ngcp-qi.tomthumb.com
- Safeway Inc. -
Issued by GeoTrust RSA CA 2018
About this certificate
This digital certificate with serial number 0d:c7:2c:97:7a:d3:f2:7a:a7:c2:f1:0e:27:4d:eb:e9 was issued on by DigiCert Inc.
With 96 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Safeway Inc.
Organization:
Safeway Inc.
Organization unit: Akamai SAN SSL OV
Organization unit: Akamai SAN SSL OV
State / Province:
California
Locality: Pleasanton
Country: US
Locality: Pleasanton
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:c7:2c:97:7a:d3:f2:7a:a7:c2:f1:0e:27:4d:eb:e9Serial Number (int): 18314135447540836994663596837252754409
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: cd:9b:71:95:28:b4:49:7c:5c:4b:e2:b7:60:47:ca:58:60:81:1c:d1
AuthorityKeyId: 90:58:ff:b0:9c:75:a8:51:54:77:b1:ed:f2:a3:43:16:38:9e:6c:c5
Fingerprint (sha1): bc:ae:a5:32:4a:5e:e2:ea:df:17:b5:b2:31:b1:bb:ae:2b:e1:33:90
Fingerprint (sha256): 03:be:57:33:c7:e8:24:b5:9f:29:84:83:a4:53:51:74:08:dc:bf:8c:b3:51:53:8b:eb:31:f9:30:a3:78:dd:a4
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustRSACA2018.crl
Check the revocation status for certificate ngcp-qi.tomthumb.com
96
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ngcp-qi.tomthumb.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ngcp-qi.tomthumb.com
qa-corporate.safeway.com
ngcp-qi.albertsons.com
shop-dev.pavilions.com
shop-stage.pavilions.com
shop-stage.vons.com
rss-q.carrsqc.com
shop-qa-ak.jewelosco.com
shop-dev.jewelosco.com
shop-dev-ak.safeway.com
qa.vonsfoundation.org
ngcp-qa2.acmemarkets.com
rss2-q.safeway.com
rss3-q.safeway.com
shop-dev.safeway.com
shop-dev-ak.tomthumb.com
shop-dev-ak.albertsons.com
ngcp-qi.randalls.com
shop-qa.jewelosco.com
rss2-q.tomthumb.com
shop-qa-ak.randalls.com
shop-qa-ak.pavilions.com
shop-qa.tomthumb.com
qa.pavilionsfoundation.org
shop-qa-ak.vons.com
rss-q.vons.com
qa.albertsonsfoundation.org
shop-dev.tomthumb.com
rss2-q.randalls.com
shop-qa-ak.safeway.com
qa.starmarketfoundation.org
qa.jeweloscofoundation.org
ngcp-qa1.jewelosco.com
rss3-q.pavilions.com
qa.safewayfoundation.org
qa.lucernefoods.com
rss3-q.carrsqc.com
shop-stage-ak.pavilions.com
qa.shawsfoundation.org
shop-qa.pavilions.com
rss3-q.vons.com
rss-prf.pavilions.com
qa.acmemarketfoundation.org
ngcp-qi.safeway.com
rss-q.safeway.com
shop-dev.vons.com
shop-stage-ak.albertsons.com
shop-qa.vons.com
shop-stage-ak.vons.com
shop-stage.albertsons.com
shop-qa-ak.albertsons.com
shop-qa.albertsons.com
ngcp-qi.vons.com
qa.tomthumbfoundation.org
rss-q.tomthumb.com
shop-dev-ak.jewelosco.com
shop-dev.randalls.com
rss-prf.vons.com
ngcp-qa1.acmemarkets.com
ngcp-qi.pavilions.com
rss2-q.carrsqc.com
shop-stage.jewelosco.com
qa.carrsfoundation.org
ngcp-qa2.jewelosco.com
ngcp-prf.jewelosco.com
ngcp-prf.acmemarkets.com
shop-dev-ak.randalls.com
qa-suppliers.safeway.com
shop-stage.randalls.com
shop-dev-ak.vons.com
shop-stage-ak.randalls.com
shop-dev.albertsons.com
rss-prf.safeway.com
rss-prf.carrsqc.com
rss3-q.tomthumb.com
rss-prf.randalls.com
rss2-q.pavilions.com
rss-q.pavilions.com
rss-prf.tomthumb.com
shop-qa-ak.tomthumb.com
shop-stage-ak.safeway.com
rss-q.randalls.com
mcloud-qa.safeway.com
shop-dev-ak.pavilions.com
shop-stage-ak.tomthumb.com
shop-stage.tomthumb.com
qa.albertsonscompaniesfoundation.org
ngcp-qi.carrsqc.com
shop-stage-ak.jewelosco.com
shop-qa.safeway.com
rss3-q.randalls.com
rss2-q.vons.com
