*.confederation.idm.oclc.org
Issued by OCLC TLS Issuing RSA SubCA R1
About this certificate
This digital certificate with serial number 07:a9:6f:3a:a6:75:91:c3:25:1a:55:47:6c:8e:45:2e was issued on by OCLC, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.confederation.idm.oclc.org
OCLC, Inc.
Organization:
OCLC, Inc.
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:a9:6f:3a:a6:75:91:c3:25:1a:55:47:6c:8e:45:2eSerial Number (int): 10184350133802872436463788459765417262
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 20:98:fb:a1:f9:f3:06:85:f2:97:36:22:b4:80:f6:f5:a8:56:8a:30
Fingerprint (sha1): ab:3f:19:41:e6:e6:f3:87:40:12:9a:d1:c9:10:02:17:e1:55:5d:00
Fingerprint (sha256): 01:46:e6:e1:7c:6b:dd:cf:6f:5a:16:e6:13:af:9c:94:ca:c1:ee:51:29:8b:62:72:b1:f0:0a:05:9f:94:43:e9
Issuing Certificate URL: http://cert.ssl.com/OCLC-TLS-I-RSA-R1.cer
Revocation information
OCSP Server: http://ocsps.ssl.comCRL Distribution Point: http://crls.ssl.com/OCLC-TLS-I-RSA-R1.crl
Check the revocation status for certificate *.confederation.idm.oclc.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.confederation.idm.oclc.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.confederation.idm.oclc.org
confederation.idm.oclc.org
confederation.idm.oclc.org
Other certificates including the domain name oclc.org
(limited to 100 certificates)
*.cfra-msa.idm.oclc.org
*.nwcc.idm.oclc.org
*.southseattle.idm.oclc.org
*.iuhu.idm.oclc.org
*.liuc.idm.oclc.org
*.cfra-msa.idm.oclc.org
deweyess.oclc.org
*.greatlibrary.idm.oclc.org
*.apll.idm.oclc.org
*.muhlenberg.idm.oclc.org
*.abington.idm.oclc.org
*.nccu.idm.oclc.org
secure06.stage.lithium.com
*.trevecca.idm.oclc.org
*.twu.idm.oclc.org
*.udlap.idm.oclc.org
*.aic.idm.oclc.org
*.weston.idm.oclc.org
*.cide.idm.oclc.org
*.bchs.idm.oclc.org
*.neomed.idm.oclc.org
*.uiwtx.idm.oclc.org
*.bpcc.idm.oclc.org
*.dartmouth.idm.oclc.org
*.tjportal.idm.oclc.org
*.wcc.idm.oclc.org
*.limcollege.idm.oclc.org
OWA.OCLC.ORG
*.victimresearch.idm.oclc.org
*.greenville.idm.oclc.org
*.dsc.idm.oclc.org
*.fmarion.idm.oclc.org
*.ubu-es.idm.oclc.org
exeter.idm.oclc.org
*.springerpub.idm.oclc.org
*.sanlib.idm.oclc.org
*.tjc.idm.oclc.org
*.zhejianglibr.idm.oclc.org
*.zulib.idm.oclc.org
*.burmanu.idm.oclc.org
*.ccl.idm.oclc.org
*.chifedkc.idm.oclc.org
workday.oclc.org
*.nscad.idm.oclc.org
*.confederation.idm.oclc.org
*.yccc.idm.oclc.org
*.aspenuniversity.idm.oclc.org
*.nu.idm.oclc.org
*.ala.idm.oclc.org
*.mmc.idm.oclc.org
*.akkon-onlinelibrary.idm.oclc.org
*.mclarenmacomb.idm.oclc.org
ftp-bibliotheca.de.oclc.org
*.jjhs.idm.oclc.org
*.gold.idm.oclc.org
*.qvcc.idm.oclc.org
*.omahalibrary.idm.oclc.org
*.nishogakusha-u.idm.oclc.org
*.usu29.idm.oclc.org
*.bakeru.idm.oclc.org
*.cdkc.idm.oclc.org
*.southeast.idm.oclc.org
*.lourdes.idm.oclc.org
*.mvcc.idm.oclc.org
