mpki.ouroath.com
- Yahoo! Inc. -
Issued by DigiCert SHA2 High Assurance Server CA
About this certificate
This digital certificate with serial number 0c:47:ac:87:a2:ee:23:fd:9d:44:2f:51:57:61:ad:01 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Yahoo! Inc.
Organization:
Yahoo! Inc.
State / Province:
CA
Locality: Sunnyvale
Country: US
Locality: Sunnyvale
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:47:ac:87:a2:ee:23:fd:9d:44:2f:51:57:61:ad:01Serial Number (int): 16322888347053196646781412570262777089
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 7b:8a:1f:1f:ad:8e:c0:1e:d0:5b:60:f0:72:ac:77:69:c6:72:24:42
AuthorityKeyId: 51:68:ff:90:af:02:07:75:3c:cc:d9:65:64:62:a2:12:b8:59:72:3b
Fingerprint (sha1): 1a:57:a7:ca:3e:f4:d0:be:82:b7:5a:9d:1a:c5:b0:eb:af:d5:56:09
Fingerprint (sha256): 00:e3:1e:5f:12:29:1e:87:db:f3:ec:2f:39:7d:6d:7d:5f:e2:7f:6c:51:53:e0:46:6b:41:6f:d3:4b:9e:0f:44
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ha-server-g6.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ha-server-g6.crl
Check the revocation status for certificate mpki.ouroath.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mpki.ouroath.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mpki.ouroath.com
Other certificates including the domain name ouroath.com
(limited to 100 certificates)
tls.ouroath.com
uc-impres-pub-ne1.telecom.ouroath.com
ucce-impres-pub-ne1-ms.telecom.ouroath.com
stage.sims.paranoids.ouroath.com
stage-api.tls.ouroath.com
uc-vcs-e2-ne1.telecom.ouroath.com
stage.sims.paranoids.ouroath.com
lookerhr.ouroath.com
mpki.ouroath.com
stage-api.tls.ouroath.com
chat.ouroath.com
ap-southeast-1.plu.ouroath.com
stage.sims.paranoids.ouroath.com
stage.sims.paranoids.ouroath.com
stage.sims.paranoids.ouroath.com
tls.ouroath.com
stage.sims.paranoids.ouroath.com
tls.ouroath.com
ucce-vthales2-gq1.telecom.ouroath.com
snv-alc1.ad.ouroath.com
es-cc1-01.lab.visibility.ouroath.com
splunk.jira.ouroath.com
src4.yahoo.com
dash.netsec.ouroath.com
*.autos.yahoo.com
stage.sims.paranoids.ouroath.com
sims.paranoids.ouroath.com
cosmo.ouroath.com
stage-api.tls.ouroath.com
checkmarx.ouroath.com
tls.ouroath.com
ui.ckms.ouroath.com
stage.sims.paranoids.ouroath.com
src3.yahoo.com
src4.yahoo.com
stage.sims.paranoids.ouroath.com
src4.yahoo.com
sandbox.signaturestore.ouroath.com
ecp.ouroath.com
stage.sims.paranoids.ouroath.com
*.countermeasures.paranoids.ouroath.com
erpcon.fin.ouroath.com
stage.sims.paranoids.ouroath.com
tls.ouroath.com
stage.sims.paranoids.ouroath.com
stage.tls.ouroath.com
*.uviz.paranoids.ouroath.com
om-dev.oath.com
ne1-epms2.ad.ouroath.com
stage.sims.paranoids.ouroath.com
*.autos.yahoo.com
dev.funcapi.ckms.ouroath.com
mmgmt.vzbuilders.com
stage.sims.paranoids.ouroath.com
stage.sims.paranoids.ouroath.com
stage.sims.paranoids.ouroath.com
ucce-vrs1-em.ad.ouroath.com
stage.kek.ckms.ouroath.com
rpc.alpo.mail.aol.com
rootca.uat.ouroath.com
*.media.yahoo.com
src4.yahoo.com
stage-api.tls.ouroath.com
src3.yahoo.com
src3.yahoo.com
mstrprod.fin.ouroath.com
stage.sims.paranoids.ouroath.com
ucce-cvp1a-gq1.ad.ouroath.com
yho.com
stage.sims.paranoids.ouroath.com
*.sandbox.dh.ouroath.com
stage.tls.ouroath.com
uc-vcs-e6-ne1.telecom.ouroath.com
stage.sims.paranoids.ouroath.com
*.securonix-poc.paranoids.ouroath.com
sims.paranoids.ouroath.com
stage.sims.paranoids.ouroath.com
api.tls.ouroath.com
vanity.jiveon.com
stage.sims.paranoids.ouroath.com
ucce-vsts1-em.ad.ouroath.com
ucce-rogr-a-gq1.ad.ouroath.com
src4.yahoo.com
src1.yahoo.com
src1.yahoo.com
src1.yahoo.com
*.autos.yahoo.com
