headsup.ucc.on.ca
Issued by Starfield Secure Certificate Authority - G2
About this certificate
This digital certificate with serial number b0:c0:03:4d:07:8e:29:77 was issued on by Starfield Technologies, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=headsup.ucc.on.ca,OU=Domain Control Validated
Starfield Technologies, Inc.
Organization:
Starfield Technologies, Inc.
Organization unit: http://certs.starfieldtech.com/repository/
Organization unit: http://certs.starfieldtech.com/repository/
State / Province:
Arizona
Locality: Scottsdale
Country: US
Locality: Scottsdale
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): b0:c0:03:4d:07:8e:29:77Serial Number (int): 12736183375577885047
Serial Number lenght: 64 bits, 8 octets
SubjectKeyId: d7:05:53:ad:28:88:28:07:30:62:9f:a1:dd:ab:fa:50:dc:ca:a8:b1
AuthorityKeyId: 25:45:81:68:50:26:38:3d:3b:2d:2c:be:cd:6a:d9:b6:3d:b3:66:63
Fingerprint (sha1): 11:26:2b:e6:2b:95:e5:75:c7:04:fb:f6:2d:28:0d:db:ea:9f:4a:99
Fingerprint (sha256): 01:e3:3e:75:a1:df:2d:2b:02:4d:58:2e:da:37:62:4f:e2:39:61:e5:4f:99:b6:1c:ea:ae:e3:8b:18:b7:6e:af
Issuing Certificate URL: http://certificates.starfieldtech.com/repository/sfig2.crt
Revocation information
OCSP Server: http://ocsp.starfieldtech.com/CRL Distribution Point: http://crl.starfieldtech.com/sfig2s1-135.crl
Check the revocation status for certificate headsup.ucc.on.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for headsup.ucc.on.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
headsup.ucc.on.ca
www.headsup.ucc.on.ca
www.headsup.ucc.on.ca
Other certificates including the domain name ucc.on.ca
(limited to 100 certificates)
headsup.ucc.on.ca
mountaindew.ucc.on.ca
ucc.on.ca
*.ucc.on.ca
ucc.on.ca
ucc.on.ca
ucc.on.ca
pc.ucc.on.ca
parents.ucc.on.ca
ucc.on.ca
ucc.on.ca
bluenet.ucc.on.ca
archive.ucc.on.ca
www1.ucc.on.ca
applications.ucc.on.ca
headsup.ucc.on.ca
*.ucc.on.ca
ucc.on.ca
towards2029.ucc.on.ca
ucc.on.ca
headsup.ucc.on.ca
pc.ucc.on.ca
pc.ucc.on.ca
ucc.on.ca
pc.ucc.on.ca
*.ucc.on.ca
ucc.on.ca
applications.ucc.on.ca
*.ucc.on.ca
pc.ucc.on.ca
pc.ucc.on.ca
www.ucc.on.ca
*.ucc.on.ca
webmail.ucc.on.ca
giving.ucc.on.ca
brightspace.ucc.on.ca
*.ucc.on.ca
ucc.on.ca
*.ucc.on.ca
parents.ucc.on.ca
events.ucc.on.ca
pc.ucc.on.ca
ucc.on.ca
events.ucc.on.ca
ucc.on.ca
ucc.on.ca
pc.ucc.on.ca
*.ucc.on.ca
ucc.on.ca
parents.ucc.on.ca
ucc.on.ca
ucc.on.ca
worldaffairs.ucc.on.ca
pc.ucc.on.ca
bluenet.ucc.on.ca
bluenet.ucc.on.ca
bluenet.ucc.on.ca
towards2029.ucc.on.ca
ucc.on.ca
*.ucc.on.ca
giving.ucc.on.ca
*.ucc.on.ca
pc.ucc.on.ca
ucc.on.ca
pc.ucc.on.ca
towards2029.ucc.on.ca
archive.ucc.on.ca
ucc.on.ca
mountaindew.ucc.on.ca
archive.ucc.on.ca
*.ucc.on.ca
mountaindew.ucc.on.ca
ucc.on.ca
*.ucc.on.ca
ucc.on.ca
ucc.on.ca
ucc.on.ca
pc.ucc.on.ca
parents.ucc.on.ca
ucc.on.ca
ucc.on.ca
bluenet.ucc.on.ca
archive.ucc.on.ca
www1.ucc.on.ca
applications.ucc.on.ca
headsup.ucc.on.ca
*.ucc.on.ca
ucc.on.ca
towards2029.ucc.on.ca
ucc.on.ca
headsup.ucc.on.ca
pc.ucc.on.ca
pc.ucc.on.ca