shop-stage.safeway.com
employeeqa.safeway.com
qa.randallsfoundation.org
shop-qa.randalls.com
qa-corporate.safeway.com
ngcp-qi.albertsons.com
shop-dev.pavilions.com
shop-stage.pavilions.com
shop-stage.vons.com
rss-q.carrsqc.com
shop-qa-ak.jewelosco.com
shop-dev.jewelosco.com
shop-dev-ak.safeway.com
qa.vonsfoundation.org
ngcp-qa2.acmemarkets.com
rss2-q.safeway.com
rss3-q.safeway.com
shop-dev.safeway.com
shop-dev-ak.tomthumb.com
shop-dev-ak.albertsons.com
ngcp-qi.randalls.com
shop-qa.jewelosco.com
rss2-q.tomthumb.com
shop-qa-ak.randalls.com
shop-qa-ak.pavilions.com
shop-qa.tomthumb.com
qa.pavilionsfoundation.org
shop-qa-ak.vons.com
rss-q.vons.com
qa.albertsonsfoundation.org
shop-dev.tomthumb.com
rss2-q.randalls.com
shop-qa-ak.safeway.com
qa.starmarketfoundation.org
qa.jeweloscofoundation.org
ngcp-qa1.jewelosco.com
rss3-q.pavilions.com
qa.safewayfoundation.org
qa.lucernefoods.com
rss3-q.carrsqc.com
shop-stage-ak.pavilions.com
qa.shawsfoundation.org
shop-qa.pavilions.com
rss3-q.vons.com
rss-prf.pavilions.com
qa.acmemarketfoundation.org
ngcp-qi.safeway.com
rss-q.safeway.com
shop-dev.vons.com
shop-stage-ak.albertsons.com
shop-qa.vons.com
shop-stage-ak.vons.com
shop-stage.albertsons.com
shop-qa-ak.albertsons.com
shop-qa.albertsons.com
ngcp-qi.vons.com
qa.tomthumbfoundation.org
rss-q.tomthumb.com
shop-dev-ak.jewelosco.com
shop-dev.randalls.com
rss-prf.vons.com
ngcp-qa1.acmemarkets.com
ngcp-qi.pavilions.com
rss2-q.carrsqc.com
shop-stage.jewelosco.com
qa.carrsfoundation.org
ngcp-qa2.jewelosco.com
ngcp-prf.jewelosco.com
ngcp-prf.acmemarkets.com
shop-dev-ak.randalls.com
qa-suppliers.safeway.com
shop-stage.randalls.com
shop-dev-ak.vons.com
shop-stage-ak.randalls.com
shop-dev.albertsons.com
rss-prf.safeway.com
rss-prf.carrsqc.com
rss3-q.tomthumb.com
rss-prf.randalls.com
rss2-q.pavilions.com
rss-q.pavilions.com
rss-prf.tomthumb.com
shop-qa-ak.tomthumb.com
shop-stage-ak.safeway.com
rss-q.randalls.com
mcloud-qa.safeway.com
shop-dev-ak.pavilions.com
shop-stage-ak.tomthumb.com
shop-stage.tomthumb.com
qa.albertsonscompaniesfoundation.org
ngcp-qi.carrsqc.com
shop-stage-ak.jewelosco.com
shop-qa.safeway.com
rss3-q.randalls.com
rss2-q.vons.com
shop-stage.safeway.com
employeeqa.safeway.com
qa.randallsfoundation.org
shop-qa.randalls.com
Other certificates including the domain name tomthumb.com
(limited to 100 certificates)
peoplesoft-pr.safeway.com
incapsula.com
shop-qa3.safeway.com
shop-dev1-origin.safeway.com
www-qa1.albertsons.com
www-qa2.albertsons.com
local.pharmacy.tomthumb.com
local.tomthumb.com
auth.tomthumb.com
api-prod-origin.safeway.com
imperva.com
incapsula.com
ngcp-qi.tomthumb.com
imperva.com
shop-qa3-origin.safeway.com
shop-qa1.safeway.com
www-qa3.albertsons.com
shop-qa1.safeway.com
incapsula.com
embed-answers.cority.com.pagescdn.com
ngcp-qa2.tomthumb.com
www-dev1.albertsons.com
imperva.com
shop-qa1.safeway.com
api-qa1-origin.safeway.com
shop-dev1-origin.safeway.com
incapsula.com
peoplesoft-pr.safeway.com
www-dev2.albertsons.com
shop-qa1.safeway.com
peoplesoft-pr.safeway.com
shop-qa1.safeway.com
api-qa3-origin.safeway.com
ctsecure.mywebgrocer.com
api-stage-origin.safeway.com
www.tomthumb.com
api-dev1-origin.safeway.com
shop-dev2-origin.safeway.com
pharmacy.tomthumb.com
pharmacy.tomthumb.com
blog-hitchhikers.yext.com
shop-qa3.safeway.com
shop-prod-origin.safeway.com
shop-qa1.safeway.com
incapsula.com
auth.tomthumb.com
