propertyinformationportal.nyc.gov
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 0c:74:f5:00:3b:0f:9f:80:1e:81:be:b3:78:4c:c1:55 was issued on by DigiCert, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=propertyinformationportal.nyc.gov
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:74:f5:00:3b:0f:9f:80:1e:81:be:b3:78:4c:c1:55Serial Number (int): 16558011593640427825414933346073231701
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: ac:39:0b:a6:26:1d:9e:ea:7c:49:b1:d1:f1:95:04:29:47:a2:c0:92
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): 5d:58:ee:e4:03:9d:3c:0b:51:b1:53:99:84:40:a5:13:05:a9:27:56
Fingerprint (sha256): 00:fe:75:84:79:ab:7c:9b:71:b5:00:06:c5:d7:bc:06:f7:ac:57:8b:a3:3d:de:2c:bb:82:71:03:f2:ee:65:b7
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate propertyinformationportal.nyc.gov
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for propertyinformationportal.nyc.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
propertyinformationportal.nyc.gov
Other certificates including the domain name nyc.gov
(limited to 100 certificates)
a806-housingconnectAPI.nyc.gov
a858-anltw.nyc.gov
a069-ra1.nyc.gov
webapps.nyc.gov
a127-jobs.nyc.gov
a827-mwbe.nyc.gov
propertyinformationportal.nyc.gov
legistar.council.nyc.gov
mspava-vcsxcl01.nyc.gov
*.nyc.gov
foodhelp-stg.nyc.gov
fisa.ctxns.nyc.gov
zap.planning.nyc.gov
A030-goat.nyc.gov
5685570869133312-fe1.pantheonsite.io
a858-nycnotify.nyc.gov
zoningresolution.planning.nyc.gov
psc-esa1.nyc.gov
www.cityclerk.nyc.gov
a860-openrecords.nyc.gov
manhattanbp.nyc.gov
a127-HRFTS.NYC.GOV
a826-depvpn.nyc.gov
a827-plownyc.nyc.gov
enterpriseenrollment.dhs.nyc.gov
A127-uag.nyc.gov
a806-housingconnect.nyc.gov
regional-viz.planninglabs.nyc
zoningresolution.planning.nyc.gov
migration.planning.nyc.gov
a073-ils-web.nyc.gov
Apply.council.nyc.gov
a827-bladerunner.nyc.gov
www.nycbers.org
laws.council.nyc.gov
a816-certifytrn.nyc.gov
enterpriseenrollment.tlc.nyc.gov
a002-oomwap01.nyc.gov
a002-oom03.nyc.gov
a858-nycnotify.nyc.gov
a860-gpp.nyc.gov
Portal.dss.nyc.gov
a810-lmpaca.nyc.gov
a816-evitaltrn.nyc.gov
a858-aaf.nyc.gov
skypeaccess.dep.nyc.gov
enterpriseenrollment.cto.nyc.gov
5685570869133312-fe1.pantheonsite.io
www1.nyc.gov
laws.council.nyc.gov
nyc-factfinder.planninglabs.nyc
law.ctxns.nyc.gov
laws.council.nyc.gov
a0333-passportpublic.nyc.gov
gis.nyc.gov
a069-cmg.nyc.gov
on.nyc.gov
a826-web01.nyc.gov
a127-essdr.nyc.gov
transit-survey.council.nyc.gov
iwomm.council.nyc.gov
nycpss.nyc.gov
transit-survey.council.nyc.gov
lotselector.planninglabs.nyc
comptroller.nyc.gov
enterpriseenrollment.dcas.nyc.gov
a856-ptdb.nyc.gov
comptroller.nyc.gov
otcmail.nyc.gov