funcaws.dek.ckms.ouroath.com
src4.yahoo.com
tls.ouroath.com
vmaas.cloud.mec.vip.gq1.yahoo.com
stage.sims.paranoids.ouroath.com
src4.yahoo.com
erpdbg.fin.ouroath.com
docker.sj.poc.mec.ouroath.com
ecpapi.ouroath.com
launchcalendar.ouroath.com
src3.yahoo.com
stage.sims.paranoids.ouroath.com
ui.ckms.ouroath.com
uc-impres-pub-ne1.telecom.ouroath.com
ucce-impres-pub-ne1-ms.telecom.ouroath.com
stage.sims.paranoids.ouroath.com
stage-api.tls.ouroath.com
uc-vcs-e2-ne1.telecom.ouroath.com
stage.sims.paranoids.ouroath.com
lookerhr.ouroath.com
mpki.ouroath.com
stage-api.tls.ouroath.com
chat.ouroath.com
ap-southeast-1.plu.ouroath.com
stage.sims.paranoids.ouroath.com
stage.sims.paranoids.ouroath.com
stage.sims.paranoids.ouroath.com
tls.ouroath.com
stage.sims.paranoids.ouroath.com
tls.ouroath.com
ucce-vthales2-gq1.telecom.ouroath.com
snv-alc1.ad.ouroath.com
es-cc1-01.lab.visibility.ouroath.com
splunk.jira.ouroath.com
src4.yahoo.com
dash.netsec.ouroath.com
*.autos.yahoo.com
stage.sims.paranoids.ouroath.com
sims.paranoids.ouroath.com
cosmo.ouroath.com
stage-api.tls.ouroath.com
checkmarx.ouroath.com
tls.ouroath.com
ui.ckms.ouroath.com
stage.sims.paranoids.ouroath.com
src3.yahoo.com
src4.yahoo.com
stage.sims.paranoids.ouroath.com
src4.yahoo.com
sandbox.signaturestore.ouroath.com
ecp.ouroath.com
stage.sims.paranoids.ouroath.com
*.countermeasures.paranoids.ouroath.com
erpcon.fin.ouroath.com
stage.sims.paranoids.ouroath.com
tls.ouroath.com
stage.sims.paranoids.ouroath.com
stage.tls.ouroath.com
*.uviz.paranoids.ouroath.com
om-dev.oath.com
ne1-epms2.ad.ouroath.com
stage.sims.paranoids.ouroath.com
*.autos.yahoo.com
dev.funcapi.ckms.ouroath.com
mmgmt.vzbuilders.com
stage.sims.paranoids.ouroath.com
stage.sims.paranoids.ouroath.com
stage.sims.paranoids.ouroath.com
ucce-vrs1-em.ad.ouroath.com
stage.kek.ckms.ouroath.com
rpc.alpo.mail.aol.com
rootca.uat.ouroath.com
*.media.yahoo.com
src4.yahoo.com
stage-api.tls.ouroath.com
src3.yahoo.com
src3.yahoo.com
mstrprod.fin.ouroath.com
stage.sims.paranoids.ouroath.com
ucce-cvp1a-gq1.ad.ouroath.com
yho.com
stage.sims.paranoids.ouroath.com
*.sandbox.dh.ouroath.com
stage.tls.ouroath.com
uc-vcs-e6-ne1.telecom.ouroath.com
stage.sims.paranoids.ouroath.com
*.securonix-poc.paranoids.ouroath.com
sims.paranoids.ouroath.com
stage.sims.paranoids.ouroath.com
api.tls.ouroath.com
vanity.jiveon.com
stage.sims.paranoids.ouroath.com
ucce-vsts1-em.ad.ouroath.com
ucce-rogr-a-gq1.ad.ouroath.com
src4.yahoo.com
src1.yahoo.com
src1.yahoo.com
src1.yahoo.com
*.autos.yahoo.com
funcaws.dek.ckms.ouroath.com
src4.yahoo.com
tls.ouroath.com
vmaas.cloud.mec.vip.gq1.yahoo.com
stage.sims.paranoids.ouroath.com
src4.yahoo.com
erpdbg.fin.ouroath.com
docker.sj.poc.mec.ouroath.com
ecpapi.ouroath.com
launchcalendar.ouroath.com
src3.yahoo.com
stage.sims.paranoids.ouroath.com
ui.ckms.ouroath.com
Certificate
The complete raw certificate details for mpki.ouroath.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgIQDEesh6LuI/2dRC9RV2GtATANBgkqhkiG9w0BAQsFADBw MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS8wLQYDVQQDEyZEaWdpQ2VydCBTSEEyIEhpZ2ggQXNz dXJhbmNlIFNlcnZlciBDQTAeFw0xNzExMDkwMDAwMDBaFw0xODA1MDgxMjAwMDBa MF8xCzAJBgNVBAYTAlVTMQswCQYDVQQIEwJDQTESMBAGA1UEBxMJU3Vubnl2YWxl MRQwEgYDVQQKDAtZYWhvbyEgSW5jLjEZMBcGA1UEAxMQbXBraS5vdXJvYXRoLmNv bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALR7kF1IwPBS7lcUpUx6 WZy94XLouYh+YXBypLAtI2/r1hXNO+MTmNxL7/zXaeh2z6ocjGAkMnBKtKC6XArk Pidw5lz/C/rLRqbMm/s3VVfUNT2x+b4WSuf4MvG7ojyAZBl0r4CKkTiTduQkMk7v JMaCBfUZKSgELMg+0bK8Wf17ln+7zR7xjzxP8QLfOUDZrJL3Dvk8EiKt1mgTBe2E