local.tomthumb.com
- CloudFlare, Inc. -
Issued by CloudFlare Inc RSA CA-1
About this certificate
This digital certificate with serial number 07:af:5a:ab:f0:85:2e:a8:f0:2f:e1:83:bb:09:61:a5 was issued on by CloudFlare, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
CloudFlare, Inc.
Organization:
CloudFlare, Inc.
State / Province:
CA
Locality: San Francisco
Country: US
Locality: San Francisco
Country: US
CloudFlare, Inc.
Organization:
CloudFlare, Inc.
State / Province:
CA
Locality: San Francisco
Country: US
Locality: San Francisco
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:af:5a:ab:f0:85:2e:a8:f0:2f:e1:83:bb:09:61:a5Serial Number (int): 10215086960055534371209448438178079141
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: b0:c0:42:a5:2c:cb:0f:3b:29:07:46:61:69:95:ba:95:4a:d6:79:7d
AuthorityKeyId: 91:05:8a:df:4c:22:c6:6d:8b:94:4c:16:45:7e:ee:6f:02:fb:b7:c0
Fingerprint (sha1): cd:0d:0c:2a:90:1e:ae:36:30:26:7f:fc:50:13:4b:6d:9c:81:af:9d
Fingerprint (sha256): 02:43:f2:21:6b:5e:e9:a2:47:2a:c0:02:26:a5:3e:7d:48:e9:9d:13:43:d0:d2:53:cf:78:38:c4:81:c3:8f:02
Issuing Certificate URL: http://cacerts.digicert.com/CloudFlareIncRSACA-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/CloudFlareIncRSACA1.crl
CRL Distribution Point: http://crl4.digicert.com/CloudFlareIncRSACA1.crl
Check the revocation status for certificate local.tomthumb.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for local.tomthumb.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
local.tomthumb.com
Other certificates including the domain name tomthumb.com
(limited to 100 certificates)
peoplesoft-pr.safeway.com
incapsula.com
shop-qa3.safeway.com
shop-dev1-origin.safeway.com
www-qa1.albertsons.com
www-qa2.albertsons.com
local.pharmacy.tomthumb.com
local.tomthumb.com
auth.tomthumb.com
api-prod-origin.safeway.com
imperva.com
incapsula.com
ngcp-qi.tomthumb.com
imperva.com
shop-qa3-origin.safeway.com
shop-qa1.safeway.com
www-qa3.albertsons.com
shop-qa1.safeway.com
incapsula.com
embed-answers.cority.com.pagescdn.com
ngcp-qa2.tomthumb.com
www-dev1.albertsons.com
imperva.com
shop-qa1.safeway.com
api-qa1-origin.safeway.com
shop-dev1-origin.safeway.com
incapsula.com
peoplesoft-pr.safeway.com
www-dev2.albertsons.com
shop-qa1.safeway.com
peoplesoft-pr.safeway.com
shop-qa1.safeway.com
api-qa3-origin.safeway.com
ctsecure.mywebgrocer.com
api-stage-origin.safeway.com
www.tomthumb.com
api-dev1-origin.safeway.com
shop-dev2-origin.safeway.com
pharmacy.tomthumb.com
pharmacy.tomthumb.com
blog-hitchhikers.yext.com
shop-qa3.safeway.com
shop-prod-origin.safeway.com
shop-qa1.safeway.com
incapsula.com
auth.tomthumb.com
ngcp-qa2.safeway.com
shop-qa1-origin.safeway.com
www-qa2.albertsons.com
www-dev1-origin.safeway.com
peoplesoft-pr.safeway.com
san3.yext-cdn.com
imperva.com
www.safeway.com
shop-qa2-origin.safeway.com
www.tomthumb.com
shop-qa1-origin.safeway.com
www-beta.albertsons.com
shop-dev3-origin.safeway.com
peoplesoft-pr.safeway.com
api-qa1-origin.safeway.com
san2.yext-cdn.com
ecom-dev1-azweb.safeway.com
san2.yext-cdn.com
ngcp-qa2.safeway.com
pharmacy.tomthumb.com
delivery.tomthumb.com
www.tomthumb.com
imperva.com
pharmacy.tomthumb.com
www-stage-origin.safeway.com
local.tomthumb.com
www-qa1.albertsons.com
incapsula.com
shop-qa1.safeway.com
local.pharmacy.tomthumb.com
shop-dev3-origin.safeway.com
imperva.com
api-prod-origin.safeway.com
incapsula.com
local.tomthumb.com
www-dev3.albertsons.com
shop-qa3.safeway.com
