mas-ipos.mercer.com
- Mercer -
Issued by Digi-Sign CA Digi-SSL
About this certificate
This digital certificate with serial number d1:74:4f:a2:f8:aa:7f:c2:65:bb:ff:35:bd:4f:56:c6 was issued on by Digi-Sign Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Mercer
Organization:
Mercer
Organization unit: IT Operations
Organization unit: Provided by Digi-Sign Limited
Organization unit: Digi-SSL Xp
Organization unit: IT Operations
Organization unit: Provided by Digi-Sign Limited
Organization unit: Digi-SSL Xp
State / Province:
NJ
Locality: Hoboken
Country: US
Locality: Hoboken
Country: US
Digi-Sign Limited
Organization:
Digi-Sign Limited
State / Province:
County Dublin
Locality: Dublin
Country: IE
Locality: Dublin
Country: IE
This certificate has expire since
Certificate Details
Serial Number (hex): d1:74:4f:a2:f8:aa:7f:c2:65:bb:ff:35:bd:4f:56:c6Serial Number (int): 278412572776916876386161867332544059078
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 07:e6:b8:cd:a8:f5:79:7a:64:e3:eb:f8:86:66:63:cf:19:6e:d7:ea
AuthorityKeyId: 78:29:0f:ae:cd:90:2c:c0:dc:d2:7a:d4:9b:5f:9c:45:e0:88:a8:2c
Fingerprint (sha1): 10:f3:33:71:c2:13:b0:9d:d3:61:04:89:2f:6c:c1:e7:38:ce:33:51
Fingerprint (sha256): 03:07:f5:e0:b0:68:5a:a9:21:56:02:28:20:3e:fd:fc:8c:70:7a:dc:c2:4c:89:df:63:6e:53:6e:1c:f8:f9:3c
Issuing Certificate URL: http://crt.usertrust.com/DigiSignCADigiSSL.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.usertrust.com/DigiSignCADigiSSL.crl
Check the revocation status for certificate mas-ipos.mercer.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mas-ipos.mercer.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mas-ipos.mercer.com
www.mas-ipos.mercer.com
www.mas-ipos.mercer.com
Other certificates including the domain name mercer.com
(limited to 100 certificates)
us-east-1.stage.awsapp.mercer.com
proliability.mercer.com
pre-merceroneview.mercer.com
ghrm-entitlementtool.mercer.com
mas-nms.mercer.com
passkeyservicedev.mercer.com
helplinechatbot-anz.dev.mercer.com
uat.beneflex.mercer.com
managementapi-apigee.on-dallas.prod.admin.mercer.com
benefitcenter.mercer.com
www.census.mercer.com
bi-dev.mercer.com
www.smartirlsit.mercer.com
benefitsuite.mercer.com
tbo-ftp.mercer.com
selectnew.mercer.com
matomo.us-east-1.prod.ext.mercer.com
investor.mercer.com
dr.eprism.win.mercer.com
kroger-ua.mercer.com
mas-ipos.mercer.com
employeesurveys.mercer.com
hbcognos.mercer.com
fe.bclifecycle.mercer.com
canadadcrkdatabase.mercer.com
selectnew.mercer.com
uat.roleprofilebuilder.mercer.com
ncfu-otr-uat.mercer.com
enhance-operations-auth.us-east-1.dev.awsadmin.mercer.com
qa.comptryx.mercer.com
uat.workforce.mercer.com
proliability.mercer.com
bsuitecognos.dr.mercer.com
msso1-uat.mercer.com
www.assurant-uat.mercer.com
remportal.mercer.com
passkeyservicepre.mercer.com
helplinechatbot-anz.dev.mercer.com
api.mmp.us-east-1.dev.int.mercer.com
consumerone.mercer.com
uat.benefitsmonitor.mercer.com
associationlh-moso.mercer.com
uat.recomposicionsalarial.mercer.com
selectnew.mercer.com
common.mercer.com
www.krogerng-auth.mercer.com
admin.bi-analytics-int.us-east-1.stage.int.mercer.com
febe.nifi01.kf.euwt1.prd.oss2.mercer.com
hli.na.qa.app.mercer.com
dashboard.pndb.euwt1.prd.app.mercer.com
be.warrenmt.usinternal.stage.admin.mercer.com
bsuitesp.uat.mercer.com
selectnew.mercer.com
www.apigee.apac.prod.app.mercer.com
stg-entitlement-api.mobility.mercer.com
san-7-s7.tlsprovisioning.exacttarget.com
ad-uat.mercer.com
www.cswebr2uat.mercer.com