ucc.on.ca
pc.ucc.on.ca
*.ucc.on.ca
ucc.on.ca
applications.ucc.on.ca
*.ucc.on.ca
pc.ucc.on.ca
pc.ucc.on.ca
www.ucc.on.ca
*.ucc.on.ca
webmail.ucc.on.ca
giving.ucc.on.ca
brightspace.ucc.on.ca
*.ucc.on.ca
ucc.on.ca
*.ucc.on.ca
parents.ucc.on.ca
events.ucc.on.ca
pc.ucc.on.ca
ucc.on.ca
events.ucc.on.ca
ucc.on.ca
ucc.on.ca
pc.ucc.on.ca
*.ucc.on.ca
ucc.on.ca
parents.ucc.on.ca
ucc.on.ca
ucc.on.ca
worldaffairs.ucc.on.ca
pc.ucc.on.ca
bluenet.ucc.on.ca
bluenet.ucc.on.ca
bluenet.ucc.on.ca
towards2029.ucc.on.ca
ucc.on.ca
*.ucc.on.ca
giving.ucc.on.ca
*.ucc.on.ca
pc.ucc.on.ca
ucc.on.ca
pc.ucc.on.ca
towards2029.ucc.on.ca
archive.ucc.on.ca
ucc.on.ca
mountaindew.ucc.on.ca
archive.ucc.on.ca
*.ucc.on.ca
Certificate
The complete raw certificate details for headsup.ucc.on.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGczCCBVugAwIBAgIJALDAA00Hjil3MA0GCSqGSIb3DQEBCwUAMIHGMQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEl MCMGA1UEChMcU3RhcmZpZWxkIFRlY2hub2xvZ2llcywgSW5jLjEzMDEGA1UECxMq aHR0cDovL2NlcnRzLnN0YXJmaWVsZHRlY2guY29tL3JlcG9zaXRvcnkvMTQwMgYD VQQDEytTdGFyZmllbGQgU2VjdXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcy MB4XDTE4MTExODExMjEyNVoXDTE5MTEyMjIwNDcwMlowPzEhMB8GA1UECxMYRG9t YWluIENvbnRyb2wgVmFsaWRhdGVkMRowGAYDVQQDExFoZWFkc3VwLnVjYy5vbi5j YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAO64mvJDfFMwDN3oaOk4 08sf8+65vJXr5YDs3uOj7RW01OyMkOY1kogvlrow12IMRlgRZ+sYDReNFPjip3/f 4XRBmRWuvf4XPwBIBNWNncl7BEZZ4IzMkQyHO5T7L2pHghgJOadpLn2br5jormiq fNI4BUXyG1HOJ2cSLU+mMip0/y7pOH4i92z1RPi1xHWyHMxE3ABLbgvDb/O+ybBF sCrN7E3xkG/17e4zqIoBBwWZEqDFpaebLtM+Sw6Djo4jxVmbVciXytQyXJzQUAhy QxSTZdmBf5sX/umvZmOKMaK4xdVB+BwYngzgl+R5t5ae1zaI94kIcsoyPbRTNsEv gkMCAwEAAaOCAugwggLkMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMA4GA1UdDwEB/wQEAwIFoDA9BgNVHR8ENjA0MDKgMKAuhixo dHRwOi8vY3JsLnN0YXJmaWVsZHRlY2guY29tL3NmaWcyczEtMTM1LmNybDBjBgNV HSAEXDBaME4GC2CGSAGG/W4BBxcBMD8wPQYIKwYBBQUHAgEWMWh0dHA6Ly9jZXJ0 aWZpY2F0ZXMuc3RhcmZpZWxkdGVjaC5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQIB MIGCBggrBgEFBQcBAQR2MHQwKgYIKwYBBQUHMAGGHmh0dHA6Ly9vY3NwLnN0YXJm aWVsZHRlY2guY29tLzBGBggrBgEFBQcwAoY6aHR0cDovL2NlcnRpZmljYXRlcy5z dGFyZmllbGR0ZWNoLmNvbS9yZXBvc2l0b3J5L3NmaWcyLmNydDAfBgNVHSMEGDAW gBQlRYFoUCY4PTstLL7Natm2PbNmYzAzBgNVHREELDAqghFoZWFkc3VwLnVjYy5v bi5jYYIVd3d3LmhlYWRzdXAudWNjLm9uLmNhMB0GA1UdDgQWBBTXBVOtKIgoBzBi n6Hdq/pQ3MqosTCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AKS5CZC0GFgUh7sT osxncAo8NZgE+RvfuON3zQ7IDdwQAAABZyaNzlYAAAQDAEcwRQIgXx6cBuOiYsd+ W8m0UGnFvcxyb4nPk3308iLLyOWFWpcCIQDTwKnj1RBc5X5e7tI5nZm/nHmL++kA t9y3Z0IpBWr6AAB3AHR+2oMxrTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAAB ZyaNzxMAAAQDAEgwRgIhALcl7l/VI0IPoQFwpmWiG5y2El/gkIGM2OGmRnHUMX4T AiEAnhZ8nn0aNUqSCkAFiqOgfp1dC+pWl4ONoARnAZ6AFsAwDQYJKoZIhvcNAQEL BQADggEBAHBcXeDDPDw2xmFF+sOK23rIrazXOBb9WLeUde14X7pV2Z7xbNUebjHg E2vhPhc+FbBaD7Iuz5ZSDaVgRq0N7ZpfM7IITjwZ9AzrLLWxmoiHHqs5CrUPSlIq pwEscHYiLqRjU89gKgFi8jH0NuqYG/yA5UEI6NERoXPxZl4yUoFQpO2Ghvr1FHWJ vTn1+NiZR8UOcrIMKxno1IXt305vsLRVefme0DfivbvpYvcBtHjYEbQlhKQLfUwT /GLoNe7DnSEQTN9xPNTc6+0LdQjtxx4X12hHLg4VqQ25zftBwZVXW8HsdIQ5Sy87 USPgPr8li3i4Sd9VgZqY+jzClICl1JA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ria8kN8UzAM3eho6TjT yx/z7rm8levlgOze46PtFbTU7IyQ5jWSiC+WujDXYgxGWBFn6xgNF40U+OKnf9/h dEGZFa69/hc/AEgE1Y2dyXsERlngjMyRDIc7lPsvakeCGAk5p2kufZuvmOiuaKp8 0jgFRfIbUc4nZxItT6YyKnT/Luk4fiL3bPVE+LXEdbIczETcAEtuC8Nv877JsEWw Ks3sTfGQb/Xt7jOoigEHBZkSoMWlp5su0z5LDoOOjiPFWZtVyJfK1DJcnNBQCHJD FJNl2YF/mxf+6a9mY4oxorjF1UH4HBieDOCX5Hm3lp7XNoj3iQhyyjI9tFM2wS+C QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12736183375577885047 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Technologies, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.starfieldtech.com/repository/' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Starfield Secure Certificate Authority - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-18 11:21:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-22 20:47:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'headsup.ucc.on.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30135748828026802207217745544423562401767347461045365549928530621196054980619072238705645260444330726571441975425641002100313560266597449039702444805744670833266771672965058579242115796670023331055805211883887826145415240279753687998440354816355156406762667705032210001284510537248914243376431927531998498526855378173087108875596007895623933650447036999094064886114187299482029752467227682941655325140701641543807467010447149233612265376005207085540729232504536882532236969718417943688320649397794828843928791869346690213055855041143811094417429237338266999823373047572729688995631144277096001466803858709465531384387 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.starfieldtech.com/sfig2s1-135.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114414.1.7.23.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.starfieldtech.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.starfieldtech.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.starfieldtech.com/repository/sfig2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 254581685026383d3b2d2cbecd6ad9b63db36663 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'headsup.ucc.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.headsup.ucc.on.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d70553ad2888280730629fa1ddabfa50dccaa8b1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000167268dce56000004030047304502205f1e9c06e3a262c77e5bc9b45069c5bdcc726f89cf937df4f222cbc8e5855a97022100d3c0a9e3d5105ce57e5eeed2399d99bf9c798bfbe900b7dcb7674229056afa00007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000167268dcf130000040300483046022100b725ee5fd523420fa10170a665a21b9cb6125fe090818cd8e1a64671d4317e130221009e167c9e7d1a354a920a40058aa3a07e9d5d0bea5697838da00467019e8016c0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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