www.cla.canon.com
- Canon U.S.A., INC. -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0b:b9:7f:57:35:1c:fc:a8:a0:08:4c:48:2e:1a:0c:6e was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Canon U.S.A., INC.
Organization:
Canon U.S.A., INC.
Organization unit: INFORMATION TECHNOLOGY-F5-ASH
Organization unit: INFORMATION TECHNOLOGY-F5-ASH
State / Province:
New York
Locality: Melville
Country: US
Locality: Melville
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:b9:7f:57:35:1c:fc:a8:a0:08:4c:48:2e:1a:0c:6eSerial Number (int): 15584665647770568806779967935107173486
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 0c:af:a9:e9:42:ba:98:20:b2:d7:4c:a8:ad:14:42:5f:11:43:b6:81
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 8f:cc:2c:61:75:23:ea:3d:3e:13:f6:48:4e:99:3e:e6:a1:68:b4:cc
Fingerprint (sha256): 02:1e:67:26:c0:79:a8:3b:e8:18:b7:a7:64:cb:5e:6f:a0:8b:ec:30:4c:1a:0f:ea:16:04:74:12:93:8b:26:8c
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate www.cla.canon.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.cla.canon.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cla.canon.com
www.cla.canon.com
www.cla.canon.com
Other certificates including the domain name canon.com
(limited to 100 certificates)
secure07.stage.lithium.com
quickscan.ciis.canon.com
magentoapi.usa.canon.com
canammobileconnect.usa.canon.com
nwstg.cusa.canon.com
lfsstorefront.com
*.dev-apps.cusa.canon.com
www.cfsdealerportal.com
nyrhdz21.cusa.canon.com
WMBMQPRD.cusa.canon.com
commerce.mylan.csa.canon.com
cusa.canon.com
taxserviceqa.usa.canon.com
secure1.canon.com
essdmtes1qa.cusa.canon.com
nyrhdz20.cusa.canon.com
s21fsrcbrqa.cusa.canon.com
access.ciis.canon.com
Replenish.usa.canon.com
thinkinkdigital.com
www.employee-rewards.cusa.canon.com
secure1.canon.com
essdmtes2qa.cusa.canon.com
ecarriers.csa.canon.com
www.developersupport.canon.com
canonusaextranets.cusa.canon.com
chatbot-dev.ciis.canon.com
www.cla.canon.com
mps.cbps.canon.com
contentqa.cusa.canon.com
www.developersupport.canon.com
ereturn.usa.canon.com
www.support.cusa.canon.com
csa.canon.com
secure04.lithium.com
adseast.solutions.canon.com
msdjira.sc.rd.canon.com
s21.cusa.canon.com
ereturn.usa.canon.com
secure04.lithium.com
s21fsrcbrop.cusa.canon.com
ereturn.usa.canon.com
shop.usa.canon.com
shop.dev.csa.canon.com
mycanon.stg.cusa.canon.com
events.biggestfantour.com
shopqa-auth.cusa.canon.com
cdf.dt-ext.vpn.ciis.canon.com
learn.usa.canon.com
shop.usa.canon.com
imagination.usa.canon.com
web1cdvny.cfs.canon.com
esbprd.cusa.canon.com
ereturn.usa.canon.com
thinkinkdigital.com
secure04.lithium.com
globaldispatchsolution.api.esb.usa.canon.com
ccldev.cusa.canon.com
www.servicetrainingsolutions.cusa.canon.com
adscentral.solutions.canon.com
preview.partnernet.usa.canon.com
canonva.cvi.canon.com
cvi.canon.com
rtbcx.jp.canon.com
VAARCOTFORT.CUSA.CANON.COM
in-fedservice.cusa.canon.com
unbe.sxg.cusa.canon.com
ciis.canon.com
vapgp01.cusa.canon.com
cpfprismadirect.cusa.canon.com
akamai-san195.exacttarget.com
magentocloud37.map.fastly.net
www.cla.canon.com
esbqa-2.cusa.canon.com
raise.usa.canon.com
magentocloud52.map.fastly.net
www.developersupport.canon.com
secure11.lithium.com
mycsa.s21qa.csa.canon.com
ess1.csa.canon.com
lsarprx.cusa.canon.com
upload-photos.dtp-community.usa.canon.com
shortstack.usa.canon.com
email2.cusa.canon.com
varhdv117.cusa.canon.com