ngcp-qa2.safeway.com
shop-qa1-origin.safeway.com
www-qa2.albertsons.com
www-dev1-origin.safeway.com
peoplesoft-pr.safeway.com
san3.yext-cdn.com
imperva.com
www.safeway.com
shop-qa2-origin.safeway.com
www.tomthumb.com
shop-qa1-origin.safeway.com
www-beta.albertsons.com
shop-dev3-origin.safeway.com
peoplesoft-pr.safeway.com
api-qa1-origin.safeway.com
san2.yext-cdn.com
ecom-dev1-azweb.safeway.com
san2.yext-cdn.com
ngcp-qa2.safeway.com
delivery.tomthumb.com
www.tomthumb.com
imperva.com
pharmacy.tomthumb.com
www-stage-origin.safeway.com
local.tomthumb.com
www-qa1.albertsons.com
incapsula.com
shop-qa1.safeway.com
local.pharmacy.tomthumb.com
shop-dev3-origin.safeway.com
imperva.com
api-prod-origin.safeway.com
incapsula.com
local.tomthumb.com
www-dev3.albertsons.com
shop-qa3.safeway.com
imperva.com
auth-q.tomthumb.com
api-prod.safeway.com
shop-qa1.safeway.com
api-prod-origin.safeway.com
coupons.albertsons.com
ngcp-qa2.tomthumb.com
shop-qa3-origin.safeway.com
www.tomthumb.com
imperva.com
www-stage-origin.safeway.com
ngcp-qa2.safeway.com
shop-dev1-origin.safeway.com
www-qa1-origin.safeway.com
api-qa2-origin.safeway.com
shop-qa3-origin.safeway.com
shop-prod-origin.safeway.com
incapsula.com
incapsula.com
shop-qa3.safeway.com
shop-dev1-origin.safeway.com
www-qa1.albertsons.com
www-qa2.albertsons.com
local.pharmacy.tomthumb.com
local.tomthumb.com
auth.tomthumb.com
api-prod-origin.safeway.com
imperva.com
incapsula.com
ngcp-qi.tomthumb.com
imperva.com
shop-qa3-origin.safeway.com
shop-qa1.safeway.com
www-qa3.albertsons.com
shop-qa1.safeway.com
incapsula.com
embed-answers.cority.com.pagescdn.com
ngcp-qa2.tomthumb.com
www-dev1.albertsons.com
imperva.com
shop-qa1.safeway.com
api-qa1-origin.safeway.com
shop-dev1-origin.safeway.com
incapsula.com
peoplesoft-pr.safeway.com
www-dev2.albertsons.com
shop-qa1.safeway.com
peoplesoft-pr.safeway.com
shop-qa1.safeway.com
api-qa3-origin.safeway.com
ctsecure.mywebgrocer.com
api-stage-origin.safeway.com
www.tomthumb.com
api-dev1-origin.safeway.com
shop-dev2-origin.safeway.com
pharmacy.tomthumb.com
pharmacy.tomthumb.com
blog-hitchhikers.yext.com
shop-qa3.safeway.com
shop-prod-origin.safeway.com
shop-qa1.safeway.com
incapsula.com
auth.tomthumb.com
ngcp-qa2.safeway.com
shop-qa1-origin.safeway.com
www-qa2.albertsons.com
www-dev1-origin.safeway.com
peoplesoft-pr.safeway.com
san3.yext-cdn.com
imperva.com
www.safeway.com
shop-qa2-origin.safeway.com
www.tomthumb.com
shop-qa1-origin.safeway.com
www-beta.albertsons.com
shop-dev3-origin.safeway.com
peoplesoft-pr.safeway.com
api-qa1-origin.safeway.com
san2.yext-cdn.com
ecom-dev1-azweb.safeway.com
san2.yext-cdn.com
ngcp-qa2.safeway.com
delivery.tomthumb.com
www.tomthumb.com
imperva.com
pharmacy.tomthumb.com
www-stage-origin.safeway.com
local.tomthumb.com
www-qa1.albertsons.com
incapsula.com
shop-qa1.safeway.com
local.pharmacy.tomthumb.com
shop-dev3-origin.safeway.com
imperva.com
api-prod-origin.safeway.com
incapsula.com
local.tomthumb.com
www-dev3.albertsons.com
shop-qa3.safeway.com
imperva.com
auth-q.tomthumb.com
api-prod.safeway.com
shop-qa1.safeway.com
api-prod-origin.safeway.com
coupons.albertsons.com
ngcp-qa2.tomthumb.com
shop-qa3-origin.safeway.com
www.tomthumb.com
imperva.com
www-stage-origin.safeway.com
ngcp-qa2.safeway.com
shop-dev1-origin.safeway.com
www-qa1-origin.safeway.com
api-qa2-origin.safeway.com
shop-qa3-origin.safeway.com
shop-prod-origin.safeway.com
