ciit-basui-staging.libertymutual.com
- Liberty Mutual Group Inc. -
Issued by DigiCert Global CA G2
About this certificate
This digital certificate with serial number 0e:4e:cb:e8:d2:f4:f9:c8:fe:ac:3e:01:5e:cc:3a:43 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Liberty Mutual Group Inc.
Organization:
Liberty Mutual Group Inc.
Organization unit: ETS
Organization unit: ETS
State / Province:
New Hampshire
Locality: Portsmouth
Country: US
Locality: Portsmouth
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:4e:cb:e8:d2:f4:f9:c8:fe:ac:3e:01:5e:cc:3a:43Serial Number (int): 19018326871325792913523654543446653507
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 71:49:84:7f:af:c2:eb:1b:52:f6:31:59:cd:21:eb:9c:da:54:31:dd
AuthorityKeyId: 24:6e:2b:2d:d0:6a:92:51:51:25:69:01:aa:9a:47:a6:89:e7:40:20
Fingerprint (sha1): 90:75:cb:74:35:8a:fe:05:10:0f:00:a6:39:f0:ca:54:63:79:ed:7b
Fingerprint (sha256): 03:61:38:53:5a:7c:13:64:24:c1:2c:44:2d:e4:ec:2f:a0:01:e9:ef:35:7d:53:82:5a:7e:bf:ae:c2:1a:a0:8c
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalCAG2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalCAG2.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalCAG2.crl
Check the revocation status for certificate ciit-basui-staging.libertymutual.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ciit-basui-staging.libertymutual.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ciit-basui-staging.libertymutual.com
Other certificates including the domain name libertymutual.com
(limited to 100 certificates)
ete-claims.safeco.com
eclps.libertymutual.com
quote.libertymutual.com
test-b-pmcfp.libertymutual.com
www.test-commercialclaimportal.libertymutual.com
uat.mediedge.com
www.libertymutual.com
perfrdcespoapps.libertymutual.com
test-cliq.libertymutual.com
ete-claims.safeco.com
mdmaspilot.libertymutual.com
PeopleAtLiberty.com
mybusinessonline.libertymutual.com
online.libertymutual.com
www.libertyiu.com
1-internal.us-east-1.production.paas.lmig.com
ete-www2.libertymutual.com
trn-eservice.libertymutual.com
*.lnpa.uscm.libertymutual.com
cfplp.libertymutual.com
test-securefile.libertymutual.com
cs-tappool-03p.lm.lmig.com
4-internal.us-east-1.non-production.paas.lmig.com
s-connect.libertymutual.com
tesla-cpa-np.libertymutual.com
preferences-rdc.libertymutual.com
dmz-cpa-datapower-prod.libertymutual.com
trn-a-pmcfa.libertymutual.com
perf-www.liucanada.com
maintenance.libertymutual.com
workerscompensationsupport.libertymutual.com
brmspolicy-uat.libertyinsurance.in
dev-d-mobile.online.libertymutual.com
libertymutual.com
libertymutual.myinstantincentives.com
test-ereport.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
ete-www2.libertymutual.com
www.yottaa.net
*.devops.npa.uscm.libertymutual.com
ha-rdcespoapps.libertymutual.com
www.libertyiu.com
perf-www.liucanada.com
cswebext-pool-03p.libertymutual.com
trn-cfa.libertymutual.com
cicct-taskrouter-gateway.libertymutual.com
cswebext-pool-02k.libertymutual.com
test-mytoken.libertymutual.com
cicct-taskrouter-gateway.libertymutual.com
portal-cms-staging.lmig.com
test-risk-lifecycle-id.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
smst.libertymutual.com
account.dev-eservice.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
apitest.libertymutual.com
dev-i-tts-gateway.libertymutual.com
load-insurance.libertymutual.com
edge-routers.pdc.api.libertymutual.com
mypersonalbest.libertymutual.com
payment-apac.libertymutual.com
www.yottaa.net
npp-cpa.libertymutual.com
2pr-csw.libertymutual.com
perf-www.liucanada.com
test-equote.libertymutual.com
cliq.libertymutual.com
search.libertymutual.com
vantageporttest.libertymutual.com
risk-lifecycle-id.libertymutual.com
internetwebchat05.libertymutual.com
voltage-pp-0000.libertymutual.com
account.np-eservice.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
test-ci-policyquoteapi.libertymutual.com
dev-d-public.libertymutual.com
regional-ssl.libertymutual.com
test-tuition.libertymutual.com
soatenlinea-nonprod.libertyseguros.co
cswebext-tappool-03p.libertymutual.com
