*.cfra-msa.idm.oclc.org
- OCLC, Inc. -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 02:3f:d7:b5:57:71:46:58:88:46:10:93:8f:d9:0d:d5 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
OCLC, Inc.
Organization:
OCLC, Inc.
State / Province:
Ohio
Locality: Dublin
Country: US
Locality: Dublin
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 02:3f:d7:b5:57:71:46:58:88:46:10:93:8f:d9:0d:d5Serial Number (int): 2989945779081862748251596180673859029
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 16:7d:11:89:97:40:1b:9a:ce:06:84:1b:1c:50:9f:2b:41:f8:d0:30
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): 1d:43:ff:1d:15:e2:a4:49:69:64:52:77:e8:2a:c9:fc:d3:55:fe:94
Fingerprint (sha256): 00:4c:86:0a:14:a5:a1:35:44:0d:14:46:8c:d0:27:89:74:71:bd:c1:46:37:d4:e1:db:1b:45:cf:69:ce:82:a1
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate *.cfra-msa.idm.oclc.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.cfra-msa.idm.oclc.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.cfra-msa.idm.oclc.org
cfra-msa.idm.oclc.org
cfra-msa.idm.oclc.org
Other certificates including the domain name oclc.org
(limited to 100 certificates)
*.cfra-msa.idm.oclc.org
*.nwcc.idm.oclc.org
*.southseattle.idm.oclc.org
*.iuhu.idm.oclc.org
*.liuc.idm.oclc.org
*.cfra-msa.idm.oclc.org
deweyess.oclc.org
*.greatlibrary.idm.oclc.org
*.apll.idm.oclc.org
*.muhlenberg.idm.oclc.org
*.abington.idm.oclc.org
*.nccu.idm.oclc.org
secure06.stage.lithium.com
*.trevecca.idm.oclc.org
*.twu.idm.oclc.org
*.udlap.idm.oclc.org
*.aic.idm.oclc.org
*.weston.idm.oclc.org
*.cide.idm.oclc.org
*.bchs.idm.oclc.org
*.neomed.idm.oclc.org
*.uiwtx.idm.oclc.org
*.bpcc.idm.oclc.org
*.dartmouth.idm.oclc.org
*.tjportal.idm.oclc.org
*.wcc.idm.oclc.org
*.limcollege.idm.oclc.org
OWA.OCLC.ORG
*.victimresearch.idm.oclc.org
*.greenville.idm.oclc.org
*.dsc.idm.oclc.org
*.fmarion.idm.oclc.org
*.ubu-es.idm.oclc.org
exeter.idm.oclc.org
*.springerpub.idm.oclc.org
*.sanlib.idm.oclc.org
*.tjc.idm.oclc.org
*.zhejianglibr.idm.oclc.org
*.zulib.idm.oclc.org
*.burmanu.idm.oclc.org
*.ccl.idm.oclc.org
*.chifedkc.idm.oclc.org
workday.oclc.org
*.nscad.idm.oclc.org
*.confederation.idm.oclc.org
*.yccc.idm.oclc.org
*.aspenuniversity.idm.oclc.org
*.nu.idm.oclc.org
*.ala.idm.oclc.org
*.mmc.idm.oclc.org
*.akkon-onlinelibrary.idm.oclc.org
*.mclarenmacomb.idm.oclc.org
ftp-bibliotheca.de.oclc.org
*.jjhs.idm.oclc.org
*.gold.idm.oclc.org
*.qvcc.idm.oclc.org
*.omahalibrary.idm.oclc.org
*.nishogakusha-u.idm.oclc.org
*.usu29.idm.oclc.org
*.bakeru.idm.oclc.org
*.cdkc.idm.oclc.org
*.southeast.idm.oclc.org
*.lourdes.idm.oclc.org
*.mvcc.idm.oclc.org
*.fid-avl.idm.oclc.org
*.wcsu.idm.oclc.org
*.hchs.idm.oclc.org
*.aus.idm.oclc.org
*.kuyper.idm.oclc.org
*.testemea.idm.oclc.org
*.uea.idm.oclc.org
*.nnu.idm.oclc.org
*.sanfrancisco.idm.oclc.org
*.szrof.idm.oclc.org
*.fls.idm.oclc.org
*.sri.idm.oclc.org
*.sierranev.idm.oclc.org
*.ozarks.idm.oclc.org
deweyess.oclc.org
*.hodges.idm.oclc.org
*.ncat.idm.oclc.org
*.antioch.idm.oclc.org
*.trevecca.idm.oclc.org
*.wvclibrary.idm.oclc.org
Cmsauthor-ext.oclc.org
*.bucm.idm.oclc.org
*.drexel.idm.oclc.org
*.hshs.idm.oclc.org
*.arlis.idm.oclc.org
*.aaas.idm.oclc.org
*.esf.idm.oclc.org
*.uhsp.idm.oclc.org
*.essec.idm.oclc.org
*.scclosrios.idm.oclc.org
*.salusdental.idm.oclc.org