stg-internal-europe-nexus.mercer.com
bhips.mercer.com
uat-admin.employeeinsight.mercer.com
uat.mercergold.mercer.com
www.mas-bamboo.mercer.com
historiasclinicas.mercer.com
www.cswebr2uat.mercer.com
historiasclinicas.mercer.com
stg.tx.mercerharmonise.mercer.com
home.ap.mercer.com
common.mercer.com
beneflex.uat.mercer.com
securestg.mercer.com
be.image.mobile.euwt1.stg.oss2.mercer.com
app-v010-harmonise.mercer.com
mercer.com
www.mags.mercer.com
hrbauat.mercer.com
main.digicon.ext.prd.aws-uset1-dmz.mosedge.mercer.com
mags.mercer.com
image.livy01.kf.euwt1.prd.oss2.mercer.com
connectweb4.mercer.com
api.main.mobile.euwt1.stg.oss2.mercer.com
helplinechatbot-anz.dev.mercer.com
apigee.on-dallas.prod.admin.mercer.com
select.mercer.com
common.mercer.com
psa-mbses.mercer.com
www.auth-qa.mercer.com
selectnew.mercer.com
admin.puat-mbm.mercer.com
www.mercerapploginirlsit.mercer.com
emea.analytics.benefitsuite.mercer.com
mfa-admin.mercer.com
channel4.flexsite.mercer.com
apps.mercer.com
mas-vdi.mercer.com
san-7-s7.tlsprovisioning.exacttarget.com
main.pndb.euwt1.dev.int.mercer.com
hli-drupal.emea.prod.admin.mercer.com
cator11db31cn3.mercer.com
consumer.mercer.com
proliability.mercer.com
pre-merceroneview.mercer.com
ghrm-entitlementtool.mercer.com
mas-nms.mercer.com
passkeyservicedev.mercer.com
helplinechatbot-anz.dev.mercer.com
uat.beneflex.mercer.com
managementapi-apigee.on-dallas.prod.admin.mercer.com
benefitcenter.mercer.com
www.census.mercer.com
bi-dev.mercer.com
www.smartirlsit.mercer.com
benefitsuite.mercer.com
tbo-ftp.mercer.com
selectnew.mercer.com
matomo.us-east-1.prod.ext.mercer.com
investor.mercer.com
dr.eprism.win.mercer.com
kroger-ua.mercer.com
mas-ipos.mercer.com
employeesurveys.mercer.com
hbcognos.mercer.com
fe.bclifecycle.mercer.com
canadadcrkdatabase.mercer.com
selectnew.mercer.com
uat.roleprofilebuilder.mercer.com
ncfu-otr-uat.mercer.com
enhance-operations-auth.us-east-1.dev.awsadmin.mercer.com
qa.comptryx.mercer.com
uat.workforce.mercer.com
proliability.mercer.com
bsuitecognos.dr.mercer.com
msso1-uat.mercer.com
www.assurant-uat.mercer.com
remportal.mercer.com
passkeyservicepre.mercer.com
helplinechatbot-anz.dev.mercer.com
api.mmp.us-east-1.dev.int.mercer.com
consumerone.mercer.com
uat.benefitsmonitor.mercer.com
associationlh-moso.mercer.com
uat.recomposicionsalarial.mercer.com
selectnew.mercer.com
common.mercer.com
www.krogerng-auth.mercer.com
admin.bi-analytics-int.us-east-1.stage.int.mercer.com
febe.nifi01.kf.euwt1.prd.oss2.mercer.com
hli.na.qa.app.mercer.com
dashboard.pndb.euwt1.prd.app.mercer.com
be.warrenmt.usinternal.stage.admin.mercer.com
bsuitesp.uat.mercer.com
selectnew.mercer.com
www.apigee.apac.prod.app.mercer.com
stg-entitlement-api.mobility.mercer.com
san-7-s7.tlsprovisioning.exacttarget.com
ad-uat.mercer.com
www.cswebr2uat.mercer.com
stg-internal-europe-nexus.mercer.com
bhips.mercer.com
uat-admin.employeeinsight.mercer.com
uat.mercergold.mercer.com
www.mas-bamboo.mercer.com
historiasclinicas.mercer.com
www.cswebr2uat.mercer.com
historiasclinicas.mercer.com
stg.tx.mercerharmonise.mercer.com
home.ap.mercer.com
common.mercer.com
beneflex.uat.mercer.com
securestg.mercer.com
be.image.mobile.euwt1.stg.oss2.mercer.com
app-v010-harmonise.mercer.com
mercer.com
www.mags.mercer.com
hrbauat.mercer.com
main.digicon.ext.prd.aws-uset1-dmz.mosedge.mercer.com
mags.mercer.com
image.livy01.kf.euwt1.prd.oss2.mercer.com
connectweb4.mercer.com
api.main.mobile.euwt1.stg.oss2.mercer.com
helplinechatbot-anz.dev.mercer.com