imperva.com
auth-q.tomthumb.com
api-prod.safeway.com
shop-qa1.safeway.com
api-prod-origin.safeway.com
coupons.albertsons.com
ngcp-qa2.tomthumb.com
shop-qa3-origin.safeway.com
www.tomthumb.com
imperva.com
www-stage-origin.safeway.com
ngcp-qa2.safeway.com
shop-dev1-origin.safeway.com
www-qa1-origin.safeway.com
api-qa2-origin.safeway.com
shop-qa3-origin.safeway.com
shop-prod-origin.safeway.com
incapsula.com
shop-qa3.safeway.com
shop-dev1-origin.safeway.com
www-qa1.albertsons.com
www-qa2.albertsons.com
local.pharmacy.tomthumb.com
local.tomthumb.com
auth.tomthumb.com
api-prod-origin.safeway.com
imperva.com
incapsula.com
ngcp-qi.tomthumb.com
imperva.com
shop-qa3-origin.safeway.com
shop-qa1.safeway.com
www-qa3.albertsons.com
shop-qa1.safeway.com
incapsula.com
embed-answers.cority.com.pagescdn.com
ngcp-qa2.tomthumb.com
www-dev1.albertsons.com
imperva.com
shop-qa1.safeway.com
api-qa1-origin.safeway.com
shop-dev1-origin.safeway.com
incapsula.com
peoplesoft-pr.safeway.com
www-dev2.albertsons.com
shop-qa1.safeway.com
peoplesoft-pr.safeway.com
shop-qa1.safeway.com
api-qa3-origin.safeway.com
ctsecure.mywebgrocer.com
api-stage-origin.safeway.com
www.tomthumb.com
api-dev1-origin.safeway.com
shop-dev2-origin.safeway.com
pharmacy.tomthumb.com
pharmacy.tomthumb.com
blog-hitchhikers.yext.com
shop-qa3.safeway.com
shop-prod-origin.safeway.com
shop-qa1.safeway.com
incapsula.com
auth.tomthumb.com
ngcp-qa2.safeway.com
shop-qa1-origin.safeway.com
www-qa2.albertsons.com
www-dev1-origin.safeway.com
peoplesoft-pr.safeway.com
san3.yext-cdn.com
imperva.com
www.safeway.com
shop-qa2-origin.safeway.com
www.tomthumb.com
shop-qa1-origin.safeway.com
www-beta.albertsons.com
shop-dev3-origin.safeway.com
peoplesoft-pr.safeway.com
api-qa1-origin.safeway.com
san2.yext-cdn.com
ecom-dev1-azweb.safeway.com
san2.yext-cdn.com
ngcp-qa2.safeway.com
pharmacy.tomthumb.com
delivery.tomthumb.com
www.tomthumb.com
imperva.com
pharmacy.tomthumb.com
www-stage-origin.safeway.com
local.tomthumb.com
www-qa1.albertsons.com
incapsula.com
shop-qa1.safeway.com
local.pharmacy.tomthumb.com
shop-dev3-origin.safeway.com
imperva.com
api-prod-origin.safeway.com
incapsula.com
local.tomthumb.com
www-dev3.albertsons.com
shop-qa3.safeway.com
imperva.com
auth-q.tomthumb.com
api-prod.safeway.com
shop-qa1.safeway.com
api-prod-origin.safeway.com
coupons.albertsons.com
ngcp-qa2.tomthumb.com
shop-qa3-origin.safeway.com
www.tomthumb.com
imperva.com
www-stage-origin.safeway.com
ngcp-qa2.safeway.com
shop-dev1-origin.safeway.com
www-qa1-origin.safeway.com
api-qa2-origin.safeway.com
shop-qa3-origin.safeway.com
shop-prod-origin.safeway.com
Certificate
The complete raw certificate details for local.tomthumb.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgIQB69aq/CFLqjwL+GDuwlhpTANBgkqhkiG9w0BAQsFADBv MQswCQYDVQQGEwJVUzELMAkGA1UECBMCQ0ExFjAUBgNVBAcTDVNhbiBGcmFuY2lz Y28xGTAXBgNVBAoTEENsb3VkRmxhcmUsIEluYy4xIDAeBgNVBAMTF0Nsb3VkRmxh cmUgSW5jIFJTQSBDQS0xMB4XDTE4MDcxMTAwMDAwMFoXDTE5MDcxMTEyMDAwMFow ajELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAkNBMRYwFAYDVQQHEw1TYW4gRnJhbmNp c2NvMRkwFwYDVQQKExBDbG91ZEZsYXJlLCBJbmMuMRswGQYDVQQDExJsb2NhbC50 b210aHVtYi5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZSPwc v4fU16aXQFDtcOsz8SIh+GcGtzg87oHuso9BtJk+qeUpkVZ5nAHzLtk5+0+BTv2A uF0EdhTG6sYQVWtuu/5g8efw2QR6RaYK/fpjnZoz6gvjLDHQ3fLXubC26rJr8Z4G lBULVUBubhdvcAsPC6brXyZos2XCqX8Pb3IOl5tID90DUGoWMrquD3gFZakPnD6k 1zMNLKasuo+Hj2See2daJbXM6GZ8RzIVKb8F4xv8kgGgtTaZNQxc512eaVwI5KER