*.stmarys.idm.oclc.org
*.kl.idm.oclc.org
*.barker.idm.oclc.org
lbs-avans.oclc.org
*.nutn.idm.oclc.org
*.nwcc.idm.oclc.org
*.southseattle.idm.oclc.org
*.iuhu.idm.oclc.org
*.liuc.idm.oclc.org
*.cfra-msa.idm.oclc.org
deweyess.oclc.org
*.greatlibrary.idm.oclc.org
*.apll.idm.oclc.org
*.muhlenberg.idm.oclc.org
*.abington.idm.oclc.org
*.nccu.idm.oclc.org
secure06.stage.lithium.com
*.trevecca.idm.oclc.org
*.twu.idm.oclc.org
*.udlap.idm.oclc.org
*.aic.idm.oclc.org
*.weston.idm.oclc.org
*.cide.idm.oclc.org
*.bchs.idm.oclc.org
*.neomed.idm.oclc.org
*.uiwtx.idm.oclc.org
*.bpcc.idm.oclc.org
*.dartmouth.idm.oclc.org
*.tjportal.idm.oclc.org
*.wcc.idm.oclc.org
*.limcollege.idm.oclc.org
OWA.OCLC.ORG
*.victimresearch.idm.oclc.org
*.greenville.idm.oclc.org
*.dsc.idm.oclc.org
*.fmarion.idm.oclc.org
*.ubu-es.idm.oclc.org
exeter.idm.oclc.org
*.springerpub.idm.oclc.org
*.sanlib.idm.oclc.org
*.tjc.idm.oclc.org
*.zhejianglibr.idm.oclc.org
*.zulib.idm.oclc.org
*.burmanu.idm.oclc.org
*.ccl.idm.oclc.org
*.chifedkc.idm.oclc.org
workday.oclc.org
*.nscad.idm.oclc.org
*.confederation.idm.oclc.org
*.yccc.idm.oclc.org
*.aspenuniversity.idm.oclc.org
*.nu.idm.oclc.org
*.ala.idm.oclc.org
*.mmc.idm.oclc.org
*.akkon-onlinelibrary.idm.oclc.org
*.mclarenmacomb.idm.oclc.org
ftp-bibliotheca.de.oclc.org
*.jjhs.idm.oclc.org
*.gold.idm.oclc.org
*.qvcc.idm.oclc.org
*.omahalibrary.idm.oclc.org
*.nishogakusha-u.idm.oclc.org
*.usu29.idm.oclc.org
*.bakeru.idm.oclc.org
*.cdkc.idm.oclc.org
*.southeast.idm.oclc.org
*.lourdes.idm.oclc.org
*.mvcc.idm.oclc.org
*.fid-avl.idm.oclc.org
*.wcsu.idm.oclc.org
*.hchs.idm.oclc.org
*.aus.idm.oclc.org
*.kuyper.idm.oclc.org
*.testemea.idm.oclc.org
*.uea.idm.oclc.org
*.nnu.idm.oclc.org
*.sanfrancisco.idm.oclc.org
*.szrof.idm.oclc.org
*.fls.idm.oclc.org
*.sri.idm.oclc.org
*.sierranev.idm.oclc.org
*.ozarks.idm.oclc.org
deweyess.oclc.org
*.hodges.idm.oclc.org
*.ncat.idm.oclc.org
*.antioch.idm.oclc.org
*.trevecca.idm.oclc.org
*.wvclibrary.idm.oclc.org
Cmsauthor-ext.oclc.org
*.bucm.idm.oclc.org
*.drexel.idm.oclc.org
*.hshs.idm.oclc.org
*.arlis.idm.oclc.org
*.aaas.idm.oclc.org
*.esf.idm.oclc.org
*.uhsp.idm.oclc.org
*.essec.idm.oclc.org
*.scclosrios.idm.oclc.org
*.salusdental.idm.oclc.org
*.stmarys.idm.oclc.org
*.kl.idm.oclc.org
*.barker.idm.oclc.org
lbs-avans.oclc.org
*.nutn.idm.oclc.org
Certificate
The complete raw certificate details for *.cfra-msa.idm.oclc.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG9DCCBdygAwIBAgIQAj/XtVdxRliIRhCTj9kN1TANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjMw OTIwMDAwMDAwWhcNMjQwOTI0MjM1OTU5WjBkMQswCQYDVQQGEwJVUzENMAsGA1UE CBMET2hpbzEPMA0GA1UEBxMGRHVibGluMRMwEQYDVQQKEwpPQ0xDLCBJbmMuMSAw HgYDVQQDDBcqLmNmcmEtbXNhLmlkbS5vY2xjLm9yZzCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAL9bOEG7dmL+GFPYB3UGmuMWUQpXKzqzstwn0OqFN/AA L5tifTTdEDToNza/VOmN5ESndumGeDrS4QZmVDSRQaM4FbGpGr0icV+K/TE9M04s RHBYCrAdTPoTJjHEa7KsamlX3cBt1eO9tGhnWyyijIKECU/7OaUOybE+MsqS7roW wQ37O98Fo39UHrC+b8yLpZbPZ/dt7u8uutEcGC8IJYKAyIvsL6gIVRNZucYAvpYP kOfgVMSlqOscMNKzWNoo0iFUnZePxmkwxx8ddYDJXCAh32VLRd20oJV9CutGsxQm Ce8YsysfYkQiu83UoCfljAASkHGeFU7VNZFZC6c2mK8CAwEAAaOCA6swggOnMB8G A1UdIwQYMBaAFHSFgMBmx9833s+9KTeqAx2+7c0XMB0GA1UdDgQWBBQWfRGJl0Ab ms4GhBscUJ8rQfjQMDA5BgNVHREEMjAwghcqLmNmcmEtbXNhLmlkbS5vY2xjLm9y