ermpoc.nbcuni.com
- NBCUniversal Media, LLC -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 66:48:8b:65:40:fd:4c:06:ea:bb:dd:23:90:4e:83:9d was issued on by Entrust, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
NBCUniversal Media, LLC
Organization:
NBCUniversal Media, LLC
State / Province:
New York
Locality: New York
Country: US
Locality: New York
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 66:48:8b:65:40:fd:4c:06:ea:bb:dd:23:90:4e:83:9dSerial Number (int): 135957928220968506036705645585381622685
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 4c:67:35:c5:00:b9:be:66:10:66:03:be:8e:fb:69:87:6b:66:c3:61
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 3d:dc:ad:38:74:d6:d9:83:d5:46:15:47:b8:2c:4e:f0:63:e4:10:3e
Fingerprint (sha256): 03:0d:21:fc:2f:55:f6:8d:6e:a1:bb:f5:7d:bc:df:9e:92:05:54:06:46:d2:39:70:52:28:96:cd:be:d3:7b:7c
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate ermpoc.nbcuni.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ermpoc.nbcuni.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ermpoc.nbcuni.com
Other certificates including the domain name nbcuni.com
(limited to 100 certificates)
nexusdev.nbcuni.com
www.universalorlando.com
stratastaging2.nbcuni.com
solar.nbcuni.com
atsc-ba-prod.nextgentv.nbcuni.com
vod-media-validator.summer-dev.nbcuni.com
solarstg.nbcuni.com
*.nbcuni.com
fcc-vera.nbcuni.com
cp.stg.inbcu.com
dev.showsystem.nbcuni.com
stage.idxapiexplorer.nbcuni.com
nimbus.nbcuni.com
sharedpartnerushdr.nbcuni.com
icreative-stg.nbcuni.com
earth-prod.nbcuni.com
schedulesstg.nbcuni.com
adminprod-nbcuaffiliate.nbcuni.com
score.nbcuni.com
www.seeso.com
www.stillonyourside.com
www.stillonyourside.com
dev.showsystem.nbcuni.com
vod-media-validator.earth-dev.nbcuni.com
prod.tvecms.nbcuni.com
dashboard.lightbox.nbcuni.com
stage.idxapi.nbcuni.com
int-grafana-us-east-2.nowtv-dev.nbcuni.com
usz.nbcuni.com
*.apps.nbcuni.com
api.vms.nbcuni.com
ad-tech.nbcuni.com
phoenix-ingest.next1-dev.nbcuni.com
ushwebstorestg.nbcuni.com
ermpoc.nbcuni.com
FilmEntMstr11DR.nbcuni.com
ssoapp.stg.inbcu.com
www.universalorlando.com
config-mgmt-tool-api.mssai-dev.nbcuni.com
showsystem.nbcuni.com
sst-moe-reports.summer-prod.nbcuni.com
stagingbenefits.nbcuni.com
ssl867936.cloudflaressl.com
tellystg.nbcuni.com
nbcuni.com
sportsevents.nbcuni.com
atsc-ba-qa.nextgentv.nbcuni.com
prod.tvecms.nbcuni.com
*.k8s.apps.nbcuni.com
msppm-ssrsPROD.nbcuni.com
www.stillonyourside.com
www.universalorlando.com
snasadmin.nbcuni.com
nonprod-test.origin-nonprod-commerce.nbcuni.com
mail.inbcu.com
*.apps.nbcuni.com
cp.nbcuni.com
phoenix-data-gold.vod-dev.nbcuni.com
www.colonytv.com
nbcuni.com
transworks.nbcuni.com
gateworks.nbcuni.com
qa-coding.nbcuni.com
prod.12.slot.cdn.salesforce-communities.com
nbcuni.com
www.stillonyourside.com
4help.nbcuni.com
stratastaging2.nbcuni.com
anywherelon.nbcuni.com
prod.12.slot.cdn.salesforce-communities.com
api.lxt.nbcuni.com
www.universalorlando.com
www.colonytv.com
perforceswarm.nbcuni.com
apps.devsysusz.nbcuni.com
prod.12.slot.cdn.salesforce-communities.com
licensing.nbcuni.com
qa-coding.nbcuni.com
stratastaging2.nbcuni.com
4help.nbcuni.com
