ontario.ca
- Government of Ontario -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 1c:76:ab:e0:58:2f:9e:cb:52:86:1d:6a:cc:71:3f:fa was issued on by Entrust, Inc..
With 34 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Government of Ontario
Organization:
Government of Ontario
Organization unit: Government of Ontario
Organization unit: Government of Ontario
State / Province:
Ontario
Locality: Toronto
Country: CA
Locality: Toronto
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 1c:76:ab:e0:58:2f:9e:cb:52:86:1d:6a:cc:71:3f:faSerial Number (int): 37834560977727631994667378877010100218
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 1c:8a:72:d8:c5:fe:d0:6e:50:b0:a7:f6:8f:a9:ba:10:4e:47:77:a0
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 7d:23:13:9f:a5:9c:5e:9a:9a:ec:2d:45:d9:d8:ce:7c:7d:a4:63:04
Fingerprint (sha256): 02:d2:7a:54:20:96:d0:af:de:37:91:5c:2e:a7:bc:44:06:b9:64:37:00:47:6e:ad:03:f7:4b:e6:17:e9:94:30
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate ontario.ca
34
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ontario.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ontario.ca
www.ontario.ca
biodiversityexplorer.mnr.gov.on.ca
cnfer.mnr.gov.on.ca
e-laws.gov.on.ca
ene.gov.on.ca
find.gov.on.ca
gov.on.ca
mgs.gov.on.ca
mnr.gov.on.ca
nesi.mnr.gov.on.ca
nwsi.mnr.gov.on.ca
ofri.mnr.gov.on.ca
ontariogazette.gov.on.ca
rpgs.mnr.gov.on.ca
sit.mnr.gov.on.ca
webservices.gov.on.ca
www.biodiversityexplorer.mnr.gov.on.ca
www.edu.gov.on.ca
www.e-laws.gov.on.ca
www.ene.gov.on.ca
www.find.gov.on.ca
www.gov.on.ca
www.mgs.gov.on.ca
www.mnr.gov.on.ca
www.nesi.mnr.gov.on.ca
www.nwsi.mnr.gov.on.ca
www.ofri.mnr.gov.on.ca
www.ontariogazette.gov.on.ca
www.rpgs.mnr.gov.on.ca
www.search.e-laws.gov.on.ca
www.sit.mnr.gov.on.ca
www.tcu.gov.on.ca
www.webservices.gov.on.ca
www.ontario.ca
biodiversityexplorer.mnr.gov.on.ca
cnfer.mnr.gov.on.ca
e-laws.gov.on.ca
ene.gov.on.ca
find.gov.on.ca
gov.on.ca
mgs.gov.on.ca
mnr.gov.on.ca
nesi.mnr.gov.on.ca
nwsi.mnr.gov.on.ca
ofri.mnr.gov.on.ca
ontariogazette.gov.on.ca
rpgs.mnr.gov.on.ca
sit.mnr.gov.on.ca
webservices.gov.on.ca
www.biodiversityexplorer.mnr.gov.on.ca
www.edu.gov.on.ca
www.e-laws.gov.on.ca
www.ene.gov.on.ca
www.find.gov.on.ca
www.gov.on.ca
www.mgs.gov.on.ca
www.mnr.gov.on.ca
www.nesi.mnr.gov.on.ca
www.nwsi.mnr.gov.on.ca
www.ofri.mnr.gov.on.ca
www.ontariogazette.gov.on.ca
www.rpgs.mnr.gov.on.ca
www.search.e-laws.gov.on.ca
www.sit.mnr.gov.on.ca
www.tcu.gov.on.ca
www.webservices.gov.on.ca
Other certificates including the domain name ontario.ca
(limited to 100 certificates)
covid-19.ontario.ca
meet.video.ontario.ca
ontario.ca
stage.data.ontario.ca
subscription.news.ontario.ca
analytics.health811.ontario.ca
metrics.health811.ontario.ca
ontario.ca
www.dev2.signin.ontario.ca
email.ontario.ca
data.ontario.ca
relay.health811.ontario.ca
ontario.ca
www.lio.ontario.ca
insite.gov.on.ca
dev.insite.gov.on.ca
webmail.ontario.ca
ontario.ca
www.fin.gov.on.ca
lb1-messaging.health811.ontario.ca
wwwdev.sus.ebc.gov.on.ca
subscription.news.ontario.ca
smtpgw1.gov.on.ca
intra.dev.ontario.ca
www.fin.gov.on.ca
covid-19.ontario.ca
email.ontario.ca
ontario.ca
remote.photogallery.ontario.ca
ontario.ca
intra.newsroom.ontario.ca
dev.insite.gov.on.ca
www.sus.gov.on.ca
ontario.ca
intra.ontario.ca
fhirapi.health811.ontario.ca
pim3.ctarenquiry.ontario.ca
intra.dev.ontario.ca
ontario.ca
news.ontario.ca
attachmail.ontario.ca