Z4IVY2ZyYS1tc2EuaWRtLm9jbGMub3JnMD4GA1UdIAQ3MDUwMwYGZ4EMAQICMCkw JwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGfBgNVHR8E gZcwgZQwSKBGoESGQmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEds b2JhbEcyVExTUlNBU0hBMjU2MjAyMENBMS0xLmNybDBIoEagRIZCaHR0cDovL2Ny bDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0R2xvYmFsRzJUTFNSU0FTSEEyNTYyMDIw Q0ExLTEuY3JsMIGHBggrBgEFBQcBAQR7MHkwJAYIKwYBBQUHMAGGGGh0dHA6Ly9v Y3NwLmRpZ2ljZXJ0LmNvbTBRBggrBgEFBQcwAoZFaHR0cDovL2NhY2VydHMuZGln aWNlcnQuY29tL0RpZ2lDZXJ0R2xvYmFsRzJUTFNSU0FTSEEyNTYyMDIwQ0ExLTEu Y3J0MAwGA1UdEwEB/wQCMAAwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB3AO7N 0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABirAtgIQAAAQDAEgwRgIh AOp1wPLCUhe1QeYcZswnLtmvfxHvWhdIDR4qiGFsgrlZAiEAveeE1llZPE6Ffcc4 3/uizLLNjMpHKvnbu4oJfcKBfM8AdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZ u7+rOdiEcwAAAYqwLYClAAAEAwBHMEUCIEfVnbWguOitmxCoa/9UkQfhO238jb6n G0hxMs971781AiEAlV3ZKqoWNvl2Ua6nAifqH2xkx6hK8UqBeMmxTdTEkZ0AdgDa tr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYqwLYCBAAAEAwBHMEUC ICnztG1hkuUHvFi8kRDixm98JpV4f8T4RhinYvRwwGBoAiEAuvKb74ol+EPLoQDZ PcLAZyGIRy5VJJL9cPSiLTLHmj0wDQYJKoZIhvcNAQELBQADggEBAEuv23BMrsMK v9UnukVDUT993fyyh98+sXaxtkF5wyUeMDE1CtXiZbc2PgRFsNQCEecvGFWwDZIA d2gLTocegj75qw41bypzgfOs+obvOYThQm5eCYHPt+//Z7PdiKVqnHBhr55YKtwi 3fLlsbgcj0rqXvSyD3yvj/BADGE4OKk9d+Qi+LzRb2kfgESb0fxyyME0ywK+p26L Cp0Q7VCLrXbiH0fxqKoCOM2bbZIKK59omqGbg/sMwe3czot2vDPLe/D4Eut2KXWS NjHJp8FPodnWTnYHDW21D7Fa8CkjCVeI8g1ZgeQmDydOz6ly/HJXK/HN3wpYQ0+q suNeiGQrgD0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1s4Qbt2Yv4YU9gHdQaa 4xZRClcrOrOy3CfQ6oU38AAvm2J9NN0QNOg3Nr9U6Y3kRKd26YZ4OtLhBmZUNJFB ozgVsakavSJxX4r9MT0zTixEcFgKsB1M+hMmMcRrsqxqaVfdwG3V4720aGdbLKKM goQJT/s5pQ7JsT4yypLuuhbBDfs73wWjf1QesL5vzIulls9n923u7y660RwYLwgl goDIi+wvqAhVE1m5xgC+lg+Q5+BUxKWo6xww0rNY2ijSIVSdl4/GaTDHHx11gMlc ICHfZUtF3bSglX0K60azFCYJ7xizKx9iRCK7zdSgJ+WMABKQcZ4VTtU1kVkLpzaY rwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2989945779081862748251596180673859029 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ohio' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Dublin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'OCLC, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.cfra-msa.idm.oclc.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24156498385226186943056195864527677359290437276289171653267435996191570291231264442714764754072279233648369312894726480881081482121806897264828690743716194614735185133255931603851738938184643644382771312508907354184306955445523799620224847386482131616234120659598481689322533512821167814883700687219848010353040875096795204190171340750852440647414029229737067616271461590135098008836859868438429576046779950453915437961118509144558752223932088028870428383983549578777952540624183134160645962073867358485863776553455694569261381702417629637696782087697525168755397157019125047519901886815795273276971321602275555055791 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 167d118997401b9ace06841b1c509f2b41f8d030 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cfra-msa.idm.oclc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cfra-msa.idm.oclc.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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