incapsula.com
Certificate
The complete raw certificate details for ngcp-qi.tomthumb.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIPbTCCDlWgAwIBAgIQDccsl3rT8nqnwvEOJ03r6TANBgkqhkiG9w0BAQsFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR0wGwYDVQQDExRHZW9UcnVzdCBSU0EgQ0EgMjAxODAe Fw0xODA5MTEwMDAwMDBaFw0xOTEyMTExMjAwMDBaMIGJMQswCQYDVQQGEwJVUzET MBEGA1UECBMKQ2FsaWZvcm5pYTETMBEGA1UEBxMKUGxlYXNhbnRvbjEVMBMGA1UE ChMMU2FmZXdheSBJbmMuMRowGAYDVQQLExFBa2FtYWkgU0FOIFNTTCBPVjEdMBsG A1UEAxMUbmdjcC1xaS50b210aHVtYi5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnRbUZgilXXRSCfUOLy9Lyc7OjUmUzyCSjgHlfcI204m0evv6u OyjRhEdXzpz6SphMjqQauz6jnsIIYaYwYhcN6Rp0VJKCg0M8pOYa+/Uw9/8eRhZs cCMChziyZhARAEPuXRQ1bJGV53mB4qamGUHoRSuhDKQezrjAlt/KZ0uBfeM7JXz9 dH/eW+7XE3W64GPf+MlXzVYHiIH3vGyQQagxp+O/L+4wqw/1YbjtUE1rj9dhLNcp e6S+kOvNY1Ca/6yU4Sw2oPA0Vskzi//QzfMgWdj+WMRyR3r9GZhaqa8hj9FNRojx 7Z6f46yHcWk9Ifl1FfqBmYu+kQ+m4VXsCwxJAgMBAAGjggv5MIIL9TAfBgNVHSME GDAWgBSQWP+wnHWoUVR3se3yo0MWOJ5sxTAdBgNVHQ4EFgQUzZtxlSi0SXxcS+K3 YEfKWGCBHNEwggjvBgNVHREEggjmMIII4oIUbmdjcC1xaS50b210aHVtYi5jb22C GHFhLWNvcnBvcmF0ZS5zYWZld2F5LmNvbYIWbmdjcC1xaS5hbGJlcnRzb25zLmNv bYIWc2hvcC1kZXYucGF2aWxpb25zLmNvbYIYc2hvcC1zdGFnZS5wYXZpbGlvbnMu Y29tghNzaG9wLXN0YWdlLnZvbnMuY29tghFyc3MtcS5jYXJyc3FjLmNvbYIYc2hv cC1xYS1hay5qZXdlbG9zY28uY29tghZzaG9wLWRldi5qZXdlbG9zY28uY29tghdz aG9wLWRldi1hay5zYWZld2F5LmNvbYIVcWEudm9uc2ZvdW5kYXRpb24ub3Jnghhu Z2NwLXFhMi5hY21lbWFya2V0cy5jb22CEnJzczItcS5zYWZld2F5LmNvbYIScnNz My1xLnNhZmV3YXkuY29tghRzaG9wLWRldi5zYWZld2F5LmNvbYIYc2hvcC1kZXYt YWsudG9tdGh1bWIuY29tghpzaG9wLWRldi1hay5hbGJlcnRzb25zLmNvbYIUbmdj cC1xaS5yYW5kYWxscy5jb22CFXNob3AtcWEuamV3ZWxvc2NvLmNvbYITcnNzMi1x LnRvbXRodW1iLmNvbYIXc2hvcC1xYS1hay5yYW5kYWxscy5jb22CGHNob3AtcWEt YWsucGF2aWxpb25zLmNvbYIUc2hvcC1xYS50b210aHVtYi5jb22CGnFhLnBhdmls aW9uc2ZvdW5kYXRpb24ub3JnghNzaG9wLXFhLWFrLnZvbnMuY29tgg5yc3MtcS52 b25zLmNvbYIbcWEuYWxiZXJ0c29uc2ZvdW5kYXRpb24ub3JnghVzaG9wLWRldi50 b210aHVtYi5jb22CE3JzczItcS5yYW5kYWxscy5jb22CFnNob3AtcWEtYWsuc2Fm ZXdheS5jb22CG3FhLnN0YXJtYXJrZXRmb3VuZGF0aW9uLm9yZ4IacWEuamV3ZWxv c2NvZm91bmRhdGlvbi5vcmeCFm5nY3AtcWExLmpld2Vsb3Njby5jb22CFHJzczMt cS5wYXZpbGlvbnMuY29tghhxYS5zYWZld2F5Zm91bmRhdGlvbi5vcmeCE3FhLmx1 Y2VybmVmb29kcy5jb22CEnJzczMtcS5jYXJyc3FjLmNvbYIbc2hvcC1zdGFnZS1h ay5wYXZpbGlvbnMuY29tghZxYS5zaGF3c2ZvdW5kYXRpb24ub3JnghVzaG9wLXFh LnBhdmlsaW9ucy5jb22CD3JzczMtcS52b25zLmNvbYIVcnNzLXByZi5wYXZpbGlv bnMuY29tghtxYS5hY21lbWFya2V0Zm91bmRhdGlvbi5vcmeCE25nY3AtcWkuc2Fm ZXdheS5jb22CEXJzcy1xLnNhZmV3YXkuY29tghFzaG9wLWRldi52b25zLmNvbYIc c2hvcC1zdGFnZS1hay5hbGJlcnRzb25zLmNvbYIQc2hvcC1xYS52b25zLmNvbYIW c2hvcC1zdGFnZS1hay52b25zLmNvbYIZc2hvcC1zdGFnZS5hbGJlcnRzb25zLmNv bYIZc2hvcC1xYS1hay5hbGJlcnRzb25zLmNvbYIWc2hvcC1xYS5hbGJlcnRzb25z LmNvbYIQbmdjcC1xaS52b25zLmNvbYIZcWEudG9tdGh1bWJmb3VuZGF0aW9uLm9y Z4IScnNzLXEudG9tdGh1bWIuY29tghlzaG9wLWRldi1hay5qZXdlbG9zY28uY29t ghVzaG9wLWRldi5yYW5kYWxscy5jb22CEHJzcy1wcmYudm9ucy5jb22CGG5nY3At cWExLmFjbWVtYXJrZXRzLmNvbYIVbmdjcC1xaS5wYXZpbGlvbnMuY29tghJyc3My LXEuY2FycnNxYy5jb22CGHNob3Atc3RhZ2UuamV3ZWxvc2NvLmNvbYIWcWEuY2Fy cnNmb3VuZGF0aW9uLm9yZ4IWbmdjcC1xYTIuamV3ZWxvc2NvLmNvbYIWbmdjcC1w cmYuamV3ZWxvc2NvLmNvbYIYbmdjcC1wcmYuYWNtZW1hcmtldHMuY29tghhzaG9w LWRldi1hay5yYW5kYWxscy5jb22CGHFhLXN1cHBsaWVycy5zYWZld2F5LmNvbYIX c2hvcC1zdGFnZS5yYW5kYWxscy5jb22CFHNob3AtZGV2LWFrLnZvbnMuY29tghpz aG9wLXN0YWdlLWFrLnJhbmRhbGxzLmNvbYIXc2hvcC1kZXYuYWxiZXJ0c29ucy5j