givewithliberty.libertymutual.com
dev-a-dpec.safeco.com
internetwebchat01.libertymutual.com
test-securefile.libertymutual.com
safetynet.libertymutual.com
test-securefile.libertymutual.com
ete-www2.libertymutual.com
cswebext-pool-03b.libertymutual.com
dev-notifications.np-lmb.libertymutual.com
test-securefile.libertymutual.com
benefitscoach-nonprod.libertymutual.com
*.test.omni-sms.aws.libertymutual.com
quote.libertymutual.com
ete-www2.libertymutual.com
mdm.libertymutual.com
test-icasemanagersecure.libertymutual.com
ciit-basui-staging.libertymutual.com
external-test.pdc.np.api.libertymutual.com
clientlist.qa.safeco.com
amsso.libertymutual.com
eclps.libertymutual.com
quote.libertymutual.com
test-b-pmcfp.libertymutual.com
www.test-commercialclaimportal.libertymutual.com
uat.mediedge.com
www.libertymutual.com
perfrdcespoapps.libertymutual.com
test-cliq.libertymutual.com
ete-claims.safeco.com
mdmaspilot.libertymutual.com
PeopleAtLiberty.com
mybusinessonline.libertymutual.com
online.libertymutual.com
www.libertyiu.com
1-internal.us-east-1.production.paas.lmig.com
ete-www2.libertymutual.com
trn-eservice.libertymutual.com
*.lnpa.uscm.libertymutual.com
cfplp.libertymutual.com
test-securefile.libertymutual.com
cs-tappool-03p.lm.lmig.com
4-internal.us-east-1.non-production.paas.lmig.com
s-connect.libertymutual.com
tesla-cpa-np.libertymutual.com
preferences-rdc.libertymutual.com
dmz-cpa-datapower-prod.libertymutual.com
trn-a-pmcfa.libertymutual.com
perf-www.liucanada.com
maintenance.libertymutual.com
workerscompensationsupport.libertymutual.com
brmspolicy-uat.libertyinsurance.in
dev-d-mobile.online.libertymutual.com
libertymutual.com
libertymutual.myinstantincentives.com
test-ereport.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
ete-www2.libertymutual.com
www.yottaa.net
*.devops.npa.uscm.libertymutual.com
ha-rdcespoapps.libertymutual.com
www.libertyiu.com
perf-www.liucanada.com
cswebext-pool-03p.libertymutual.com
trn-cfa.libertymutual.com
cicct-taskrouter-gateway.libertymutual.com
cswebext-pool-02k.libertymutual.com
test-mytoken.libertymutual.com
cicct-taskrouter-gateway.libertymutual.com
portal-cms-staging.lmig.com
test-risk-lifecycle-id.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
smst.libertymutual.com
account.dev-eservice.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
apitest.libertymutual.com
dev-i-tts-gateway.libertymutual.com
load-insurance.libertymutual.com
edge-routers.pdc.api.libertymutual.com
mypersonalbest.libertymutual.com
payment-apac.libertymutual.com
www.yottaa.net
npp-cpa.libertymutual.com
2pr-csw.libertymutual.com
perf-www.liucanada.com
test-equote.libertymutual.com
cliq.libertymutual.com
search.libertymutual.com
vantageporttest.libertymutual.com
risk-lifecycle-id.libertymutual.com
internetwebchat05.libertymutual.com
voltage-pp-0000.libertymutual.com
account.np-eservice.libertymutual.com
4-internal.us-east-1.non-production.paas.lmig.com
test-ci-policyquoteapi.libertymutual.com
dev-d-public.libertymutual.com
regional-ssl.libertymutual.com
test-tuition.libertymutual.com
soatenlinea-nonprod.libertyseguros.co
cswebext-tappool-03p.libertymutual.com
givewithliberty.libertymutual.com
dev-a-dpec.safeco.com
internetwebchat01.libertymutual.com
test-securefile.libertymutual.com
safetynet.libertymutual.com
test-securefile.libertymutual.com
ete-www2.libertymutual.com
cswebext-pool-03b.libertymutual.com
dev-notifications.np-lmb.libertymutual.com
test-securefile.libertymutual.com
benefitscoach-nonprod.libertymutual.com
*.test.omni-sms.aws.libertymutual.com
quote.libertymutual.com
ete-www2.libertymutual.com
mdm.libertymutual.com
test-icasemanagersecure.libertymutual.com
ciit-basui-staging.libertymutual.com
external-test.pdc.np.api.libertymutual.com
clientlist.qa.safeco.com
amsso.libertymutual.com
Certificate
