na140.salesforce.com
- salesforce.com, inc. -
Issued by DigiCert TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 0b:63:6e:a6:3a:c1:7d:b8:01:7a:a2:de:8a:df:8a:b9 was issued on by DigiCert Inc.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
salesforce.com, inc.
Organization:
salesforce.com, inc.
State / Province:
California
Locality: San Francisco
Country: US
Locality: San Francisco
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0b:63:6e:a6:3a:c1:7d:b8:01:7a:a2:de:8a:df:8a:b9Serial Number (int): 15137789577744448531734553828471573177
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 57:3e:ec:71:bb:31:91:b4:73:bc:f9:dd:76:9d:83:63:f6:1f:05:5e
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4
Fingerprint (sha1): 08:78:be:07:a5:a0:58:48:34:7f:37:44:b8:5a:09:e5:c5:7f:8c:af
Fingerprint (sha256): 01:79:5c:2a:bd:9b:1d:3d:f9:49:c3:a3:22:04:b5:77:1d:94:49:5a:0d:c2:2d:89:f6:44:ca:78:ee:23:19:ed
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Check the revocation status for certificate na140.salesforce.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for na140.salesforce.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
na140.salesforce.com
*.my.salesforce.com
*.sandbox.my.salesforce.com
na140-api.salesforce.com
*.my.salesforce.com
*.sandbox.my.salesforce.com
na140-api.salesforce.com
Other certificates including the domain name salesforce.com
(limited to 100 certificates)
*.cs109.force.com
*.cs26.my.salesforce.com
*.cs16.my.salesforce.com
*.cs54.force.com
mx2-was.mta.salesforce.com
*.cs73.force.com
na156.salesforce.com
*.umps1c4.salesforce.com
*.cs55.force.com
*.na151.force.com
*.c360a.salesforce.com
mx2-chi3.mta.salesforce.com
*.na202.force.com
config.cccnp0010.cnp-dev.commercecloud.salesforce.com
*.cs54.force.com
orgchart-dev.it.salesforce.com
*.na85.force.com
na149.salesforce.com
slotmatching22.salesforce.com
cs290.salesforce.com
emea.salesforce.com
*.eu27.force.com
sfm-ucm1.internal.salesforce.com
devforce.map.fastly.net
slotmatching19.salesforce.com
eef-eu.mce.salesforce.com
*.cs30.force.com
vpn-emea.corp.salesforce.com
ap19.salesforce.com
*.na127.force.com
*.sandbox.us01.dx.commercecloud.salesforce.com
na8-api.salesforce.com
*.cs81.force.com
mx2-phx-sp4.mta.salesforce.com
cs30.salesforce.com
sfm-cup2.internal.salesforce.com
vision-us.mce.salesforce.com
mx4-hio-sp1.mta.salesforce.com
dns-vetting1l.map.fastly.net
www.assistly.com
*.cs1.my.salesforce.com
*.na64.force.com
mx3-dfw-sp4.mta.salesforce.com
*.cs34.force.com
cs122.salesforce.com
*.na72.force.com
na166.salesforce.com
salesforce.com
*.cs68.my.salesforce.com
oid.internal.salesforce.com
spell-sjl.salesforce.com
lo2.my.lightning-container.com
dns-vetting1a.map.fastly.net
*.na36.force.com
ext-am-sbx.am.commercecloud.salesforce.com
slotmatching7.salesforce.com
na140.salesforce.com
vpn-na-east.corp.salesforce.com
*.na36.force.com
hyd-wlc-a.internal.salesforce.com
sfdc-x579t5.perf1i.login.pc-rnd.salesforce.com
*.na107.force.com
*.na86.force.com
*.cs30.my.salesforce.com
sfm-anchor-a.internal.salesforce.com
mobile1.t.force.com
*.eu46.force.com
*.cs4.force.com
prod.13.slot.cdn.salesforce-communities.com
mx2-cdu-sp1.mta.salesforce.com
cs308.salesforce.com
preprod.bluetail.salesforce.com
hyd-wlc-a.internal.salesforce.com
qa-api.docs.salesforce.com
umps1-c2-frf.salesforce.com
*.na34.force.com
*.cs15.force.com
*.na152.force.com
mx3-ord-sp1.mta.salesforce.com
mx2-frf-sp1.mta.salesforce.com
*.cs15.force.com
brand.salesforce.com
ora-ccore-wp001.internal.salesforce.com
*.cs173.force.com
dns-vetting1l.map.fastly.net
slotmatchinggs0.salesforce.com
perf1-useast2.cloudatlas.perf1o.pc-rnd.pc-aws.salesforce.com
dns-vetting1a.map.fastly.net