www.support.cusa.canon.com
secure11.lithium.com
impact-uat.csa.canon.com
kbsupport.cusa.canon.com
events.ciis.canon.com
ereturn.usa.canon.com
cfsdealerportal.com
taxservice.usa.canon.com
secure07.stage.lithium.com
*.cusa.canon.com
www.support.cusa.canon.com
travelexpensecusaqa.cusa.canon.com
oneweb.api-stg.esb.usa.canon.com
mnyacs1121.cusa.canon.com
smarterdocs.corp.cbps.canon.com
quickscan.ciis.canon.com
magentoapi.usa.canon.com
canammobileconnect.usa.canon.com
nwstg.cusa.canon.com
lfsstorefront.com
*.dev-apps.cusa.canon.com
www.cfsdealerportal.com
nyrhdz21.cusa.canon.com
WMBMQPRD.cusa.canon.com
commerce.mylan.csa.canon.com
cusa.canon.com
taxserviceqa.usa.canon.com
secure1.canon.com
essdmtes1qa.cusa.canon.com
nyrhdz20.cusa.canon.com
s21fsrcbrqa.cusa.canon.com
access.ciis.canon.com
Replenish.usa.canon.com
thinkinkdigital.com
www.employee-rewards.cusa.canon.com
secure1.canon.com
essdmtes2qa.cusa.canon.com
ecarriers.csa.canon.com
www.developersupport.canon.com
canonusaextranets.cusa.canon.com
chatbot-dev.ciis.canon.com
www.cla.canon.com
mps.cbps.canon.com
contentqa.cusa.canon.com
www.developersupport.canon.com
ereturn.usa.canon.com
www.support.cusa.canon.com
csa.canon.com
secure04.lithium.com
adseast.solutions.canon.com
msdjira.sc.rd.canon.com
s21.cusa.canon.com
ereturn.usa.canon.com
secure04.lithium.com
s21fsrcbrop.cusa.canon.com
ereturn.usa.canon.com
shop.usa.canon.com
shop.dev.csa.canon.com
mycanon.stg.cusa.canon.com
events.biggestfantour.com
shopqa-auth.cusa.canon.com
cdf.dt-ext.vpn.ciis.canon.com
learn.usa.canon.com
shop.usa.canon.com
imagination.usa.canon.com
web1cdvny.cfs.canon.com
esbprd.cusa.canon.com
ereturn.usa.canon.com
thinkinkdigital.com
secure04.lithium.com
globaldispatchsolution.api.esb.usa.canon.com
ccldev.cusa.canon.com
www.servicetrainingsolutions.cusa.canon.com
adscentral.solutions.canon.com
preview.partnernet.usa.canon.com
canonva.cvi.canon.com
cvi.canon.com
rtbcx.jp.canon.com
VAARCOTFORT.CUSA.CANON.COM
in-fedservice.cusa.canon.com
unbe.sxg.cusa.canon.com
ciis.canon.com
vapgp01.cusa.canon.com
cpfprismadirect.cusa.canon.com
akamai-san195.exacttarget.com
magentocloud37.map.fastly.net
www.cla.canon.com
esbqa-2.cusa.canon.com
raise.usa.canon.com
magentocloud52.map.fastly.net
www.developersupport.canon.com
secure11.lithium.com
mycsa.s21qa.csa.canon.com
ess1.csa.canon.com
lsarprx.cusa.canon.com
upload-photos.dtp-community.usa.canon.com
shortstack.usa.canon.com
email2.cusa.canon.com
varhdv117.cusa.canon.com
www.support.cusa.canon.com
secure11.lithium.com
impact-uat.csa.canon.com
kbsupport.cusa.canon.com
events.ciis.canon.com
ereturn.usa.canon.com
cfsdealerportal.com
taxservice.usa.canon.com
secure07.stage.lithium.com
*.cusa.canon.com
www.support.cusa.canon.com
travelexpensecusaqa.cusa.canon.com
oneweb.api-stg.esb.usa.canon.com
mnyacs1121.cusa.canon.com
smarterdocs.corp.cbps.canon.com
Certificate
