mdm.libertymutual.com
- Liberty Mutual Group -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number c1:f1:b0:13:8f:fe:d5:d8:00:00:00:00:50:f5:e4:62 was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Liberty Mutual Group
Organization:
Liberty Mutual Group
State / Province:
New Hampshire
Locality: Portsmouth
Country: US
Locality: Portsmouth
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): c1:f1:b0:13:8f:fe:d5:d8:00:00:00:00:50:f5:e4:62Serial Number (int): 257795917983385420805119673038080959586
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 83:85:3f:45:2b:22:85:8a:fc:33:17:0d:27:4e:9a:3d:e6:7a:8f:bd
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 78:0d:44:b3:ee:a6:95:77:7a:0e:b2:9b:76:ca:da:50:0a:c4:34:d5
Fingerprint (sha256): 03:4a:03:06:b6:25:fd:a8:1e:07:3c:e9:85:87:5c:a8:21:b6:bb:4d:3c:3a:d3:38:3b:44:5e:54:aa:76:90:f8
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate mdm.libertymutual.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mdm.libertymutual.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mdm.libertymutual.com
Other certificates including the domain name libertymutual.com
(limited to 100 certificates)
ete-claims.safeco.com
eclps.libertymutual.com
quote.libertymutual.com
test-b-pmcfp.libertymutual.com
www.test-commercialclaimportal.libertymutual.com
uat.mediedge.com
www.libertymutual.com
perfrdcespoapps.libertymutual.com
test-cliq.libertymutual.com
ete-claims.safeco.com
mdmaspilot.libertymutual.com
PeopleAtLiberty.com
mybusinessonline.libertymutual.com
online.libertymutual.com
www.libertyiu.com
1-internal.us-east-1.production.paas.lmig.com
ete-www2.libertymutual.com
trn-eservice.libertymutual.com
*.lnpa.uscm.libertymutual.com
cfplp.libertymutual.com
test-securefile.libertymutual.com
cs-tappool-03p.lm.lmig.com
4-internal.us-east-1.non-production.paas.lmig.com
s-connect.libertymutual.com
tesla-cpa-np.libertymutual.com
preferences-rdc.libertymutual.com
dmz-cpa-datapower-prod.libertymutual.com
trn-a-pmcfa.libertymutual.com
perf-www.liucanada.com
maintenance.libertymutual.com
workerscompensationsupport.libertymutual.com
brmspolicy-uat.libertyinsurance.in
dev-d-mobile.online.libertymutual.com
libertymutual.com
libertymutual.myinstantincentives.com
test-ereport.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
ete-www2.libertymutual.com
www.yottaa.net
*.devops.npa.uscm.libertymutual.com
ha-rdcespoapps.libertymutual.com
www.libertyiu.com
perf-www.liucanada.com
cswebext-pool-03p.libertymutual.com
trn-cfa.libertymutual.com
cicct-taskrouter-gateway.libertymutual.com
cswebext-pool-02k.libertymutual.com
test-mytoken.libertymutual.com
cicct-taskrouter-gateway.libertymutual.com
portal-cms-staging.lmig.com
test-risk-lifecycle-id.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
smst.libertymutual.com
account.dev-eservice.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
apitest.libertymutual.com
dev-i-tts-gateway.libertymutual.com
load-insurance.libertymutual.com
edge-routers.pdc.api.libertymutual.com
mypersonalbest.libertymutual.com
payment-apac.libertymutual.com
www.yottaa.net
npp-cpa.libertymutual.com
2pr-csw.libertymutual.com
perf-www.liucanada.com
test-equote.libertymutual.com
cliq.libertymutual.com
search.libertymutual.com
vantageporttest.libertymutual.com
risk-lifecycle-id.libertymutual.com
internetwebchat05.libertymutual.com
voltage-pp-0000.libertymutual.com
account.np-eservice.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
test-ci-policyquoteapi.libertymutual.com
dev-d-public.libertymutual.com
regional-ssl.libertymutual.com
test-tuition.libertymutual.com
soatenlinea-nonprod.libertyseguros.co
cswebext-tappool-03p.libertymutual.com
givewithliberty.libertymutual.com
dev-a-dpec.safeco.com
internetwebchat01.libertymutual.com