*.fid-avl.idm.oclc.org
*.wcsu.idm.oclc.org
*.hchs.idm.oclc.org
*.aus.idm.oclc.org
*.kuyper.idm.oclc.org
*.testemea.idm.oclc.org
*.uea.idm.oclc.org
*.nnu.idm.oclc.org
*.sanfrancisco.idm.oclc.org
*.szrof.idm.oclc.org
*.fls.idm.oclc.org
*.sri.idm.oclc.org
*.sierranev.idm.oclc.org
*.ozarks.idm.oclc.org
deweyess.oclc.org
*.hodges.idm.oclc.org
*.ncat.idm.oclc.org
*.antioch.idm.oclc.org
*.trevecca.idm.oclc.org
*.wvclibrary.idm.oclc.org
Cmsauthor-ext.oclc.org
*.bucm.idm.oclc.org
*.drexel.idm.oclc.org
*.hshs.idm.oclc.org
*.arlis.idm.oclc.org
*.aaas.idm.oclc.org
*.esf.idm.oclc.org
*.uhsp.idm.oclc.org
*.essec.idm.oclc.org
*.scclosrios.idm.oclc.org
*.salusdental.idm.oclc.org
*.stmarys.idm.oclc.org
*.kl.idm.oclc.org
*.barker.idm.oclc.org
lbs-avans.oclc.org
*.nutn.idm.oclc.org
*.nwcc.idm.oclc.org
*.southseattle.idm.oclc.org
*.iuhu.idm.oclc.org
*.liuc.idm.oclc.org
*.cfra-msa.idm.oclc.org
deweyess.oclc.org
*.greatlibrary.idm.oclc.org
*.apll.idm.oclc.org
*.muhlenberg.idm.oclc.org
*.abington.idm.oclc.org
*.nccu.idm.oclc.org
secure06.stage.lithium.com
*.trevecca.idm.oclc.org
*.twu.idm.oclc.org
*.udlap.idm.oclc.org
*.aic.idm.oclc.org
*.weston.idm.oclc.org
*.cide.idm.oclc.org
*.bchs.idm.oclc.org
*.neomed.idm.oclc.org
*.uiwtx.idm.oclc.org
*.bpcc.idm.oclc.org
*.dartmouth.idm.oclc.org
*.tjportal.idm.oclc.org
*.wcc.idm.oclc.org
*.limcollege.idm.oclc.org
OWA.OCLC.ORG
*.victimresearch.idm.oclc.org
*.greenville.idm.oclc.org
*.dsc.idm.oclc.org
*.fmarion.idm.oclc.org
*.ubu-es.idm.oclc.org
exeter.idm.oclc.org
*.springerpub.idm.oclc.org
*.sanlib.idm.oclc.org
*.tjc.idm.oclc.org
*.zhejianglibr.idm.oclc.org
*.zulib.idm.oclc.org
*.burmanu.idm.oclc.org
*.ccl.idm.oclc.org
*.chifedkc.idm.oclc.org
workday.oclc.org
*.nscad.idm.oclc.org
*.confederation.idm.oclc.org
*.yccc.idm.oclc.org
*.aspenuniversity.idm.oclc.org
*.nu.idm.oclc.org
*.ala.idm.oclc.org
*.mmc.idm.oclc.org
*.akkon-onlinelibrary.idm.oclc.org
*.mclarenmacomb.idm.oclc.org
ftp-bibliotheca.de.oclc.org
*.jjhs.idm.oclc.org
*.gold.idm.oclc.org
*.qvcc.idm.oclc.org
*.omahalibrary.idm.oclc.org
*.nishogakusha-u.idm.oclc.org
*.usu29.idm.oclc.org
*.bakeru.idm.oclc.org
*.cdkc.idm.oclc.org
*.southeast.idm.oclc.org
*.lourdes.idm.oclc.org
*.mvcc.idm.oclc.org
*.fid-avl.idm.oclc.org
*.wcsu.idm.oclc.org
*.hchs.idm.oclc.org
*.aus.idm.oclc.org
*.kuyper.idm.oclc.org
*.testemea.idm.oclc.org
*.uea.idm.oclc.org
*.nnu.idm.oclc.org
*.sanfrancisco.idm.oclc.org
*.szrof.idm.oclc.org
*.fls.idm.oclc.org
*.sri.idm.oclc.org
*.sierranev.idm.oclc.org
*.ozarks.idm.oclc.org
deweyess.oclc.org
*.hodges.idm.oclc.org
*.ncat.idm.oclc.org
*.antioch.idm.oclc.org
*.trevecca.idm.oclc.org
*.wvclibrary.idm.oclc.org
Cmsauthor-ext.oclc.org
*.bucm.idm.oclc.org
*.drexel.idm.oclc.org
*.hshs.idm.oclc.org
*.arlis.idm.oclc.org
*.aaas.idm.oclc.org
*.esf.idm.oclc.org
*.uhsp.idm.oclc.org
