gac-amc-sso-au-cate.canada.ca
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 01:22:e9:6b:39:f1:a8:f3:49:1b:dc:e6:68:b7:81:40 was issued on by DigiCert, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=gac-amc-sso-au-cate.canada.ca
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:22:e9:6b:39:f1:a8:f3:49:1b:dc:e6:68:b7:81:40Serial Number (int): 1510500385758934405506519785757180224
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 84:99:18:e8:bf:83:28:e0:12:ac:86:d0:ba:97:8b:be:94:ce:de:e8
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): d7:3b:7e:0a:64:5f:bc:15:e0:b3:c3:2f:8a:e0:7d:cd:61:d7:15:77
Fingerprint (sha256): 00:f9:ef:14:af:e4:c6:45:7c:10:57:42:5c:1f:d4:e0:54:50:21:9b:b2:cf:93:c3:22:b4:88:a2:21:7a:26:ea
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate gac-amc-sso-au-cate.canada.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gac-amc-sso-au-cate.canada.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gac-amc-sso-au-cate.canada.ca
Other certificates including the domain name canada.ca
(limited to 100 certificates)
*.dev.tc.canada.ca
avis-confidentialite.snc.alpha.canada.ca
srv129.services.gc.ca
gac-amc-sso-au-cate.canada.ca
explorer-marche-travail.service.canada.ca
impact.canada.ca
reports.young-canada-works.canada.ca
canadabuys.canada.ca
sni.cloudflaressl.com
cbapps-viya4-dev.service.cloud-nuage.canada.ca
api.aro-nonprd.api-nonprod.service.cloud-nuage.canada.ca
ceres-seres-api-test1.test.cbsa-asfc.cloud-nuage.canada.ca
dev.dam.explore-labour-market.service.canada.ca
*.Canada.ca
energy-information.canada.ca
ide.dev.service.canada.ca
nvmipiis-ihs-qa.g.phac.cloud-nuage.canada.ca
mygcpay-dev.azure.tpsgc-pwgsc.cloud-nuage.canada.ca
canada.ca
feedback-by-page.tbs.alpha.canada.ca
blog.canada.ca
cicp-pcid.dev.cbsa-asfc.cloud-nuage.canada.ca
fs-dev-gcfm.canada.ca
dev-estma-lmtse.canada.ca
numerique.canada.ca
veterans-service-card.canada.ca
health-infobase.canada.ca
veterans-service-card.canada.ca
code.sp.ssc.alpha.canada.ca
uat.ised-isde.canada.ca
x2h-dev.gcfm.canada.ca
*.apps.aro-nonprd.api-nonprod.service.cloud-nuage.canada.ca
ircc-services-dev.canada.ca
esdc-consultations.canada.ca
inspection.gc.ca
*.library-archives.canada.ca
dec.canada.ca
helloweb.ssc-spc.dl-consol.com-dev.m.ent.cloud-nuage.canada.ca
api.notification.alpha.canada.ca
cdts.service.canada.ca
console.dev.openshift.ised-isde.canada.ca
cic.gc.ca
sjc.jeunesse.service.canada.ca
marine-geo.canada.ca
veterans-service-card.canada.ca
XMPPcluster01.video.gc.ca
cat.fsl-bsf.scitech.gc.ca
integration-gcaccounts.canada.ca
srv130.services.gc.ca
design.alpha.canada.ca
www1.canada.ca
covid-19inventory.tbs.alpha.canada.ca
wayfinding.tbs.alpha.canada.ca
jeunesse-canada-travail.canada.ca
beta.canada.ca
sr.canada.ca
ck.ised-isde.canada.ca
SSC-VCSE-15.video.gc.ca
major-projects.canada.ca
do-rb-dev.dev.cbsa-asfc.cloud-nuage.canada.ca
fakecuram.dev.ps-sp.esdc-edsc.canada.ca
code.open.canada.ca
youth.service.cloud-nuage.canada.ca
dev.explore-labour-market.service.canada.ca
canadaservicecorps-corpsdeserviceducanada.canada.ca
sh.api.dev.portfolio1.n.g.phac.cloud-nuage.canada.ca
