaborate-edi.optum.com
oireportsstage.optuminsight.com
orxapi.optum.com
ssopacorp-elr-dev.uhg.com
phish.optum.com
stageoptumparallax.optum.com
securityplatform-dev.optum.com
omms-pe-mt.optum.com
link-stage.optum.com
myxstage.optum.com
ees-stage3.optum.com
xcm-nonprod.optum.com
upmccws-test2.optum.com
familydashboard.optum.com
healthstate-stg.optum.com
sr-saml-stg.liveandworkwell.com
iirp-demo.optum.com
mnl.status.cloudsigma.com
cert00022-azurecdn.akamaized.net
prdasp-providerportal.optum.com
cert00047-azurecdn.akamaized.net
fs2-stagedmz-ose3.optum.com
cert00047-azurecdn.akamaized.net
cert00007-azurecdn.akamaized.net
caseman-bfx.optum.com
api.bahubali.cdml-dev.optum.com
dashboard-api.edan.cdml-dev.optum.com
cert00007-azurecdn.akamaized.net
edi-276clmstsinq-alpha1.optum.com
cm.optum.com
ie-mn-cp-demo.optum.com
devbase.optum.com
ie-appsvc-dmz.optum.com
store.optum.com
stg-nyapd-int.optum.com
ks1.optum.com
reskinstage-o360.optum.com
sps-stage.optum.com
cert00047-azurecdn.akamaized.net
edi-278inq-master.optum.com
kpsuniversalofe.optum.com
login.agentmessagecenter-stage.optum.com
ie-wv-cm-dev.optum.com
wvie-admin.optum.com
ssopacorp-ctc-dev.uhg.com
service-now-auth-stage.optum.com
sps-stage.optum.com
cert00047-azurecdn.akamaized.net
epro.dev-eastus2.cs-np.o360.cloud
uho-tranzform.uhc.com
ie-pp-dev.optum.com
test-oc-mms.optum.com
myworkbench.optum.com
ma-appeal.optum.com
niv.optum.com
cert00022-azurecdn.akamaized.net
wsstg-healthid.optum.com
wem.uhc.com
stg-procare.optum.com
fulfillmentservices-optumclinic.optum.com
apimgr4.optum.com
prdasp-providerportal.optum.com
apimgr4.optum.com
irislite-uat.optum.com
superhero-stg.optum.com
stgfulfillmentservices-cpm.optum.com
edge-preferredone-stage.optum.com
healthid.optum.com
careers-test.unitedhealthgroup.com
wvie-provider-dtc.optum.com
prd-mtwc.optum.com
stg-etg.optum.com
cert00047-azurecdn.akamaized.net
azsp.optum.com
sps.optum.com
ie-clientportal-stg1.optum.com
impactintelligence.optum.com
securityplatform-stage.optum.com
appmgr-dev.linkhealth.com
prdirx-rxview.optum.com
api8.optum.com
image.partnerapp1.myworld.com
ltmelrstgcorp1.uhc.com
cert00007-azurecdn.akamaized.net
directconnect.optum.com
airflow.bahubali.cdml-dev.optum.com
ngis-bsm.optum.com
prod-oc360.optum.com
ssopacorp2extra-dev.uhg.com
edi-274prvdirinfo-bravo3.optum.com
edge-fbhealthplans-stage.optum.com
apsrp1660.uhc.com
apimgr4-stg.optum.com
demo-oidc.stepwise.optum.com
grafana.pr-2.hcc-pr.optum.com
trn-optumcare.optum.com
rxdoc.optum.com
cert00007-azurecdn.akamaized.net
rqns-tableau-stg.optum.com
optumcollaborate-edi.optum.com
oireportsstage.optuminsight.com
orxapi.optum.com
ssopacorp-elr-dev.uhg.com
phish.optum.com
stageoptumparallax.optum.com
securityplatform-dev.optum.com
omms-pe-mt.optum.com
link-stage.optum.com
myxstage.optum.com
ees-stage3.optum.com
xcm-nonprod.optum.com
upmccws-test2.optum.com
familydashboard.optum.com
healthstate-stg.optum.com
sr-saml-stg.liveandworkwell.com
iirp-demo.optum.com