*.essec.idm.oclc.org
*.scclosrios.idm.oclc.org
*.salusdental.idm.oclc.org
*.stmarys.idm.oclc.org
*.kl.idm.oclc.org
*.barker.idm.oclc.org
lbs-avans.oclc.org
*.nutn.idm.oclc.org
Certificate
The complete raw certificate details for *.confederation.idm.oclc.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGAzCCBGugAwIBAgIQB6lvOqZ1kcMlGlVHbI5FLjANBgkqhkiG9w0BAQsFADBK MQswCQYDVQQGEwJVUzETMBEGA1UECgwKT0NMQywgSW5jLjEmMCQGA1UEAwwdT0NM QyBUTFMgSXNzdWluZyBSU0EgU3ViQ0EgUjEwHhcNMjQwMTA5MTYxNTAwWhcNMjUw MTA4MTYxNTAwWjAnMSUwIwYDVQQDDBwqLmNvbmZlZGVyYXRpb24uaWRtLm9jbGMu b3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2M50HpI3XfVxx5aq N94w9Qjc+JVPJ4lXTsdDldFMRN2PUATQMYktOnsWJI/6b9S6yW3Lf6HG9PqWFB1F hnaM1vsENyU5vlhMrzisu0DL2uks5d4ACnAVQ6TXSzW3NFQ9r0WwPSVVvskWP6oP 17qBRh/T9nq/VwPtqt+zVnnF616k3x++UzN5C/0WxXMLRBgn/xvUEopyG5nYtCN1 LQbYcPuUsTGo76m+KNy2PyTVHCX9hnySz0RCBf7xiAXT5FoIpQkKEqiwHc7cjQo5 WdGR9jg1V9D4K4koHYqv9jserdEbSRvdO7gC2804mDTj+tCO6nIj8hXWdVjj6cPW u8HXvU0CfCdt1xvPxbZLfYL2It2IPOqsm/4NUIzlIrimKKA81qGFQOnu68yvOWjJ n23bcBNkfUoZyyQj338P32ViOWRhXXFD8O/ecm1i/bIuRT5zwHssOEh6U/gRtESc 59ibILqmdhMQAI0bqw/rpIA9QrHxlppQjlommaCcB5zyyuK+MT4d8QoaZadUuU6Z WnMUtLgjzwic+aMpRQ+Rl/s2CnlSxxwY85PakQHssVPDBt421EKISaD8cOJEsMvD kpwmwKxIZkPdRhLKwFrosGl9kJgpgtvvMe3Lx2JofzLrv9+wZdLEy5K0r8vs2Aow Z59dygNCRrPyFxCv1InzHiDKxrkCAwEAAaOCAYYwggGCMAwGA1UdEwEB/wQCMAAw HwYDVR0jBBgwFoAUIJj7ofnzBoXylzYitID29ahWijAwZwYIKwYBBQUHAQEEWzBZ MDUGCCsGAQUFBzAChilodHRwOi8vY2VydC5zc2wuY29tL09DTEMtVExTLUktUlNB LVIxLmNlcjAgBggrBgEFBQcwAYYUaHR0cDovL29jc3BzLnNzbC5jb20wQwYDVR0R BDwwOoIcKi5jb25mZWRlcmF0aW9uLmlkbS5vY2xjLm9yZ4IaY29uZmVkZXJhdGlv bi5pZG0ub2NsYy5vcmcwIwYDVR0gBBwwGjAIBgZngQwBAgEwDgYMKwYBBAGCqTAB AwEBMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATA6BgNVHR8EMzAxMC+g LaArhilodHRwOi8vY3Jscy5zc2wuY29tL09DTEMtVExTLUktUlNBLVIxLmNybDAO BgNVHQ8BAf8EBAMCBaAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQEL BQADggGBAE1cLhRpPh7Qu/RQl5xVtiAHi/nEzWhfu0elwv3+rcT8Ydo+APc8QsHQ sbxnvuDu/MSiBYzzvdEXPB0ev6QpbGBmLV9aRMwSZUKwUhPfo1fzYeoP4mTl7XcJ CLGJDcgTDBD56Z9ttQiyRmz7X7GzpYS2RYLTcBmkBPtgUUsDxHLsOPY9r6mKKMJy rHe2GbxiW87VPWAGWGo0g5dT+eAVLLiukOFgZy4ACa+L2Rf9Bf1OiRqCAWx3SuiZ wL7vlFcElSfvSLQh5LTfA9O/yUeJ+Lc6EoFq1DAb7klgJ82hIcR7aL4XgruTQlkV k1SORrnipTRaiJzSbM1DwbIDaCuYXQWeM0PFwKIt+zD6T8xrjL0O60d/XUr93Oi3 CRLABkoBN1Qy55CXV64cBYoywCQxpJUGE/kuEHDzbFuhPiprJG1aml4f5CdY7J4h aY6kuQ+OSJr1AuDaTnyfK68YtMAYQoQbTuhB2Kd8FCJwUCAx25czCSdR1/hdQq9V Fpft51F+Nw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2M50HpI3XfVxx5aqN94w 9Qjc+JVPJ4lXTsdDldFMRN2PUATQMYktOnsWJI/6b9S6yW3Lf6HG9PqWFB1FhnaM 1vsENyU5vlhMrzisu0DL2uks5d4ACnAVQ6TXSzW3NFQ9r0WwPSVVvskWP6oP17qB Rh/T9nq/VwPtqt+zVnnF616k3x++UzN5C/0WxXMLRBgn/xvUEopyG5nYtCN1LQbY cPuUsTGo76m+KNy2PyTVHCX9hnySz0RCBf7xiAXT5FoIpQkKEqiwHc7cjQo5WdGR 9jg1V9D4K4koHYqv9jserdEbSRvdO7gC2804mDTj+tCO6nIj8hXWdVjj6cPWu8HX