apigee.on-dallas.prod.admin.mercer.com
select.mercer.com
common.mercer.com
psa-mbses.mercer.com
www.auth-qa.mercer.com
selectnew.mercer.com
admin.puat-mbm.mercer.com
www.mercerapploginirlsit.mercer.com
emea.analytics.benefitsuite.mercer.com
mfa-admin.mercer.com
channel4.flexsite.mercer.com
apps.mercer.com
mas-vdi.mercer.com
san-7-s7.tlsprovisioning.exacttarget.com
main.pndb.euwt1.dev.int.mercer.com
hli-drupal.emea.prod.admin.mercer.com
cator11db31cn3.mercer.com
consumer.mercer.com
Certificate
The complete raw certificate details for mas-ipos.mercer.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG7zCCBdegAwIBAgIRANF0T6L4qn/CZbv/Nb1PVsYwDQYJKoZIhvcNAQELBQAw cjELMAkGA1UEBhMCSUUxFjAUBgNVBAgTDUNvdW50eSBEdWJsaW4xDzANBgNVBAcT BkR1YmxpbjEaMBgGA1UEChMRRGlnaS1TaWduIExpbWl0ZWQxHjAcBgNVBAMTFURp Z2ktU2lnbiBDQSBEaWdpLVNTTDAeFw0xODA4MTQwMDAwMDBaFw0yMDA4MTMyMzU5 NTlaMIGxMQswCQYDVQQGEwJVUzELMAkGA1UECBMCTkoxEDAOBgNVBAcTB0hvYm9r ZW4xDzANBgNVBAoTBk1lcmNlcjEWMBQGA1UECxMNSVQgT3BlcmF0aW9uczEmMCQG A1UECxMdUHJvdmlkZWQgYnkgRGlnaS1TaWduIExpbWl0ZWQxFDASBgNVBAsTC0Rp Z2ktU1NMIFhwMRwwGgYDVQQDExNtYXMtaXBvcy5tZXJjZXIuY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA280ZuLx+mLz33I1rXF9RexPIwYN0Wxfy wP7HoiP3BprvynNy4dr1hXxlLG38trEH/VlFK4pX0Fd97iIb34KoEck3pqsbg0fy xCFItxJBsXlOY3rp4Br28VMc/Ff99pEeZwJts+12O0AtmCHjXSQcLI4dGb3dHPrG /WWiaPM/3qLNXpmrKVucKKtuevodVVCB6r9rjJ/tSGHhNefLm16Ky00BucVsAyqr O9ogMW79pi/rdlBxD9mqFLGctaUv91Hw4yk7tdxDFvmgdGsbahLzLAxMegMSk3Hv 8NicltNrHFuvXyed/5FzL6JKYRdb5NEBOrJBys2iTZ/QiNmVP0eyLwIDAQABo4ID PjCCAzowHwYDVR0jBBgwFoAUeCkPrs2QLMDc0nrUm1+cReCIqCwwHQYDVR0OBBYE FAfmuM2o9Xl6ZOPr+IZmY88ZbtfqMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8E AjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBLBgNVHSAERDBCMDYG CysGAQQBsjEBAgIJMCcwJQYIKwYBBQUHAgEWGWh0dHBzOi8vY3BzLnVzZXJ0cnVz dC5jb20wCAYGZ4EMAQICMD8GA1UdHwQ4MDYwNKAyoDCGLmh0dHA6Ly9jcmwudXNl cnRydXN0LmNvbS9EaWdpU2lnbkNBRGlnaVNTTC5jcmwwcQYIKwYBBQUHAQEEZTBj MDoGCCsGAQUFBzAChi5odHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20vRGlnaVNpZ25D QURpZ2lTU0wuY3J0MCUGCCsGAQUFBzABhhlodHRwOi8vb2NzcC51c2VydHJ1c3Qu Y29tMDcGA1UdEQQwMC6CE21hcy1pcG9zLm1lcmNlci5jb22CF3d3dy5tYXMtaXBv cy5tZXJjZXIuY29tMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdgDuS723dc5g uuFCaR+r4Z5mow9+X7By2IMAxHuJeqj9ywAAAWU6BE34AAAEAwBHMEUCIDchDuqz 5YEyCUB5oQjDekLnG7gMj4el6Tnl9pDEJT1kAiEA63u92Fa0D2UoUSp95WLdJFij bIlCMNMUIi3o4PxS+l4AdgBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFF WAAAAWU6BEyKAAAEAwBHMEUCIQCmOctF3mKGYNMYkVvANsOHECP4bRPw/FaxAfeG BrRowQIgYWgfIa89egRqay0BKvBpSUEoP/FiJttjhooWu0Z1X70AdwBVgdTCFpA2 AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAWU6BEyyAAAEAwBIMEYCIQCfh4Mp 9UGUJjqpDKT9yxFyjrbtJSzd0AgoKWXcP60UFwIhAL5PAhcygdfReTAaiCJ18tPi U9fy2NxzP32Hb4URuIkvMA0GCSqGSIb3DQEBCwUAA4IBAQBqDKE1hhJebfZAtktf ZOluZQjXSc3mLPeO3gHAr0g9OxDPLnER5PSTtK+0JKtFEthCPf8/E+wnn+7UivsH cM4yr3rsEgjK04uzpaI9Jx7NrWG2Nl6p9Q9EhaDgrGieHdIYb4g9yQqfo8g6w4Xo wsdF6t4Ndr0PjQNo9vg9/ijmMOLmuPq/BGTljkre0/iONXQ/OWHa9qDGNY49m4/g TRqj4oDppCMgw3F++9k0QtMsP1GJhpxe50zAmee74U9ev+swNs3JtZEZrn8DX/ym LrVFGhV7kbAm4Pdlv3TWK+2uvo3/galuVlLeOQpbg2GBih4hlkTJRRDCWXhq+K/e hfkq -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA280ZuLx+mLz33I1rXF9R exPIwYN0WxfywP7HoiP3BprvynNy4dr1hXxlLG38trEH/VlFK4pX0Fd97iIb34Ko Eck3pqsbg0fyxCFItxJBsXlOY3rp4Br28VMc/Ff99pEeZwJts+12O0AtmCHjXSQc LI4dGb3dHPrG/WWiaPM/3qLNXpmrKVucKKtuevodVVCB6r9rjJ/tSGHhNefLm16K y00BucVsAyqrO9ogMW79pi/rdlBxD9mqFLGctaUv91Hw4yk7tdxDFvmgdGsbahLz