dev-personalcondtest-biz-live.cd.aksnp.azure.kp.org
- Kaiser Foundation Health Plan, Inc. -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number 37:c6:a9:80:23:5c:76:3d:b3:61:dd:52:68:cd:64:49 was issued on by Sectigo Limited.
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Kaiser Foundation Health Plan, Inc.
Organization:
Kaiser Foundation Health Plan, Inc.
State / Province:
California
Country: US
Country: US
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): 37:c6:a9:80:23:5c:76:3d:b3:61:dd:52:68:cd:64:49Serial Number (int): 74139052425531842734869131803101062217
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 21:dd:14:20:1b:ad:4a:c5:1a:f8:a1:51:6f:01:47:b5:ab:4b:59:9f
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): df:d7:7f:29:cb:c5:c3:74:e2:a0:0e:67:c4:80:a1:72:dd:64:c8:79
Fingerprint (sha256): 01:1a:00:65:48:eb:a9:40:68:f9:74:39:d4:05:55:1c:2b:2d:7e:16:c9:f7:9e:31:c2:74:23:50:d0:19:11:b7
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate dev-personalcondtest-biz-live.cd.aksnp.azure.kp.org
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dev-personalcondtest-biz-live.cd.aksnp.azure.kp.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dev-personalcondtest-biz-live.cd.aksnp.azure.kp.org
dev-personalcondtest-biz-test.cd.aksnp.azure.kp.org
drn-personalcondtest-biz-live.cd.aksnp.azure.kp.org
drn-personalcondtest-biz-test.cd.aksnp.azure.kp.org
perf-personalcondtest-biz-live.cd.aksnp.azure.kp.org
perf-personalcondtest-biz-test.cd.aksnp.azure.kp.org
qa-personalcondtest-biz-live.cd.aksnp.azure.kp.org
qa-personalcondtest-biz-test.cd.aksnp.azure.kp.org
uat-personalcondtest-biz-live.cd.aksnp.azure.kp.org
uat-personalcondtest-biz-test.cd.aksnp.azure.kp.org
dev-personalcondtest-biz-test.cd.aksnp.azure.kp.org
drn-personalcondtest-biz-live.cd.aksnp.azure.kp.org
drn-personalcondtest-biz-test.cd.aksnp.azure.kp.org
perf-personalcondtest-biz-live.cd.aksnp.azure.kp.org
perf-personalcondtest-biz-test.cd.aksnp.azure.kp.org
qa-personalcondtest-biz-live.cd.aksnp.azure.kp.org
qa-personalcondtest-biz-test.cd.aksnp.azure.kp.org
uat-personalcondtest-biz-live.cd.aksnp.azure.kp.org
uat-personalcondtest-biz-test.cd.aksnp.azure.kp.org
Other certificates including the domain name kp.org
(limited to 100 certificates)
idm-uat.kp.org
nplms.kp.org
national-implantregistries.kaiserpermanente.org
cl.kp.org
paultestcertone.venafi-qa.kp.org
kplocator.kp.org
cnndcsqlp040.nndc.kp.org
ive-crdc.kp.org
opscpos01102.appl.kp.org
prod-cryptoservicev2-biz-live.pmt.aksp.azure.kp.org
physiciancareers-ncal.kp.org
kpfaxwebdev.appl.kp.org
epiclink-oh.kp.org
cnndcappgrp080.ccst.kp.org
opncpos02447.appl.kp.org
kpwapdcdrvpn.appl.kp.org
opscpos01152.appl.kp.org
cnndcsmrp216.nndc.kp.org
finesse-amcimc2.appl.kp.org
digiphobcs.appl.kp.org
lzpoc.kp.org
tpmghr.kp.org
digitalproductroadmaptool.kp.org
cnqmsiarc.appl.kp.org
cscdcimppm01.crdc.kp.org
onelinkinfo.kp.org
fs010.kaiserpermanente.org
test1.uat.kp.org
venafipatchninecsorp.venafi-qa.kp.org
essearch.tro-splunk.kp.org
nps-dev.appl.kp.org
dev-personalcondtest-biz-live.cd.aksnp.azure.kp.org
residency.kp.org
ivvpexip.appl.kp.org
csbdc-vmax0247-emgmt1.bcdc.kp.org
myit-ws-xm.kp.org
kpgadatamart.ga.kp.org
finesse-amcimc1.appl.kp.org