The complete raw certificate details for www.cla.canon.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgIQC7l/VzUc/KigCExILhoMbjANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTkwMTI5MDAwMDAwWhcN MjEwMTI5MTIwMDAwWjCBlDELMAkGA1UEBhMCVVMxETAPBgNVBAgTCE5ldyBZb3Jr MREwDwYDVQQHEwhNZWx2aWxsZTEbMBkGA1UEChMSQ2Fub24gVS5TLkEuLCBJTkMu MSYwJAYDVQQLEx1JTkZPUk1BVElPTiBURUNITk9MT0dZLUY1LUFTSDEaMBgGA1UE AxMRd3d3LmNsYS5jYW5vbi5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCP6kl3CidUTsrekUG/RPrvqTRQMOXjBNYtCHdGpDjU0lfmvVdzSkI7qHMn zBzmxPbvPHPXMFse6bRlaJ8KPLcPh3AOQ6I6gkcLZm88YA4rm7wEAcRdkmC6SdlL 0cJdU5DOekamrshiU181mmLTEph3El+j/VabnujRQXLnajhK0tppUJVW1ZfQzbWv 39KTVMydiI4/iuhmJ7ZE38b8Qcct2UkOxx2LXRg8duE0xSGxMZSfdhLGWr9kznN7 AGrh+4B2PQOGtjhTHl6R4fCDViupRXWE6B9SXOAw3WI5R2cVW1iQ3t6eyJ+zdl7M 2BjixNZml6Nxs6h99QlRl2mhochdAgMBAAGjggH5MIIB9TAfBgNVHSMEGDAWgBQP gGEcgjFh1S8o541GOLQs4cbZ4jAdBgNVHQ4EFgQUDK+p6UK6mCCy10yorRRCXxFD toEwKwYDVR0RBCQwIoINY2xhLmNhbm9uLmNvbYIRd3d3LmNsYS5jYW5vbi5jb20w DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBr BgNVHR8EZDBiMC+gLaArhilodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc3NjYS1z aGEyLWc2LmNybDAvoC2gK4YpaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL3NzY2Et c2hhMi1nNi5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcC ARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwfAYIKwYB BQUHAQEEcDBuMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20w RgYIKwYBBQUHMAKGOmh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2Vy dFNIQTJTZWN1cmVTZXJ2ZXJDQS5jcnQwCQYDVR0TBAIwADATBgorBgEEAdZ5AgQD AQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWYxDwtPE8SrbTWbKwqGHuwzv7vNO t0uGkjPuJTabZwO/EWZisR5TF5BpanrBNEcjhyoCyS4g4WrFFvhp41pPpBeiChep NqVLd8N/09qpd5pRzfdJ3US67wjdMUKXdJEs/hcoSNSbx9DZWavA0HxLgDYb7D20 j3EMBKxmLv7oANVcWB0+C81Htrsue5bkRYWcTo8oyXSCXPofk6rpD1d7mbhMI7cr nk2o4l55jg+k60y6ZE7OBUgtfOvFc3omIrsMA0IMATLth4ASUiD05+XC+ehSn4wA GhB0/qHFm944LqIjKVgP0mEIADkwxrgTsloB+jMfxMszEUtYV9zp2J7Q2g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj+pJdwonVE7K3pFBv0T6 76k0UDDl4wTWLQh3RqQ41NJX5r1Xc0pCO6hzJ8wc5sT27zxz1zBbHum0ZWifCjy3 D4dwDkOiOoJHC2ZvPGAOK5u8BAHEXZJguknZS9HCXVOQznpGpq7IYlNfNZpi0xKY dxJfo/1Wm57o0UFy52o4StLaaVCVVtWX0M21r9/Sk1TMnYiOP4roZie2RN/G/EHH LdlJDscdi10YPHbhNMUhsTGUn3YSxlq/ZM5zewBq4fuAdj0DhrY4Ux5ekeHwg1Yr qUV1hOgfUlzgMN1iOUdnFVtYkN7ensifs3ZezNgY4sTWZpejcbOoffUJUZdpoaHI XQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15584665647770568806779967935107173486 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-29 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-29 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Melville' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Canon U.S.A., INC.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'INFORMATION TECHNOLOGY-F5-ASH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.cla.canon.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18167608822267884722287455673633549251028264104753370831695986480754575282400855048942272374708971921132284401912926580959570927789044920099189863259149504130598115914751483341944831381152732614276573470195784288955725477804074528349541930848674154019981327711212708912697353444706987095667216140739049440395933973134129793623180585319830826384693808419247205352231139594989169617341800453607444901009065322699945404910597139926875031186064873513086799618959707712139833838337420218386731482328177588213476984456175155299354376451207077911657488757231062387847307821485855154131391044698432208042422496220147607521373 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0cafa9e942ba9820b2d74ca8ad14425f1143b681 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cla.canon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cla.canon.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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