scim3.private.zscaler.com
- Zscaler, Inc. -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 07:cd:8f:32:4f:3b:d6:3b:63:a4:a0:35:f7:e1:0e:41 was issued on by DigiCert Inc.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Zscaler, Inc.
Organization:
Zscaler, Inc.
State / Province:
California
Locality: San Jose
Country: US
Locality: San Jose
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:cd:8f:32:4f:3b:d6:3b:63:a4:a0:35:f7:e1:0e:41Serial Number (int): 10371921196997152757471703166676438593
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: fa:b5:ff:79:40:de:f4:6c:30:f5:9e:4d:b6:bd:be:b1:2a:c8:0a:a7
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): c1:72:29:5a:d4:6f:ae:90:9a:a3:41:20:2b:e6:67:f1:c2:e1:13:98
Fingerprint (sha256): 03:9b:4c:88:f7:d6:58:ed:35:47:41:1c:be:8e:0b:7e:d7:55:24:c6:55:69:7b:e6:0b:97:30:6c:b9:0e:b7:52
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate scim3.private.zscaler.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for scim3.private.zscaler.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
scim3.private.zscaler.com
fra5-zpa-scim.private.zscaler.com
userdb-api3.private.zscaler.com
fra5-zpa-userdb-api.private.zscaler.com
fra5-zpa-scim.private.zscaler.com
userdb-api3.private.zscaler.com
fra5-zpa-userdb-api.private.zscaler.com
Other certificates including the domain name zscaler.com
(limited to 100 certificates)
help.zscaler.com
4aa4445570ad.isolation.zscaler.com
prod.2.slot.cdn.salesforce-communities.com
8807782cb340.isolation.zscaler.com
9d04a73cad33.isolation.zscaler.com
4c06f9e1ceea.isolation.zscaler.com
leapfrog-ssl-6.gcs-web.com
be7adaf93846.isolation.zscaler.com
slackcmgmt.corp.zscaler.com
419c298af9b8.isolation.zscaler.com
90ca2a5d4b4b.isolation.zscaler.com
e1d0482394d8.isolation-beta.zscaler.com
5ab736534595.isolation.zscaler.com
edwardjones.isolation.zscaler.com
8dbc2ce137cd.isolation.zscaler.com
6080bf184bab.isolation.zscaler.com
za.private.zscaler.com
c335970eb6dd.isolation.zscaler.com
6f5adec659b2.isolation.zscaler.com
c6d6200817d3.isolation.zscaler.com
0be06188b296.isolation.zscaler.com
5c0410637e35.isolation.zscaler.com
prod.2.slot.cdn.salesforce-communities.com
09fbd4153565.isolation.zscaler.com
78b70ff10b3c.isolation.zscaler.com
809169afaccb.isolation.zscaler.com
community.zscaler.com
0576cea396da.isolation.zscaler.com
9ae9b06aa209.isolation.zscaler.com
moneysupermarket.isolation.zscaler.com
2bfaa0c971a9.isolation.zscaler.com
cloudy.et.zscaler.com
zmtr.zscaler.com
70d3a4cc06a5.isolation.zscaler.com
83217b31cb0f.isolation.zscaler.com
091d3899714e.isolation.zscaler.com
5bdb6a614a86.isolation.zscaler.com
d261c37e4836.isolation.zscaler.com
cb652b5bbc21.isolation.zscaler.com
salesloft.zscaler.com
us2-zpa-reporting.private.zscaler.com
3fc0690debaa.isolation.zscaler.com
04fc236d68d1.isolation.zscaler.com
2961718e1cd1.isolation.zscaler.com
scim3.private.zscaler.com
a0d5ef16060c.isolation.zscaler.com
09590f90ac00.isolation.zscaler.com
86bae35f7ba5.isolation.zscaler.com
84920d21e96a.isolation.zscaler.com
400b90645084.isolation.zscaler.com
a615f065c0d2.isolation.zscaler.com
leapfrog-ssl-6.gcs-web.com
73f7ee820e0c.isolation.zscaler.com
5b46f9dca79f.isolation.zscaler.com
blog.zscaler.com