tpmghcm-rpt.appl.kp.org
copdf-temp.ssdc.kp.org
afl-wa.appl.kp.org
czapwb8.crdc.kp.org
onelinktax.appl.kp.org
csc2cwn00000309.cloud.kp.org
staffprovider-qa-appl.wa.kp.org
kphccaboodlesdscprodsdmdr.appl.kp.org
czapwb7.crdc.kp.org
ncalethics.kp.org
myit-xm-uat.kp.org
ncalethics.kp.org
webforms-qa.appl.kp.org
nw-inventrix-prod.appl.kp.org
kpschedule.kp.org
appsdev.kp.org
hits-dev.appl.kp.org
test1csr.md.uat.kp.org
coats-uat.kp.org
api-services-pp.kp.org
scpmghcmrpt.kp.org
singledomain5.demo.kp.org
vcoltme21.ntwk.kp.org
downey-physicianpeersurvey.appl.kp.org
apps.kp.org
ndc1ctxnsa.nndc.kp.org
*.clm1-ezp.kp.org
*.sts.ext-svc-bmxp.appl.kp.org
dev-tasktracker-bff-live.memb.aksnp.azure.kp.org
*.kpvv.int-svc.bmxnp.appl.kp.org
mobileiron50.kp.org
mobileiron13.kp.org
wdcvnx5400-mgm3.wpoc.kp.org
econsult-dev.kp.org
ccsp.appl.kp.org
aaccesp.kp.org
prod-npl.eglb.kp.org
izadap8.ivdc.kp.org
securemail.kp.org
aperturepatchsixninegfgnj.venafi-qa.kp.org
velocity-preprod-intranet.crdc.kp.org
bookingservice-p1.kpaths.appl.kp.org
cnlenam3900303.len.ca.kp.org
riverside-isite.appl.kp.org
pdasweb-uat-tmp.appl.kp.org
prod-kpdfeaturestoreui-biz-live.daml.aksp.azure.kp.org
kpa-prod.kaiserpermanente.org
violenceprevention.kp.org
csc2cwn00000330.cloud.kp.org
hp-mbr-admn-crdc.kp.org
scpmghcmint.kp.org
onelinkppt-uat.appl.kp.org
downey-isitepics.appl.kp.org
csidcwvzp537.ccst.kp.org
aperturepatchsixninegjgfj.venafi-qa.kp.org
jira-aes.kp.org
jenkins.mobilepipeline.kp.org
vcarwce11.ntwk.kp.org
mars-dev.appl.kp.org
venafipatchninesyjfg.venafi-qa.kp.org
csc2cwp00000862.cloud.kp.org
aperturepatchsixninehwkvl.venafi-qa.kp.org
nplms.kp.org
national-implantregistries.kaiserpermanente.org
cl.kp.org
paultestcertone.venafi-qa.kp.org
kplocator.kp.org
cnndcsqlp040.nndc.kp.org
ive-crdc.kp.org
opscpos01102.appl.kp.org
prod-cryptoservicev2-biz-live.pmt.aksp.azure.kp.org
physiciancareers-ncal.kp.org
kpfaxwebdev.appl.kp.org
epiclink-oh.kp.org
cnndcappgrp080.ccst.kp.org
opncpos02447.appl.kp.org
kpwapdcdrvpn.appl.kp.org
opscpos01152.appl.kp.org
cnndcsmrp216.nndc.kp.org
finesse-amcimc2.appl.kp.org
digiphobcs.appl.kp.org
lzpoc.kp.org
tpmghr.kp.org
digitalproductroadmaptool.kp.org
cnqmsiarc.appl.kp.org
cscdcimppm01.crdc.kp.org
onelinkinfo.kp.org
fs010.kaiserpermanente.org
test1.uat.kp.org
venafipatchninecsorp.venafi-qa.kp.org
essearch.tro-splunk.kp.org
nps-dev.appl.kp.org
dev-personalcondtest-biz-live.cd.aksnp.azure.kp.org
residency.kp.org
ivvpexip.appl.kp.org
csbdc-vmax0247-emgmt1.bcdc.kp.org
myit-ws-xm.kp.org
kpgadatamart.ga.kp.org
finesse-amcimc1.appl.kp.org
tpmghcm-rpt.appl.kp.org
copdf-temp.ssdc.kp.org
afl-wa.appl.kp.org
czapwb8.crdc.kp.org
onelinktax.appl.kp.org
csc2cwn00000309.cloud.kp.org
staffprovider-qa-appl.wa.kp.org
kphccaboodlesdscprodsdmdr.appl.kp.org
czapwb7.crdc.kp.org
ncalethics.kp.org
myit-xm-uat.kp.org
ncalethics.kp.org
webforms-qa.appl.kp.org
nw-inventrix-prod.appl.kp.org
kpschedule.kp.org
appsdev.kp.org
hits-dev.appl.kp.org
test1csr.md.uat.kp.org
coats-uat.kp.org
api-services-pp.kp.org
scpmghcmrpt.kp.org
singledomain5.demo.kp.org
vcoltme21.ntwk.kp.org
downey-physicianpeersurvey.appl.kp.org
apps.kp.org
ndc1ctxnsa.nndc.kp.org
*.clm1-ezp.kp.org
*.sts.ext-svc-bmxp.appl.kp.org