Ke/WRqF2wKxseycWy+8BLwI7oRL0hcwM/r28kGouGUKPqM9PZx40LItUKJE2Wt3w Ci/fzbBCaYSg+8rzfegKmqTwkAdlWXKJULyrNdqQ5bqXInrNCYpc2y8Zn2rAmMGL zAECAwEAAaOCAf4wggH6MB8GA1UdIwQYMBaAFFFo/5CvAgd1PMzZZWRiohK4WXI7 MB0GA1UdDgQWBBR7ih8frY7AHtBbYPByrHdpxnIkQjAbBgNVHREEFDASghBtcGtp Lm91cm9hdGguY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwdQYDVR0fBG4wbDA0oDKgMIYuaHR0cDovL2NybDMuZGlnaWNl cnQuY29tL3NoYTItaGEtc2VydmVyLWc2LmNybDA0oDKgMIYuaHR0cDovL2NybDQu ZGlnaWNlcnQuY29tL3NoYTItaGEtc2VydmVyLWc2LmNybDBMBgNVHSAERTBDMDcG CWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5j b20vQ1BTMAgGBmeBDAECAjCBgwYIKwYBBQUHAQEEdzB1MCQGCCsGAQUFBzABhhho dHRwOi8vb2NzcC5kaWdpY2VydC5jb20wTQYIKwYBBQUHMAKGQWh0dHA6Ly9jYWNl cnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJIaWdoQXNzdXJhbmNlU2VydmVy Q0EuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZI hvcNAQELBQADggEBAFV4PKWTA9I3mvbkRh4axuI93kpZ+W9veRabF5yajbOJGubl 9Lb4fA7a64x0GXCg3KVRYIDXDdDmDlzKBZgdUZOYXSB3MKYaXdXH/e70uMvhNAKM 35m/t3HF0k4Z72cqIKdEUmZkjjdRvtdGFnq9HV8UoaHVGJR/flg9lsREUQGDXMlr usbC4xlRxT0RYGkDdASZMhFJ0Y5CS4qXRAznF2q1qPg5e8pkgr3tLip+Hqod6W0K 1xF5oi+oSImrVpWYO+kWAsDAaBhezNUb/7Bc7Msw1ZECj3P2gMiQ8T6Jur98XRow C2MIaYhB3Uy01xAkz4lugppMJyROd/c651t6C8E= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHuQXUjA8FLuVxSlTHpZ nL3hcui5iH5hcHKksC0jb+vWFc074xOY3Evv/Ndp6HbPqhyMYCQycEq0oLpcCuQ+ J3DmXP8L+stGpsyb+zdVV9Q1PbH5vhZK5/gy8buiPIBkGXSvgIqROJN25CQyTu8k xoIF9RkpKAQsyD7RsrxZ/XuWf7vNHvGPPE/xAt85QNmskvcO+TwSIq3WaBMF7YQp 79ZGoXbArGx7JxbL7wEvAjuhEvSFzAz+vbyQai4ZQo+oz09nHjQsi1QokTZa3fAK L9/NsEJphKD7yvN96AqapPCQB2VZcolQvKs12pDlupcies0JilzbLxmfasCYwYvM AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16322888347053196646781412570262777089 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 High Assurance Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-08 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sunnyvale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Yahoo! Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mpki.ouroath.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22783826535474366746894583849388535456589542528659062251542446036747951866146927460861707309675634193722328885849740385448592624038711862804352143616155331532487345008682741201542855670720625811224724339231403824957406714259136717251020323801775716472645619505216113431174583133099009140609212946392656233729003097562514939288190722505428035198254329680186750938048163485795387749413720280798279458122757494712140704374394018940185507392799679219594183950761442335350454153190655325832103603776685307282712309926052582388752198111045405005655587252426414868990996215454031566635559556265828013644655844314393262935041 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5168ff90af0207753cccd9656462a212b859723b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7b8a1f1fad8ec01ed05b60f072ac7769c6722442 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mpki.ouroath.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ha-server-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0055783ca59303d2379af6e4461e1ac6e23dde4a59f96f6f79169b179c9a8db3891ae6e5f4b6f87c0edaeb8c741970a0dca5516080d70dd0e60e5cca05981d5193985d207730a61a5dd5c7fdeef4b8cbe134028cdf99bfb771c5d24e19ef672a20a7445266648e3751bed746167abd1d5f14a1a1d518947f7e583d96c4445101835cc96bbac6c2e31951c53d11606903740499321149d18e424b8a97440ce7176ab5a8f8397bca6482bded2e2a7e1eaa1de96d0ad71179a22fa84889ab5695983be91602c0c068185eccd51bffb05ceccb30d591028f73f680c890f13e89babf7c5d1a300b6308698841dd4cb4d71024cf896e829a4c27244e77f73ae75b7a0bc1