tpm.key.com
- Key Bank -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0a:28:b7:17:35:12:8c:3b:05:0c:06:db:9b:ed:8c:3f was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Key Bank
Organization:
Key Bank
State / Province:
Ohio
Locality: Cleveland
Country: US
Locality: Cleveland
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:28:b7:17:35:12:8c:3b:05:0c:06:db:9b:ed:8c:3fSerial Number (int): 13503685351820886323260164731413826623
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 4d:a5:bd:64:15:74:77:e7:a0:58:e6:57:22:f1:f2:a0:ab:c2:95:97
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): 24:aa:ad:ef:e7:ba:3a:ee:bc:8b:65:50:be:05:d9:c4:1f:a9:5d:1f
Fingerprint (sha256): 01:21:64:df:45:5e:28:80:52:57:f4:82:c8:83:e5:62:f6:b6:9c:ba:d2:ba:65:d9:02:1e:90:72:9f:5a:eb:c6
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1.crl
Check the revocation status for certificate tpm.key.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tpm.key.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tpm.key.com
Other certificates including the domain name key.com
(limited to 100 certificates)
online.key.com
onlinea.key.com
laurelroadpreview.key.com
pdfim7.key.com
tdpaxbpwebsrvc.key.com
ptfts.key.com
ptkey2cre.key.com
ptkeynavigator3.key.com
tmams.key.com
kbo.key.com
tpm.key.com
login-dev.laurelroad.com
uakbo5.key.com
ib2appua2.key.com
prektt.key.com
student-gcp-dev-np.laurelroad.com
ibxpreview.key.com
tdpaxbpwebsrvc.key.com
login.laurelroad.com
ispd99.key.com
ktt.key.com
key.com
ptsdr.key.com
qvbod.key.com
sso-origin-gcp-uat-pp.laurelroad.com
ptktt4.key.com
video.key.com
certs.key.com
sdr.key.com
ktt.key.com
ptib2tfim.key.com
login.laurelroad.com
ktt.key.com
uaktt6c.key.com
ibxmpreview.key.com
lcoqv.key.com
lcosbdev.keybank.com
ptkeynavigator2.key.com
consolidatedpayables.key.com
fts.key.com
www.solar.key.com
onlinea1.key.com
mblaggqv.key.com
www.solar.key.com
mto.key.com
developer-preview-origin-gcp-it.key.com
ibxpt3.key.com
keybank.com
outlook.keybank.com
qvtamtmpext1.key.com
keynavigatorpreview.key.com
qvshopmerchant.key.com
sl-gcp-uat-pp.laurelroad.com
pdib2tfim.key.com
bonline.key.com
accounts.key.com
san-4-s7.tlsprovisioning.exacttarget.com
fts.key.com
login-dev.laurelroad.com
qonlinea.key.com
online.key.com
online.key.com
ktt.key.com
video.key.com
ibxqv1m.key.com
ibxqva.key.com
aggregationqv.key.com
login-lr-dev.key.com
billpay.key.com
www.key.com
sdr.key.com
keybank.com
metrics.key.com
keylinklogin.key.com
careers.key.com
ptkeynavigatorfim.key.com
ibxqv1m.key.com
ptkeynavigator1.key.com
billpay.key.com
mblpreview.key.com
kmc.key.com
metrics.key.com
ptkeynavigator1.key.com
login-pp.laurelroad.com
target.key.com
ibxqv1m.key.com
preview.key.com
ibx.key.com
onlinec.key.com
view.emails.key.com
onlinea1.key.com
billpay-uat.key.com
git-qv.keybank.com
ibxqv2.key.com
ibxqv3m.key.com
ibxqv1.key.com
key.com
mblpt4.key.com
ptkeynavigator1.key.com
image.e.grandamerica.com
onlinea.key.com
laurelroadpreview.key.com
pdfim7.key.com
tdpaxbpwebsrvc.key.com
ptfts.key.com
ptkey2cre.key.com
ptkeynavigator3.key.com
tmams.key.com
kbo.key.com
tpm.key.com
login-dev.laurelroad.com
uakbo5.key.com
ib2appua2.key.com
prektt.key.com
student-gcp-dev-np.laurelroad.com
