icm.ext.gov.bc.ca
- Government of the Province of British Columbia -
Issued by Entrust Certification Authority - L1C
About this certificate
This digital certificate with serial number 4c:1b:1f:44 was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Government of the Province of British Columbia
Organization:
Government of the Province of British Columbia
Organization unit: ICM
Organization unit: ICM
State / Province:
British Columbia
Locality: Victoria
Country: CA
Locality: Victoria
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: www.entrust.net/rpa is incorporated by reference
Organization unit: (c) 2009 Entrust, Inc.
Organization unit: www.entrust.net/rpa is incorporated by reference
Organization unit: (c) 2009 Entrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 4c:1b:1f:44Serial Number (int): 1276845892
Serial Number lenght: 31 bits, 4 octets
SubjectKeyId: cc:c1:5a:5f:59:90:f0:bd:fd:c1:fa:60:4d:20:2c:4a:77:58:ad:04
AuthorityKeyId: 1e:f1:ab:89:06:f8:49:0f:01:33:77:ee:14:7a:ee:19:7c:93:28:4d
Fingerprint (sha1): e4:52:ca:e6:df:ca:cd:10:34:d6:38:e6:39:40:e8:b7:0d:5f:fe:e6
Fingerprint (sha256): 00:8e:0e:7e:96:8b:a0:50:87:9f:9b:c1:d9:6a:67:d6:b2:bf:c7:45:1c:95:1f:26:66:0f:8d:38:fd:9c:20:ce
Issuing Certificate URL: http://aia.entrust.net/l1c-chain.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1c.crl
Check the revocation status for certificate icm.ext.gov.bc.ca
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for icm.ext.gov.bc.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name gov.bc.ca
(limited to 100 certificates)
EPBC.ServiceProviderPortal.gov.bc.ca
tst-dit.th.gov.bc.ca
carbonregistry.gov.bc.ca
test.ssbc-client.gov.bc.ca
livesmart.empr.gov.bc.ca
services.hub.gcpe.gov.bc.ca
dev.publicsectorcompensation.gov.bc.ca
gww.lcs.gov.bc.ca
www.mtonline.gov.bc.ca
uat.partners.aved.gov.bc.ca
hub.gcpe.gov.bc.ca
adminqa.bpms.gov.bc.ca
sun.gov.bc.ca
devcal.bcregistrynames.gov.bc.ca
vanity.blog.gov.bc.ca
eval.www.cladws.bcexpresspay.gov.bc.ca
ivos.gov.bc.ca
uat.hub.gcpe.gov.bc.ca
quality.www.ws2.bcexpresspay.gov.bc.ca
webmaps.gov.bc.ca
test.ucmdb.gov.bc.ca
hranalytics.gov.bc.ca
*.lab.pathfinder.gov.bc.ca
*.nrs.gov.bc.ca
idtest.gov.bc.ca
dev.bcregistrynames.gov.bc.ca
ptr.qp.gov.bc.ca
test.a100.gov.bc.ca
onlinelearning.gov.bc.ca
icm.ext.gov.bc.ca
*.ext.crm.mtics.gov.bc.ca
allstars.sdsi.gov.bc.ca
onestop.gov.bc.ca
swsinterface.icmdev.mcf.gov.bc.ca
cares.pss.gov.bc.ca
news.gov.bc.ca
gis.hlth.gov.bc.ca
arcmaps.gov.bc.ca
www.sail.aved.gov.bc.ca
pacifico.cas.gov.bc.ca
b2b-prod-rt.vs.gov.bc.ca
test.my.gov.bc.ca
admin.dev.addresschange.gov.bc.ca
dev.bcregistryallservices.gov.bc.ca