relay.test.health811.ontario.ca
wwwdev.sus.ebc.gov.on.ca
subscription.news.ontario.ca
pcsg.ctarenquiry.ontario.ca
intra.stage.ontario.ca
remote.newsroom.ontario.ca
news.ontario.ca
ptp3.ctarenquiry.ontario.ca
video.ontario.ca
budget.ontario.ca
stage.data.ontario.ca
etp3.ctarenquiry.ontario.ca
www.lio.ontario.ca
covid-19.ontario.ca
intra.dev.ontario.ca
data.ontario.ca
ontario.ca
portal.health811.ontario.ca
file-object-service.sdprt.health811.ontario.ca
intra.ontario.ca
ontario.ca
ontario.ca
intra.stage.ontario.ca
intra.stage.ontario.ca
www.survey.ontario.ca
ontario.ca
sftp.health811.ontario.ca
ontario.ca
kafka-1.sdprt.health811.ontario.ca
attachmail.ontario.ca
intra.newsroom.ontario.ca
test.data.ontario.ca
mail.ontario.ca
dev.insite.gov.on.ca
attachmail.ontario.ca
ero.ontario.ca
engage.ontario.ca
query.sdprt.health811.ontario.ca
www.ontario.ca
email.ontario.ca
ontario.ca
data.ontario.ca
ux.demo.ontariowebservices.ca
test.data.ontario.ca
intra.ontario.ca
ontario.ca
dev.insite.gov.on.ca
attachmail.ontario.ca
covid-19.ontario.ca
data.ontario.ca
developer.ontario.ca
stage.sus.gov.on.ca
intra.ontario.ca
covid-19.ontario.ca
DirPool-Ext.ontario.ca
www.dev1.signin.ontario.ca
intra.dev.ontario.ca
dev.insite.gov.on.ca
ontario.ca
meet.video.ontario.ca
ontario.ca
stage.data.ontario.ca
subscription.news.ontario.ca
analytics.health811.ontario.ca
metrics.health811.ontario.ca
ontario.ca
www.dev2.signin.ontario.ca
email.ontario.ca
data.ontario.ca
relay.health811.ontario.ca
ontario.ca
www.lio.ontario.ca
insite.gov.on.ca
dev.insite.gov.on.ca
webmail.ontario.ca
ontario.ca
www.fin.gov.on.ca
lb1-messaging.health811.ontario.ca
wwwdev.sus.ebc.gov.on.ca
subscription.news.ontario.ca
smtpgw1.gov.on.ca
intra.dev.ontario.ca
www.fin.gov.on.ca
covid-19.ontario.ca
email.ontario.ca
ontario.ca
remote.photogallery.ontario.ca
ontario.ca
intra.newsroom.ontario.ca
dev.insite.gov.on.ca
www.sus.gov.on.ca
ontario.ca
intra.ontario.ca
fhirapi.health811.ontario.ca
pim3.ctarenquiry.ontario.ca
intra.dev.ontario.ca
ontario.ca
news.ontario.ca
attachmail.ontario.ca
relay.test.health811.ontario.ca
wwwdev.sus.ebc.gov.on.ca
subscription.news.ontario.ca
pcsg.ctarenquiry.ontario.ca
intra.stage.ontario.ca
remote.newsroom.ontario.ca
news.ontario.ca
ptp3.ctarenquiry.ontario.ca
video.ontario.ca
budget.ontario.ca
stage.data.ontario.ca
etp3.ctarenquiry.ontario.ca
www.lio.ontario.ca
covid-19.ontario.ca
intra.dev.ontario.ca
data.ontario.ca
ontario.ca
portal.health811.ontario.ca
file-object-service.sdprt.health811.ontario.ca
intra.ontario.ca
ontario.ca
ontario.ca
intra.stage.ontario.ca
intra.stage.ontario.ca
www.survey.ontario.ca
ontario.ca
sftp.health811.ontario.ca
ontario.ca
kafka-1.sdprt.health811.ontario.ca
attachmail.ontario.ca
intra.newsroom.ontario.ca
test.data.ontario.ca
mail.ontario.ca
dev.insite.gov.on.ca
attachmail.ontario.ca
ero.ontario.ca
engage.ontario.ca
query.sdprt.health811.ontario.ca
www.ontario.ca
email.ontario.ca
ontario.ca
data.ontario.ca
ux.demo.ontariowebservices.ca
test.data.ontario.ca
intra.ontario.ca
ontario.ca
dev.insite.gov.on.ca
attachmail.ontario.ca
covid-19.ontario.ca
data.ontario.ca
developer.ontario.ca
stage.sus.gov.on.ca
intra.ontario.ca
covid-19.ontario.ca
DirPool-Ext.ontario.ca
www.dev1.signin.ontario.ca
intra.dev.ontario.ca
dev.insite.gov.on.ca
ontario.ca
Certificate