dev-tasktracker-bff-live.memb.aksnp.azure.kp.org
*.kpvv.int-svc.bmxnp.appl.kp.org
mobileiron50.kp.org
mobileiron13.kp.org
wdcvnx5400-mgm3.wpoc.kp.org
econsult-dev.kp.org
ccsp.appl.kp.org
aaccesp.kp.org
prod-npl.eglb.kp.org
izadap8.ivdc.kp.org
securemail.kp.org
aperturepatchsixninegfgnj.venafi-qa.kp.org
velocity-preprod-intranet.crdc.kp.org
bookingservice-p1.kpaths.appl.kp.org
cnlenam3900303.len.ca.kp.org
riverside-isite.appl.kp.org
pdasweb-uat-tmp.appl.kp.org
prod-kpdfeaturestoreui-biz-live.daml.aksp.azure.kp.org
kpa-prod.kaiserpermanente.org
violenceprevention.kp.org
csc2cwn00000330.cloud.kp.org
hp-mbr-admn-crdc.kp.org
scpmghcmint.kp.org
onelinkppt-uat.appl.kp.org
downey-isitepics.appl.kp.org
csidcwvzp537.ccst.kp.org
aperturepatchsixninegjgfj.venafi-qa.kp.org
jira-aes.kp.org
jenkins.mobilepipeline.kp.org
vcarwce11.ntwk.kp.org
mars-dev.appl.kp.org
venafipatchninesyjfg.venafi-qa.kp.org
csc2cwp00000862.cloud.kp.org
aperturepatchsixninehwkvl.venafi-qa.kp.org
Certificate
The complete raw certificate details for dev-personalcondtest-biz-live.cd.aksnp.azure.kp.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHnzCCBoegAwIBAgIQN8apgCNcdj2zYd1SaM1kSTANBgkqhkiG9w0BAQsFADCB lTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMT0wOwYDVQQD EzRTZWN0aWdvIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2Vy dmVyIENBMB4XDTIzMDcwNTAwMDAwMFoXDTI0MDcwNDIzNTk1OVowgY4xCzAJBgNV BAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMSwwKgYDVQQKEyNLYWlzZXIgRm91 bmRhdGlvbiBIZWFsdGggUGxhbiwgSW5jLjE8MDoGA1UEAxMzZGV2LXBlcnNvbmFs Y29uZHRlc3QtYml6LWxpdmUuY2QuYWtzbnAuYXp1cmUua3Aub3JnMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2Fk5VqxH0ZLH/uUm1G5MAx3v4xfD9XO Fow3rYvAC14hz6z/NusjEdtzp4Kt2PCwDt+OODjaLdPxnZxjybEKBeJD1WFVofhq 8BypJgZc6qTlYfQ6V4YtSO6oh4Wd3+7JWW1GFGE6R/ujRwIwJ3Bg3CY1iJDnmU17 sny3xSl0TLNhhhuza8V3BnxTYeqt9pBcs4jgjlWZVVPS+AKU92bV5eY/G5NE9Qkr sy+29jkuycsAW6W3OcI3GjJukxaiT6OiEdG0Gz5D+a5Chig5Zu8hG66zSPiFtV/3 MPnkEIDh9D+4kHm+aiEfleZOmQ6RDKWHq5oWpMDM2mZGun2Q8+CG4wIDAQABo4ID 7jCCA+owHwYDVR0jBBgwFoAUF9nWJSdn+THCSUPZMDZEjGypT+swHQYDVR0OBBYE FCHdFCAbrUrFGvihUW8BR7WrS1mfMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8E AjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBKBgNVHSAEQzBBMDUG DCsGAQQBsjEBAgEDBDAlMCMGCCsGAQUFBwIBFhdodHRwczovL3NlY3RpZ28uY29t L0NQUzAIBgZngQwBAgIwWgYDVR0fBFMwUTBPoE2gS4ZJaHR0cDovL2NybC5zZWN0 aWdvLmNvbS9TZWN0aWdvUlNBT3JnYW5pemF0aW9uVmFsaWRhdGlvblNlY3VyZVNl cnZlckNBLmNybDCBigYIKwYBBQUHAQEEfjB8MFUGCCsGAQUFBzAChklodHRwOi8v Y3J0LnNlY3RpZ28uY29tL1NlY3RpZ29SU0FPcmdhbml6YXRpb25WYWxpZGF0aW9u U2VjdXJlU2VydmVyQ0EuY3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0 aWdvLmNvbTATBgorBgEEAdZ5AgQDAQH/BAIFADCCAh8GA1UdEQSCAhYwggISgjNk ZXYtcGVyc29uYWxjb25kdGVzdC1iaXotbGl2ZS5jZC5ha3NucC5henVyZS5rcC5v cmeCM2Rldi1wZXJzb25hbGNvbmR0ZXN0LWJpei10ZXN0LmNkLmFrc25wLmF6dXJl LmtwLm9yZ4IzZHJuLXBlcnNvbmFsY29uZHRlc3QtYml6LWxpdmUuY2QuYWtzbnAu YXp1cmUua3Aub3JngjNkcm4tcGVyc29uYWxjb25kdGVzdC1iaXotdGVzdC5jZC5h a3NucC5henVyZS5rcC5vcmeCNHBlcmYtcGVyc29uYWxjb25kdGVzdC1iaXotbGl2 ZS5jZC5ha3NucC5henVyZS5rcC5vcmeCNHBlcmYtcGVyc29uYWxjb25kdGVzdC1i aXotdGVzdC5jZC5ha3NucC5henVyZS5rcC5vcmeCMnFhLXBlcnNvbmFsY29uZHRl c3QtYml6LWxpdmUuY2QuYWtzbnAuYXp1cmUua3Aub3JngjJxYS1wZXJzb25hbGNv