www.ap.org
- The Associated Press -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number ea:f8:f0:8c:b5:78:a2:70:00:00:00:00:50:f8:0e:d7 was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
The Associated Press
Organization:
The Associated Press
State / Province:
New Jersey
Locality: Cranbury
Country: US
Locality: Cranbury
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): ea:f8:f0:8c:b5:78:a2:70:00:00:00:00:50:f8:0e:d7Serial Number (int): 312331919560997204874698199711211851479
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 98:ff:14:af:c4:bb:b8:5e:a0:94:53:b6:c2:ed:6f:7a:b6:89:84:80
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 28:d2:9c:65:30:a1:10:ae:43:0c:51:dd:c6:15:12:27:a3:14:08:a2
Fingerprint (sha256): 02:23:d3:7a:cd:db:23:18:e9:57:7c:dd:fd:e6:9b:44:3c:c7:7e:f0:11:dd:15:33:c1:e7:96:51:e9:5a:6a:89
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate www.ap.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ap.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.ap.org
ap.org
ap.org
Other certificates including the domain name ap.org
(limited to 100 certificates)
feedback.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
playbook.ap.org
ervaring.nedvice.nl
www.ap.org
help.ap.org
nycwlcdmz1.ap.org
ap.org
apipreview.ap.org
careers.ap.org
appbnom11.ap.org
ervaring.nedvice.nl
ctchive01.ap.org
inside.ap.org
cwa-ctc.ap.org
ap.org
partners.apvideohub.ap.org
discover.ap.org
ASSP-EXPC-P.ap.org
ap.org
ap.org
epix.ap.org
mail-ctc.ap.org
ap.org
ap.org
ervaring.nedvice.nl
backup.ap.org
ervaring.nedvice.nl
eapws.ap.org
developer.ap.org
ervaring.nedvice.nl
datakit.ap.org
login.ap.org
kibana.associatedpress.com
api.ap.org
DeveloperAPIPreview.ap.org
ap.org
blog.ap.org
sunshine.ap.org
ipdlonbackhaul.ap.org
approdpbnom11.ap.org
careers.ap.org
easyvista.ap.org
ap.org
ssrpm.ap.org
vault.ap.org
tokive01.ap.org
login.ap.org
ctcgsscasper01.ap.org
ap.org
easyvista.ap.org
crmgw.ap.org
api.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
preview.apvideohub.ap.org
ervaring.nedvice.nl
ap.org
sunshine.ap.org
store.ap.org
store.ap.org
origin.hosted.ap.org
ap.org
ap.org
blog.ap.org
store.ap.org
tokive01.ap.org
ap.org
approdpbnom12.ap.org
apipreview.ap.org
ap.org
apvideohub.ap.org
Developerapi.ap.org
eapadmin2.ap.org
ervaring.nedvice.nl
mysap.ap.org
blog.ap.org
discover.ap.org
inside.ap.org
wfm.ap.org
ap.org
discover.ap.org
IMSIPAPGW01.ap.org
ap.org
api-qa.ap.org
ap.org
partners.apvideohub.ap.org
blog.ap.org
store.ap.org
apvideohub.ap.org
sports.ap.org
bejive01.ap.org
discover.ap.org
gamestream.ap.org
apipreview.ap.org
ervaring.nedvice.nl
discover.ap.org
tokive01.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
ervaring.nedvice.nl
playbook.ap.org
ervaring.nedvice.nl
www.ap.org
help.ap.org
nycwlcdmz1.ap.org
ap.org
apipreview.ap.org
careers.ap.org
appbnom11.ap.org
ervaring.nedvice.nl
ctchive01.ap.org
inside.ap.org
cwa-ctc.ap.org
ap.org