mx4-ord-sp2.mta.salesforce.com
*.eu25.force.com
cs225.salesforce.com
*.na18.force.com
mx3-frf-sp1.mta.salesforce.com
*.na74.force.com
www-perf2-pub.salesforce.com
*.cs115.my.salesforce.com
*.na38.force.com
app.datorama.com
*.na137.force.com
cmn1-wlc-a.internal.salesforce.com
*.cs26.my.salesforce.com
*.cs16.my.salesforce.com
*.cs54.force.com
mx2-was.mta.salesforce.com
*.cs73.force.com
na156.salesforce.com
*.umps1c4.salesforce.com
*.cs55.force.com
*.na151.force.com
*.c360a.salesforce.com
mx2-chi3.mta.salesforce.com
*.na202.force.com
config.cccnp0010.cnp-dev.commercecloud.salesforce.com
*.cs54.force.com
orgchart-dev.it.salesforce.com
*.na85.force.com
na149.salesforce.com
slotmatching22.salesforce.com
cs290.salesforce.com
emea.salesforce.com
*.eu27.force.com
sfm-ucm1.internal.salesforce.com
devforce.map.fastly.net
slotmatching19.salesforce.com
eef-eu.mce.salesforce.com
*.cs30.force.com
vpn-emea.corp.salesforce.com
ap19.salesforce.com
*.na127.force.com
*.sandbox.us01.dx.commercecloud.salesforce.com
na8-api.salesforce.com
*.cs81.force.com
mx2-phx-sp4.mta.salesforce.com
cs30.salesforce.com
sfm-cup2.internal.salesforce.com
vision-us.mce.salesforce.com
mx4-hio-sp1.mta.salesforce.com
dns-vetting1l.map.fastly.net
www.assistly.com
*.cs1.my.salesforce.com
*.na64.force.com
mx3-dfw-sp4.mta.salesforce.com
*.cs34.force.com
cs122.salesforce.com
*.na72.force.com
na166.salesforce.com
salesforce.com
*.cs68.my.salesforce.com
oid.internal.salesforce.com
spell-sjl.salesforce.com
lo2.my.lightning-container.com
dns-vetting1a.map.fastly.net
*.na36.force.com
ext-am-sbx.am.commercecloud.salesforce.com
slotmatching7.salesforce.com
na140.salesforce.com
vpn-na-east.corp.salesforce.com
*.na36.force.com
hyd-wlc-a.internal.salesforce.com
sfdc-x579t5.perf1i.login.pc-rnd.salesforce.com
*.na107.force.com
*.na86.force.com
*.cs30.my.salesforce.com
sfm-anchor-a.internal.salesforce.com
mobile1.t.force.com
*.eu46.force.com
*.cs4.force.com
prod.13.slot.cdn.salesforce-communities.com
mx2-cdu-sp1.mta.salesforce.com
cs308.salesforce.com
preprod.bluetail.salesforce.com
hyd-wlc-a.internal.salesforce.com
qa-api.docs.salesforce.com
umps1-c2-frf.salesforce.com
*.na34.force.com
*.cs15.force.com
*.na152.force.com
mx3-ord-sp1.mta.salesforce.com
mx2-frf-sp1.mta.salesforce.com
*.cs15.force.com
brand.salesforce.com
ora-ccore-wp001.internal.salesforce.com
*.cs173.force.com
dns-vetting1l.map.fastly.net
slotmatchinggs0.salesforce.com
perf1-useast2.cloudatlas.perf1o.pc-rnd.pc-aws.salesforce.com
dns-vetting1a.map.fastly.net
mx4-ord-sp2.mta.salesforce.com
*.eu25.force.com
cs225.salesforce.com
*.na18.force.com
mx3-frf-sp1.mta.salesforce.com
*.na74.force.com
www-perf2-pub.salesforce.com
*.cs115.my.salesforce.com
*.na38.force.com
app.datorama.com
*.na137.force.com
cmn1-wlc-a.internal.salesforce.com
Certificate
The complete raw certificate details for na140.salesforce.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHFjCCBf6gAwIBAgIQC2NupjrBfbgBeqLeit+KuTANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yMzExMDcwMDAwMDBa Fw0yNDExMDQyMzU5NTlaMHgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9y bmlhMRYwFAYDVQQHEw1TYW4gRnJhbmNpc2NvMR0wGwYDVQQKExRzYWxlc2ZvcmNl LmNvbSwgaW5jLjEdMBsGA1UEAxMUbmExNDAuc2FsZXNmb3JjZS5jb20wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkgS3cgVRPHXBxzP0VwIWyokGv262T SaS6yM9YDotywucxO8eDvZfCyokYdbZhZRSbAHHvRkFrmXzBb3dQIqA3tNMb9iqe sMsOG2l0aJJwt5nrY3SgWeY/HPV+UqmJun1oE5eR8QbNHpBDt43igsLoT2ut6DiD flT+vPzZUJ7OpRuYyilDgW5CNNRVA/l9zLp9lQHRs9mK2H3o1dWd97h+etxpGIAE nZWw/BayaXtJmuRuNYzc8/N7LIiIMStPKPtbXYTW1rkUn0Qr+0xedIWejj5wUs/S hRkZyrM0+agPHEwKMRU3wMEIAZkVazdi5XqeiHn8XCPqkJYgYNcekZ95AgMBAAGj ggPDMIIDvzAfBgNVHSMEGDAWgBS3a6LqqKqEjHnqtNoPmLLFlXa59DAdBgNVHQ4E