cert02.uk.aviva.com

- Aviva PLC -

Issued by Sectigo RSA Extended Validation Secure Server CA

About this certificate

This digital certificate with serial number a2:f4:d1:ab:36:9b:3a:ea:ee:0b:de:57:8e:96:dd:74 was issued on by Sectigo Limited.

With 45 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Aviva PLC

Company registration number: 02468686
Organization: Aviva PLC
Organization unit: Digital
Locality: London
Country: GB

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate has expire since

Certificate Details

Serial Number (hex): a2:f4:d1:ab:36:9b:3a:ea:ee:0b:de:57:8e:96:dd:74
Serial Number (int): 216606108339161674753438587335361355124
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 0f:c6:d7:32:5c:ce:ca:f7:ce:23:de:38:4e:b7:d1:7a:8b:c3:f4:5a
AuthorityKeyId: 2c:69:ff:80:c9:87:90:ae:34:e1:b4:e7:4c:93:85:99:40:e9:a7:b2

Fingerprint (sha1): 34:7e:40:c9:fa:32:5b:8c:39:2c:66:10:3f:b3:38:be:ee:ee:56:84
Fingerprint (sha256): 00:aa:1a:02:99:1a:40:b3:77:12:91:90:7a:9a:63:08:49:3d:0b:72:4d:bb:b1:47:f5:80:a1:45:d8:a4:4e:ed

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.sectigo.com
CRL Distribution Point: http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl

Check the revocation status for certificate cert02.uk.aviva.com

45

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for cert02.uk.aviva.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

cert02.uk.aviva.com
adviser.friendslife.co.uk
cdn.aviva.com
eserve.friendslife.co.uk
extranet.friendslife.co.uk
help.generalaccident.com
insurance.av.qs.online-insure.com
insurance.hsbc.online-insure.com
insuranceportal.av.qs.online-insure.com
intquote.aviva.co.uk
isup.aviva.co.uk
library.aviva.com
member.avivaservices.co.uk
member.friendslife.co.uk
my-plans.friendslife.co.uk
mybusiness.aviva.co.uk
online.friendslife.co.uk
retirementtools.aviva.co.uk
runtime.generalaccident.com
runtime.quotemehappy.com
schemes.friendslife.co.uk
servlets.generalaccident.com
servlets.quotemehappy.com
ssoinsurance-tsb.qs.online-insure.com
training.online.friendslife.co.uk
workplacebenefits.friendslife.co.uk
wps1.sc-lifecustomer.qs.aviva.co.uk
wps2.sc-lifecustomer.qs.aviva.co.uk
wps3.sc-lifecustomer.qs.aviva.co.uk
wps4.sc-lifecustomer.qs.aviva.co.uk
wps5.sc-lifecustomer.qs.aviva.co.uk
wps6.sc-lifecustomer.qs.aviva.co.uk
wps7.sc-lifecustomer.qs.aviva.co.uk
www.avivaeserve.co.uk
www.avivatransfers.co.uk
www.erfunding.co.uk
www.exceed.aviva.co.uk
www.insurance.av.qs.online-insure.com
www.insurance.hsbc.qs.online-insure.com
www.insuranceportal.av.qs.online-insure.com
www.isup.qs.aviva.co.uk
www.mybusiness.aviva.co.uk
www.retirementtools.aviva.co.uk
www.ssoinsurance-tsb.qs.online-insure.com
www17.friendsprovident.co.uk

Other certificates including the domain name aviva.com

(limited to 100 certificates)
aviva-swi-amp-fs-01.globalapps.aviva.com
incapsula.com
at.aviva.com
community-fund-italia.aviva.com
avivaprivacy.uk
cert02.uk.aviva.com
cert03.uk.aviva.com
cert06.uk.aviva.com
cert01.as.aviva.com
avivaprivacy.uk
np-cert02.uk.aviva.com
in.aviva.com
avivaprivacy.uk
cert11.uk.aviva.com
cert03.uk.aviva.com
avivaprivacy.uk
cert06.uk.aviva.com
idmadmin.globalapps.aviva.com
mpower.non.prod.ana.corp.aviva.com
cert01.ca.aviva.com
cert08.uk.aviva.com
cert01.uk.aviva.com
digital.aviva.com
cert01.ca.aviva.com
redirects.aviva.com
agility-europe.globalapps.aviva.com
icare-uat.globalapps.aviva.com
cert06.uk.aviva.com
incapsula.com
cert04.uk.aviva.com
cms.aviva.com
sv.nonprod.ana.corp.aviva.com
avivaprivacy.uk
cert10.uk.aviva.com
cert06.uk.aviva.com
intquote.aviva.co.uk
cert10.uk.aviva.com
boson-services-gateway.globalapps.aviva.com
cert01.tmp.aviva.com
lafabrique-france.aviva.com
cert08.uk.aviva.com
cert01.uk.aviva.com
np-cert02.uk.aviva.com
incapsula.com
cert10.uk.aviva.com
camppe.external.globalapps.aviva.com
proinvest.com.sg
cert01.uk.aviva.com
avivaprivacy.uk
suretyngweb.qa.ana.corp.aviva.com
avivaprivacy.uk
cert01.uk.aviva.com
mpower.non.prod.ana.corp.aviva.com
vaultqa.ana.corp.aviva.com
bigd-kafkadev2.globalapps.aviva.com
cert08.uk.aviva.com
yyzbac1sis1.ana.corp.aviva.com
cyberark-uat.globalapps.aviva.com
www.aviva.co.uk
uat.aviva.co.uk
www.avivatransfer.co.uk
rewards.aviva.com
workbench.prod-globalapps.aviva.com
cx2.globalapps.aviva.com
redirects.aviva.com
yyzsql3047.ana.corp.aviva.com
cert01.ca.aviva.com
mail.aviva.com
cert03.uk.aviva.com
empower.preprod.ana.corp.aviva.com
cert01.as.aviva.com
uat.aviva.co.uk
e-learningportal.at.aviva.com
cert07.uk.aviva.com
cert01.tmp.aviva.com
cert05.uk.aviva.com
yyzbsm1011.ana.corp.aviva.com
iaccess.ana.corp.aviva.com
www.aviva.co.uk
cert03.uk.aviva.com
cert01.as.aviva.com
yyzcpm1201.ana.corp.aviva.com
shareplans.aviva.com
incapsula.com
ci-master.ana.corp.aviva.com
cert04.uk.aviva.com
community-fund-italia.aviva.com
incapsula.com
cert05.uk.aviva.com