mentalhealthforall-stg.nyc.gov
a801-sbscssp.nyc.gov
a827-bladerunner.nyc.gov
a858-anltw.nyc.gov
membertimesheet.council.nyc.gov
a127-pip.nyc.gov
depwebmail.nyc.gov
comptroller.nyc.gov
streets.planning.nyc.gov
www2.nyc.gov
*.nyc.gov
a127-ess.nyc.gov
schools.nyc.gov
on.nyc.gov
a826-ocsedge01.nyc.gov
mtpralpwvcse2.nyc.gov
migration.planning.nyc.gov
a841-dotwebpcard01.nyc.gov
mail.council.nyc.gov
psacmeetingadmin.nyc.gov
a127-jobs.nyc.gov
otcmail.nyc.gov
a127-hrp.nyc.gov
maps5.nyc.gov
a826-umax-accssrs.dep.nyc.gov
dotwebmail.nyc.gov
doitt.ctxns.nyc.gov
a827-dsnyftp.nyc.gov
a836-pts-access.nyc.gov
A127-uag.nyc.gov
webapps.nyc.gov
a858-anltw.nyc.gov
a069-ra1.nyc.gov
webapps.nyc.gov
a127-jobs.nyc.gov
a827-mwbe.nyc.gov
propertyinformationportal.nyc.gov
legistar.council.nyc.gov
mspava-vcsxcl01.nyc.gov
*.nyc.gov
foodhelp-stg.nyc.gov
fisa.ctxns.nyc.gov
zap.planning.nyc.gov
A030-goat.nyc.gov
5685570869133312-fe1.pantheonsite.io
a858-nycnotify.nyc.gov
zoningresolution.planning.nyc.gov
psc-esa1.nyc.gov
www.cityclerk.nyc.gov
a860-openrecords.nyc.gov
manhattanbp.nyc.gov
a127-HRFTS.NYC.GOV
a826-depvpn.nyc.gov
a827-plownyc.nyc.gov
enterpriseenrollment.dhs.nyc.gov
A127-uag.nyc.gov
a806-housingconnect.nyc.gov
regional-viz.planninglabs.nyc
zoningresolution.planning.nyc.gov
migration.planning.nyc.gov
a073-ils-web.nyc.gov
Apply.council.nyc.gov
a827-bladerunner.nyc.gov
www.nycbers.org
laws.council.nyc.gov
a816-certifytrn.nyc.gov
enterpriseenrollment.tlc.nyc.gov
a002-oomwap01.nyc.gov
a002-oom03.nyc.gov
a858-nycnotify.nyc.gov
a860-gpp.nyc.gov
Portal.dss.nyc.gov
a810-lmpaca.nyc.gov
a816-evitaltrn.nyc.gov
a858-aaf.nyc.gov
skypeaccess.dep.nyc.gov
enterpriseenrollment.cto.nyc.gov
5685570869133312-fe1.pantheonsite.io
www1.nyc.gov
laws.council.nyc.gov
nyc-factfinder.planninglabs.nyc
law.ctxns.nyc.gov
laws.council.nyc.gov
a0333-passportpublic.nyc.gov
gis.nyc.gov
a069-cmg.nyc.gov
on.nyc.gov
a826-web01.nyc.gov
a127-essdr.nyc.gov
transit-survey.council.nyc.gov
iwomm.council.nyc.gov
nycpss.nyc.gov
transit-survey.council.nyc.gov
lotselector.planninglabs.nyc
comptroller.nyc.gov
enterpriseenrollment.dcas.nyc.gov
a856-ptdb.nyc.gov
comptroller.nyc.gov
otcmail.nyc.gov
mentalhealthforall-stg.nyc.gov
a801-sbscssp.nyc.gov
a827-bladerunner.nyc.gov
a858-anltw.nyc.gov
membertimesheet.council.nyc.gov
a127-pip.nyc.gov
depwebmail.nyc.gov
comptroller.nyc.gov
streets.planning.nyc.gov
www2.nyc.gov
*.nyc.gov
a127-ess.nyc.gov
schools.nyc.gov
on.nyc.gov
a826-ocsedge01.nyc.gov
mtpralpwvcse2.nyc.gov
migration.planning.nyc.gov
a841-dotwebpcard01.nyc.gov
mail.council.nyc.gov
psacmeetingadmin.nyc.gov
a127-jobs.nyc.gov
otcmail.nyc.gov
a127-hrp.nyc.gov
maps5.nyc.gov
a826-umax-accssrs.dep.nyc.gov
