appsmytpi.travelers.com

- The Travelers Companies Inc -

Issued by DigiCert SHA2 Extended Validation Server CA

About this certificate

This digital certificate with serial number 05:8f:59:0c:96:44:a2:8e:55:7a:86:34:79:ec:ea:f6 was issued on by DigiCert Inc.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

The Travelers Companies Inc

Company registration number: 12-AA
Organization: The Travelers Companies Inc
State / Province: Connecticut
Locality: Hartford
Country: US

DigiCert Inc

Organization: DigiCert Inc
Organization unit: www.digicert.com
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 05:8f:59:0c:96:44:a2:8e:55:7a:86:34:79:ec:ea:f6
Serial Number (int): 7390444561393460963141500146574748406
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: cc:b1:b2:95:9d:d7:0b:08:3d:63:97:89:7b:15:8f:5f:41:ca:f6:bd
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f

Fingerprint (sha1): d8:6a:46:c8:30:fd:8a:2c:e2:20:5e:1a:6d:98:d0:bc:b1:e5:d8:22
Fingerprint (sha256): 01:bc:2b:de:04:a1:b4:c3:25:27:17:bf:ce:b2:33:0a:98:71:20:3e:cd:05:66:ef:a7:13:41:de:15:58:e2:af

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl

Check the revocation status for certificate appsmytpi.travelers.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for appsmytpi.travelers.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

appsmytpi.travelers.com

Other certificates including the domain name travelers.com

(limited to 100 certificates)
travelers.com
rmisui-qa.travelers.com
agent-qa.travelers.com
uat3-selfservice.dev.travelers.com
secureamp.travelers.com
mylogon.travelers.com
biepwjas.travelers.com
rmdquote.travelers.com
eclaimreporting.travelers.com
secure.travelers.com
riskcontrol.travelers.com
piepwjas.travelers.com
careers.travelers.com
agencyonboarding-status.travelers.com
lyftclaim-auth.travelers.com
federationcert-mo.travelers.com
piwas-qa.travelers.com
foragents.travelers.com
piwas-qa.travelers.com
businessinsured-api-auth.travelers.com
cat-acct-uw-pricing-dev2-test-harness.travelers.com
thirdpartyclaim-api-auth.travelers.com
employees.travelers.com
umumedia.travelers.com
epw.travelers.com
timetrak.travelers.com
appsmytpi.travelers.com
bondservices.qa.travelers.com
claimregistration.travelers.com
printselection.travelers.com
pdfweb.travelers.com
bi-agclaar.travelers.com
bi-digital-assessment-ui-auth.travelers.com
bi-customize-quote-pt-auth.travelers.com
thirdpartymedical-api-mo-auth.travelers.com
paymentcontainer.dr.travelers.com
qaagentauth.travelers.com
qavendorregistration.travelers.com
xapi-router-service-dev.dev.travelers.com
akamai-san69.exacttarget.com
accessclaim.travelers.com
mi.travelers.com
bi-webpdext-pt.travelers.com
iexmlepv.travelers.com
travalert.travelers.com
polarissalesforceservice-poc.dev.travelers.com
biws-pt.travelers.com
bi-guidewire-proxy-dev.travelers.com
clocp.travelers.com
bi-trvpas-pt.travelers.com
bi-platform-pt.travelers.com
autopay-cfpwzn.travelers.com
accessclaim.travelers.com
asguide.travelers.com
agenthq.travelers.com
biwas.travelers.com
voltage-pp-0000.travelers.com
myquote-mo.travelers.com
mo-edaxfilescan-auth.travelers.com
view.ems.travelers.com
www.travelers.com
rmisui.travelers.com
secureemail.travelers.com
p2p-qa.travelers.com
plgateway.travelers.com
connectwcforagents.travelers.com
epay-cl.travelers.com
subrogation-api-auth.travelers.com
servicesqa.travelers.com
agentdocs.travelers.com
socialplus.travelers.com
cct-gms-prod.travelers.com
transpnluwguide-pt-auth.travelers.com
aimmytpiregistration.travelers.com
esri-mo-ext.travelers.com
secureeft.travelers.com
epw.travelers.com
oplquote.travelers.com
piwas-qa.travelers.com
epwjas.travelers.com
securemail.travelers.com
egeico.travelers.com
apps.travelers.com
premiumauditreg.travelers.com
biwas-pt.travelers.com
internal.learning.dev2.travelers.com
pt-iexml.travelers.com
boa.travelers.com
qafederatedsso.travelers.com
sfscgateway-proxy-ext-mo-auth.travelers.com
esignws.dev.travelers.com
plagt.travelers.com
bi-webpdext-pd.travelers.com
pijas-ocf.travelers.com
www.travelers.com
equote.travelers.com
vendorregistration.travelers.com
mytbiconversion-auth.travelers.com
api-qa.travelers.com
p2p.travelers.com