arc.globalapps.aviva.com
cert10.uk.aviva.com
avivaprivacy.uk
incapsula.com
nonprod.ratabasecat.ana.corp.aviva.com
redirects.aviva.com
yyzetl1003.ana.corp.aviva.com
cert04.uk.aviva.com
cert08.uk.aviva.com
nationalhomewarranty.com

Certificate

The complete raw certificate details for cert02.uk.aviva.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwPkJr6oiOs9Enk3MbcV2
CMn/2UCH3xIwMbmmtHGzFOfuYs5Q7N5Bw5S8EgXX3GFRIndzrfy1mBlgp0tGSdux
fKczM0eUYFadOF4E20JxEtQRu/LHzyCQz2Rz1MTlp+cqZDUEDiAX/CAheJieMTOo
Znp98yd6RdM/49oVx4uRTeMfiX6E8+Z9dF5pgiqB1qI/7ieYD++j9Eb7qLUrGCCp
w1kBIsXMvzuObLMQ2/uZak07HU3ZOBsDHOg4pp7zEDgon3GOMPjZi/M+1EOn3Xgz
Bc37sb0iCO8Uk7PCigOFQcy1yJ12PVJIuEQzS2mn1rp3KW8qiBS73V23NChT/CXc
/wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 216606108339161674753438587335361355124
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Extended Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-07-28 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-02-10 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '02468686'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Aviva PLC'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Digital'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cert02.uk.aviva.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24360559687759628795849780731038321774047099600106637176342632024074593942169682006072352826726543016651268476488563010000203488621466028974115392949525029265583896044080379428580652458443319450786698222725687061017116075471994996566476430346808658548873409485149215995771632349158166104612239137181398373255407571211634938046209484138263620650384732977723237625954125408797030743035660555253608464436183559034161494303893175642215792828256620400300108509803352474931345905106123109961266644922764935809409102303183610978678747159034922764676356119622684434158727201563943034135933285050264364717093300519054885641471
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2c69ff80c98790ae34e1b4e74c93859940e9a7b2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							0fc6d7325ccecaf7ce23de384eb7d17a8bc3f45a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.5.1 (Comodo EV policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (122 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
							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
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1364 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cert02.uk.aviva.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adviser.friendslife.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn.aviva.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eserve.friendslife.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'extranet.friendslife.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'help.generalaccident.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'insurance.av.qs.online-insure.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'insurance.hsbc.online-insure.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'insuranceportal.av.qs.online-insure.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intquote.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'isup.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'library.aviva.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'member.avivaservices.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'member.friendslife.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my-plans.friendslife.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mybusiness.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'online.friendslife.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'retirementtools.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'runtime.generalaccident.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'runtime.quotemehappy.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'schemes.friendslife.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'servlets.generalaccident.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'servlets.quotemehappy.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ssoinsurance-tsb.qs.online-insure.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'training.online.friendslife.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'workplacebenefits.friendslife.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps1.sc-lifecustomer.qs.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps2.sc-lifecustomer.qs.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps3.sc-lifecustomer.qs.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps4.sc-lifecustomer.qs.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps5.sc-lifecustomer.qs.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps6.sc-lifecustomer.qs.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wps7.sc-lifecustomer.qs.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avivaeserve.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.avivatransfers.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.erfunding.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.exceed.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.insurance.av.qs.online-insure.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.insurance.hsbc.qs.online-insure.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.insuranceportal.av.qs.online-insure.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.isup.qs.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mybusiness.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.retirementtools.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ssoinsurance-tsb.qs.online-insure.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www17.friendsprovident.co.uk'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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