apps.clemis.org
- Oakland County -
Issued by Entrust Certification Authority - L1E
About this certificate
This digital certificate with serial number 4c:20:25:ac was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Certificates typically do not have multiple attributes in a single RDN (subject). This may be an error. (lint.AWSLabs certlint)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Oakland County
Company registration number:
01121819
Organization: Oakland County
Organization unit: CLEMIS
Organization: Oakland County
Organization unit: CLEMIS
State / Province:
Michigan
Locality: Pontiac
Country: US
Locality: Pontiac
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: www.entrust.net/rpa is incorporated by reference
Organization unit: (c) 2009 Entrust, Inc.
Organization unit: www.entrust.net/rpa is incorporated by reference
Organization unit: (c) 2009 Entrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 4c:20:25:acSerial Number (int): 1277175212
Serial Number lenght: 31 bits, 4 octets
SubjectKeyId: 89:33:29:a0:d0:8b:b5:ad:5f:28:f7:49:19:9a:6c:3c:ec:07:46:5f
AuthorityKeyId: 5b:41:8a:b2:c4:43:c1:bd:bf:c8:54:41:55:9d:e0:96:ad:ff:b9:a1
Fingerprint (sha1): 9f:e6:83:69:2d:d3:78:a0:7c:4d:b8:ea:54:dc:74:98:f3:2c:98:f8
Fingerprint (sha256): 01:de:22:e4:17:dd:48:4c:c9:30:17:92:e3:d4:c0:bb:d7:24:f6:7d:f2:64:b6:bd:27:90:bc:37:99:92:65:f7
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1e.crl
Check the revocation status for certificate apps.clemis.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for apps.clemis.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
apps.clemis.org
payments.clemis.org
payments.clemis.org
Other certificates including the domain name clemis.org
(limited to 100 certificates)
apps.clemis.org
qasecure.clemis.org
apps.clemis.org
apps.clemis.org
imperva.com
clemislite.clemis.org
clemisweb.clemis.org
clmsupp.clemis.org
apps.clemis.org
tamauth.clemis.org
imperva.com
apps.clemis.org
qasecure.clemis.org
picturelink.clemis.org
secure.clemis.org
apps2.clemis.org
clmsupp.clemis.org
APPS.CLEMIS.ORG
auth.clemis.org
auth.clemis.org
download.clemis.org
auth.clemis.org
clemisweb.clemis.org
auth.clemis.org
clmnm122.clemis.org
secure.clemis.org
apps.clemis.org
auth.clemis.org
picturelink.clemis.org
imperva.com
download.clemis.org
auth.clemis.org
download.clemis.org
apps.clemis.org
cvdb.clemis.org
clemis.org
clmsupp.clemis.org
clemisweb.clemis.org
download.clemis.org
picturelink.clemis.org
apps.clemis.org
auth.clemis.org
apps.clemis.org
picturelink.clemis.org
auth.clemis.org
apps2.clemis.org
appssandbox.clemis.org
apps.clemis.org
picturelink.clemis.org
gisappsd.clemis.org
apps2.clemis.org
oakvideo.clemis.org
clmsupp.clemis.org
maps.clemis.org
maps.clemis.org
apps.clemis.org
clmnm121.clemis.org
cvdb.clemis.org
apps.clemis.org
picturelink.clemis.org
apps.clemis.org
oakgov.com
picturelink.clemis.org
qasecure.clemis.org
apps.clemis.org
apps.clemis.org
imperva.com
clemislite.clemis.org
clemisweb.clemis.org
clmsupp.clemis.org
apps.clemis.org
tamauth.clemis.org
imperva.com
apps.clemis.org
qasecure.clemis.org
picturelink.clemis.org
secure.clemis.org
apps2.clemis.org
clmsupp.clemis.org
APPS.CLEMIS.ORG
auth.clemis.org
auth.clemis.org
download.clemis.org
auth.clemis.org
clemisweb.clemis.org
auth.clemis.org
clmnm122.clemis.org
secure.clemis.org
apps.clemis.org
auth.clemis.org
picturelink.clemis.org
imperva.com
download.clemis.org
auth.clemis.org
download.clemis.org
apps.clemis.org
cvdb.clemis.org
clemis.org
clmsupp.clemis.org
clemisweb.clemis.org
download.clemis.org
picturelink.clemis.org
apps.clemis.org
auth.clemis.org
apps.clemis.org
picturelink.clemis.org
auth.clemis.org
apps2.clemis.org
appssandbox.clemis.org
apps.clemis.org
picturelink.clemis.org
gisappsd.clemis.org
apps2.clemis.org
oakvideo.clemis.org
clmsupp.clemis.org
maps.clemis.org
maps.clemis.org
apps.clemis.org
clmnm121.clemis.org
cvdb.clemis.org
apps.clemis.org
picturelink.clemis.org
apps.clemis.org
oakgov.com
picturelink.clemis.org
Certificate