ibxpreview.key.com
tdpaxbpwebsrvc.key.com
login.laurelroad.com
ispd99.key.com
ktt.key.com
key.com
ptsdr.key.com
qvbod.key.com
sso-origin-gcp-uat-pp.laurelroad.com
ptktt4.key.com
video.key.com
certs.key.com
sdr.key.com
ktt.key.com
ptib2tfim.key.com
login.laurelroad.com
ktt.key.com
uaktt6c.key.com
ibxmpreview.key.com
lcoqv.key.com
lcosbdev.keybank.com
ptkeynavigator2.key.com
consolidatedpayables.key.com
fts.key.com
www.solar.key.com
onlinea1.key.com
mblaggqv.key.com
www.solar.key.com
mto.key.com
developer-preview-origin-gcp-it.key.com
ibxpt3.key.com
keybank.com
outlook.keybank.com
qvtamtmpext1.key.com
keynavigatorpreview.key.com
qvshopmerchant.key.com
sl-gcp-uat-pp.laurelroad.com
pdib2tfim.key.com
bonline.key.com
accounts.key.com
san-4-s7.tlsprovisioning.exacttarget.com
fts.key.com
login-dev.laurelroad.com
qonlinea.key.com
online.key.com
online.key.com
ktt.key.com
video.key.com
ibxqv1m.key.com
ibxqva.key.com
aggregationqv.key.com
login-lr-dev.key.com
billpay.key.com
www.key.com
sdr.key.com
keybank.com
metrics.key.com
keylinklogin.key.com
careers.key.com
ptkeynavigatorfim.key.com
ibxqv1m.key.com
ptkeynavigator1.key.com
billpay.key.com
mblpreview.key.com
kmc.key.com
metrics.key.com
ptkeynavigator1.key.com
login-pp.laurelroad.com
target.key.com
ibxqv1m.key.com
preview.key.com
ibx.key.com
onlinec.key.com
view.emails.key.com
onlinea1.key.com
billpay-uat.key.com
git-qv.keybank.com
ibxqv2.key.com
ibxqv3m.key.com
ibxqv1.key.com
key.com
mblpt4.key.com
ptkeynavigator1.key.com
image.e.grandamerica.com
Certificate
The complete raw certificate details for tpm.key.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGvjCCBaagAwIBAgIQCii3FzUSjDsFDAbbm+2MPzANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjEw OTE0MDAwMDAwWhcNMjIxMDEyMjM1OTU5WjBZMQswCQYDVQQGEwJVUzENMAsGA1UE CBMET2hpbzESMBAGA1UEBxMJQ2xldmVsYW5kMREwDwYDVQQKEwhLZXkgQmFuazEU MBIGA1UEAxMLdHBtLmtleS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCrTqd6kO3Mav2tZ+SRIQiUAfn5kCt0IBWRDcsZUz8srnmPP5sVbzzLWitc P8Tg6GrURzNHDFfnnZR2nyg5V2ReqDd42USpOSfWvrknc4+ba0T8J4HqvOUWtimd 0SSNE8bTouDkGtHjb+kjTY1RKZ9BRgjUoOa/mWaOmcGl5G4a2Bysjkpb2tzvIOt4 dMrpDRyHVnGsAoErc6SGbFqDPzFZMtoMyCZU+5ma0q8wJvNn4vMUcreI0GB66Thg ByIkMOBJb2oGcN+y9eRGglSN2h5mVWw4SgIY8T/7lcqMHEhe3H+tWiRtYGv2IzMG EDcg2CF+QCuJ9HyhFlNrW25UF+ERAgMBAAGjggOAMIIDfDAfBgNVHSMEGDAWgBR0 hYDAZsffN97PvSk3qgMdvu3NFzAdBgNVHQ4EFgQUTaW9ZBV0d+egWOZXIvHyoKvC lZcwFgYDVR0RBA8wDYILdHBtLmtleS5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBmwYDVR0fBIGTMIGQMEagRKBChkBo dHRwOi8vY3JsMy5kaWdpY2VydC5jb20vRGlnaUNlcnRHbG9iYWxHMlRMU1JTQVNI QTI1NjIwMjBDQTEuY3JsMEagRKBChkBodHRwOi8vY3JsNC5kaWdpY2VydC5jb20v RGlnaUNlcnRHbG9iYWxHMlRMU1JTQVNIQTI1NjIwMjBDQTEuY3JsMD4GA1UdIAQ3 MDUwMwYGZ4EMAQICMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQu Y29tL0NQUzCBhQYIKwYBBQUHAQEEeTB3MCQGCCsGAQUFBzABhhhodHRwOi8vb2Nz cC5kaWdpY2VydC5jb20wTwYIKwYBBQUHMAKGQ2h0dHA6Ly9jYWNlcnRzLmRpZ2lj ZXJ0LmNvbS9EaWdpQ2VydEdsb2JhbEcyVExTUlNBU0hBMjU2MjAyMENBMS5jcnQw DAYDVR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYAKXm+8J45 OSHwVnOfY6V35b5XfZxgCvj5TV0mXCVdx4QAAAF75cd/1QAABAMARzBFAiBJE2Hn qxtOXLG+DDUslriy5pOlhvGjC95R/q+vB/HjCAIhALeCBqWrl1ed0LI9lA9dQg4B