a3fcfbb69d37.isolation.zscaler.com
fca566012735.isolation.zscaler.com
tools.zscaler.com
geox.isolation.zscaler.com
6acafac8f2bb.isolation.zscaler.com
cloudy.et.zscaler.com
ff82163f086b.isolation.zscaler.com
5614257a63c2457e.syd16.1c08d51bf34a.isolation.zscaler.com
751b339a4638.isolation.zscaler.com
hello.zscaler.com
bce244e8f7e4.isolation.zscaler.com
ee9819010f2d.isolation.zscaler.com
us1-zpa-cloudwidestats.private.zscaler.com
9ee0b705e942.isolation.zscaler.com
af1ee1f87bda.isolation.zscaler.com
1c9e89fc62d7.isolation.zscaler.com
58864ade6458cc32.sin16.hkstp.isolation.zscaler.com
da6d1a49f716.isolation.zscaler.com
15e847b15c5f.isolation.zscaler.com
6ca47b117868.isolation.zscaler.com
0c6a6a8f5b90.isolation.zscaler.com
c58c137a9cf2.isolation.zscaler.com
cc6e47606032.isolation.zscaler.com
11d2302592d2.isolation.zscaler.com
52ec4da2918a.isolation.zscaler.com
b577100edc86.isolation.zscaler.com
admin.isolation.zscaler.com
14bd7b4c35fe.isolation.zscaler.com
be0081bf10cf.isolation.zscaler.com
a3de0b2a8bb0.isolation.zscaler.com
blog.zscaler.com
admin.isolation-beta.zscaler.com
b975a3f7f5e3.isolation.zscaler.com
ccd660d146ec8d62.pdx16.hkstp.isolation.zscaler.com
prod.2.slot.cdn.salesforce-communities.com
7e8ee3a10eb0.isolation.zscaler.com
c9114ee988bec428.was16.americas-se.isolation.zscaler.com
5c603926acb1.isolation.zscaler.com
c05c421b8206.isolation.zscaler.com
7e8ee3a10eb0.isolation.zscaler.com
850972eaed97.isolation.zscaler.com
c88c8e025e32.isolation.zscaler.com
6080bf184bab.isolation.zscaler.com
c542804579f7.isolation.zscaler.com
92b8b226a27c.isolation.zscaler.com
4aa4445570ad.isolation.zscaler.com
prod.2.slot.cdn.salesforce-communities.com
8807782cb340.isolation.zscaler.com
9d04a73cad33.isolation.zscaler.com
4c06f9e1ceea.isolation.zscaler.com
leapfrog-ssl-6.gcs-web.com
be7adaf93846.isolation.zscaler.com
slackcmgmt.corp.zscaler.com
419c298af9b8.isolation.zscaler.com
90ca2a5d4b4b.isolation.zscaler.com
e1d0482394d8.isolation-beta.zscaler.com
5ab736534595.isolation.zscaler.com
edwardjones.isolation.zscaler.com
8dbc2ce137cd.isolation.zscaler.com
6080bf184bab.isolation.zscaler.com
za.private.zscaler.com
c335970eb6dd.isolation.zscaler.com
6f5adec659b2.isolation.zscaler.com
c6d6200817d3.isolation.zscaler.com
0be06188b296.isolation.zscaler.com
5c0410637e35.isolation.zscaler.com
prod.2.slot.cdn.salesforce-communities.com
09fbd4153565.isolation.zscaler.com
78b70ff10b3c.isolation.zscaler.com
809169afaccb.isolation.zscaler.com
community.zscaler.com
0576cea396da.isolation.zscaler.com
9ae9b06aa209.isolation.zscaler.com
moneysupermarket.isolation.zscaler.com
2bfaa0c971a9.isolation.zscaler.com
cloudy.et.zscaler.com
zmtr.zscaler.com
70d3a4cc06a5.isolation.zscaler.com
83217b31cb0f.isolation.zscaler.com
091d3899714e.isolation.zscaler.com
5bdb6a614a86.isolation.zscaler.com
d261c37e4836.isolation.zscaler.com
cb652b5bbc21.isolation.zscaler.com
salesloft.zscaler.com
us2-zpa-reporting.private.zscaler.com
3fc0690debaa.isolation.zscaler.com
04fc236d68d1.isolation.zscaler.com
2961718e1cd1.isolation.zscaler.com
scim3.private.zscaler.com
a0d5ef16060c.isolation.zscaler.com
09590f90ac00.isolation.zscaler.com
86bae35f7ba5.isolation.zscaler.com
84920d21e96a.isolation.zscaler.com
