origin-azureapps.ema.kworld.kpmg.com
- KPMG International -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 26:78:79:5c:97:b2:e3:44:00:00:00:00:50:e1:8c:93 was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
KPMG International
Organization:
KPMG International
State / Province:
Noord-Holland
Locality: Amstelveen
Country: NL
Locality: Amstelveen
Country: NL
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 26:78:79:5c:97:b2:e3:44:00:00:00:00:50:e1:8c:93Serial Number (int): 51136200970352474160693401867218160787
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 6c:f7:27:16:d7:2b:b8:a2:6d:88:a5:5a:54:1a:47:5e:67:50:ce:a7
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): ed:42:9c:60:8b:c6:e1:aa:3c:5d:fb:28:6f:aa:12:64:a2:61:40:bf
Fingerprint (sha256): 00:82:62:75:51:6b:c1:5f:5f:12:a4:f7:74:b0:e4:03:d8:2e:c3:a2:97:a0:6c:ad:7e:c4:e8:9d:b7:df:4a:28
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate origin-azureapps.ema.kworld.kpmg.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for origin-azureapps.ema.kworld.kpmg.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
origin-azureapps.ema.kworld.kpmg.com
tis.qmc.kworld.kpmg.com
tis.qmc.kworld.kpmg.com
Other certificates including the domain name kpmg.com
(limited to 100 certificates)
accounts.amr.kpmg.com
mdm.cee.kpmg.com
cds4.cvent.com
tess10.us.kworld.kpmg.com
wp.linkes.kpmg.com
Maillab.kpmg.ca
kpmgclaraonazure.ema.kpmg.com
www.highq.com
auditchatbot2.kpmg.com
ngsclient.ext.dev.kpmg.com
www.highq.com
lbvpn.us.kpmg.com
akamaisecure3.qualtrics.com
staging.kpmg.com
vhstg.aspac.kpmg.com
origin-azureapps.ema.kworld.kpmg.com
portals.ema.kpmg.com
btp.ema.kpmg.com
portalqa.kpmg.com
sslras1dr.us.kpmg.com
cert00092-azurecdn.akamaized.net
cert00088-azurecdn.akamaized.net
www.highq.com
www.highq.com
origin-azureapps.stg.amr.kpmg.com
portaluat.us.kpmg.com
kriterionmobile-qa.us.kworld.kpmg.com
solutions-analyticsuat.us.kpmg.com
cert00068-azurecdn.akamaized.net
cert00100-azurecdn.akamaized.net
lmscontent.us.kpmg.com
www.ptlinke.kpmg.com
selfserviceqa.kpmg.com
workspacesstg.ema.kpmg.com
www.highq.com
devkpmglinkworkforce.us.kworld.kpmg.com
cds4.cvent.com
lakehouseapi.us.kpmg.com
artifactory.us.kworld.kpmg.com
cds4.cvent.com
lab-uat-*.unify.us.kpmg.com
www.highq.com
WebSealIntSAMLFed.us.kworld.kpmg.com
accreditationdev01.kpmgdevcloud.kpmg.com
origin-azureapps.ema.kpmg.com
gfs-stg-2fa-ema.kworld.kpmg.com
mdm.ema.kpmg.com
workplace.us.kpmg.com
*.us.kpmg.com
oos.qa.us.kpmg.com
www.highq.com
apps.ng.kpmg.com
simp.us.kworld.kpmg.com
drmsmanager.us.kworld.kpmg.com
cert00031-azurecdn.akamaized.net
lab-eailogin-stg.us.kpmg.com
cert00088-azurecdn.akamaized.net
cert00031-azurecdn.akamaized.net
cqs.globalriskstg.kpmg.com
ngsclient.ext.dev.kpmg.com
godzilla.kpmg.com
kcentralintuat.us.kpmg.com
www.highq.com
www.highq.com
cert00059-azurecdn.akamaized.net
www.highq.com
cert00077-azurecdn.akamaized.net
www.highq.com
cert00092-azurecdn.akamaized.net
apps.ema.kpmg.com
kdox-service-uat.us.kpmg.com
www.highq.com
eccsandn1.godevazure1.kpmg.com
emersslvpn.us.kpmg.com
discovery.webpubsub.stg.kpmg.com
cert00077-azurecdn.akamaized.net
imi-uatreporting.kdev.services
cert00068-azurecdn.akamaized.net
www.mslinkeu.kpmg.com
cert00077-azurecdn.akamaized.net
kcentralint.us.kpmg.com
UPExchanges.us.kworld.kpmg.com