The complete raw certificate details for apps.clemis.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIETCAlrDANBgkqhkiG9w0BAQUFADCBsTELMAkGA1UEBhMC VVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xOTA3BgNVBAsTMHd3dy5lbnRydXN0 Lm5ldC9ycGEgaXMgaW5jb3Jwb3JhdGVkIGJ5IHJlZmVyZW5jZTEfMB0GA1UECxMW KGMpIDIwMDkgRW50cnVzdCwgSW5jLjEuMCwGA1UEAxMlRW50cnVzdCBDZXJ0aWZp Y2F0aW9uIEF1dGhvcml0eSAtIEwxRTAeFw0xMDExMTgyMjE0MTdaFw0xMjEyMDky MzM1MTlaMIHTMQswCQYDVQQGEwJVUzERMA8GA1UECBMITWljaGlnYW4xEDAOBgNV BAcTB1BvbnRpYWMxEzARBgsrBgEEAYI3PAIBAxMCVVMxGTAXBgsrBgEEAYI3PAIB AhMITWljaGlnYW4xFzAVBgNVBAoTDk9ha2xhbmQgQ291bnR5MRowGAYDVQQPExFH b3Zlcm5tZW50IEVudGl0eTEPMA0GA1UECxMGQ0xFTUlTMSkwDwYDVQQFEwgwMTEy MTgxOTAWBgNVBAMTD2FwcHMuY2xlbWlzLm9yZzCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALqGXf/8u3zbXDuWkprCengrkV6DB7n14U4BlWdf3HB9tVxk d/PvEprG8pq6NYbdpuoqu7BOvyfTxKYVY17LjXxmewDIqVKCpSq0SHINO3SN8m/0 XTXus7sybRh7Fp4eXL8uD4XeTScKl8jIdMzXZXc7dXI+VuIr4eUy0wSp6bbGL6/E RqaOtVeyfYqgjsEm29oM3v4HLTZ5Dc70yxwx12xuZnUmRQ66klsaefid4dnOZoXh xZycgJOY4ENScS+2Wv2BVdqdGYeLRInE5IgES0JNqCLS6UQBNoLGI9cVfM/LFNPv BvJOqu9+TkXs1vVlukBMnk58uGz/3jxo2S+IFnkCAwEAAaOCAVkwggFVMAsGA1Ud DwQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwMwYIKwYBBQUH AQEEJzAlMCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAzBgNV HR8ELDAqMCigJqAkhiJodHRwOi8vY3JsLmVudHJ1c3QubmV0L2xldmVsMWUuY3Js MEEGA1UdIAQ6MDgwNgYKYIZIAYb6bAoBAjAoMCYGCCsGAQUFBwIBFhpodHRwOi8v d3d3LmVudHJ1c3QubmV0L3JwYTAvBgNVHREEKDAmgg9hcHBzLmNsZW1pcy5vcmeC E3BheW1lbnRzLmNsZW1pcy5vcmcwHwYDVR0jBBgwFoAUW0GKssRDwb2/yFRBVZ3g lq3/uaEwHQYDVR0OBBYEFIkzKaDQi7WtXyj3SRmabDzsB0ZfMAkGA1UdEwQCMAAw DQYJKoZIhvcNAQEFBQADggEBAE/ulJ5QdAIYJB6GUUb971Q0K9eJIsP2+AiFvy33 GHQhd/TJvOYG0sAG4e/XV8FH9BS9YHd1OdvjdMe6IQmiJQocUGYM7qaeocby3xAq YTVM+Yuy0ACaUa5NtwaK56gWJR65kqUYEqStbVXGQuA/c138AjvYZZBM20jj+uiT MybK0P3CUzW8kMgr2OIdmH8xPvmKpvkMFdKWy82gpQc5pa2fothoqFlVCXSptLwf N9rkIWo/WNNejGYThGxYFCDT3Qh2fK/xlUp82WG7W8AMQYGtJA5PKqmB4KcVuWKm ZeKTrzBkTkADTKjRxrKdIDl1+MQ07FAOb21JEmWdPFGP6CM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoZd//y7fNtcO5aSmsJ6 eCuRXoMHufXhTgGVZ1/ccH21XGR38+8Smsbymro1ht2m6iq7sE6/J9PEphVjXsuN fGZ7AMipUoKlKrRIcg07dI3yb/RdNe6zuzJtGHsWnh5cvy4Phd5NJwqXyMh0zNdl dzt1cj5W4ivh5TLTBKnptsYvr8RGpo61V7J9iqCOwSbb2gze/gctNnkNzvTLHDHX bG5mdSZFDrqSWxp5+J3h2c5mheHFnJyAk5jgQ1JxL7Za/YFV2p0Zh4tEicTkiARL Qk2oItLpRAE2gsYj1xV8z8sU0+8G8k6q735ORezW9WW6QEyeTny4bP/ePGjZL4gW eQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1277175212 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.entrust.net/rpa is incorporated by reference' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2009 Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1E' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2010-11-18 22:14:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-12-09 23:35:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Michigan' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pontiac' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Michigan' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Oakland County' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CLEMIS' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '01121819' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'apps.clemis.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23546583653251238465369986395848040645275201797853834155842036031173974207271251118673934128717797212511436186363926378727788091568264217164877791639519026769942807402298850624139226120396902664765723156418817968617583617903405947200831486349990785267456508118371100302211117882178973959468215042668477675710227783966534976039572901486045917588916757767277186282730473075810035444946435265266404089556607243829849578874603320873537686701639272010053402194730846595287021026352064200357787219962366554035479568092672365465930051176759397428334852610190130120956854981819360069840383493138299812616174057555343102711417 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1e.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.2 (Entrust EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apps.clemis.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'payments.clemis.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5b418ab2c443c1bdbfc85441559de096adffb9a1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 893329a0d08bb5ad5f28f749199a6c3cec07465f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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