LAxMegMSk3Hv8NicltNrHFuvXyed/5FzL6JKYRdb5NEBOrJBys2iTZ/QiNmVP0ey LwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 278412572776916876386161867332544059078 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'County Dublin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Dublin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Digi-Sign Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Digi-Sign CA Digi-SSL' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-13 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NJ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hoboken' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Mercer' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT Operations' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Provided by Digi-Sign Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Digi-SSL Xp' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mas-ipos.mercer.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27747327601335011099137924109089990171928741208639574244600487490100749186182275249973510043425934856259794426968723676228155672308254854860721166732914428375166991234265879617022583564310880277650850052898327731925946473470903470612402612496766928254654326329014011642050711348621802608560019550676155900615571205003198269727711130843546930881679777663389357900175408866400756964024842860534247897077268534779640637067965406621184534051118550745969669285995684006364848082252240392239335589904315331654977367632187273521601934303824135444060209442395565221666329046885885141633277869473581718980002026481116361765423 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78290faecd902cc0dcd27ad49b5f9c45e088a82c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 07e6b8cda8f5797a64e3ebf8866663cf196ed7ea . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.9 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/DigiSignCADigiSSL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (101 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/DigiSignCADigiSSL.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mas-ipos.mercer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mas-ipos.mercer.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 0169007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb000001653a044df80000040300473045022037210eeab3e58132094079a108c37a42e71bb80c8f87a5e939e5f690c4253d64022100eb7bbdd856b40f6528512a7de562dd2458a36c894230d314222de8e0fc52fa5e0076005ea773f9df56c0e7b536487dd049e0327a919a0c84a112128418759681714558000001653a044c8a0000040300473045022100a639cb45de628660d318915bc036c3871023f86d13f0fc56b101f78606b468c1022061681f21af3d7a046a6b2d012af0694941283ff16226db63868a16bb46755fbd0077005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c000001653a044cb200000403004830460221009f878329f54194263aa90ca4fdcb11728eb6ed252cddd008282965dc3fad1417022100be4f02173281d7d179301a882275f2d3e253d7f2d8dc733f7d876f8511b8892f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 006a0ca13586125e6df640b64b5f64e96e6508d749cde62cf78ede01c0af483d3b10cf2e7111e4f493b4afb424ab4512d8423dff3f13ec279feed48afb0770ce32af7aec1208cad38bb3a5a23d271ecdad61b6365ea9f50f4485a0e0ac689e1dd2186f883dc90a9fa3c83ac385e8c2c745eade0d76bd0f8d0368f6f83dfe28e630e2e6b8fabf0464e58e4aded3f88e35743f3961daf6a0c6358e3d9b8fe04d1aa3e280e9a42320c3717efbd93442d32c3f5189869c5ee74cc099e7bbe14f5ebfeb3036cdc9b59119ae7f035ffca62eb5451a157b91b026e0f765bf74d62bedaebe8dff81a96e5652de390a5b8361818a1e219644c94510c259786af8afde85f92a