*.clientaccess.kpmg.com
origin-azureapps.stg.ema.kpmg.com
*.bio.kpmg.com
pivot.kpmg.com
www.highq.com
cert00068-azurecdn.akamaized.net
Kcfcapi.stg.ema.kpmg.com
www.highq.com
goazr1app266d.godevazure1.kpmg.com
cert00077-azurecdn.akamaized.net
mobileeas.ema.kpmg.com
akamaisecure4.qualtrics.com
lmclinkes.us.kworld.kpmg.com
author-kpmg-dev.us.kworld.kpmg.com
test_poc-ext.qa.kpmg.com
kpmglinkqa.amr.kpmg.com
sslraa3.us.kpmg.com
vhstg.amr.kpmg.com
mdm.cee.kpmg.com
cds4.cvent.com
tess10.us.kworld.kpmg.com
wp.linkes.kpmg.com
Maillab.kpmg.ca
kpmgclaraonazure.ema.kpmg.com
www.highq.com
auditchatbot2.kpmg.com
ngsclient.ext.dev.kpmg.com
www.highq.com
lbvpn.us.kpmg.com
akamaisecure3.qualtrics.com
staging.kpmg.com
vhstg.aspac.kpmg.com
origin-azureapps.ema.kworld.kpmg.com
portals.ema.kpmg.com
btp.ema.kpmg.com
portalqa.kpmg.com
sslras1dr.us.kpmg.com
cert00092-azurecdn.akamaized.net
cert00088-azurecdn.akamaized.net
www.highq.com
www.highq.com
origin-azureapps.stg.amr.kpmg.com
portaluat.us.kpmg.com
kriterionmobile-qa.us.kworld.kpmg.com
solutions-analyticsuat.us.kpmg.com
cert00068-azurecdn.akamaized.net
cert00100-azurecdn.akamaized.net
lmscontent.us.kpmg.com
www.ptlinke.kpmg.com
selfserviceqa.kpmg.com
workspacesstg.ema.kpmg.com
www.highq.com
devkpmglinkworkforce.us.kworld.kpmg.com
cds4.cvent.com
lakehouseapi.us.kpmg.com
artifactory.us.kworld.kpmg.com
cds4.cvent.com
lab-uat-*.unify.us.kpmg.com
www.highq.com
WebSealIntSAMLFed.us.kworld.kpmg.com
accreditationdev01.kpmgdevcloud.kpmg.com
origin-azureapps.ema.kpmg.com
gfs-stg-2fa-ema.kworld.kpmg.com
mdm.ema.kpmg.com
workplace.us.kpmg.com
*.us.kpmg.com
oos.qa.us.kpmg.com
www.highq.com
apps.ng.kpmg.com
simp.us.kworld.kpmg.com
drmsmanager.us.kworld.kpmg.com
cert00031-azurecdn.akamaized.net
lab-eailogin-stg.us.kpmg.com
cert00088-azurecdn.akamaized.net
cert00031-azurecdn.akamaized.net
cqs.globalriskstg.kpmg.com
ngsclient.ext.dev.kpmg.com
godzilla.kpmg.com
kcentralintuat.us.kpmg.com
www.highq.com
www.highq.com
cert00059-azurecdn.akamaized.net
www.highq.com
cert00077-azurecdn.akamaized.net
www.highq.com
cert00092-azurecdn.akamaized.net
apps.ema.kpmg.com
kdox-service-uat.us.kpmg.com
www.highq.com
eccsandn1.godevazure1.kpmg.com
emersslvpn.us.kpmg.com
discovery.webpubsub.stg.kpmg.com
cert00077-azurecdn.akamaized.net
imi-uatreporting.kdev.services
cert00068-azurecdn.akamaized.net
www.mslinkeu.kpmg.com
cert00077-azurecdn.akamaized.net
kcentralint.us.kpmg.com
UPExchanges.us.kworld.kpmg.com
*.clientaccess.kpmg.com
origin-azureapps.stg.ema.kpmg.com
*.bio.kpmg.com
pivot.kpmg.com
www.highq.com
cert00068-azurecdn.akamaized.net
Kcfcapi.stg.ema.kpmg.com
www.highq.com
goazr1app266d.godevazure1.kpmg.com
cert00077-azurecdn.akamaized.net
mobileeas.ema.kpmg.com
akamaisecure4.qualtrics.com
lmclinkes.us.kworld.kpmg.com
author-kpmg-dev.us.kworld.kpmg.com
test_poc-ext.qa.kpmg.com
kpmglinkqa.amr.kpmg.com
sslraa3.us.kpmg.com
vhstg.amr.kpmg.com
Certificate
