ntam-uat-cus-agw.northerntrust.com
- The Northern Trust Company -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 07:59:a4:7b:99:3e:c5:d0:66:35:b3:d7:0c:ed:95:5d was issued on by DigiCert Inc.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
The Northern Trust Company
Organization:
The Northern Trust Company
State / Province:
Illinois
Locality: Chicago
Country: US
Locality: Chicago
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:59:a4:7b:99:3e:c5:d0:66:35:b3:d7:0c:ed:95:5dSerial Number (int): 9770046498570092951695700627647468893
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 87:b7:28:2b:2a:39:d6:81:7f:64:03:f7:e4:7b:b2:7d:02:e7:90:ff
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 21:aa:3e:ef:be:e8:4f:f8:24:f5:1d:40:fc:0a:b7:c7:28:d3:86:78
Fingerprint (sha256): 00:3d:59:f9:a4:b7:ac:b7:19:6d:e4:3a:2c:4b:6e:8e:74:07:fa:81:59:fe:a5:19:78:f6:26:f6:71:a3:0a:1e
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA-2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigicertSHA2SecureServerCA-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigicertSHA2SecureServerCA-1.crl
Check the revocation status for certificate ntam-uat-cus-agw.northerntrust.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ntam-uat-cus-agw.northerntrust.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ntam-uat-cus-agw.northerntrust.com
Other certificates including the domain name northerntrust.com
(limited to 100 certificates)
ntam-uat-cus-agw.northerntrust.com
www.northernfunds.com
san-001.ceros.com
uat.northerntrust.com
san-001.ceros.com
san-001.ceros.com
locations.northerntrust.com
san-001.ceros.com
san-001.ceros.com
san-001.ceros.com
wwww119.ntrs.com
san-001.ceros.com
deviaa.northerntrust.com
san-001.ceros.com
locations.northerntrust.com
san-001.ceros.com
uat.northerntrust.com
locations.northerntrust.com
wealth.northerntrust.com
pes1.northerntrust.com
san-001.ceros.com
san-001.ceros.com
www.northernfunds.com
wwww119.ntrs.com
northerntrust.com
ciscouc-emea-XMPP.ntrs.com
careers.northerntrust.com
www02710.ntrs.com
www.northernfunds.com
ntam-prod-cus-agw.northerntrust.com
uat.northerntrust.com
www.northernfunds.com
www.northernfunds.com
survey.northerntrust.com
san-001.ceros.com
smetrics.northerntrust.com
san-001.ceros.com
smetrics.northerntrust.com
www-ac.northerntrust.com
www02710.ntrs.com
northerntrust.com
www-ac.northerntrust.com
san-001.ceros.com
uat.northerntrust.com
ciscouc-indi-XMPP.ntrs.com
www02710.ntrs.com
ukpcuat2imp01.ntrs.com
amer-c4-expe.ntrs.com
www02710.ntrs.com
san-001.ceros.com
www02710.ntrs.com
web-xp3p-cdn.ntrs.com
san-001.ceros.com
www02710.ntrs.com
pages.e.northerntrust.com
san-001.ceros.com
www02710.ntrs.com
san-001.ceros.com
assetmanagement.northerntrust.com
san-001.ceros.com
pages.e.northerntrust.com
ciscouc-emea-XMPP.ntrs.com
northerntrust.com
wealth.northerntrust.com
www.northernfunds.com
survey.northerntrust.com
pages.e.northerntrust.com
pointofview.northerntrust.com
pages.e.northerntrust.com
san-001.ceros.com
san-001.ceros.com
wwww119.ntrs.com
pes1.northerntrust.com
www.northerntrust.com
www02710.ntrs.com
assetmanagement.northerntrust.com
www-ac.northerntrust.com
devotto.northerntrust.com
pes2.northerntrust.com
assetmanagement.northerntrust.com
uat.northerntrust.com
wwww119.ntrs.com