Certificate

The complete raw certificate details for appsmytpi.travelers.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzBt6OJHFGwA/7xm4HK8
teLCq2AOLOrsn+L+92sralpP+cMWSw6VhP92ESgUQbvrNfzqqYyzZY+MBC5te/wb
C7lV7AwbuTEW5xjxGE5ljICiWo1CFa8jQg21SCUcxTqx+N5V+sD3jWbPXr8cX0Sz
9aF5pqzUwAd7LLEac42BJ91WJAqh1jYojrAmR+p+j3gYIKnmLf3xpWmz6AolXAdz
gcUyzXUL98Qi53HWmworl6CTWejzpWBZUWWvxBm8VFmaZi8b7zLiMQdiTcNvxYmk
BLKxc2vucEorrWBjVYj4LfW/DRO4Jcxd6t5T+27uFsB8On34ZDjIzlUZzjzDWtiE
qwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 7390444561393460963141500146574748406
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-03 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-17 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Minnesota'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '12-AA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Connecticut'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hartford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Travelers Companies Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'appsmytpi.travelers.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23125491203838685224931709533839461539232954431253182165545843049406426385265882456449941510636675084060163330406530951280036306698846267137818667492034678295850641673157789061911989407383784623980049875840619906288287036333339134811748894228154560827399201059364856207834849286129646484427334689476718936056509985471156159964666955051871553706891840144539425271608712920192610043571198402091406829468829151654769135591244876656717485493464876122191220332741183512028697175203647157652224117963775368052567265089946766912389611357946114190775545566615949870970003951587718742052329996239958531701099573051699859326123
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ccb1b2959dd70b083d6397897b158f5f41caf6bd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'appsmytpi.travelers.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed185000001663bfe9d61000004030047304502204d29b2a4a347294856f602ea393552974204a23c81d9af1390e032df19b2a3c0022100b4bbcda87834fecb52d09479575d2c7309d96352a1df89c4815cd34c92509b890076005614069a2fd7c2ecd3f5e1bd44b23ec74676b9bc99115cc0ef949855d689d0dd000001663bfe9cd9000004030047304502202a008a1015426c50ec7b4e7d6665be2947376b078d8b6887ab2da8ed3c87cc2f02210099623293d8252871be42638a514cfe9728b07a8ab442f9c2935eaddd6335c0fb
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00ae6969ad0c340487c167b8185ccd7d9f6e14368ac3d80df5966995286484e5c258e6a9e5a51c3b9b6bcd3d29ba0f9ea85a789d7c17ccfd95ada4bfc58c18d7ecfdf38d9af98ce47f6fc926663cfbc967fab8b6c0c85cb4f6d31d99ea0f9415b6ebf988f49f504e935936739c786f7dd26a6f846e3b233a15b6bd71e6ec0fad50e3433d1ef64fca256ebc0b777ec04beef3c7fceb58dfd33487be34cbb70225f8a0617b62f031e3a5700e41e9e7d7d31fa029054dcacf53d8ca4b7f3fa16706acdd93e0da7f72b82937cb2cc8d55e6c9f2cf9e2d8139789744ac7b4facb1179a2d6d6159f960e4a2da50afdf80d8b55efc3e5b9e0e627aefc1d1068fcf5203564