dotwebmail.nyc.gov
doitt.ctxns.nyc.gov
a827-dsnyftp.nyc.gov
a836-pts-access.nyc.gov
A127-uag.nyc.gov
webapps.nyc.gov
Certificate
The complete raw certificate details for propertyinformationportal.nyc.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHsjCCBZqgAwIBAgIQDHT1ADsPn4Aegb6zeEzBVTANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjMxMjA1MDAwMDAwWhcNMjQwNjA1MjM1OTU5WjAsMSowKAYDVQQDEyFwcm9wZXJ0 eWluZm9ybWF0aW9ucG9ydGFsLm55Yy5nb3YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWhoAKU3/EzdIKscFiaK1zyoP6PVOBW8deBthIpfckEsXHlN9p 4ostt9oog7xQd2MzJXBcKKQImt39I0H6F2mFFPnlqxiLcddNji94icerz7Tf6bKD hWX0wkJzHE4te/ocMZaooJF437HIy0gxIaH2PCqU9N0ZNGPcYafUDAMczeLOj69Z q0iYMnyc0yXWg74F+UlOjdDN227J+j0y4GMVbgcWW2dpD/eVb/Q+5d7liBsg4P8D wNmcDNGCoM9B4x116wEVg6P1zr/lpR2J5+NFbwLxhRnQaDc7IeXRlx5yqw6Qoqch fZZmbt+suXlfdXB2JQrRap+0bvgL+vH1ATvhAgMBAAGjggOeMIIDmjAfBgNVHSME GDAWgBSltNbrNsTna6bfxGQLASogBLhmIzAdBgNVHQ4EFgQUrDkLpiYdnup8SbHR 8ZUEKUeiwJIwLAYDVR0RBCUwI4IhcHJvcGVydHlpbmZvcm1hdGlvbnBvcnRhbC5u eWMuZ292MD4GA1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGfBgNVHR8EgZcwgZQwSKBGoESGQmh0dHA6 Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEy NTYyMDIyQ0ExLmNybDBIoEagRIZCaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0dl b1RydXN0R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEuY3JsMIGHBggrBgEF BQcBAQR7MHkwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBR BggrBgEFBQcwAoZFaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0dlb1RydXN0 R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEuY3J0MAwGA1UdEwEB/wQCMAAw ggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8 vOzew1FIWUZxH7WbAAABjDwnoMcAAAQDAEgwRgIhAOKb/kUxMTTbZQEJiNsA9SyL q9p42pIf+KXaeAUQK/jsAiEAvjp0kpWDUow6+TJhVMcpyXomXKgUjFtOsv04rx1w FPQAdQBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYw8J6CEAAAE AwBGMEQCIEL/XAp0+BAU73TdGvwZbasvvV/z/d/K64kZby9nZBhbAiAB7eBmgh0d vj7UwQqxiY9Qz7Ky8mppGPP8Kw+nAqLiIAB3ANq2v2s/tbYin5vCu1xr6HCRcWy7 UYSFNL2kPTBI1/urAAABjDwnoHoAAAQDAEgwRgIhAJtrAt4U4e05ncRw5YXQ2ewB JeylgZyzz9ta5GiJ77ZvAiEA5uCYHYIwl87AXGNyTgzyCPBANLu64kD0zT7ag6I9 C84wDQYJKoZIhvcNAQELBQADggIBAARFAzxtg5Si0JvhZYTKQ+ZE0wGT+1JLDK7Y YVRznLvULb3fwgRyzz9pPnaAkTKokxEdA2x0BfQoiBBJQFUn/XszLZRErFxnBbW1 /70NTh8vVu/31OcmplNzueDKAYy+i9NCaRs8f2GtwLD6Ri9LE9HJTbP/noyPDdhX NXEvH7OYXzBZJSrgtynrvl0YLiw+P2VRQ13kLL+Ng7mIzB7FNRNBniU4o0SiqKhR NzPYW7ohUZWpHkP6tber8O+gaE7UPiDtrtw187yioU7vLkzXS+2KvvlkdDBKC3BF TOKznFR8Fe9gmjZ0RVtuVJD4fGXkNMz4r7ksRONuT+NxRLeREygxBJz5Db8QHNz8 EDhBNecsrpIsPgo4f6h5UJ3V0cyIiF4HJ16A40qvd3/dLrJa5dwOyjMwn6vEBOzu VNx0Ds6dOwY2LVM11RkqUKbauoWP2w2UbQYBRmQAR15Lfq31OXs+O5C6GvGPv2u8 iwm0aho1yqaO3XeKHDWnFA5SzDVZeHbxmnMk0MeT+SnPFlEmFR3VRm1Ase9j3o63 