jade.nrs.gov.bc.ca
gww.axis.gov.bc.ca
evss.vs.gov.bc.ca
d1.bconline.gov.bc.ca
testbni.gov.bc.ca
idtest.gov.bc.ca
geobc.gov.bc.ca
eservice.ag.gov.bc.ca
proje.realbc.gov.bc.ca
ehealth.gov.bc.ca
fwxwww2.hpr.for.gov.bc.ca
cloud.gov.bc.ca
test.livelink.gov.bc.ca
gww.tacs.gov.bc.ca
11520560.peerly.app
sws.interface.mcf.gov.bc.ca
hambc.hlth.gov.bc.ca
dev.services.hub.gcpe.gov.bc.ca
testbni.gov.bc.ca
billing-and-payment.revenueservicesbc.gov.bc.ca
test.a100.gov.bc.ca
gww.svn.educ.gov.bc.ca
dir.gov.bc.ca
test.addresschange.gov.bc.ca
intra.dir.gov.bc.ca
wsidmngr.gov.bc.ca
sbcstatus.id.gov.bc.ca
rptp.bcas.gov.bc.ca
emis.hlth.gov.bc.ca
abesap.teamwork.gov.bc.ca
sandbox.realbc.gov.bc.ca
www.pp.qp.gov.bc.ca
gww.blog.gov.bc.ca
drp.icm.ext.gov.bc.ca
gww.gov.bc.ca
alpaca.status.merchlogix.com
pp.qp.gov.bc.ca
cdwtest.mcf.gov.bc.ca
77000.gov.bc.ca
appsd1.bconline.gov.bc.ca
idtest.gov.bc.ca
www.reportfraud.gov.bc.ca
pingu.lab.ag.gov.bc.ca
www.ears.gov.bc.ca
earlychildhoodeducator.mcf.gov.bc.ca
*.bcstats.gov.bc.ca
sdc.gov.bc.ca
test.bcregistryallservices.gov.bc.ca
swsinterface.icmdev.mcf.gov.bc.ca
Adopttrain.mcf.gov.bc.ca
3ds-status.outseer.com
*.orgbook.gov.bc.ca
tst.posse.th.gov.bc.ca
blog.gov.bc.ca
heat.myeducation.gov.bc.ca
dev.addresschange.gov.bc.ca
tst-dit.th.gov.bc.ca
carbonregistry.gov.bc.ca
test.ssbc-client.gov.bc.ca
livesmart.empr.gov.bc.ca
services.hub.gcpe.gov.bc.ca
dev.publicsectorcompensation.gov.bc.ca
gww.lcs.gov.bc.ca
www.mtonline.gov.bc.ca
uat.partners.aved.gov.bc.ca
hub.gcpe.gov.bc.ca
adminqa.bpms.gov.bc.ca
sun.gov.bc.ca
devcal.bcregistrynames.gov.bc.ca
vanity.blog.gov.bc.ca
eval.www.cladws.bcexpresspay.gov.bc.ca
ivos.gov.bc.ca
uat.hub.gcpe.gov.bc.ca
quality.www.ws2.bcexpresspay.gov.bc.ca
webmaps.gov.bc.ca
test.ucmdb.gov.bc.ca
hranalytics.gov.bc.ca
*.lab.pathfinder.gov.bc.ca
*.nrs.gov.bc.ca
idtest.gov.bc.ca
dev.bcregistrynames.gov.bc.ca
ptr.qp.gov.bc.ca
test.a100.gov.bc.ca
onlinelearning.gov.bc.ca
icm.ext.gov.bc.ca
*.ext.crm.mtics.gov.bc.ca
allstars.sdsi.gov.bc.ca
onestop.gov.bc.ca
swsinterface.icmdev.mcf.gov.bc.ca
cares.pss.gov.bc.ca
news.gov.bc.ca
gis.hlth.gov.bc.ca
arcmaps.gov.bc.ca
www.sail.aved.gov.bc.ca
pacifico.cas.gov.bc.ca
b2b-prod-rt.vs.gov.bc.ca
test.my.gov.bc.ca
admin.dev.addresschange.gov.bc.ca
dev.bcregistryallservices.gov.bc.ca
jade.nrs.gov.bc.ca
gww.axis.gov.bc.ca
evss.vs.gov.bc.ca
d1.bconline.gov.bc.ca
testbni.gov.bc.ca
idtest.gov.bc.ca
geobc.gov.bc.ca
eservice.ag.gov.bc.ca
proje.realbc.gov.bc.ca
ehealth.gov.bc.ca
fwxwww2.hpr.for.gov.bc.ca
cloud.gov.bc.ca
test.livelink.gov.bc.ca
gww.tacs.gov.bc.ca
11520560.peerly.app
sws.interface.mcf.gov.bc.ca