test-securefile.libertymutual.com
safetynet.libertymutual.com
test-securefile.libertymutual.com
ete-www2.libertymutual.com
cswebext-pool-03b.libertymutual.com
dev-notifications.np-lmb.libertymutual.com
test-securefile.libertymutual.com
benefitscoach-nonprod.libertymutual.com
*.test.omni-sms.aws.libertymutual.com
quote.libertymutual.com
ete-www2.libertymutual.com
mdm.libertymutual.com
test-icasemanagersecure.libertymutual.com
ciit-basui-staging.libertymutual.com
external-test.pdc.np.api.libertymutual.com
clientlist.qa.safeco.com
amsso.libertymutual.com
eclps.libertymutual.com
quote.libertymutual.com
test-b-pmcfp.libertymutual.com
www.test-commercialclaimportal.libertymutual.com
uat.mediedge.com
www.libertymutual.com
perfrdcespoapps.libertymutual.com
test-cliq.libertymutual.com
ete-claims.safeco.com
mdmaspilot.libertymutual.com
PeopleAtLiberty.com
mybusinessonline.libertymutual.com
online.libertymutual.com
www.libertyiu.com
1-internal.us-east-1.production.paas.lmig.com
ete-www2.libertymutual.com
trn-eservice.libertymutual.com
*.lnpa.uscm.libertymutual.com
cfplp.libertymutual.com
test-securefile.libertymutual.com
cs-tappool-03p.lm.lmig.com
4-internal.us-east-1.non-production.paas.lmig.com
s-connect.libertymutual.com
tesla-cpa-np.libertymutual.com
preferences-rdc.libertymutual.com
dmz-cpa-datapower-prod.libertymutual.com
trn-a-pmcfa.libertymutual.com
perf-www.liucanada.com
maintenance.libertymutual.com
workerscompensationsupport.libertymutual.com
brmspolicy-uat.libertyinsurance.in
dev-d-mobile.online.libertymutual.com
libertymutual.com
libertymutual.myinstantincentives.com
test-ereport.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
ete-www2.libertymutual.com
www.yottaa.net
*.devops.npa.uscm.libertymutual.com
ha-rdcespoapps.libertymutual.com
www.libertyiu.com
perf-www.liucanada.com
cswebext-pool-03p.libertymutual.com
trn-cfa.libertymutual.com
cicct-taskrouter-gateway.libertymutual.com
cswebext-pool-02k.libertymutual.com
test-mytoken.libertymutual.com
cicct-taskrouter-gateway.libertymutual.com
portal-cms-staging.lmig.com
test-risk-lifecycle-id.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
smst.libertymutual.com
account.dev-eservice.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
apitest.libertymutual.com
dev-i-tts-gateway.libertymutual.com
load-insurance.libertymutual.com
edge-routers.pdc.api.libertymutual.com
mypersonalbest.libertymutual.com
payment-apac.libertymutual.com
www.yottaa.net
npp-cpa.libertymutual.com
2pr-csw.libertymutual.com
perf-www.liucanada.com
test-equote.libertymutual.com
cliq.libertymutual.com
search.libertymutual.com
vantageporttest.libertymutual.com
risk-lifecycle-id.libertymutual.com
internetwebchat05.libertymutual.com
voltage-pp-0000.libertymutual.com
account.np-eservice.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
test-ci-policyquoteapi.libertymutual.com
dev-d-public.libertymutual.com
regional-ssl.libertymutual.com
test-tuition.libertymutual.com
soatenlinea-nonprod.libertyseguros.co
cswebext-tappool-03p.libertymutual.com
givewithliberty.libertymutual.com
dev-a-dpec.safeco.com
internetwebchat01.libertymutual.com
test-securefile.libertymutual.com
safetynet.libertymutual.com
test-securefile.libertymutual.com
ete-www2.libertymutual.com
cswebext-pool-03b.libertymutual.com
dev-notifications.np-lmb.libertymutual.com
test-securefile.libertymutual.com
benefitscoach-nonprod.libertymutual.com
*.test.omni-sms.aws.libertymutual.com
quote.libertymutual.com
ete-www2.libertymutual.com
mdm.libertymutual.com
test-icasemanagersecure.libertymutual.com
ciit-basui-staging.libertymutual.com
external-test.pdc.np.api.libertymutual.com
clientlist.qa.safeco.com
amsso.libertymutual.com
Certificate
