nra-apac-sg-sin-2.net.nokia.com
- Nokia -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0e:c6:0a:65:fc:20:3d:79:6f:02:16:99:f0:6a:73:5f was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Nokia
Organization:
Nokia
Organization unit: Nokia IT
Organization unit: Nokia IT
Locality:
Espoo
Country: FI
Country: FI
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:c6:0a:65:fc:20:3d:79:6f:02:16:99:f0:6a:73:5fSerial Number (int): 19637477623148366954121767695594189663
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c4:83:14:7b:34:0c:c9:41:6a:25:a8:42:b6:01:21:f9:36:75:a1:c7
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 7f:0d:55:0b:b3:6e:74:41:9e:0f:45:d8:57:ec:65:9a:8d:f1:99:6a
Fingerprint (sha256): 02:26:90:31:ed:e3:b7:ea:f6:b1:89:95:db:56:c2:16:0b:9f:40:36:8b:20:5a:30:12:88:40:49:e2:ed:6a:98
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate nra-apac-sg-sin-2.net.nokia.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nra-apac-sg-sin-2.net.nokia.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nra-apac-sg-sin-2.remoteaccess.nsn.com
nra-apac-sg-sin-2.remoteaccess.nokiasiemensnetworks.com
nra-apac-sg-sin-2.net.nokia.com
nra-apac-sg-sin-2.remoteaccess.nokiasiemensnetworks.com
nra-apac-sg-sin-2.net.nokia.com
Other certificates including the domain name nokia.com
(limited to 100 certificates)
trade.online.nokia.com
www.integrationsupplier.nokia.com
sa32gl.adn.edgecastcdn.net
zina.net.nokia.com
build.forum.nokia.com
CUST01-CUCM-SUB-01-CL6.int.net.nokia.com
wpa.int.net.nokia.com
reports.push.nokia.com
bluelounge.nokia.com
gnocportal.ext.net.nokia.com
maps.nokia.com
erp.int.net.nokia.com
es4labsv52.emea.nsn-net.net
i2.shared.global.fastly.net
si.odc.nokia.com
em1x-372.lhr.messaging.nokia.com
email.nokia.com
san3.here.com
download-src-sl-01.mh.nokia.com
msm.iot.nokia.com
sits-support.ext.net.nokia.com
marketstage.nokia.com
xesefe100.ext.nokia.com
NOKIALYNCPOOL1.nnok.nokia.com
svcprdext2.support.alcatel-lucent.com
qc-prod.int.net.nokia.com
support.health.nokia.com
rmscert-noe.nokia.com
trade.online.nokia.com
edi.ext.net.nokia.com
docs.in.nokia.com
nra-americas-us-dal-vip.net.nokia.com
cdp.trial.nokia.com
homewifi.nokia.com
learningstore.nokia.com
esitv346lab.nokia.com
stg.data.nokia.com
myaccessdev.app.nokia.com
ushare.ovi.com.cn
nra-brazil-1.net.nokia.com
supportforum.networks.nokia.com
account.tw.mobileshop.nokia.com
sa12gl.wpc.edgecastcdn.net
focalpoint-qa.int.net.nokia.com
api.demo.digital-assistant.nokia.com
origin.company.nokia.com
gsdanalytics.net.nokia.com
myportal-s50.int.net.nokia.com
appupdate.qa.nokia.com
payment.perf.ovi.com
cust01-expc-cl2-e01.nokia.com
staging-mika.nokia.com
staging-aslm.nokia.com
support.idc.nokia.com
dms.qa.europe.fox.nokia.com
gim.net.nokia.com
partner.west.us.dac.nokia.com
hybrid2.ext.net.nokia.com
finland.partners.nokiasiemensnetworks.com
cap-test.places.dev.api.here.com
direct.noltest.trade.online.nokia.com
nra-apac-sg-sin-vip.net.nokia.com
cloud-lab.ext.net.nokia.com
ushare.ovi.com.cn
im.stg.mc102.atl.messaging.nokia.com
san1.nokia.com
nra-india.net.nokia.com
sahdr001.europe.nokia.com
collab.nokia.com
secure0133.hubspot.com
i2.shared.global.fastly.net
moslacap.net.nokia.com
developer.nokia.com
erm.int.net.nokia.com
odin.in.here.com
nra-apac-sg-sin-2.net.nokia.com
mywfmdeuroafrica.ext.net.nokia.com
NOKIALYNCPOOL1.nnok.nokia.com
extranet-nes-portal.int.net.nokia.com
learningservicesdevlabs.nokia.com
nattcdpb.saas.nokia.com
share-qa.int.net.nokia.com
vpn.nokia.com
estelco2.ext.net.nokia.com
gerrit-staging.int.net.nokia.com