OoEnMCbfAm7OI4mCx+HCcsNudBb6Yy53du6Hbru/LrVmKZGuhXC4hIpgiQbM5XVf 5jZM/WsjhP20qA3RAgMBAAGjggH2MIIB8jAfBgNVHSMEGDAWgBSRBYrfTCLGbYuU TBZFfu5vAvu3wDAdBgNVHQ4EFgQUsMBCpSzLDzspB0ZhaZW6lUrWeX0wHQYDVR0R BBYwFIISbG9jYWwudG9tdGh1bWIuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIweQYDVR0fBHIwcDA2oDSgMoYwaHR0cDov L2NybDMuZGlnaWNlcnQuY29tL0Nsb3VkRmxhcmVJbmNSU0FDQTEuY3JsMDagNKAy hjBodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vQ2xvdWRGbGFyZUluY1JTQUNBMS5j cmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwdgYIKwYBBQUHAQEEajBo MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wQAYIKwYBBQUH MAKGNGh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9DbG91ZEZsYXJlSW5jUlNB Q0EtMS5jcnQwDAYDVR0TAQH/BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkq hkiG9w0BAQsFAAOCAQEAJo9QmpDN9yvEmc52A5JyBeXC0gWukM9i6vaZT3EgZD4V ww7FQzhHhxLzQ0wlfmp9XPwQEjOLlLG9DwzytYOWlC+HVgnK20olg4kbOBP5GUKj RJYH0vF0anUgObgGPUCGEYLY4q4h7EwxaTAv0d/W784IDp1POAHEcKdL/2cp/EPI weETIVwUMgF2HC70Qn8r7SemGgR0asttO7ciP7PONSXTunjTXvh0y6DmwOeZvXn7 xRnxAd3A4yDBNrqenezHeaAjdD8fiIGrWN0WvBrA1hNP2FjQ23+t24SntERhIcV+ gWgfiyRQtflZr7n/OxT2K4d2ujV2GV8MgpbB7b+PKg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Uj8HL+H1Neml0BQ7XDr M/EiIfhnBrc4PO6B7rKPQbSZPqnlKZFWeZwB8y7ZOftPgU79gLhdBHYUxurGEFVr brv+YPHn8NkEekWmCv36Y52aM+oL4ywx0N3y17mwtuqya/GeBpQVC1VAbm4Xb3AL Dwum618maLNlwql/D29yDpebSA/dA1BqFjK6rg94BWWpD5w+pNczDSymrLqPh49k nntnWiW1zOhmfEcyFSm/BeMb/JIBoLU2mTUMXOddnmlcCOShETqBJzAm3wJuziOJ gsfhwnLDbnQW+mMud3buh267vy61ZimRroVwuISKYIkGzOV1X+Y2TP1rI4T9tKgN 0QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10215086960055534371209448438178079141 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'San Francisco' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CloudFlare, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CloudFlare Inc RSA CA-1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-11 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'San Francisco' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CloudFlare, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'local.tomthumb.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27429702330622926504468545069834076981879309150177266776745921069262636636998426948868067887531923539103614041447990442650382931550451514445260257855887306756759434318707937250487672505195224136486359817242135335514148007989254949540756568217826171875204821480620420046994399309347586580053830308149826781853310656136629557997995899903992808775387093764779339922286011956086094645926437520660857352424288594432528156396802509921170523870959159101064920431558034060982276478143502909790461169769859094411655924627177632655620810357408197160719069682896833974926360293356962723308622601451611125186077750298774178631121 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 91058adf4c22c66d8b944c16457eee6f02fbb7c0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b0c042a52ccb0f3b290746616995ba954ad6797d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'local.tomthumb.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (114 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/CloudFlareIncRSACA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/CloudFlareIncRSACA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/CloudFlareIncRSACA-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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