The complete raw certificate details for mdm.libertymutual.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgIRAMHxsBOP/tXYAAAAAFD15GIwDQYJKoZIhvcNAQELBQAw gboxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1FbnRydXN0LCBJbmMuMSgwJgYDVQQL Ex9TZWUgd3d3LmVudHJ1c3QubmV0L2xlZ2FsLXRlcm1zMTkwNwYDVQQLEzAoYykg MjAxMiBFbnRydXN0LCBJbmMuIC0gZm9yIGF1dGhvcml6ZWQgdXNlIG9ubHkxLjAs BgNVBAMTJUVudHJ1c3QgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgLSBMMUswHhcN MTkwODE1MjE1NjQ4WhcNMjEwODE1MjIyNjQ4WjB5MQswCQYDVQQGEwJVUzEWMBQG A1UECBMNTmV3IEhhbXBzaGlyZTETMBEGA1UEBxMKUG9ydHNtb3V0aDEdMBsGA1UE ChMUTGliZXJ0eSBNdXR1YWwgR3JvdXAxHjAcBgNVBAMTFW1kbS5saWJlcnR5bXV0 dWFsLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOMZRhh3d+ux ajIQ3D5HfnxlqJMRI7tEhCGBumSSm27CL0iwtaykv8LqNrNBu/pH6dbneSFYHNqU 22ouYj5ubLeofK/m/Itnu5Kekx7F0PkPQo3nd43u4pvsMO8J9dXo5LScrVC98xYz qBlqSbh6t/Tjv8HCZ1EzqQHjbHuLRTCsyQNt6TUwclGVjH2GAC4GFNX0gch+QG7B N+8rv4sWEEm7XylXwb3AXEfVIrPsS+F8f3+q8enMvfFpQj2Qg8opL5iFttELKSc7 8e/f8DyjQRpwqgqyuRca7+9C/gqGl8tfZul04vhokePtYgU5bCxpQL1OhIvu+fsm AfQnhe0i7DUCAwEAAaOCAaEwggGdMBMGCisGAQQB1nkCBAMBAf8EAgUAMCAGA1Ud EQQZMBeCFW1kbS5saWJlcnR5bXV0dWFsLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDMGA1UdHwQsMCowKKAmoCSGImh0 dHA6Ly9jcmwuZW50cnVzdC5uZXQvbGV2ZWwxay5jcmwwSwYDVR0gBEQwQjA2Bgpg hkgBhvpsCgEFMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly93d3cuZW50cnVzdC5uZXQv cnBhMAgGBmeBDAECAjBoBggrBgEFBQcBAQRcMFowIwYIKwYBBQUHMAGGF2h0dHA6 Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChidodHRwOi8vYWlhLmVudHJ1 c3QubmV0L2wxay1jaGFpbjI1Ni5jZXIwHwYDVR0jBBgwFoAUgqJwdN28Uz/Pe9T3 zX+nYMYKTL8wHQYDVR0OBBYEFIOFP0UrIoWK/DMXDSdOmj3meo+9MAkGA1UdEwQC MAAwDQYJKoZIhvcNAQELBQADggEBAIX9YXHqDP0cLRlAFVb7aw/gCxhiFKjApeZT AmAttbSdn3RUwqtJXGGnRtlh8sjbFk/nEeszvq99E4Tc1+EfTtvPBYFgN2SZqkEG vhQTTqZuUnYw8CV1U6987sBX1oEmgPTH+TO7LVw57qWhHbyevMsXLTvy4yAdvI1j 2Dg6QP1NozMJpR8M+v79UHqw6pNCkhOzqrm+ZVcJd4NtpZ7XUaPb6n9tBeVQOeDu uwLMNrgPSxslDNv4ZDYKgtU+dR38t51fEo5qDApq/2K9y/n3lMcY168FM16nY/ir fBvuyKketWQ94x7hWgePCzKMfhYQIrqq09kdxw/fo58RvkmEgBk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4xlGGHd367FqMhDcPkd+ fGWokxEju0SEIYG6ZJKbbsIvSLC1rKS/wuo2s0G7+kfp1ud5IVgc2pTbai5iPm5s t6h8r+b8i2e7kp6THsXQ+Q9Cjed3je7im+ww7wn11ejktJytUL3zFjOoGWpJuHq3 9OO/wcJnUTOpAeNse4tFMKzJA23pNTByUZWMfYYALgYU1fSByH5AbsE37yu/ixYQ SbtfKVfBvcBcR9Uis+xL4Xx/f6rx6cy98WlCPZCDyikvmIW20QspJzvx79/wPKNB GnCqCrK5Fxrv70L+CoaXy19m6XTi+GiR4+1iBTlsLGlAvU6Ei+75+yYB9CeF7SLs NQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 257795917983385420805119673038080959586 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-15 21:56:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-15 22:26:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Hampshire' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Portsmouth' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Liberty Mutual Group' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mdm.libertymutual.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28668558207918122441859617519457755060582044221103794016448851259722125319615607019309128390066554289690851393496259509354402278604657762925336174219418684033700270789258254320108716311166262742530529596624728228757418106116976939125478353608883384981052187514073158223721937856835436333327768104374756347686244905182401373852273638082960441987314563981323262142930690719774530489966590751625504375712270890127447705991926319200001556903535089715379899019419271314341426240556636412108497594753325473322490704368525855506242405294207575006715985906086884179053116325198789205994069165131184978766167121058476589247541 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mdm.libertymutual.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 83853f452b22858afc33170d274e9a3de67a8fbd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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