cfc-swc.gc.ca
nrcan-funding-financement-rncan.canada.ca
numerique.canada.ca
impact.canada.ca
api.explore-labour-market.service.canada.ca
video2.servicecanada.gc.ca
api.osdp-cumulative-effects-stage.canada.ca
preprod-app.neics-nscei.canada.ca
careers-carrieres.cbsa-asfc.cloud-nuage.canada.ca
ised-isde.canada.ca
statistics.alpha.canada.ca
srv130.services.gc.ca
snic77fgl.wpc.edgecastcdn.net
digital.canada.ca
science-libraries.canada.ca
digital.canada.ca
conception.canada.ca
integration-gcaccounts.canada.ca
ceres-seres-api-dev1.dev.cbsa-asfc.cloud-nuage.canada.ca
api.ocp.dev.ised-isde.canada.ca
environmental-maps.canada.ca
jeunesse-canada-travail.canada.ca
devservices.gcfm.canada.ca
dev.ised-isde.canada.ca
ised-isde.canada.ca
sni18924gl.wpc.edgecastcdn.net
*.cbsa-asfc.cloud-nuage.canada.ca
demoapp.mvpdemo.bd-demo.com-dev.m.ent.cloud-nuage.canada.ca
beta.canada.ca
io.canada.ca
pwd.gcfm.canada.ca
pop.ctst.email-courriel.canada.ca
api.explorer-marche-travail.service.canada.ca
rp2-oidc.id.alpha.canada.ca
avis-confidentialite.snc.alpha.canada.ca
srv129.services.gc.ca
gac-amc-sso-au-cate.canada.ca
explorer-marche-travail.service.canada.ca
impact.canada.ca
reports.young-canada-works.canada.ca
canadabuys.canada.ca
sni.cloudflaressl.com
cbapps-viya4-dev.service.cloud-nuage.canada.ca
api.aro-nonprd.api-nonprod.service.cloud-nuage.canada.ca
ceres-seres-api-test1.test.cbsa-asfc.cloud-nuage.canada.ca
dev.dam.explore-labour-market.service.canada.ca
*.Canada.ca
energy-information.canada.ca
ide.dev.service.canada.ca
nvmipiis-ihs-qa.g.phac.cloud-nuage.canada.ca
mygcpay-dev.azure.tpsgc-pwgsc.cloud-nuage.canada.ca
canada.ca
feedback-by-page.tbs.alpha.canada.ca
blog.canada.ca
cicp-pcid.dev.cbsa-asfc.cloud-nuage.canada.ca
fs-dev-gcfm.canada.ca
dev-estma-lmtse.canada.ca
numerique.canada.ca
veterans-service-card.canada.ca
health-infobase.canada.ca
veterans-service-card.canada.ca
code.sp.ssc.alpha.canada.ca
uat.ised-isde.canada.ca
x2h-dev.gcfm.canada.ca
*.apps.aro-nonprd.api-nonprod.service.cloud-nuage.canada.ca
ircc-services-dev.canada.ca
esdc-consultations.canada.ca
inspection.gc.ca
*.library-archives.canada.ca
dec.canada.ca
helloweb.ssc-spc.dl-consol.com-dev.m.ent.cloud-nuage.canada.ca
api.notification.alpha.canada.ca
cdts.service.canada.ca
console.dev.openshift.ised-isde.canada.ca
cic.gc.ca
sjc.jeunesse.service.canada.ca
marine-geo.canada.ca
veterans-service-card.canada.ca
XMPPcluster01.video.gc.ca
cat.fsl-bsf.scitech.gc.ca
integration-gcaccounts.canada.ca
srv130.services.gc.ca
design.alpha.canada.ca
www1.canada.ca
covid-19inventory.tbs.alpha.canada.ca
wayfinding.tbs.alpha.canada.ca
jeunesse-canada-travail.canada.ca
beta.canada.ca
sr.canada.ca
ck.ised-isde.canada.ca
SSC-VCSE-15.video.gc.ca
major-projects.canada.ca
do-rb-dev.dev.cbsa-asfc.cloud-nuage.canada.ca
fakecuram.dev.ps-sp.esdc-edsc.canada.ca
code.open.canada.ca
youth.service.cloud-nuage.canada.ca
dev.explore-labour-market.service.canada.ca
canadaservicecorps-corpsdeserviceducanada.canada.ca
sh.api.dev.portfolio1.n.g.phac.cloud-nuage.canada.ca
cfc-swc.gc.ca
nrcan-funding-financement-rncan.canada.ca