O4m2XvcE9Lcdag604dvLAHYAUaOw9f0BeZxWbbg3eI8MpHrMGyfL956IQpoN/tSL BeUAAAF75ceAEAAABAMARzBFAiAFSqIEuOpJqXfJ5OjbKGGc/KsQgSQ1LiEs+9XK XOp6oAIhAIdmgN6h3x/JA4lnOuDWJFCR7KCDUzPDPnzOnSRyk4/CAHUA36Veq2iC Tx9sre64X04+WurNohKkal6OOxLAIERcKnMAAAF75cd/6gAABAMARjBEAiA8mWty HTYDeYNwiVZoMm7d/z1EzqnIwnIAhvg7GUGWvQIgNog+iCXHcTNP96vAX78Gt5l9 iftis5KOSdW6UI7z8VowDQYJKoZIhvcNAQELBQADggEBAItQoCyyrmlsSijNqSIM FzOUqc7QK1m0ONuny+Vci5HFgOsygOzyaImuwWD3X599x6CXQhB2H1245atW/KdC +masoAX7KbA303iarGx382BOlRNI2vrv39wFSYNgXicYuNXV3CPWhchoBYGnULCb 0/NdUdUrzW7OCIVN7S6IHucIH2HfVzci/LR8n+oYMULkSZ3OdWBIO5enanQMUDrj vbLaWvVr+BdpVQyJXVfQQyAZzxlYr5HfbhA0q7znMN763R1+ZMAEfU7t8MpYVkww 2PDmMix5/eSvqqmUIt5T1YW14QL087MX/rPfx741XNWjE6U/0Mi0mH5yFwK84WPx Cak= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq06nepDtzGr9rWfkkSEI lAH5+ZArdCAVkQ3LGVM/LK55jz+bFW88y1orXD/E4Ohq1EczRwxX552Udp8oOVdk Xqg3eNlEqTkn1r65J3OPm2tE/CeB6rzlFrYpndEkjRPG06Lg5BrR42/pI02NUSmf QUYI1KDmv5lmjpnBpeRuGtgcrI5KW9rc7yDreHTK6Q0ch1ZxrAKBK3Okhmxagz8x WTLaDMgmVPuZmtKvMCbzZ+LzFHK3iNBgeuk4YAciJDDgSW9qBnDfsvXkRoJUjdoe ZlVsOEoCGPE/+5XKjBxIXtx/rVokbWBr9iMzBhA3INghfkArifR8oRZTa1tuVBfh EQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13503685351820886323260164731413826623 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ohio' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cleveland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Key Bank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tpm.key.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21625535987668042495034585074539382552449295774718421205449260568744668556510357787830326465133963529178117165995809686173113300759755934588032693006088878605037935308845167770761536002759853051152058188111296060685546229853972032932702896503069477327602263053034516770629298535971148818730129593449497371963738253383160603524199249653087592622256781693780080175709589854367413498446828817539862717152606998529591407794246299430713020298661351628571595671871040750966321712153356411532727645809347981794974948866047391693350534829802277164796795645795252890862438659965574869339830643896829989919557655197435657969937 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4da5bd64157477e7a058e65722f1f2a0abc29597 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tpm.key.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (147 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 01670076002979bef09e393921f056739f63a577e5be577d9c600af8f94d5d265c255dc7840000017be5c77fd500000403004730450220491361e7ab1b4e5cb1be0c352c96b8b2e693a586f1a30bde51feafaf07f1e308022100b78206a5ab97579dd0b23d940f5d420e013b89b65ef704f4b71d6a0eb4e1dbcb00760051a3b0f5fd01799c566db837788f0ca47acc1b27cbf79e88429a0dfed48b05e50000017be5c7801000000403004730450220054aa204b8ea49a977c9e4e8db28619cfcab108124352e212cfbd5ca5cea7aa0022100876680dea1df1fc90389673ae0d6245091eca0835333c33e7cce9d2472938fc2007500dfa55eab68824f1f6cadeeb85f4e3e5aeacda212a46a5e8e3b12c020445c2a730000017be5c77fea000004030046304402203c996b721d3603798370895668326eddff3d44cea9c8c2720086f83b194196bd022036883e8825c771334ff7abc05fbf06b7997d89fb62b3928e49d5ba508ef3f15a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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