vU0CfCdt1xvPxbZLfYL2It2IPOqsm/4NUIzlIrimKKA81qGFQOnu68yvOWjJn23b cBNkfUoZyyQj338P32ViOWRhXXFD8O/ecm1i/bIuRT5zwHssOEh6U/gRtESc59ib ILqmdhMQAI0bqw/rpIA9QrHxlppQjlommaCcB5zyyuK+MT4d8QoaZadUuU6ZWnMU tLgjzwic+aMpRQ+Rl/s2CnlSxxwY85PakQHssVPDBt421EKISaD8cOJEsMvDkpwm wKxIZkPdRhLKwFrosGl9kJgpgtvvMe3Lx2JofzLrv9+wZdLEy5K0r8vs2AowZ59d ygNCRrPyFxCv1InzHiDKxrkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10184350133802872436463788459765417262 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'OCLC, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'OCLC TLS Issuing RSA SubCA R1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-09 16:15:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-08 16:15:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.confederation.idm.oclc.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 884493185761871274954412006614110585187362873536877363988624893183351150105209697354726308704983796568424483159278684699911360851048625412089463175177727092395495795636069072253903056625997048240986333773168658478068248616302893683150329052513113355492557226666677794498430421837147221872097332281629283272493989380976565473998344365398633499399720918088159211388622107441790177368773760229144380718067053953208412461252653008358474536530741404792290793795398905150381157513466446416624480353133762862557561596273510076476401753907484658980165301385602280436199050063992513931603353340912867437346774811537758977961761504799239451777168372862389429588404218159760122356796461986346898403430718986416283990443371478714793897998292572022367668826343545676471989935240902495801487826367281271817315206029734157652346772750001428637617338391520853109031546774093567510412217578644073171146184079700736040457510124482079590670086964902193102025116314827457922515841894815209342546873053051889116108668721792616129776404330610850019314848482397620937815044233584691072715709785249794903212440105022776466773486930079305034431935489178652349171433034218535551542668075094238247598800087583668370771064077610216249835984777326306101169931961 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2098fba1f9f30685f2973622b480f6f5a8568a30 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (91 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.ssl.com/OCLC-TLS-I-RSA-R1.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsps.ssl.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.confederation.idm.oclc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'confederation.idm.oclc.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.38064.1.3.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.ssl.com/OCLC-TLS-I-RSA-R1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (3072 bits) 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