W1o7+T+cDC1cmi2gElCdOQ9gQKEnJWAZe6CWEfSDRU6riad4IaemddFZVcKe69c/ KKEK4rShkBNzc+2KVIViHhf116PW+nhW9RrlVyPe6NksWzTdeY/YLcsNMot8kd/k 90xFC/7u -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1oaAClN/xM3SCrHBYmit c8qD+j1TgVvHXgbYSKX3JBLFx5TfaeKLLbfaKIO8UHdjMyVwXCikCJrd/SNB+hdp hRT55asYi3HXTY4veInHq8+03+myg4Vl9MJCcxxOLXv6HDGWqKCReN+xyMtIMSGh 9jwqlPTdGTRj3GGn1AwDHM3izo+vWatImDJ8nNMl1oO+BflJTo3Qzdtuyfo9MuBj FW4HFltnaQ/3lW/0PuXe5YgbIOD/A8DZnAzRgqDPQeMddesBFYOj9c6/5aUdiefj RW8C8YUZ0Gg3OyHl0ZcecqsOkKKnIX2WZm7frLl5X3VwdiUK0WqftG74C/rx9QE7 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16558011593640427825414933346073231701 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'propertyinformationportal.nyc.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27081321762379714179758827697880519990876623435447091267674785463336052219566172580555351661630211055047176011282699935477619827229449411197351390779663828468772379310166268907458312892665500772907371820427723967428534121670331678694189859799507989653131679124840831675024158643213907396242835189310058029893273926368768081846487552312916312756045911431350478372616618429125983937704509014380118041159068138819263110607385830067056645926009101005611284880084172826357716257791593892096090456916201849691266699135155623802190019658326039406901704950794120559169470837904841417594457333914963224542277092365214754618337 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ac390ba6261d9eea7c49b1d1f195042947a2c092 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (37 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'propertyinformationportal.nyc.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 000445033c6d8394a2d09be16584ca43e644d30193fb524b0caed86154739cbbd42dbddfc20472cf3f693e76809132a893111d036c7405f428881049405527fd7b332d9444ac5c6705b5b5ffbd0d4e1f2f56eff7d4e726a65373b9e0ca018cbe8bd342691b3c7f61adc0b0fa462f4b13d1c94db3ff9e8c8f0dd85735712f1fb3985f3059252ae0b729ebbe5d182e2c3e3f6551435de42cbf8d83b988cc1ec53513419e2538a344a2a8a8513733d85bba215195a91e43fab5b7abf0efa0684ed43e20edaedc35f3bca2a14eef2e4cd74bed8abef96474304a0b70454ce2b39c547c15ef609a3674455b6e5490f87c65e434ccf8afb92c44e36e4fe37144b791132831049cf90dbf101cdcfc10384135e72cae922c3e0a387fa879509dd5d1cc88885e07275e80e34aaf777fdd2eb25ae5dc0eca33309fabc404ecee54dc740ece9d3b06362d5335d5192a50a6daba858fdb0d946d0601466400475e4b7eadf5397b3e3b90ba1af18fbf6bbc8b09b46a1a35caa68edd778a1c35a7140e52cc35597876f19a7324d0c793f929cf165126151dd5466d40b1ef63de8eb75b5a3bf93f9c0c2d5c9a2da012509d390f6040a1272560197ba09611f483454eab89a77821a7a675d15955c29eebd73f28a10ae2b4a190137373ed8a5485621e17f5d7a3d6fa7856f51ae55723dee8d92c5b34dd798fd82dcb0d328b7c91dfe4f74c450bfeee