numerique.canada.ca
impact.canada.ca
api.explore-labour-market.service.canada.ca
video2.servicecanada.gc.ca
api.osdp-cumulative-effects-stage.canada.ca
preprod-app.neics-nscei.canada.ca
careers-carrieres.cbsa-asfc.cloud-nuage.canada.ca
ised-isde.canada.ca
statistics.alpha.canada.ca
srv130.services.gc.ca
snic77fgl.wpc.edgecastcdn.net
digital.canada.ca
science-libraries.canada.ca
digital.canada.ca
conception.canada.ca
integration-gcaccounts.canada.ca
ceres-seres-api-dev1.dev.cbsa-asfc.cloud-nuage.canada.ca
api.ocp.dev.ised-isde.canada.ca
environmental-maps.canada.ca
jeunesse-canada-travail.canada.ca
devservices.gcfm.canada.ca
dev.ised-isde.canada.ca
ised-isde.canada.ca
sni18924gl.wpc.edgecastcdn.net
*.cbsa-asfc.cloud-nuage.canada.ca
demoapp.mvpdemo.bd-demo.com-dev.m.ent.cloud-nuage.canada.ca
beta.canada.ca
io.canada.ca
pwd.gcfm.canada.ca
pop.ctst.email-courriel.canada.ca
api.explorer-marche-travail.service.canada.ca
rp2-oidc.id.alpha.canada.ca
Certificate
The complete raw certificate details for gac-amc-sso-au-cate.canada.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHpzCCBY+gAwIBAgIQASLpaznxqPNJG9zmaLeBQDANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjMwODE0MDAwMDAwWhcNMjQwMjEwMjM1OTU5WjAoMSYwJAYDVQQDEx1nYWMtYW1j LXNzby1hdS1jYXRlLmNhbmFkYS5jYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAO7qqB1rdHMUwIv/3cXlpKrDy6jsXy8C1SWu6lFA+wB7MUXcQbZ33VLK GwYljCYmDxmwzlgDFMNxBSYbApgjUYe94UuztRmmqJEbdQPW4vGkExaIjDBnFATg eItitjN24ZNS6NpWrOkNWlGo2Ifhew+HKQKtnhiT3gphit5S572bFNGyml+p/K1k d+gHW23f1Xgq1KvsXvaZ/7ilzex8/+1Ruty2gBZmhKXLTdL39vMN8B15Kdt2D7g2 ZNlax+9p7eGVxrwhJRD/giVsxBDYKsPLB5wiY5wQa8n0mVsDKtqxqyngxdQQq9xZ Ba8zn8X8pU+hXvHPt/5xi72xo7KjuoUCAwEAAaOCA5cwggOTMB8GA1UdIwQYMBaA FKW01us2xOdrpt/EZAsBKiAEuGYjMB0GA1UdDgQWBBSEmRjov4Mo4BKshtC6l4u+ lM7e6DAoBgNVHREEITAfgh1nYWMtYW1jLXNzby1hdS1jYXRlLmNhbmFkYS5jYTAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGf BgNVHR8EgZcwgZQwSKBGoESGQmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9HZW9U cnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNybDBIoEagRIZCaHR0 cDovL2NybDQuZGlnaWNlcnQuY29tL0dlb1RydXN0R2xvYmFsVExTUlNBNDA5NlNI QTI1NjIwMjJDQTEuY3JsMD4GA1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYBBQUH AgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzCBhwYIKwYBBQUHAQEEezB5 MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wUQYIKwYBBQUH MAKGRWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9HZW9UcnVzdEdsb2JhbFRM U1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNydDAJBgNVHRMEAjAAMIIBfwYKKwYBBAHW eQIEAgSCAW8EggFrAWkAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1 mwAAAYn2aMPeAAAEAwBHMEUCIQCzV49gZS/GndpW/VZroM8DgNKIbpD9BK3rEn9x rJdfQgIgZehsdylfCKviMw8KEFrXmwOtZeESWW90aYRKSb+JwssAdgBIsONr2qZH NA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYn2aMN8AAAEAwBHMEUCIQCwCfZc I4566Nf0QUSuBMkbhOSvM5TxDxpXLqSHOlj9bAIgYyEHlXvKqitrCqfJkfM9ONrH 4c87uMfxy37IAkgDAZkAdwDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7 qwAAAYn2aMNKAAAEAwBIMEYCIQDgLKCgBNqXMIuSNWNlsuykOUmb0CiqGIg5KN1k lAvpiAIhALYOd16aCTk66W9BFjbdWA09gT47aT8Q4IJVADdTL3x/MA0GCSqGSIb3 