hambc.hlth.gov.bc.ca
dev.services.hub.gcpe.gov.bc.ca
testbni.gov.bc.ca
billing-and-payment.revenueservicesbc.gov.bc.ca
test.a100.gov.bc.ca
gww.svn.educ.gov.bc.ca
dir.gov.bc.ca
test.addresschange.gov.bc.ca
intra.dir.gov.bc.ca
wsidmngr.gov.bc.ca
sbcstatus.id.gov.bc.ca
rptp.bcas.gov.bc.ca
emis.hlth.gov.bc.ca
abesap.teamwork.gov.bc.ca
sandbox.realbc.gov.bc.ca
www.pp.qp.gov.bc.ca
gww.blog.gov.bc.ca
drp.icm.ext.gov.bc.ca
gww.gov.bc.ca
alpaca.status.merchlogix.com
pp.qp.gov.bc.ca
cdwtest.mcf.gov.bc.ca
77000.gov.bc.ca
appsd1.bconline.gov.bc.ca
idtest.gov.bc.ca
www.reportfraud.gov.bc.ca
pingu.lab.ag.gov.bc.ca
www.ears.gov.bc.ca
earlychildhoodeducator.mcf.gov.bc.ca
*.bcstats.gov.bc.ca
sdc.gov.bc.ca
test.bcregistryallservices.gov.bc.ca
swsinterface.icmdev.mcf.gov.bc.ca
Adopttrain.mcf.gov.bc.ca
3ds-status.outseer.com
*.orgbook.gov.bc.ca
tst.posse.th.gov.bc.ca
blog.gov.bc.ca
heat.myeducation.gov.bc.ca
dev.addresschange.gov.bc.ca
Certificate
The complete raw certificate details for icm.ext.gov.bc.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgIETBsfRDANBgkqhkiG9w0BAQUFADCBsTELMAkGA1UEBhMC VVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xOTA3BgNVBAsTMHd3dy5lbnRydXN0 Lm5ldC9ycGEgaXMgaW5jb3Jwb3JhdGVkIGJ5IHJlZmVyZW5jZTEfMB0GA1UECxMW KGMpIDIwMDkgRW50cnVzdCwgSW5jLjEuMCwGA1UEAxMlRW50cnVzdCBDZXJ0aWZp Y2F0aW9uIEF1dGhvcml0eSAtIEwxQzAeFw0xMTA5MDkxNzI4MTVaFw0xMjA5MTMy MDIxNThaMIGeMQswCQYDVQQGEwJDQTEZMBcGA1UECBMQQnJpdGlzaCBDb2x1bWJp YTERMA8GA1UEBxMIVmljdG9yaWExNzA1BgNVBAoTLkdvdmVybm1lbnQgb2YgdGhl IFByb3ZpbmNlIG9mIEJyaXRpc2ggQ29sdW1iaWExDDAKBgNVBAsTA0lDTTEaMBgG A1UEAxMRaWNtLmV4dC5nb3YuYmMuY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCvh0DPWk16SMvDe7v6LYDxXZgyLdSROvpVEiuqHVT0Ose7oim3h0NX ovozO4Uummt+hfly0eMSZBrwKCMRC+WeXrGrCQKHU3umUYgKejrBH5Tm5JekCSTB vVahPRaxE9r7afRZQ+PSznHdg1mI8h0R7FR8sd0mLAaz3oCfSqwipfwi113N2iS+ TJYEiXt4EtdOntrLY5DQULY4O6PxCh99Er16aMRxY0V486pPJibuth5VUm3NhtYd kUGIMGT/vBZ6m1ItWV20rOIAPUk/x/twCWeQOVhXiPIuY2oTxutXbyK184JYzRCN vvBDaCiGORq0l+en3B5bYpMhKsh/I9ulAgMBAAGjggFPMIIBSzALBgNVHQ8EBAMC BaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwMwYDVR0fBCwwKjAooCagJIYiaHR0cDov L2NybC5lbnRydXN0Lm5ldC9sZXZlbDFjLmNybDBlBggrBgEFBQcBAQRZMFcwIwYI KwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDAGCCsGAQUFBzAChiRo dHRwOi8vYWlhLmVudHJ1c3QubmV0L2wxYy1jaGFpbi5jZXIwQAYDVR0gBDkwNzA1 BgkqhkiG9n0HSwIwKDAmBggrBgEFBQcCARYaaHR0cDovL3d3dy5lbnRydXN0Lm5l dC9ycGEwHwYDVR0jBBgwFoAUHvGriQb4SQ8BM3fuFHruGXyTKE0wHQYDVR0OBBYE FMzBWl9ZkPC9/cH6YE0gLEp3WK0EMAkGA1UdEwQCMAAwDQYJKoZIhvcNAQEFBQAD ggEBAAOgW03fesuqW5w3L4jaam79T4rMN2W/o1Ix55XNMpaPJtCc1irhQbran0iF