partners.apvideohub.ap.org
discover.ap.org
ASSP-EXPC-P.ap.org
ap.org
ap.org
epix.ap.org
mail-ctc.ap.org
ap.org
ap.org
ervaring.nedvice.nl
backup.ap.org
ervaring.nedvice.nl
eapws.ap.org
developer.ap.org
ervaring.nedvice.nl
datakit.ap.org
login.ap.org
kibana.associatedpress.com
api.ap.org
DeveloperAPIPreview.ap.org
ap.org
blog.ap.org
sunshine.ap.org
ipdlonbackhaul.ap.org
approdpbnom11.ap.org
careers.ap.org
easyvista.ap.org
ap.org
ssrpm.ap.org
vault.ap.org
tokive01.ap.org
login.ap.org
ctcgsscasper01.ap.org
ap.org
easyvista.ap.org
crmgw.ap.org
api.ap.org
ervaring.nedvice.nl
ervaring.nedvice.nl
preview.apvideohub.ap.org
ervaring.nedvice.nl
ap.org
sunshine.ap.org
store.ap.org
store.ap.org
origin.hosted.ap.org
ap.org
ap.org
blog.ap.org
store.ap.org
tokive01.ap.org
ap.org
approdpbnom12.ap.org
apipreview.ap.org
ap.org
apvideohub.ap.org
Developerapi.ap.org
eapadmin2.ap.org
ervaring.nedvice.nl
mysap.ap.org
blog.ap.org
discover.ap.org
inside.ap.org
wfm.ap.org
ap.org
discover.ap.org
IMSIPAPGW01.ap.org
ap.org
api-qa.ap.org
ap.org
partners.apvideohub.ap.org
blog.ap.org
store.ap.org
apvideohub.ap.org
sports.ap.org
bejive01.ap.org
discover.ap.org
gamestream.ap.org
apipreview.ap.org
ervaring.nedvice.nl
discover.ap.org
tokive01.ap.org
ervaring.nedvice.nl
Certificate
The complete raw certificate details for www.ap.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHKzCCBhOgAwIBAgIRAOr48Iy1eKJwAAAAAFD4DtcwDQYJKoZIhvcNAQELBQAw gboxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1FbnRydXN0LCBJbmMuMSgwJgYDVQQL Ex9TZWUgd3d3LmVudHJ1c3QubmV0L2xlZ2FsLXRlcm1zMTkwNwYDVQQLEzAoYykg MjAxMiBFbnRydXN0LCBJbmMuIC0gZm9yIGF1dGhvcml6ZWQgdXNlIG9ubHkxLjAs BgNVBAMTJUVudHJ1c3QgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgLSBMMUswHhcN MTkxMDAyMTUxMTUwWhcNMjExMDIyMTU0MTQ5WjBpMQswCQYDVQQGEwJVUzETMBEG A1UECBMKTmV3IEplcnNleTERMA8GA1UEBxMIQ3JhbmJ1cnkxHTAbBgNVBAoTFFRo ZSBBc3NvY2lhdGVkIFByZXNzMRMwEQYDVQQDEwp3d3cuYXAub3JnMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYSL3tkJtbixU1hL/i/m0Io2Sd0a9tNV q46D4UJrtx1RJVaEFxF3FumeZV+ZvvYt6sfsHPIPqzloxJgZ8GaX1s6vWDYOuKFx UD/0Cg5q3vZxkyhQIXSsGoEgXC3Jpw6S8f/i6/mln5JjcSuXKzyxmuqsQICBZhX3 t9SG9/7or9ckxSlrQ4XNAO6l8j37T9WcaaLtz8mfvnd+RGoLYjJMwUPl+nvzPG+P G5mPNtuZi7c4N83tZ66dm+oHuVVPFVfFiVXMGuhv0wLXe6nKorDfitvh1vLB4zLm cmEO236GaHCIvLBpwcdPgO98pb+XdNGH2AzzVqsz6Io27UWZa0G3/QIDAQABo4ID ejCCA3YwHQYDVR0RBBYwFIIKd3d3LmFwLm9yZ4IGYXAub3JnMIIB9wYKKwYBBAHW eQIEAgSCAecEggHjAeEAdwBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPT DAAAAW2NIn6AAAAEAwBIMEYCIQDNwm/uKkzQFJ8ZvuD7kG5wMCzSfNNwUzwMireI BNdweAIhAKRNS6uaeO3beO5NF92fBvvRKkySKBEojJcJyhW48pKtAHYARJRlLrDu zq/EQAfYqP4owNrmgr7YyzG1P9MzlrW2gagAAAFtjSJ+hAAABAMARzBFAiBcvEej w9rJNzj1PPaPa7yYOnlfRoCzGjPbfq2DMYeNeQIhAN3ZdJAFB3dvjGDo27dF2eYs 6LOZ0+QYP2LrQnt1pZGrAHUAVhQGmi/XwuzT9eG9RLI+x0Z2ubyZEVzA75SYVdaJ 0N0AAAFtjSJ+wQAABAMARjBEAiBt0gPT+WSXpBpvqqlAonM/7OQyUyYkOQz7JyQb xfr3hgIgXjPNfMF3+/FzPIdJxY212l/Gs9BEuLiCsC7Pf+7J6zsAdwD2XJQv0Xcw IhRUGAgwlFaO400TGTO/3wwvIAvMTvFk4wAAAW2NIn5EAAAEAwBIMEYCIQDWsMEp b0ixMIiljWDtcYdqDUQPj2Y1ZxV4WpCsHY5HGAIhAPiArHLaVjcobtKzhqY5OSJM WrCsmrF8t9gxSJwSAK7hMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF BQcDATAzBgNVHR8ELDAqMCigJqAkhiJodHRwOi8vY3JsLmVudHJ1c3QubmV0L2xl dmVsMWsuY3JsMEsGA1UdIAREMEIwNgYKYIZIAYb6bAoBBTAoMCYGCCsGAQUFBwIB FhpodHRwOi8vd3d3LmVudHJ1c3QubmV0L3JwYTAIBgZngQwBAgIwaAYIKwYBBQUH AQEEXDBaMCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAzBggr BgEFBQcwAoYnaHR0cDovL2FpYS5lbnRydXN0Lm5ldC9sMWstY2hhaW4yNTYuY2Vy MB8GA1UdIwQYMBaAFIKicHTdvFM/z3vU981/p2DGCky/MB0GA1UdDgQWBBSY/xSv xLu4XqCUU7bC7W96tomEgDAJBgNVHRMEAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQCD TMpHjJn9nqPG6W0lv9dpxvVA5gNAMI7gT5qb3ELLlK4rqvQpSx2wnbtUXqhaP6Vy Upactm78nUVxMjBaJJCNx7SvbLZHBNl+/oldPKWBh52LdnNhqucCfzBZDw+cxGDz 6RxF4syM6MoRbZjSn/UFCSHUB/mN2lUsM5bOldCdzvxfJDULR6VBQhGySCh87Kfm DlLCXBs8p5GrW3fiWazoVi3n7JgrD0HWWptWNln0Kn9Ivb+hz+Cc1Oiwfijr6fCz Q4o/LLz47Jkw9SWUTxO4EO+BNDZR8HZvAHe/7kY8PgavZRjjQvgmvLedhfAH3r1a jeBuWvz4pBQrrOl4B8KM -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYSL3tkJtbixU1hL/i/m 0Io2Sd0a9tNVq46D4UJrtx1RJVaEFxF3FumeZV+ZvvYt6sfsHPIPqzloxJgZ8GaX 1s6vWDYOuKFxUD/0Cg5q3vZxkyhQIXSsGoEgXC3Jpw6S8f/i6/mln5JjcSuXKzyx muqsQICBZhX3t9SG9/7or9ckxSlrQ4XNAO6l8j37T9WcaaLtz8mfvnd+RGoLYjJM wUPl+nvzPG+PG5mPNtuZi7c4N83tZ66dm+oHuVVPFVfFiVXMGuhv0wLXe6nKorDf itvh1vLB4zLmcmEO236GaHCIvLBpwcdPgO98pb+XdNGH2AzzVqsz6Io27UWZa0G3 /QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 312331919560997204874698199711211851479 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-02 15:11:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-22 15:41:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Jersey' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cranbury' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Associated Press' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ap.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22409541029653865388808490746978537439014307332391886200544904371929324631120963882042595794227232621577171983632711788156249909632041327036529754207470552496982504892022670686529144981424775758903500298386952565394863257771031895907976604387978873444922244262495611263414307119812825149847521025931110692450932686072103399169514606187722965189570150549688222263152459140160057018857514660769715791722899994842715826565611566988091098827530601754965911848334859318150857042305001323261589710545899396874272497535934629002151516217122202475939580257840561105067719432974112669502410211678480457438515050890869357000701 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ap.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ap.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 98ff14afc4bbb85ea09453b6c2ed6f7ab6898480 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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