The complete raw certificate details for ontario.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJoTCCCImgAwIBAgIQHHar4FgvnstShh1qzHE/+jANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y MTEwMjIxNjQ2MDNaFw0yMjEwMjIxNjQ2MDNaMIGGMQswCQYDVQQGEwJDQTEQMA4G A1UECBMHT250YXJpbzEQMA4GA1UEBxMHVG9yb250bzEeMBwGA1UEChMVR292ZXJu bWVudCBvZiBPbnRhcmlvMR4wHAYDVQQLExVHb3Zlcm5tZW50IG9mIE9udGFyaW8x EzARBgNVBAMTCm9udGFyaW8uY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDc8nV0LRiJGb+3g7upJwN6PeEeFVc0iYndcWgjJiXNZCfgFr6qS2a/b/iD hm1Bg7hf00OVcbqF6VrRdvSJqQa2o8/ZqYcMa2BAqRJed37wzzLGhvJCb86XJM8D zRhY7SFLBG4x+NLEwXxZvXqtprb7yH3WYjHTrRFby0Wm/iiD7SQ8ghB0sVT8kAbQ 3NJl/ryECpEMATUCtDFP39wFHfH6a1+yVqPRV/TfqzyiOUZo+Bh707Oxs05N3+ze h4ML3JAFJQYP+V8hXRKFW6lkWLyEajPG5/gZkf/kICa0lW4pcdtwsdIAaKR5naPl Z4VAHd0Fa2jhnK3by6nCX586EFsPAgMBAAGjggXTMIIFzzAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBQcinLYxf7QblCwp/aPqboQTkd3oDAfBgNVHSMEGDAWgBSConB0 3bxTP8971PfNf6dgxgpMvzBoBggrBgEFBQcBAQRcMFowIwYIKwYBBQUHMAGGF2h0 dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChidodHRwOi8vYWlhLmVu dHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5jZXIwMwYDVR0fBCwwKjAooCagJIYiaHR0 cDovL2NybC5lbnRydXN0Lm5ldC9sZXZlbDFrLmNybDCCAt0GA1UdEQSCAtQwggLQ ggpvbnRhcmlvLmNhgg53d3cub250YXJpby5jYYIiYmlvZGl2ZXJzaXR5ZXhwbG9y ZXIubW5yLmdvdi5vbi5jYYITY25mZXIubW5yLmdvdi5vbi5jYYIQZS1sYXdzLmdv di5vbi5jYYINZW5lLmdvdi5vbi5jYYIOZmluZC5nb3Yub24uY2GCCWdvdi5vbi5j YYINbWdzLmdvdi5vbi5jYYINbW5yLmdvdi5vbi5jYYISbmVzaS5tbnIuZ292Lm9u LmNhghJud3NpLm1uci5nb3Yub24uY2GCEm9mcmkubW5yLmdvdi5vbi5jYYIYb250 YXJpb2dhemV0dGUuZ292Lm9uLmNhghJycGdzLm1uci5nb3Yub24uY2GCEXNpdC5t bnIuZ292Lm9uLmNhghV3ZWJzZXJ2aWNlcy5nb3Yub24uY2GCJnd3dy5iaW9kaXZl cnNpdHlleHBsb3Jlci5tbnIuZ292Lm9uLmNhghF3d3cuZWR1Lmdvdi5vbi5jYYIU d3d3LmUtbGF3cy5nb3Yub24uY2GCEXd3dy5lbmUuZ292Lm9uLmNhghJ3d3cuZmlu ZC5nb3Yub24uY2GCDXd3dy5nb3Yub24uY2GCEXd3dy5tZ3MuZ292Lm9uLmNhghF3 d3cubW5yLmdvdi5vbi5jYYIWd3d3Lm5lc2kubW5yLmdvdi5vbi5jYYIWd3d3Lm53 c2kubW5yLmdvdi5vbi5jYYIWd3d3Lm9mcmkubW5yLmdvdi5vbi5jYYIcd3d3Lm9u dGFyaW9nYXpldHRlLmdvdi5vbi5jYYIWd3d3LnJwZ3MubW5yLmdvdi5vbi5jYYIb d3d3LnNlYXJjaC5lLWxhd3MuZ292Lm9uLmNhghV3d3cuc2l0Lm1uci5nb3Yub24u Y2GCEXd3dy50Y3UuZ292Lm9uLmNhghl3d3cud2Vic2VydmljZXMuZ292Lm9uLmNh MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw TAYDVR0gBEUwQzA3BgpghkgBhvpsCgEFMCkwJwYIKwYBBQUHAgEWG2h0dHBzOi8v d3d3LmVudHJ1c3QubmV0L3JwYTAIBgZngQwBAgIwggGABgorBgEEAdZ5AgQCBIIB cASCAWwBagB3AFYUBpov18Ls0/XhvUSyPsdGdrm8mRFcwO+UmFXWidDdAAABfKjl La0AAAQDAEgwRgIhAMof5FTslLLZv5X2yDPabY7YB+2W7/US4jTkwUjQetgQAiEA i2ec13s/52Gr3x+f9m3zQedmlwP/a7qXW4e208FHDLYAdwDfpV6raIJPH2yt7rhf Tj5a6s2iEqRqXo47EsAgRFwqcwAAAXyo5S2PAAAEAwBIMEYCIQDvulM8AY29nxl+ 1ln1Rbr4GO3NHa9IsM8cM0j9pRiJwwIhAL5ixNk/2NWrUiP89yxORllungV4jSxq k78JnNETFogzAHYARqVV63X6kSAwtaKJafTzfREsQXS+/Um4havy/HD+bUcAAAF8 qOUvbgAABAMARzBFAiAkL0/ZpA/BicxouiwFiGy6kxe0UahaYRJXSc0ed+1VDgIh AP53Ye4tAP4zaWFU8/V+kJ5ur51driUuKAWqwfngu0yDMA0GCSqGSIb3DQEBCwUA A4IBAQAiMEz5RWYztzIdw6bAmNxY0mqINkwnV0InEuy4e/gxih9VphEXOiBteLMD a0+QhUErPgB58lLw2n6P5v3tIgsa/+hatX8C8JXyVXRhbnGlPXy1I3PqPCoaonDx wzbQMzuw/6DKcXppMejbhXe/MPhwn6Ck8yjENG//Vl7td8FJaVaQQ7PunFppLJ7y Dr2GpPUccvAiwbdY/FZPgsA2Knat4jFVo4x+Io+tuBYgn42wyhzxF2kYc7HME8bj rIydLw1SjqAyi3/6+C1JCNb2jmSWqlLSitOgNct8hBQdHQOg3PiVAstT/PN8yn0C Wz95EP3HWPm2B4idHODKCTif8CN+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PJ1dC0YiRm/t4O7qScD ej3hHhVXNImJ3XFoIyYlzWQn4Ba+qktmv2/4g4ZtQYO4X9NDlXG6hela0Xb0iakG tqPP2amHDGtgQKkSXnd+8M8yxobyQm/OlyTPA80YWO0hSwRuMfjSxMF8Wb16raa2 +8h91mIx060RW8tFpv4og+0kPIIQdLFU/JAG0NzSZf68hAqRDAE1ArQxT9/cBR3x +mtfslaj0Vf036s8ojlGaPgYe9OzsbNOTd/s3oeDC9yQBSUGD/lfIV0ShVupZFi8 hGozxuf4GZH/5CAmtJVuKXHbcLHSAGikeZ2j5WeFQB3dBWto4Zyt28upwl+fOhBb DwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 37834560977727631994667378877010100218 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-22 16:46:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-22 16:46:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Toronto' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government of Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government of Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ontario.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27891987984859798303070606104154321376806838868830667919484805791506911398694944238472826089323651803072430009823089855995210542750060515187736968230338244581315146054196832563780780378540159720252222135642318559716611807879577045739420011655850440359875743293579528249286628399385280974228840204794170135109717485412825344981965757654573456700976237334964647591828916431686276123158070176881788125323213734621743482997988781769474320001111611306979523208949614111609192651575807051939761271401840981827990074395882715825029629859421861164431701212684382013618415983584237481978398740275572269164273806243374388239119 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1c8a72d8c5fed06e50b0a7f68fa9ba104e4777a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (724 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ontario.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ontario.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'biodiversityexplorer.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cnfer.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'e-laws.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ene.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'find.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mgs.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nesi.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nwsi.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ofri.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ontariogazette.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rpgs.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sit.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webservices.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.biodiversityexplorer.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.edu.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.e-laws.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ene.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.find.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mgs.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nesi.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nwsi.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ofri.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ontariogazette.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rpgs.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.search.e-laws.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sit.mnr.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tcu.gov.on.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.webservices.gov.on.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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