DQEBCwUAA4ICAQBHLh/bfsWs40x4aEmQtbKiZ+TfspJALnM/eJYFMKkerS8yhai0 C9CbUWA9lj2TgtdL4yU8JKktcm1ds6cybFuH4RLZ3waorfuzT051fqidy/w2dmI2 QYdXBADdZ8ia8hC3r8sI2JZrQhU/R8Eo97PmhoVtVdnGrRK3udTD2uVCK8UoStAL vPD93pAG/n27D0OVrZmg683YjVdmHFC91RSbCz+TAeSHK0UM4Ls5ap0bPdgzkC2b 3gl9YnYGagESEdf9bOs3sO8Hn4lO+qO2DJu/kI7YvitoQekjfezOSBrCaabQSidU sWT1fUsznvlCUscRl1h7U8kY9ijoHg07HT7gnTY8MVJtKCkkTUjVQ1X3pTP2h6A0 2rhlBh88/v76PPksggl51iP2xn9ZEoett2UhNheI0fkyDhYAli4MWKoR33ALz/qv s2/Lgbb1XKOzbdEV0Wopyjm2H3ZH04ay/Yv/Y/KaxTkKHkFYpGRZmGMAz6hXdIVD p6f8dzZyJoEe3gpbfZ9Khf3v/lVEYotDFJH7UuW9uxIuxqFzsxUe1M+bSrQitgfo UFf2x7cIWQs3tpZJC72g+9x7Op4Z5BvbEh1VwxheYmabpdlawbnnaE+FPOHpZwXd ZTiE4hdwZKF7kdg8eLV4mbnU5fHryScvXn5QL71Vd+Res/h/hQsnRR8Kew== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7uqoHWt0cxTAi//dxeWk qsPLqOxfLwLVJa7qUUD7AHsxRdxBtnfdUsobBiWMJiYPGbDOWAMUw3EFJhsCmCNR h73hS7O1GaaokRt1A9bi8aQTFoiMMGcUBOB4i2K2M3bhk1Lo2las6Q1aUajYh+F7 D4cpAq2eGJPeCmGK3lLnvZsU0bKaX6n8rWR36Adbbd/VeCrUq+xe9pn/uKXN7Hz/ 7VG63LaAFmaEpctN0vf28w3wHXkp23YPuDZk2VrH72nt4ZXGvCElEP+CJWzEENgq w8sHnCJjnBBryfSZWwMq2rGrKeDF1BCr3FkFrzOfxfylT6Fe8c+3/nGLvbGjsqO6 hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1510500385758934405506519785757180224 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-10 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gac-amc-sso-au-cate.canada.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30160430112856680218967890542406351551177833962317367461960244942332440208250601414461231872153006717158491893852943505116888565490621854970028228589364965798178379612102877752163313263197630201968745444703983177809497347905131458680144136886219728890001228870268381110956150491528875735209146064880529436395031552145401688781248727767499935847708833949458946327327019915406229151696745698482309920804986918958923232887745120101023649010077156314737405647239079987453980697374517705421123500264096655736981633321503755701249454887665599295373862584204740801508519516233671330342664221033133149376165671638818183428741 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 849918e8bf8328e012ac86d0ba978bbe94cedee8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (33 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gac-amc-sso-au-cate.canada.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 0169007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b00000189f668c3de0000040300473045022100b3578f60652fc69dda56fd566ba0cf0380d2886e90fd04adeb127f71ac975f42022065e86c77295f08abe2330f0a105ad79b03ad65e112596f7469844a49bf89c2cb00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d8847300000189f668c37c0000040300473045022100b009f65c238e7ae8d7f44144ae04c91b84e4af3394f10f1a572ea4873a58fd6c0220632107957bcaaa2b6b0aa7c991f33d38dac7e1cf3bb8c7f1cb7ec80248030199007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab00000189f668c34a0000040300483046022100e02ca0a004da97308b92356365b2eca439499bd028aa18883928dd64940be988022100b60e775e9a09393ae96f411636dd580d3d813e3b693f10e082550037532f7c7f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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