sa12gl.wpc.edgecastcdn.net
iris-qa.net.nokia.com
nra-emea-pl-wro-2.net.nokia.com
CUST01-CUCM-SUB-10-CL9.int.net.nokia.com
zina.net.nokia.com
tools.ext.nokia.com
sip.ucfederation.com
gerrit.ext.net.nokia.com
placescontent.nokia.com
inventwithnokia.nokia.com
sa12gl.wpc.edgecastcdn.net
prd-www.networks.nokia.com
CUST01-CUCM-SUB-02-CL6.int.net.nokia.com
scbe.api.here.com
logistics-qa.ext.net.nokia.com
www.integrationsupplier.nokia.com
sa32gl.adn.edgecastcdn.net
zina.net.nokia.com
build.forum.nokia.com
CUST01-CUCM-SUB-01-CL6.int.net.nokia.com
wpa.int.net.nokia.com
reports.push.nokia.com
bluelounge.nokia.com
gnocportal.ext.net.nokia.com
maps.nokia.com
erp.int.net.nokia.com
es4labsv52.emea.nsn-net.net
i2.shared.global.fastly.net
si.odc.nokia.com
em1x-372.lhr.messaging.nokia.com
email.nokia.com
san3.here.com
download-src-sl-01.mh.nokia.com
msm.iot.nokia.com
sits-support.ext.net.nokia.com
marketstage.nokia.com
xesefe100.ext.nokia.com
NOKIALYNCPOOL1.nnok.nokia.com
svcprdext2.support.alcatel-lucent.com
qc-prod.int.net.nokia.com
support.health.nokia.com
rmscert-noe.nokia.com
trade.online.nokia.com
edi.ext.net.nokia.com
docs.in.nokia.com
nra-americas-us-dal-vip.net.nokia.com
cdp.trial.nokia.com
homewifi.nokia.com
learningstore.nokia.com
esitv346lab.nokia.com
stg.data.nokia.com
myaccessdev.app.nokia.com
ushare.ovi.com.cn
nra-brazil-1.net.nokia.com
supportforum.networks.nokia.com
account.tw.mobileshop.nokia.com
sa12gl.wpc.edgecastcdn.net
focalpoint-qa.int.net.nokia.com
api.demo.digital-assistant.nokia.com
origin.company.nokia.com
gsdanalytics.net.nokia.com
myportal-s50.int.net.nokia.com
appupdate.qa.nokia.com
payment.perf.ovi.com
cust01-expc-cl2-e01.nokia.com
staging-mika.nokia.com
staging-aslm.nokia.com
support.idc.nokia.com
dms.qa.europe.fox.nokia.com
gim.net.nokia.com
partner.west.us.dac.nokia.com
hybrid2.ext.net.nokia.com
finland.partners.nokiasiemensnetworks.com
cap-test.places.dev.api.here.com
direct.noltest.trade.online.nokia.com
nra-apac-sg-sin-vip.net.nokia.com
cloud-lab.ext.net.nokia.com
ushare.ovi.com.cn
im.stg.mc102.atl.messaging.nokia.com
san1.nokia.com
nra-india.net.nokia.com
sahdr001.europe.nokia.com
collab.nokia.com
secure0133.hubspot.com
i2.shared.global.fastly.net
moslacap.net.nokia.com
developer.nokia.com
erm.int.net.nokia.com
odin.in.here.com
nra-apac-sg-sin-2.net.nokia.com
mywfmdeuroafrica.ext.net.nokia.com
NOKIALYNCPOOL1.nnok.nokia.com
extranet-nes-portal.int.net.nokia.com
learningservicesdevlabs.nokia.com
nattcdpb.saas.nokia.com
share-qa.int.net.nokia.com
vpn.nokia.com
estelco2.ext.net.nokia.com
gerrit-staging.int.net.nokia.com
sa12gl.wpc.edgecastcdn.net
iris-qa.net.nokia.com
nra-emea-pl-wro-2.net.nokia.com
CUST01-CUCM-SUB-10-CL9.int.net.nokia.com
zina.net.nokia.com
tools.ext.nokia.com
sip.ucfederation.com
gerrit.ext.net.nokia.com
placescontent.nokia.com
inventwithnokia.nokia.com
sa12gl.wpc.edgecastcdn.net
prd-www.networks.nokia.com
CUST01-CUCM-SUB-02-CL6.int.net.nokia.com
scbe.api.here.com
logistics-qa.ext.net.nokia.com
Certificate