cosmos.nbcuni.com
www.colonytv.com
phoenix-delivery.next1-prod.nbcuni.com
adc-vera.nbcuni.com
slate.nbcuni.com
qaapi.newsconnect.nbcuni.com
usgresearch.nbcuni.com
stage-mps.nbcuni.com
jp.travel.nbcuni.com
prod-longform.moe.nbcuni.com
myhrqa2.nbcuni.com
www.colonytv.com
slemanager-lem-synchronizer.vod-dev.nbcuni.com
www.stillonyourside.com
ushwebstore.nbcuni.com
fss.external.nbcuni.com
devfmaatmapi.nbcuni.com
dropbox.nbcuni.com
flexpay.nbcuni.com
www.colonytv.com
www.universalorlando.com
stratastaging2.nbcuni.com
solar.nbcuni.com
atsc-ba-prod.nextgentv.nbcuni.com
vod-media-validator.summer-dev.nbcuni.com
solarstg.nbcuni.com
*.nbcuni.com
fcc-vera.nbcuni.com
cp.stg.inbcu.com
dev.showsystem.nbcuni.com
stage.idxapiexplorer.nbcuni.com
nimbus.nbcuni.com
sharedpartnerushdr.nbcuni.com
icreative-stg.nbcuni.com
earth-prod.nbcuni.com
schedulesstg.nbcuni.com
adminprod-nbcuaffiliate.nbcuni.com
score.nbcuni.com
www.seeso.com
www.stillonyourside.com
www.stillonyourside.com
dev.showsystem.nbcuni.com
vod-media-validator.earth-dev.nbcuni.com
prod.tvecms.nbcuni.com
dashboard.lightbox.nbcuni.com
stage.idxapi.nbcuni.com
int-grafana-us-east-2.nowtv-dev.nbcuni.com
usz.nbcuni.com
*.apps.nbcuni.com
api.vms.nbcuni.com
ad-tech.nbcuni.com
phoenix-ingest.next1-dev.nbcuni.com
ushwebstorestg.nbcuni.com
ermpoc.nbcuni.com
FilmEntMstr11DR.nbcuni.com
ssoapp.stg.inbcu.com
www.universalorlando.com
config-mgmt-tool-api.mssai-dev.nbcuni.com
showsystem.nbcuni.com
sst-moe-reports.summer-prod.nbcuni.com
stagingbenefits.nbcuni.com
ssl867936.cloudflaressl.com
tellystg.nbcuni.com
nbcuni.com
sportsevents.nbcuni.com
atsc-ba-qa.nextgentv.nbcuni.com
prod.tvecms.nbcuni.com
*.k8s.apps.nbcuni.com
msppm-ssrsPROD.nbcuni.com
www.stillonyourside.com
www.universalorlando.com
snasadmin.nbcuni.com
nonprod-test.origin-nonprod-commerce.nbcuni.com
mail.inbcu.com
*.apps.nbcuni.com
cp.nbcuni.com
phoenix-data-gold.vod-dev.nbcuni.com
www.colonytv.com
nbcuni.com
transworks.nbcuni.com
gateworks.nbcuni.com
qa-coding.nbcuni.com
prod.12.slot.cdn.salesforce-communities.com
nbcuni.com
www.stillonyourside.com
4help.nbcuni.com
stratastaging2.nbcuni.com
anywherelon.nbcuni.com
prod.12.slot.cdn.salesforce-communities.com
api.lxt.nbcuni.com
www.universalorlando.com
www.colonytv.com
perforceswarm.nbcuni.com
apps.devsysusz.nbcuni.com
prod.12.slot.cdn.salesforce-communities.com
licensing.nbcuni.com
qa-coding.nbcuni.com
stratastaging2.nbcuni.com
4help.nbcuni.com
cosmos.nbcuni.com
www.colonytv.com
phoenix-delivery.next1-prod.nbcuni.com
adc-vera.nbcuni.com
slate.nbcuni.com
qaapi.newsconnect.nbcuni.com
usgresearch.nbcuni.com
stage-mps.nbcuni.com
jp.travel.nbcuni.com
prod-longform.moe.nbcuni.com
myhrqa2.nbcuni.com
www.colonytv.com
slemanager-lem-synchronizer.vod-dev.nbcuni.com
www.stillonyourside.com
ushwebstore.nbcuni.com
fss.external.nbcuni.com
devfmaatmapi.nbcuni.com
dropbox.nbcuni.com
flexpay.nbcuni.com
www.colonytv.com
Certificate