O4bc3RTDB32xbg38gbJ3QJEB3Q4PSIXAY0GPjwgV476FU0RZJKghYsUCFkBiruc7 YGnPIwx7id70wLDm4Ah9j3l0Ui6TiFQ8znid4c47PTebgVW35kHzgWVO4D/lpTk5 U8u0sxy2r6zxTQUqIwREBNkW0lEjT6N0ga9htgIZI/KhhQ2b5k2AoAxd15JscAV8 DdZwHXhkuZ3sAsRumKVmDvhJsE1ojmWG+OmLSx+tiilQhtR89JJmJIBUDVZXc95E Wd4NcqeE8aH20t95na8TjwVcoKE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4dAz1pNekjLw3u7+i2A 8V2YMi3UkTr6VRIrqh1U9DrHu6Ipt4dDV6L6MzuFLpprfoX5ctHjEmQa8CgjEQvl nl6xqwkCh1N7plGICno6wR+U5uSXpAkkwb1WoT0WsRPa+2n0WUPj0s5x3YNZiPId EexUfLHdJiwGs96An0qsIqX8ItddzdokvkyWBIl7eBLXTp7ay2OQ0FC2ODuj8Qof fRK9emjEcWNFePOqTyYm7rYeVVJtzYbWHZFBiDBk/7wWeptSLVldtKziAD1JP8f7 cAlnkDlYV4jyLmNqE8brV28itfOCWM0Qjb7wQ2gohjkatJfnp9weW2KTISrIfyPb pQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1276845892 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.entrust.net/rpa is incorporated by reference' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2009 Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1C' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-09-09 17:28:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-09-13 20:21:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'British Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Victoria' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government of the Province of British Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ICM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'icm.ext.gov.bc.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22158399189992176043300381790985000909474298905218978610699568167669532421007987523304721999751501762579650502821637253575481241682627854514332314175566285754774329420202610359475905035307355807928426992661465476191573741701326337008890165895411755339259320542821437860001064091943916090448558962145551392576802259189949596843459808737635746336404972093053227488351912111664867539173857859354751034509776779767709907322413559518652592486420487843594110069688316272024669404199414476033191504189940961917798689648988378910007814653865780648791037519125828584636320220361881410424841890073672765811940419357214731656101 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1c.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (89 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1c-chain.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113533.7.75.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1ef1ab8906f8490f013377ee147aee197c93284d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ccc15a5f5990f0bdfdc1fa604d202c4a7758ad04 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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