bmR0ZXN0LWJpei10ZXN0LmNkLmFrc25wLmF6dXJlLmtwLm9yZ4IzdWF0LXBlcnNv bmFsY29uZHRlc3QtYml6LWxpdmUuY2QuYWtzbnAuYXp1cmUua3Aub3JngjN1YXQt cGVyc29uYWxjb25kdGVzdC1iaXotdGVzdC5jZC5ha3NucC5henVyZS5rcC5vcmcw DQYJKoZIhvcNAQELBQADggEBAIsv0v0y4VPq1qiVyWOeN9kHMG2bUivNAuxHviU4 cV+e0cn8UP7oiTDwGPT0yZUcl7Dt8hPxgz1TaN2WLG61DVN5et/cBd4Dkjlo2IOh VdbjBY1itsy8V9pbg+Mpm3dxRSn06jo7sJa+IxrQ9SOESnybV4lsP2IRofKA5fVT QiMrMPJgQtkj0u1zEg/fWTqSymD87Jum5BGhyAdTKdM/SYi4gfjVRCDAJJ9HtiTJ H/WVMWYV9z0yzYsGkDXcF0e+DPt6YWfpIXkvHcCuK8LxyejF2acp2zi0zLcNXuOC VHfsk0d5fGmHf9rPqfn94SEUj7ZCFSYD3xM4+YerMS05rrw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2Fk5VqxH0ZLH/uUm1G5 MAx3v4xfD9XOFow3rYvAC14hz6z/NusjEdtzp4Kt2PCwDt+OODjaLdPxnZxjybEK BeJD1WFVofhq8BypJgZc6qTlYfQ6V4YtSO6oh4Wd3+7JWW1GFGE6R/ujRwIwJ3Bg 3CY1iJDnmU17sny3xSl0TLNhhhuza8V3BnxTYeqt9pBcs4jgjlWZVVPS+AKU92bV 5eY/G5NE9Qkrsy+29jkuycsAW6W3OcI3GjJukxaiT6OiEdG0Gz5D+a5Chig5Zu8h G66zSPiFtV/3MPnkEIDh9D+4kHm+aiEfleZOmQ6RDKWHq5oWpMDM2mZGun2Q8+CG 4wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 74139052425531842734869131803101062217 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-04 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Kaiser Foundation Health Plan, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dev-personalcondtest-biz-live.cd.aksnp.azure.kp.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20119917322461859437309435236974775131485228165528701635425503871330088348582656173324699745959134265540429627988162070330424507079945527761695239912167863296313830055287230682964267587785853923667941532033754542918104477247705227049414011381910086534825226107786066455033247612073042014664494118858937569983311260137180992897423696888587386979638524257148005700015203985257696792681143871741992916043433466950082950268888536926344403467736825109200694452676979053192450314236734767308556295722732484583981962632473233210600933800743463753878046292720786999808161473621599473939556091400885580506275923422337950582499 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 21dd14201bad4ac51af8a1516f0147b5ab4b599f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (534 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-personalcondtest-biz-live.cd.aksnp.azure.kp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-personalcondtest-biz-test.cd.aksnp.azure.kp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'drn-personalcondtest-biz-live.cd.aksnp.azure.kp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'drn-personalcondtest-biz-test.cd.aksnp.azure.kp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'perf-personalcondtest-biz-live.cd.aksnp.azure.kp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'perf-personalcondtest-biz-test.cd.aksnp.azure.kp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa-personalcondtest-biz-live.cd.aksnp.azure.kp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa-personalcondtest-biz-test.cd.aksnp.azure.kp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-personalcondtest-biz-live.cd.aksnp.azure.kp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-personalcondtest-biz-test.cd.aksnp.azure.kp.org' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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