ukpcuat2imp01.ntrs.com
uat.northerntrust.com
careers.northerntrust.com
san-001.ceros.com
click.news.northerntrust.com
www.northernfunds.com
*.api.tpv.northerntrust.com
san-001.ceros.com
cm.demo.northerntrust.com
pointofview.northerntrust.com
san-001.ceros.com
www.northerntrust.com
uat.northerntrust.com
stores.cictitlepawn.com
www02710.ntrs.com
www-ac.northerntrust.com
www.northernfunds.com
careers.northerntrust.com
www.northernfunds.com
san-001.ceros.com
uat.northerntrust.com
san-001.ceros.com
san-001.ceros.com
locations.northerntrust.com
san-001.ceros.com
san-001.ceros.com
san-001.ceros.com
wwww119.ntrs.com
san-001.ceros.com
deviaa.northerntrust.com
san-001.ceros.com
locations.northerntrust.com
san-001.ceros.com
uat.northerntrust.com
locations.northerntrust.com
wealth.northerntrust.com
pes1.northerntrust.com
san-001.ceros.com
san-001.ceros.com
www.northernfunds.com
wwww119.ntrs.com
northerntrust.com
ciscouc-emea-XMPP.ntrs.com
careers.northerntrust.com
www02710.ntrs.com
www.northernfunds.com
ntam-prod-cus-agw.northerntrust.com
uat.northerntrust.com
www.northernfunds.com
www.northernfunds.com
survey.northerntrust.com
san-001.ceros.com
smetrics.northerntrust.com
san-001.ceros.com
smetrics.northerntrust.com
www-ac.northerntrust.com
www02710.ntrs.com
northerntrust.com
www-ac.northerntrust.com
san-001.ceros.com
uat.northerntrust.com
ciscouc-indi-XMPP.ntrs.com
www02710.ntrs.com
ukpcuat2imp01.ntrs.com
amer-c4-expe.ntrs.com
www02710.ntrs.com
san-001.ceros.com
www02710.ntrs.com
web-xp3p-cdn.ntrs.com
san-001.ceros.com
www02710.ntrs.com
pages.e.northerntrust.com
san-001.ceros.com
www02710.ntrs.com
san-001.ceros.com
assetmanagement.northerntrust.com
san-001.ceros.com
pages.e.northerntrust.com
ciscouc-emea-XMPP.ntrs.com
northerntrust.com
wealth.northerntrust.com
www.northernfunds.com
survey.northerntrust.com
pages.e.northerntrust.com
pointofview.northerntrust.com
pages.e.northerntrust.com
san-001.ceros.com
san-001.ceros.com
wwww119.ntrs.com
pes1.northerntrust.com
www.northerntrust.com
www02710.ntrs.com
assetmanagement.northerntrust.com
www-ac.northerntrust.com
devotto.northerntrust.com
pes2.northerntrust.com
assetmanagement.northerntrust.com
uat.northerntrust.com
wwww119.ntrs.com
ukpcuat2imp01.ntrs.com
uat.northerntrust.com
careers.northerntrust.com
san-001.ceros.com
click.news.northerntrust.com
www.northernfunds.com
*.api.tpv.northerntrust.com
san-001.ceros.com
cm.demo.northerntrust.com
pointofview.northerntrust.com
san-001.ceros.com
www.northerntrust.com
uat.northerntrust.com
stores.cictitlepawn.com
www02710.ntrs.com
www-ac.northerntrust.com
www.northernfunds.com
careers.northerntrust.com
Certificate
The complete raw certificate details for ntam-uat-cus-agw.northerntrust.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIQB1mke5k+xdBmNbPXDO2VXTANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMjQwNTIxMDAwMDAwWhcN MjUwNjIxMjM1OTU5WjCBhDELMAkGA1UEBhMCVVMxETAPBgNVBAgTCElsbGlub2lz MRAwDgYDVQQHEwdDaGljYWdvMSMwIQYDVQQKExpUaGUgTm9ydGhlcm4gVHJ1c3Qg Q29tcGFueTErMCkGA1UEAxMibnRhbS11YXQtY3VzLWFndy5ub3J0aGVybnRydXN0 LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALbyZOfUNf7eseSF M+T16X9SouoCDPjw3d5RbyRJ+hjI3wClwRSMQZCrS1HqBudYvm1pg9udUjg3WlaV LCLVy3/hyYEYpsn69DkJeCvL1SuDmk7sxgIPda4Q1Ldi4hO12L46FXLcQEXKXr6Q