The complete raw certificate details for nra-apac-sg-sin-2.net.nokia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIQDsYKZfwgPXlvAhaZ8GpzXzANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTgwOTA0MDAwMDAwWhcN MTgxMjAxMTIwMDAwWjBqMQswCQYDVQQGEwJGSTEOMAwGA1UEBxMFRXNwb28xDjAM BgNVBAoTBU5va2lhMREwDwYDVQQLEwhOb2tpYSBJVDEoMCYGA1UEAxMfbnJhLWFw YWMtc2ctc2luLTIubmV0Lm5va2lhLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMA/uqcqM8Bsjie+XONOwgqUkIdwOolylfT9+JVXf8hOk8Kc5wCZ b50F//jY7KzDTQBdueEdwgCC2in/wJk9NXN9KWgSMwqWDkKHPd9iX9OAMZfxgevV D/iXblXRqoBbmVpC4YwFWC8PBvJvw1xBz5cjOm3EZqAxrSPiyuTrQq4/KemryiF+ 2LoSsgr0z8cj5YHqXFjKOrvaV5ozd3a9Gugn59Gll1pIHvSMveakKhXolgGj5Jw1 NZF4irvCvASjXLAZ1N9jVCpnNDpmKokCXseMCr6fFINqp/nzsqokCMBf26cqnsPZ odiiTKiSOZnEz2aWT9lb3iIprKwihFil77MCAwEAAaOCAlwwggJYMB8GA1UdIwQY MBaAFA+AYRyCMWHVLyjnjUY4tCzhxtniMB0GA1UdDgQWBBTEgxR7NAzJQWolqEK2 ASH5NnWhxzCBjQYDVR0RBIGFMIGCgiZucmEtYXBhYy1zZy1zaW4tMi5yZW1vdGVh Y2Nlc3MubnNuLmNvbYI3bnJhLWFwYWMtc2ctc2luLTIucmVtb3RlYWNjZXNzLm5v a2lhc2llbWVuc25ldHdvcmtzLmNvbYIfbnJhLWFwYWMtc2ctc2luLTIubmV0Lm5v a2lhLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMGsGA1UdHwRkMGIwL6AtoCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNv bS9zc2NhLXNoYTItZzYuY3JsMC+gLaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5j b20vc3NjYS1zaGEyLWc2LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgG CCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAEC AjB8BggrBgEFBQcBAQRwMG4wJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2lj ZXJ0LmNvbTBGBggrBgEFBQcwAoY6aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29t L0RpZ2lDZXJ0U0hBMlNlY3VyZVNlcnZlckNBLmNydDAJBgNVHRMEAjAAMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCRqF9o0dY6/9Yp9Syx b4EjsAW+QyuDRAe7KBZxKY45GSYr3zmWFKFEPT8arc9nz4B9tEwQAJwLm54zr2Ew qny3N6N6QwmA4hG3gxzNUlVAa9/wP/KL9lT+gXw0geNUa1gfKcIFRkdKOMHuSKix 9LenmT1ZKadLrvnHhyHHmjpQQcNorv3P14r7PaBp4foOEBu7zUAKFrcGW94d1ePu MHpYFM+vhY62oUC9mZqpeaMyKlglkFNSsri3yVjL30SLVxX+wLiQwgtvp5wK9P3U IMxxjD2i02TIyW4LLgee3DjmYc5Ga0pnxB8oCeFghstT0EwuVsxPmgOHrRB7DNR8 irAM -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwD+6pyozwGyOJ75c407C CpSQh3A6iXKV9P34lVd/yE6TwpznAJlvnQX/+NjsrMNNAF254R3CAILaKf/AmT01 c30paBIzCpYOQoc932Jf04Axl/GB69UP+JduVdGqgFuZWkLhjAVYLw8G8m/DXEHP lyM6bcRmoDGtI+LK5OtCrj8p6avKIX7YuhKyCvTPxyPlgepcWMo6u9pXmjN3dr0a 6Cfn0aWXWkge9Iy95qQqFeiWAaPknDU1kXiKu8K8BKNcsBnU32NUKmc0OmYqiQJe x4wKvp8Ug2qn+fOyqiQIwF/bpyqew9mh2KJMqJI5mcTPZpZP2VveIimsrCKEWKXv swIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19637477623148366954121767695594189663 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-04 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-01 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Espoo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nokia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nokia IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nra-apac-sg-sin-2.net.nokia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24269180550481503296499565903607078638644325431605518765427103827913831270285701023183241729844588974073756873065674141299725441444365950667488840571156284860428660702772130774904026151115170728076731290975672836730614751876448103153439013907616400040540056156825039223599999718423181537954540841560642671471586065266294928135515294675238852282235355269349133175398559545092462971026606852322757571704308588770115289837350181170724653054618134205459974373547407070472490241963453912758486108444619084005648173245197601841047416335197622273997257301212910765556556071562957186667203853358402110617101151001320962256819 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c483147b340cc9416a25a842b60121f93675a1c7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nra-apac-sg-sin-2.remoteaccess.nsn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nra-apac-sg-sin-2.remoteaccess.nokiasiemensnetworks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nra-apac-sg-sin-2.net.nokia.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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