The complete raw certificate details for ermpoc.nbcuni.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgIQZkiLZUD9TAbqu90jkE6DnTANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y NDAzMTUxMzMzMzNaFw0yNTAzMTUxMzMzMzJaMHExCzAJBgNVBAYTAlVTMREwDwYD VQQIEwhOZXcgWW9yazERMA8GA1UEBxMITmV3IFlvcmsxIDAeBgNVBAoTF05CQ1Vu aXZlcnNhbCBNZWRpYSwgTExDMRowGAYDVQQDExFlcm1wb2MubmJjdW5pLmNvbTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALqF2RA8AjupnXBxlx+Z1Twz U4g0dQWFpK5mkZGXMftmpVbFqt4iTB9jp7PfrQdOdp6xueIAE/bryg9c7SoTMG75 tWsSCoQtfF1rIPrsaiuBzvMUGXxPswaTfuXW2YDatF6YG2KeiOrd4pchAhP4JFYk sbC3iBKaKGuCyWBmoh+8zRkwJEfPYT1ges2OerXm21JL8y87MFUgzyzgmfBUn9ez FStPCTssPCgS62zw7car/DXFMmkBHShSspNouEW7D9XzN9tZYFXgJSXh2wu+mOfM BqOsGky1IFeCVTBUl9Bvqdo5weUE8mrcWL5NAuOi/O4G40KTtCvt/LtUV3lwg10C AwEAAaOCAWgwggFkMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFExnNcUAub5mEGYD vo77aYdrZsNhMB8GA1UdIwQYMBaAFIKicHTdvFM/z3vU981/p2DGCky/MGgGCCsG AQUFBwEBBFwwWjAjBggrBgEFBQcwAYYXaHR0cDovL29jc3AuZW50cnVzdC5uZXQw MwYIKwYBBQUHMAKGJ2h0dHA6Ly9haWEuZW50cnVzdC5uZXQvbDFrLWNoYWluMjU2 LmNlcjAzBgNVHR8ELDAqMCigJqAkhiJodHRwOi8vY3JsLmVudHJ1c3QubmV0L2xl dmVsMWsuY3JsMBwGA1UdEQQVMBOCEWVybXBvYy5uYmN1bmkuY29tMA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwEwYDVR0gBAww CjAIBgZngQwBAgIwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQAD ggEBABBvHPmGlN+sO6axW1/xXk2DiVqhjQpV5Ufz5TyaCPFfMrVzEpRymASRp1by WBIXYOAvfzWuLdFs+olJJaKaOmE66TWv/njpQ4FBcK3Dytj0MJW3r4gZrDHg9OTJ 9eql84UbaWytHLbquisGyQjRPipvye3i3N1gGPWo4RM6mGphyX/dJ65K+BSTt080 KW+lxL/XHaJshOKquNUb0IOboP+jX0IH1zg4XlE+eGKok6hF+X2tUaylQ4mMy0JS 8ZDm0wXCJ04eTc5dGQs6P3voU8wiwreO1L5QBUuwOSheNMEASyN93HD9+lKggn2Q WjluTR3ITuD54rCHKqDtP46q/D4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoXZEDwCO6mdcHGXH5nV PDNTiDR1BYWkrmaRkZcx+2alVsWq3iJMH2Ons9+tB052nrG54gAT9uvKD1ztKhMw bvm1axIKhC18XWsg+uxqK4HO8xQZfE+zBpN+5dbZgNq0XpgbYp6I6t3ilyECE/gk ViSxsLeIEpooa4LJYGaiH7zNGTAkR89hPWB6zY56tebbUkvzLzswVSDPLOCZ8FSf 17MVK08JOyw8KBLrbPDtxqv8NcUyaQEdKFKyk2i4RbsP1fM321lgVeAlJeHbC76Y 58wGo6waTLUgV4JVMFSX0G+p2jnB5QTyatxYvk0C46L87gbjQpO0K+38u1RXeXCD XQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 135957928220968506036705645585381622685 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-15 13:33:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-15 13:33:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NBCUniversal Media, LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ermpoc.nbcuni.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23546327585093573076108986735370624704559508013004566195397208646804126475785522244403420165638863455346662170826989166597341172835241560451510595132921163462379898317040587533952868904426691911623720080379818806332518099410532091719356428087425346838257382137277283533378961286535805993665001319189512661444481778156605641360389203694175567451402168163122022370943001593914143377156367369637460063161299251879137776844922795377088019571093762814632485473738544555814514912702891340246824583400242531093835417793175322625481597069701780939187322043354698478120529388406246108998381039388503855835292850729907100091229 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4c6735c500b9be66106603be8efb69876b66c361 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ermpoc.nbcuni.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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