400b90645084.isolation.zscaler.com
a615f065c0d2.isolation.zscaler.com
leapfrog-ssl-6.gcs-web.com
73f7ee820e0c.isolation.zscaler.com
5b46f9dca79f.isolation.zscaler.com
blog.zscaler.com
a3fcfbb69d37.isolation.zscaler.com
fca566012735.isolation.zscaler.com
tools.zscaler.com
geox.isolation.zscaler.com
6acafac8f2bb.isolation.zscaler.com
cloudy.et.zscaler.com
ff82163f086b.isolation.zscaler.com
5614257a63c2457e.syd16.1c08d51bf34a.isolation.zscaler.com
751b339a4638.isolation.zscaler.com
hello.zscaler.com
bce244e8f7e4.isolation.zscaler.com
ee9819010f2d.isolation.zscaler.com
us1-zpa-cloudwidestats.private.zscaler.com
9ee0b705e942.isolation.zscaler.com
af1ee1f87bda.isolation.zscaler.com
1c9e89fc62d7.isolation.zscaler.com
58864ade6458cc32.sin16.hkstp.isolation.zscaler.com
da6d1a49f716.isolation.zscaler.com
15e847b15c5f.isolation.zscaler.com
6ca47b117868.isolation.zscaler.com
0c6a6a8f5b90.isolation.zscaler.com
c58c137a9cf2.isolation.zscaler.com
cc6e47606032.isolation.zscaler.com
11d2302592d2.isolation.zscaler.com
52ec4da2918a.isolation.zscaler.com
b577100edc86.isolation.zscaler.com
admin.isolation.zscaler.com
14bd7b4c35fe.isolation.zscaler.com
be0081bf10cf.isolation.zscaler.com
a3de0b2a8bb0.isolation.zscaler.com
blog.zscaler.com
admin.isolation-beta.zscaler.com
b975a3f7f5e3.isolation.zscaler.com
ccd660d146ec8d62.pdx16.hkstp.isolation.zscaler.com
prod.2.slot.cdn.salesforce-communities.com
7e8ee3a10eb0.isolation.zscaler.com
c9114ee988bec428.was16.americas-se.isolation.zscaler.com
5c603926acb1.isolation.zscaler.com
c05c421b8206.isolation.zscaler.com
7e8ee3a10eb0.isolation.zscaler.com
850972eaed97.isolation.zscaler.com
c88c8e025e32.isolation.zscaler.com
6080bf184bab.isolation.zscaler.com
c542804579f7.isolation.zscaler.com
92b8b226a27c.isolation.zscaler.com
Certificate
The complete raw certificate details for scim3.private.zscaler.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHXTCCBkWgAwIBAgIQB82PMk871jtjpKA19+EOQTANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjMx MDE3MDAwMDAwWhcNMjQxMTE2MjM1OTU5WjBxMQswCQYDVQQGEwJVUzETMBEGA1UE CBMKQ2FsaWZvcm5pYTERMA8GA1UEBxMIU2FuIEpvc2UxFjAUBgNVBAoTDVpzY2Fs ZXIsIEluYy4xIjAgBgNVBAMTGXNjaW0zLnByaXZhdGUuenNjYWxlci5jb20wggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY363Wke7BylEp4J2sXgkieO9j UnuKkFu4nYGwybaPA53TNsIQr9uIZxBDs8pZOm/Arb6jXoGZh8Ze5jimq+gtIxNG 3OA1Ad9yDA4kUHLhzSJgTFRgwAoSRZOaG1lrzS6bqjlKcq/gdYZ2zR89yiBVefJW 86XX+Im9jpafcfKBK1O1YMU4bLZBy294IZQSxCmdLec0aO4Kid8xQmxhA//AEEPW SToD0m1KMCsiEbbmLHBwAagaz72r8v8RfC++oZzCsMpuNJ0cuAY36Ek+QIlMUmVY +BrNTrr2gAtPkCNYenPo5O42Vxrv/IKSYWC+q9LRiw57e7az8zRX88DT0JSdAgMB AAGjggQHMIIEAzAfBgNVHSMEGDAWgBR0hYDAZsffN97PvSk3qgMdvu3NFzAdBgNV HQ4EFgQU+rX/eUDe9Gww9Z5Ntr2+sSrICqcwgZMGA1UdEQSBizCBiIIZc2NpbTMu cHJpdmF0ZS56c2NhbGVyLmNvbYIhZnJhNS16cGEtc2NpbS5wcml2YXRlLnpzY2Fs ZXIuY29tgh91c2VyZGItYXBpMy5wcml2YXRlLnpzY2FsZXIuY29tgidmcmE1LXpw YS11c2VyZGItYXBpLnByaXZhdGUuenNjYWxlci5jb20wPgYDVR0gBDcwNTAzBgZn gQwBAgIwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BT MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw gZ8GA1UdHwSBlzCBlDBIoEagRIZCaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0R2xvYmFsRzJUTFNSU0FTSEEyNTYyMDIwQ0ExLTEuY3JsMEigRqBEhkJo