wN1/kTRW+v9hxl8V4WVKNVHgUsqgWH1A8x+vfZgpaZYqQ3wE1J0P9oW4aEJNr9Sc 30iakXxtIXsL7wQzSk6yBCF2oev3qoD4KWFzr5t9WKOlqGvx7NzQ97PFv5vLukKt yLjkOJPOFS1ax6VdrARfPwU5SyRVknTFLt2eCtRdpLjtZJhUJ8WG0SQi8Pg3/KFL Vev8jFECAwEAAaOCAhUwggIRMB8GA1UdIwQYMBaAFA+AYRyCMWHVLyjnjUY4tCzh xtniMB0GA1UdDgQWBBSHtygrKjnWgX9kA/fke7J9AueQ/zAtBgNVHREEJjAkgiJu dGFtLXVhdC1jdXMtYWd3Lm5vcnRoZXJudHJ1c3QuY29tMD4GA1UdIAQ3MDUwMwYG Z4EMAQICMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQ UzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MIGNBgNVHR8EgYUwgYIwP6A9oDuGOWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9E aWdpY2VydFNIQTJTZWN1cmVTZXJ2ZXJDQS0xLmNybDA/oD2gO4Y5aHR0cDovL2Ny bDQuZGlnaWNlcnQuY29tL0RpZ2ljZXJ0U0hBMlNlY3VyZVNlcnZlckNBLTEuY3Js MH4GCCsGAQUFBwEBBHIwcDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNl cnQuY29tMEgGCCsGAQUFBzAChjxodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20v RGlnaUNlcnRTSEEyU2VjdXJlU2VydmVyQ0EtMi5jcnQwDAYDVR0TAQH/BAIwADAT BgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwCk2QBSfng5T ZHzJ4MInTSQVMFnLmPxPfyC8pQnzr09g2cFrrWID/caV/t2R6twbVU8Du1IdWNtK u6EVjEEZIvyaXcsfKZGu/cPr3FM98yyI7j1E6/YGU/uaCD3X3O88LEN6+UyXgYiT b+3tZUbVYeg6E0yYV3pbhyzk+BI/gAHAqVsdg6UDc+DfNvm07vFfjMb5FkLlsiYB RC2SqCRgSi24Flt2f7is5jopnwEHoV5E+jmtX8MDFjzu+Zco48JOuTV/9h+jm0qc Rqk/HYHI0R7a/mwLA+tPy0VGb5tJfa6gUelmPqTW+5esXXS629dV7Iyat45YVPal 0diYjBIWMQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvJk59Q1/t6x5IUz5PXp f1Ki6gIM+PDd3lFvJEn6GMjfAKXBFIxBkKtLUeoG51i+bWmD251SODdaVpUsItXL f+HJgRimyfr0OQl4K8vVK4OaTuzGAg91rhDUt2LiE7XYvjoVctxARcpevpDA3X+R NFb6/2HGXxXhZUo1UeBSyqBYfUDzH699mClplipDfATUnQ/2hbhoQk2v1JzfSJqR fG0hewvvBDNKTrIEIXah6/eqgPgpYXOvm31Yo6Woa/Hs3ND3s8W/m8u6Qq3IuOQ4 k84VLVrHpV2sBF8/BTlLJFWSdMUu3Z4K1F2kuO1kmFQnxYbRJCLw+Df8oUtV6/yM UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9770046498570092951695700627647468893 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chicago' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Northern Trust Company' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ntam-uat-cus-agw.northerntrust.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23094900520223873286900759911040207825318785603993621804347557676372929837749440768109648428419461971113973162637220791003045994338624811817425865669735081661987487185354680647789663214943879952901107617894900259739585986014324985832467491978268121406588188005374951297019311757798287908889766583880688410406361478115984052366865452690527143022157941483061283886473074086985411584359061291285489885255783425855250469895541567886995648795638770788746932030246845567497120259306605726625303839102441989441780722294028995959022058655105098539367649663811651044187344712736111265699485891923125492323846223273812196887633 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 87b7282b2a39d6817f6403f7e47bb27d02e790ff . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ntam-uat-cus-agw.northerntrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigicertSHA2SecureServerCA-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigicertSHA2SecureServerCA-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (114 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA-2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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