b22CE3Jzcy1wcmYuc2FmZXdheS5jb22CE3Jzcy1wcmYuY2FycnNxYy5jb22CE3Jz czMtcS50b210aHVtYi5jb22CFHJzcy1wcmYucmFuZGFsbHMuY29tghRyc3MyLXEu cGF2aWxpb25zLmNvbYITcnNzLXEucGF2aWxpb25zLmNvbYIUcnNzLXByZi50b210 aHVtYi5jb22CF3Nob3AtcWEtYWsudG9tdGh1bWIuY29tghlzaG9wLXN0YWdlLWFr LnNhZmV3YXkuY29tghJyc3MtcS5yYW5kYWxscy5jb22CFW1jbG91ZC1xYS5zYWZl d2F5LmNvbYIZc2hvcC1kZXYtYWsucGF2aWxpb25zLmNvbYIac2hvcC1zdGFnZS1h ay50b210aHVtYi5jb22CF3Nob3Atc3RhZ2UudG9tdGh1bWIuY29tgiRxYS5hbGJl cnRzb25zY29tcGFuaWVzZm91bmRhdGlvbi5vcmeCE25nY3AtcWkuY2FycnNxYy5j b22CG3Nob3Atc3RhZ2UtYWsuamV3ZWxvc2NvLmNvbYITc2hvcC1xYS5zYWZld2F5 LmNvbYITcnNzMy1xLnJhbmRhbGxzLmNvbYIPcnNzMi1xLnZvbnMuY29tghZzaG9w LXN0YWdlLnNhZmV3YXkuY29tghZlbXBsb3llZXFhLnNhZmV3YXkuY29tghlxYS5y YW5kYWxsc2ZvdW5kYXRpb24ub3JnghRzaG9wLXFhLnJhbmRhbGxzLmNvbTAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMD4GA1Ud HwQ3MDUwM6AxoC+GLWh0dHA6Ly9jZHAuZ2VvdHJ1c3QuY29tL0dlb1RydXN0UlNB Q0EyMDE4LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIB FhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjB1BggrBgEF BQcBAQRpMGcwJgYIKwYBBQUHMAGGGmh0dHA6Ly9zdGF0dXMuZ2VvdHJ1c3QuY29t MD0GCCsGAQUFBzAChjFodHRwOi8vY2FjZXJ0cy5nZW90cnVzdC5jb20vR2VvVHJ1 c3RSU0FDQTIwMTguY3J0MAkGA1UdEwQCMAAwggF/BgorBgEEAdZ5AgQCBIIBbwSC AWsBaQB2AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABZciCwdwA AAQDAEcwRQIhAMBJrmdeLVa5NaO0ifne44PFYlpSfwwszhFZmrpEM7SuAiAKOg3H djy5On27RoAoGchFbEGALZafP9/jNEjJVQSNvAB3AId1v+dZfPiMQ5lfvfNu/1aN R1Y2/0q1YMG06v9eoIMPAAABZciCwrwAAAQDAEgwRgIhAMRR9NveU11EFsbIQR7x 5MJWC0M//Ldx4c3Ci6gIs7/eAiEApfgK66HV7JRZtV4UiYA36xMUluGkhLl9XDya DqPmAgkAdgDuS723dc5guuFCaR+r4Z5mow9+X7By2IMAxHuJeqj9ywAAAWXIgsIq AAAEAwBHMEUCIEDZl0TW0Y02d4lrMo9ub9kXA7xd78T7s9Zrs71FLb0YAiEAxR2w 7XXb6NbnpB27J3PyP26LgLz1kHrmkZgp11Eu6ZswDQYJKoZIhvcNAQELBQADggEB AIcINmikWQyvqO5kDTMZMaCWCOBVpsAv9vvPibhz6ZLDVPtEaQCCPaco16sGnHIP FFC0/v2SWm7C67BrNgmKeYtSa27PZPjHg6KHniLOHaFwXUtL+WzV1hg2yoyfdKSz 8Tu4E0jZZWPaeyatUAreG0zpA5SOvNoHPDtIrMMrUMMTUbo6yNGiDXIj8LeVYjrN Idvh8cHeyoMaiVfBihZXDHZ2uBHrYfbGWItkriZ/cXsKi8bk29zGL6qoKTzwM8MY 0TkRU6WH0BRjPkBL4cXXW8bdOudgbLnmMmlU3mWW0TCBHMjupbUBMiG3/pBiKWxr i9ltbQVB2Pps2hulWTYc9hk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0W1GYIpV10Ugn1Di8vS 8nOzo1JlM8gko4B5X3CNtOJtHr7+rjso0YRHV86c+kqYTI6kGrs+o57CCGGmMGIX DekadFSSgoNDPKTmGvv1MPf/HkYWbHAjAoc4smYQEQBD7l0UNWyRled5geKmphlB 6EUroQykHs64wJbfymdLgX3jOyV8/XR/3lvu1xN1uuBj3/jJV81WB4iB97xskEGo Mafjvy/uMKsP9WG47VBNa4/XYSzXKXukvpDrzWNQmv+slOEsNqDwNFbJM4v/0M3z IFnY/ljEckd6/RmYWqmvIY/RTUaI8e2en+Osh3FpPSH5dRX6gZmLvpEPpuFV7AsM SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18314135447540836994663596837252754409 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-11 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pleasanton' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Safeway Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Akamai SAN SSL OV' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ngcp-qi.tomthumb.