dHRwOi8vY3JsNC5kaWdpY2VydC5jb20vRGlnaUNlcnRHbG9iYWxHMlRMU1JTQVNI QTI1NjIwMjBDQTEtMS5jcmwwgYcGCCsGAQUFBwEBBHsweTAkBggrBgEFBQcwAYYY aHR0cDovL29jc3AuZGlnaWNlcnQuY29tMFEGCCsGAQUFBzAChkVodHRwOi8vY2Fj ZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRHbG9iYWxHMlRMU1JTQVNIQTI1NjIw MjBDQTEtMS5jcnQwDAYDVR0TAQH/BAIwADCCAYAGCisGAQQB1nkCBAIEggFwBIIB bAFqAHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGLPYGTkwAA BAMASDBGAiEAvI+dngNXhYV+6w1fjhVXSqTVpNA6WKzmxi2vQYVnM7wCIQDWOxGE 2+t5H5Owi1rjEyOWI5aA+ujBKrOqb7V82IfahQB3AEiw42vapkc0D+VqAvqdMOsc UgHLVt0sgdm7v6s52IRzAAABiz2Bk8QAAAQDAEgwRgIhANvcAEjOH63MxkDN18TG nqq+1t41ifoogKmBwzITvOVzAiEAyuFH22PEwVA4QSXqdN0Ihmmd5zbrAWUS18bT LsgC7DAAdgDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYs9gZOx AAAEAwBHMEUCIECKTE+8Jt9TXnXQREa6zBuAxcFGDnlJcmoY9evFm9r3AiEAlJdJ 20t/Uuu1+DSsWXiEuBTnNRffLq/LRXz5Zv3a144wDQYJKoZIhvcNAQELBQADggEB AI6SvX+hSYnKdruvL0Gh5KbX8yYQoDRaaBnCflDmM6XKr26OLOWMUleV6NKnpQFX z4eDWqGXqTGP7QoLctkoYpFMxnwZW9ev1CfOgCtRGJAzYVeH4MSgDO92cQ72a4u+ jOo0OyLZVTc/XxqJoshM5EmZluYu+YMoCf5BL6lsTBBx5pN9E3clFzd2NIYGD7in n8hqgz6L0WyjWlFs0HObaC+Jeq7c4/9Ftd5imFb6h+bSVu/2nIsZRR+iH8SL/T95 DW/JhzyRQ3A0tpV4EZocqhEaiRdO+21COk0hWEGiZN4wMhkXZLK8hh6VFvFLjuCw qCfb7HfF6CgPd7h2pZEzNI8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2N+t1pHuwcpRKeCdrF4J InjvY1J7ipBbuJ2BsMm2jwOd0zbCEK/biGcQQ7PKWTpvwK2+o16BmYfGXuY4pqvo LSMTRtzgNQHfcgwOJFBy4c0iYExUYMAKEkWTmhtZa80um6o5SnKv4HWGds0fPcog VXnyVvOl1/iJvY6Wn3HygStTtWDFOGy2QctveCGUEsQpnS3nNGjuConfMUJsYQP/ wBBD1kk6A9JtSjArIhG25ixwcAGoGs+9q/L/EXwvvqGcwrDKbjSdHLgGN+hJPkCJ TFJlWPgazU669oALT5AjWHpz6OTuNlca7/yCkmFgvqvS0YsOe3u2s/M0V/PA09CU nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10371921196997152757471703166676438593 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-16 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'San Jose' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zscaler, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'scim3.private.zscaler.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27377774125798184697478732374401258347793205577021688031836503091125475226977123460709715525373107827426312100700457928580166836938566884365416207910393167642283625150372725887020801952748056396554638054669850153331595947212481173094055103058126084780917927277717796143619871508409911277588930395386323347425020674777494132026249079663855427295448399310314110419986231780889635832321741170442747100614475225661879323551784687092664768962032658811992121677874058959909522376966062296371647869213782161505287434991638705951135356580872618910583523232027101415605744420042564424033195699193960289310393474969336219210909 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fab5ff7940def46c30f59e4db6bdbeb12ac80aa7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (139 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scim3.private.zscaler.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fra5-zpa-scim.private.zscaler.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'userdb-api3.private.zscaler.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fra5-zpa-userdb-api.private.zscaler.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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