FgQUVz7scbsxkbRzvPnddp2DY/YfBV4wawYDVR0RBGQwYoIUbmExNDAuc2FsZXNm b3JjZS5jb22CEyoubXkuc2FsZXNmb3JjZS5jb22CGyouc2FuZGJveC5teS5zYWxl c2ZvcmNlLmNvbYIYbmExNDAtYXBpLnNhbGVzZm9yY2UuY29tMD4GA1UdIAQ3MDUw MwYGZ4EMAQICMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29t L0NQUzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMIGPBgNVHR8EgYcwgYQwQKA+oDyGOmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNv bS9EaWdpQ2VydFRMU1JTQVNIQTI1NjIwMjBDQTEtNC5jcmwwQKA+oDyGOmh0dHA6 Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFRMU1JTQVNIQTI1NjIwMjBDQTEt NC5jcmwwfwYIKwYBBQUHAQEEczBxMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5k aWdpY2VydC5jb20wSQYIKwYBBQUHMAKGPWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0 LmNvbS9EaWdpQ2VydFRMU1JTQVNIQTI1NjIwMjBDQTEtMS5jcnQwDAYDVR0TAQH/ BAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYA7s3QZNXbGs7FXLedtM0T ojKHRny87N7DUUhZRnEftZsAAAGLq0dSvQAABAMARzBFAiAZm3YqNj5UH3D/BeMC IlCvWgFVzZOay+kWivJpc6htvQIhAOpyCM1ZOaCIq8s/2yyjE5w45P2s7qNfp8Mm 0P+rP+vWAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGLq0dS tAAABAMASDBGAiEAnSPcEdCbP7VYx6eejZx0QsdEU+tOKGez/r5N5qT464ECIQDC r2Me3uJi0DOBHaUsKN+V2byg2pg1WUsMHUfn//eMFgB1AD8XS0/XIkdYlB1lHIS+ DRLtkDd/H4Vq68G/KIXs+GRuAAABi6tHUwEAAAQDAEYwRAIgYfTk5V0kNWXDHtcB Xh8D+bnn/z3zMAXvptArwuV8ZzUCIB7HtL1DVw9sHrPU81tlIk1/SS1SarpwyULJ 1OqdLW97MA0GCSqGSIb3DQEBCwUAA4IBAQAQu5w9D6LRoBJ+F2tL1kEG5ksbQZWZ JFBMuAbHx6JTSOLRBr5V6N0wgOG8uPkQMeJkBhTNcYU9AfYq/eoQAjh0sTdLotvW jOuZC3NT9N9bTrZUy/sBIfjDfSsW7kERw3OSGDvesZFjUx4Pk2R24iWpyN1s/Fns i0E5MUet+ztOVy6hGdyQuY/ZlFhYV1NGN2+qx9lJq08PnzI+dgkSykHp/8P30Jr1 0UCdkFO+FOeb+wWvAaxs+HsmvlhAfJf38+Zo0U8YgF2qbaA0AJ0keFFS7/gCd2TT gQU6rZnl3ZAPBGsqDenHn9QZvPnVrtNu0w3GafiBfZNEK6VmItRjfoPe -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5IEt3IFUTx1wccz9FcCF sqJBr9utk0mkusjPWA6LcsLnMTvHg72XwsqJGHW2YWUUmwBx70ZBa5l8wW93UCKg N7TTG/YqnrDLDhtpdGiScLeZ62N0oFnmPxz1flKpibp9aBOXkfEGzR6QQ7eN4oLC 6E9rreg4g35U/rz82VCezqUbmMopQ4FuQjTUVQP5fcy6fZUB0bPZith96NXVnfe4 fnrcaRiABJ2VsPwWsml7SZrkbjWM3PPzeyyIiDErTyj7W12E1ta5FJ9EK/tMXnSF no4+cFLP0oUZGcqzNPmoDxxMCjEVN8DBCAGZFWs3YuV6noh5/Fwj6pCWIGDXHpGf eQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15137789577744448531734553828471573177 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-04 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'San Francisco' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'salesforce.com, inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'na140.salesforce.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28846034143255105652332397229462049294930729859641346990929298574565463258722921758862996586547764446020291602279873964445681259150590098583279671519595675502479521754940585902941668126142042848488145308783868275828866958404246559539377332569175412505478318811720001560250741944143300959062294662642672146827582868610978575359444810538621982493550381123718145738918489888927345375934888002072218058898157012897285355961695876174103142553086680780066400310181538098640626261528452608082901140900204220540598751942297484637029191793285327220652810325962543121610859594740273766769040693684911923415959280458603143733113 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 573eec71bb3191b473bcf9dd769d8363f61f055e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'na140.salesforce.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.my.salesforce.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sandbox.my.salesforce.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'na140-api.salesforce.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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