mnl.status.cloudsigma.com
cert00022-azurecdn.akamaized.net
prdasp-providerportal.optum.com
cert00047-azurecdn.akamaized.net
fs2-stagedmz-ose3.optum.com
cert00047-azurecdn.akamaized.net
cert00007-azurecdn.akamaized.net
caseman-bfx.optum.com
api.bahubali.cdml-dev.optum.com
dashboard-api.edan.cdml-dev.optum.com
cert00007-azurecdn.akamaized.net
edi-276clmstsinq-alpha1.optum.com
cm.optum.com
ie-mn-cp-demo.optum.com
devbase.optum.com
ie-appsvc-dmz.optum.com
store.optum.com
stg-nyapd-int.optum.com
ks1.optum.com
reskinstage-o360.optum.com
sps-stage.optum.com
cert00047-azurecdn.akamaized.net
Certificate
The complete raw certificate details for kpsuniversalofe.optum.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG9DCCBdygAwIBAgIQD89bLPALRCGLN2Ol+kRG5zANBgkqhkiG9w0BAQsFADCB ljELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxPDA6BgNV BAMTM0NPTU9ETyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl cnZlciBDQTAeFw0xODA4MzAwMDAwMDBaFw0xOTA4MzAyMzU5NTlaMIHFMQswCQYD VQQGEwJVUzEOMAwGA1UEERMFNTUzNDMxEjAQBgNVBAgTCU1pbm5lc290YTETMBEG A1UEBxMKTWlubmV0b25rYTEcMBoGA1UECRMTOTkwMCBCcmVuIFJvYWQgRWFzdDEg MB4GA1UEChMXVW5pdGVkSGVhbHRoIEdyb3VwIEluYy4xGTAXBgNVBAsTEE11bHRp LURvbWFpbiBTU0wxIjAgBgNVBAMTGWtwc3VuaXZlcnNhbG9mZS5vcHR1bS5jb20w ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZIYbc48uCj4hBaCLVujH5 nwSuz3kulVAyjIID+JGLC+jXJuvOW5RxSlpvtJVynC8KsGYz+gDz4lWaPP9aRcqb t0+xSeMEJeqJOYB0FxMlbzfux+1Ruw767XmLCBxdLvQpKoOvLMLus9gFfgVUNwki MXNLAXdGrkstsseXrS/7ifv9o017XlcTAz3yl5AzOAm7zoIZd7OIDjA8/3wvEsNh pMpDuSAV34v1YbRJuvYQ5QNuHh/1QxLRFeYc5+tWUCA/5eWlorDR1UffFWRqUyMU DAb4uvZO2ech0GISYNfeXwRm3rFSIzkaXBsgUVbPSD4DK+8fFkMtWCE/A/gCiMGT AgMBAAGjggMLMIIDBzAfBgNVHSMEGDAWgBSa8yvaz61Pti+7KkhIKhK3G0LBJDAd BgNVHQ4EFgQUH65+xw4FP5jfYKZdJ4Jhk2NR89AwDgYDVR0PAQH/BAQDAgWgMAwG A1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFAGA1Ud IARJMEcwOwYMKwYBBAGyMQECAQMEMCswKQYIKwYBBQUHAgEWHWh0dHBzOi8vc2Vj dXJlLmNvbW9kby5jb20vQ1BTMAgGBmeBDAECAjBaBgNVHR8EUzBRME+gTaBLhklo dHRwOi8vY3JsLmNvbW9kb2NhLmNvbS9DT01PRE9SU0FPcmdhbml6YXRpb25WYWxp ZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3JsMIGLBggrBgEFBQcBAQR/MH0wVQYIKwYB BQUHMAKGSWh0dHA6Ly9jcnQuY29tb2RvY2EuY29tL0NPTU9ET1JTQU9yZ2FuaXph dGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5jcnQwJAYIKwYBBQUHMAGGGGh0 dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTBDBgNVHREEPDA6ghlrcHN1bml2ZXJzYWxv ZmUub3B0dW0uY29tgh1rcHN1bml2ZXJzYWxvZmUtZHRjLm9wdHVtLmNvbTCCAQUG CisGAQQB1nkCBAIEgfYEgfMA8QB2AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDE e4l6qP3LAAABZYt4i80AAAQDAEcwRQIgDQ/otzN3YwT4BEdl28FYxg0HNwc0uUbZ L6i+AyUEaGsCIQCkeOB6TDWHrbEuEb3l9fjMWl2GorydHV3/DYVArHNPhAB3AHR+ 2oMxrTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABZYt4kV8AAAQDAEgwRgIh AK6jk5oSSdKyOtCcMVhXn6phkvxqYAlXthpPjGmCXprMAiEA3DqQyVSpQiuB6CfX FfLHpJwgqR5A5gAq5Pn/WLIhHqcwDQYJKoZIhvcNAQELBQADggEBABiz86UBMgzZ d4baW6CMAAxy23EU/MSrAbNdUxEEOsgUdT3X+ofMj06aXnjiSrtn5ESJ5y0gZWLQ sy1UCf+GkBDRt3MI1I7BT3sTNNm4cOcdUYfDUZw5jHcKS/EIhpUrOnGl0TOL6GOc t2Zz1VHJOCZqi7ZXvkqv+ubrZhrZ4iL+LeeWYQKIzDChlJRt3ZpNnf1pbp4vfxK1 KGjNt3EegqbxaGOUJv1xARxpB06tz8ljP1ro03xW5KpM4AYwUMqEDKTU/XcRy5dI sSHWY8JUOaAsHnaSlHApw7kEDozaj1u7f5U6nsKgAgQ2P+adlpI3iLg61lhhDB5h JPrd9FtoA90= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2SGG3OPLgo+IQWgi1box +Z8Ers95LpVQMoyCA/iRiwvo1ybrzluUcUpab7SVcpwvCrBmM/oA8+JVmjz/WkXK m7dPsUnjBCXqiTmAdBcTJW837sftUbsO+u15iwgcXS70KSqDryzC7rPYBX4FVDcJ IjFzSwF3Rq5LLbLHl60v+4n7/aNNe15XEwM98peQMzgJu86CGXeziA4wPP98LxLD YaTKQ7kgFd+L9WG0Sbr2EOUDbh4f9UMS0RXmHOfrVlAgP+XlpaKw0dVH3xVkalMj FAwG+Lr2TtnnIdBiEmDX3l8EZt6xUiM5GlwbIFFWz0g+AyvvHxZDLVghPwP4AojB kwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 21015074646093552623135915202824128231 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO CA Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-30 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '55343' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnesota' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnetonka' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '9900 Bren Road East' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'UnitedHealth Group Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Multi-Domain SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kpsuniversalofe.optum.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27410244862846675472895452123637225577265145153883449510809582900098011050057083689329151420049701764676117900694761958328292166972743463693257673313850364098973501467406997593761237515510965780601452441909302164796714671269850034332563271665317475282243779570456432787398706771117531550956068626312374277261650621572589610266483551996994665647685397881871726834857245491466975199238459464450388867471182352006271482602225565375930208098799598471403803472838250755248568120680427106858174951799272702241352762980274979360763574741911590397014827727582106246033049123956588087978843349583279492107653792518248763802003 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9af32bdacfad4fb62fbb2a48482a12b71b42c124 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1fae7ec70e053f98df60a65d278261936351f3d0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (127 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kpsuniversalofe.optum.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kpsuniversalofe-dtc.optum.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb000001658b788bcd000004030047304502200d0fe8b733776304f8044765dbc158c60d07370734b946d92fa8be032504686b022100a478e07a4c3587adb12e11bde5f5f8cc5a5d86a2bc9d1d5dff0d8540ac734f84007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc56000001658b78915f0000040300483046022100aea3939a1249d2b23ad09c3158579faa6192fc6a600957b61a4f8c69825e9acc022100dc3a90c954a9422b81e827d715f2c7a49c20a91e40e6002ae4f9ff58b2211ea7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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