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21116170939506373810775940643763474199428875218009516568809839093738921419464557746651827075394599081228466810036165316510643212522558171956826584270088291985454908028845627215446320829570082485300504948081108977457644666174804861898784997676936606041120871981664940389286558443965539349945425154940242715399755243543274468527604881294218811802646346810628265466237684972593682590286896126790285711777804863719398174965359362696316355787972458442460397836977617814178410832593310353448352234049879441251251599509140506410630424033039125304874514715872381309416468936439969380924243472300839784646195116929424768568393 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9058ffb09c75a8515477b1edf2a34316389e6cc5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cd9b719528b4497c5c4be2b76047ca5860811cd1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2278 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngcp-qi.tomthumb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa-corporate.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngcp-qi.albertsons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev.pavilions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage.pavilions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage.vons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss-q.carrsqc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa-ak.jewelosco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev.jewelosco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev-ak.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.vonsfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngcp-qa2.acmemarkets.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss2-q.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss3-q.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev-ak.tomthumb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev-ak.albertsons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngcp-qi.randalls.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa.jewelosco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss2-q.tomthumb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa-ak.randalls.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa-ak.pavilions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa.tomthumb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.pavilionsfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa-ak.vons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss-q.vons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.albertsonsfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev.tomthumb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss2-q.randalls.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa-ak.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.starmarketfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.jeweloscofoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngcp-qa1.jewelosco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss3-q.pavilions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.safewayfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.lucernefoods.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss3-q.carrsqc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage-ak.pavilions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.shawsfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa.pavilions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss3-q.vons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss-prf.pavilions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.acmemarketfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngcp-qi.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss-q.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev.vons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage-ak.albertsons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa.vons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage-ak.vons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage.albertsons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa-ak.albertsons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa.albertsons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngcp-qi.vons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.tomthumbfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss-q.tomthumb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev-ak.jewelosco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev.randalls.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss-prf.vons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngcp-qa1.acmemarkets.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngcp-qi.pavilions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss2-q.carrsqc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage.jewelosco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.carrsfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngcp-qa2.jewelosco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngcp-prf.jewelosco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngcp-prf.acmemarkets.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev-ak.randalls.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa-suppliers.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage.randalls.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev-ak.vons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage-ak.randalls.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev.albertsons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss-prf.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss-prf.carrsqc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss3-q.tomthumb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss-prf.randalls.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss2-q.pavilions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss-q.pavilions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss-prf.tomthumb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa-ak.tomthumb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage-ak.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss-q.randalls.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mcloud-qa.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-dev-ak.pavilions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage-ak.tomthumb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage.tomthumb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.albertsonscompaniesfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ngcp-qi.carrsqc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage-ak.jewelosco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss3-q.randalls.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss2-q.vons.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-stage.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'employeeqa.safeway.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.randallsfoundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop-qa.randalls.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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