The complete raw certificate details for origin-azureapps.ema.kworld.kpmg.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgIQJnh5XJey40QAAAAAUOGMkzANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0x ODA0MDgyMjE5NDlaFw0yMDA0MDgyMjQ5NDdaMIGGMQswCQYDVQQGEwJOTDEWMBQG A1UECBMNTm9vcmQtSG9sbGFuZDETMBEGA1UEBxMKQW1zdGVsdmVlbjEbMBkGA1UE ChMSS1BNRyBJbnRlcm5hdGlvbmFsMS0wKwYDVQQDEyRvcmlnaW4tYXp1cmVhcHBz LmVtYS5rd29ybGQua3BtZy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCChVcv78UEFDKPMLCbINlU3AI5XA9RKvlQfULeUgxbeOVxtXpvGMbLcWxS w4KKcftXjoQtZMt1MCnqzfvm2ynPOYZs/vx0fBH3/d8nKJC/X+L+Y16YL6idbmOt JxlkkszxFgCmhKdfQRiKu8/mYT8Qgm7rGesQXLBsGsX9lA8z3HO3/mpilz6pRheE 1bd51QyymiWJHUfHfZ9D/qUiHQrgp7zJpZBgCo3Xz7TW0ffcf+1qLgkkFvkse4oN uu4AERtf2vDjqNHxRyNqrKudYfE0tauuXl96rwnDI0WPbOCE719W43mQAaXcxfrN gGE/65PcmyYHnTJtl3293G3BQPIXAgMBAAGjggHJMIIBxTATBgorBgEEAdZ5AgQD AQH/BAIFADBIBgNVHREEQTA/giRvcmlnaW4tYXp1cmVhcHBzLmVtYS5rd29ybGQu a3BtZy5jb22CF3Rpcy5xbWMua3dvcmxkLmtwbWcuY29tMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwMwYDVR0fBCwwKjAooCag JIYiaHR0cDovL2NybC5lbnRydXN0Lm5ldC9sZXZlbDFrLmNybDBLBgNVHSAERDBC MDYGCmCGSAGG+mwKAQUwKDAmBggrBgEFBQcCARYaaHR0cDovL3d3dy5lbnRydXN0 Lm5ldC9ycGEwCAYGZ4EMAQICMGgGCCsGAQUFBwEBBFwwWjAjBggrBgEFBQcwAYYX aHR0cDovL29jc3AuZW50cnVzdC5uZXQwMwYIKwYBBQUHMAKGJ2h0dHA6Ly9haWEu ZW50cnVzdC5uZXQvbDFrLWNoYWluMjU2LmNlcjAfBgNVHSMEGDAWgBSConB03bxT P8971PfNf6dgxgpMvzAdBgNVHQ4EFgQUbPcnFtcruKJtiKVaVBpHXmdQzqcwCQYD VR0TBAIwADANBgkqhkiG9w0BAQsFAAOCAQEAQ1yua5xd4GhA4se3Zi/QfFjHKUYR zqH0GZElcnjEyFWih1t0by7zx0bcDjlSsjBalgMO0JEydlyPY+RfppzEbAjEYX+/ cZCTAQuNK7imUfpYY09Jq45ux+HU0olYwEaoEZWHkb6kaCYOA8NasuaXH8iKIf28 wVNuFZUuJ/DQ2PY2Ox7P13v6AZOwNL+wq9t+AADwlz4FZ0UnhErvbD0Is2FAgeMV H2JNRGplRQo5VZICzqbHD89qxT2XrlJSMG8noY0OIF2Z0DMr411RwRAUn6hFrlbT y9ac/B2bx0U4972rm0g3xoVcAEZ/WvtzbCFl+ZDe23MF/GR+pHFEa6c8Mw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgoVXL+/FBBQyjzCwmyDZ VNwCOVwPUSr5UH1C3lIMW3jlcbV6bxjGy3FsUsOCinH7V46ELWTLdTAp6s375tsp zzmGbP78dHwR9/3fJyiQv1/i/mNemC+onW5jrScZZJLM8RYApoSnX0EYirvP5mE/ EIJu6xnrEFywbBrF/ZQPM9xzt/5qYpc+qUYXhNW3edUMspoliR1Hx32fQ/6lIh0K 4Ke8yaWQYAqN18+01tH33H/tai4JJBb5LHuKDbruABEbX9rw46jR8UcjaqyrnWHx NLWrrl5feq8JwyNFj2zghO9fVuN5kAGl3MX6zYBhP+uT3JsmB50ybZd9vdxtwUDy FwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 51136200970352474160693401867218160787 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-08 22:19:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-08 22:49:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amstelveen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'KPMG International' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'origin-azureapps.ema.kworld.kpmg.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16476732333857196005537910539078531838180922116491922024363589105901493950592724068313170548852631632334640347721467246051724503473152131779003116980849922539551453881608171357115230136894550479262806288832203149875279381737465555648797643934143557380852479695475337157470278962893416889133582009363346507358492158171977035904718599475481545691602529143343453054773289143199127080232761095029308433834128216144874540936279532933375987811130654254183941280400018291234868399527475114894785839360097044892011347716041185107824329259795269075687127366624308182433755441980083169797749818724353620649308228992435484684823 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin-azureapps.ema.kworld.kpmg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tis.qmc.kworld.kpmg.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6cf72716d72bb8a26d88a55a541a475e6750cea7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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