The complete raw certificate details for ciit-basui-staging.libertymutual.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIQDk7L6NL0+cj+rD4BXsw6QzANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMR4wHAYDVQQDExVE aWdpQ2VydCBHbG9iYWwgQ0EgRzIwHhcNMTgwMjI3MDAwMDAwWhcNMjAwMjI4MTIw MDAwWjCBmzELMAkGA1UEBhMCVVMxFjAUBgNVBAgTDU5ldyBIYW1wc2hpcmUxEzAR BgNVBAcTClBvcnRzbW91dGgxIjAgBgNVBAoTGUxpYmVydHkgTXV0dWFsIEdyb3Vw IEluYy4xDDAKBgNVBAsTA0VUUzEtMCsGA1UEAxMkY2lpdC1iYXN1aS1zdGFnaW5n LmxpYmVydHltdXR1YWwuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAppJU2YAfLRuePkY2E+iZzaiUO+VakI/cw/qh+GBowwjdmGMqzoK65LFqhSxy BuNb5ttL5QrqxRxer+5xrtwoL3zoABKGGmMNlaz04OWm7BoYtseVGXrlGEA4ReeO 8dV+PFUJfrVsUjptz2fsC4j8i01GbfehVTBPAzj43T5avR/BQ4Sw6RCfKA73Vuv0 S91IiJWSPSWMu6vfQ25EFopzghnlc7SUVE0X6jy4zfkY4w+/Zr1KSUid5oWN5YqA Ys5DWBCP5SgExdqi+s/7ldFIDoeb/kvJJqCJZ6kdNwcImnMwDUoeenuOzJX9WxtS qHI5xP94pwsuC4Y78WXX7kwRGwIDAQABo4ICATCCAf0wHwYDVR0jBBgwFoAUJG4r LdBqklFRJWkBqppHponnQCAwHQYDVR0OBBYEFHFJhH+vwusbUvYxWc0h65zaVDHd MC8GA1UdEQQoMCaCJGNpaXQtYmFzdWktc3RhZ2luZy5saWJlcnR5bXV0dWFsLmNv bTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MHcGA1UdHwRwMG4wNaAzoDGGL2h0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9EaWdp Q2VydEdsb2JhbENBRzIuY3JsMDWgM6Axhi9odHRwOi8vY3JsNC5kaWdpY2VydC5j b20vRGlnaUNlcnRHbG9iYWxDQUcyLmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwB ATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgG BmeBDAECAjB0BggrBgEFBQcBAQRoMGYwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3Nw LmRpZ2ljZXJ0LmNvbTA+BggrBgEFBQcwAoYyaHR0cDovL2NhY2VydHMuZGlnaWNl cnQuY29tL0RpZ2lDZXJ0R2xvYmFsQ0FHMi5jcnQwCQYDVR0TBAIwADATBgorBgEE AdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe5macM0dV3ZK/C41KzM3 ydp7PD9ZhDwuBTpDs35ABh+CW06hBfYw5PTfqriGLKYSlR16xm6H1w7S0ZLYVZ43 TxuIuVPo5R5TrjKDGE0+/QIG26cK2tvWCzyO/VmD+2RzhLzdaBUBNZAJ1UNr6WeE IHnitJxtT5vYT4lpcYky26Xv24wW5i3GP4rLVPruL/iof+5TpbIU6R9TxJL1g4Sf pUdCU7eSvg5q3r7nR67eFRZh3HpYhdnJQ3FvoO3pWk5J33/IfMwoykdgx5e+qiRa 8qQ5ZKqNecWR6G74bAQZzMwn+v8OTh7BuYucIlP9CHb5bFgEtrgcBGmIqa6oylZ1 LQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppJU2YAfLRuePkY2E+iZ zaiUO+VakI/cw/qh+GBowwjdmGMqzoK65LFqhSxyBuNb5ttL5QrqxRxer+5xrtwo L3zoABKGGmMNlaz04OWm7BoYtseVGXrlGEA4ReeO8dV+PFUJfrVsUjptz2fsC4j8 i01GbfehVTBPAzj43T5avR/BQ4Sw6RCfKA73Vuv0S91IiJWSPSWMu6vfQ25EFopz ghnlc7SUVE0X6jy4zfkY4w+/Zr1KSUid5oWN5YqAYs5DWBCP5SgExdqi+s/7ldFI Doeb/kvJJqCJZ6kdNwcImnMwDUoeenuOzJX9WxtSqHI5xP94pwsuC4Y78WXX7kwR GwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19018326871325792913523654543446653507 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global CA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-28 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Hampshire' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Portsmouth' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Liberty Mutual Group Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ETS' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ciit-basui-staging.libertymutual.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21027717348692979238897121444419897010493254112115052511889197813307982170473053637965160801898685390957343429856638268590234420598187796958635310309491807577522257046918295231307824328158199410101568757853360912702766881529532761970730144038104069966020718167573089382466543576197453789860166407819629641080176785923334193923850868745567476607358084480237485422583386489304651684274133564777661434822343228079661211267267189724289110483635595297021466877172371402878304742268424812248689882354530384128237837686342308742415096457516149075823451656839489683246568286019473635457221077478686036221336142035896545055003 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 246e2b2dd06a925151256901aa9a47a689e74020 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7149847fafc2eb1b52f63159cd21eb9cda5431dd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ciit-basui-staging.libertymutual.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalCAG2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalCAG2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalCAG2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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