ecams.geico.com
- GEICO -
Issued by Trustwave Organization Validation CA, Level 2
About this certificate
This digital certificate with serial number 06:35:3f:6d:6c:03:b2:9c:bc:43:a4:85:d8:7c:cc:ea:33:05:7f was issued on by Trustwave Holdings, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
- Subscriber certificates authorityInformationAccess extension should contain the HTTP URL of the issuing CA’s certificate (BRs: 7.1.2.3)
GEICO
Organization:
GEICO
State / Province:
Maryland
Locality: Bethesda
Country: US
Locality: Bethesda
Country: US
Trustwave Holdings, Inc.
Organization:
Trustwave Holdings, Inc.
State / Province:
Illinois
Locality: Chicago
Country: US
Locality: Chicago
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:35:3f:6d:6c:03:b2:9c:bc:43:a4:85:d8:7c:cc:ea:33:05:7fSerial Number (int): 138443005581377650671272613051776450281276799
Serial Number lenght: 147 bits, 19 octets
SubjectKeyId: 59:3a:af:ae:3e:3f:7d:34:aa:39:33:49:f2:c5:e8:f6:7b:6b:65:b9
AuthorityKeyId: 5d:d9:96:9a:40:c7:27:cb:2c:9b:a2:ec:cf:19:ab:c8:af:cc:86:48
Fingerprint (sha1): 0d:87:b0:b2:9d:bb:ae:d1:67:b0:35:2e:5b:ce:7f:69:ac:3b:4c:26
Fingerprint (sha256): 03:c7:db:00:c6:f1:9b:95:cb:02:f8:89:3e:64:ee:e8:1a:d1:26:a3:1d:36:46:47:0f:ab:47:55:74:4f:29:52
Revocation information
OCSP Server: http://ocsp.trustwave.com/CRL Distribution Point: http://crl.trustwave.com/OVCA_L2.crl
Check the revocation status for certificate ecams.geico.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ecams.geico.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ecams.geico.com
Other certificates including the domain name geico.com
(limited to 100 certificates)
copart.geico.com
sattest.geico.com
Arbitration.geico.com
Ivanticsa6.private.geico.com
umbapp-umbuicustomer-ed1.geico.com
tierb2b-test.geico.com
partnersgateway-tt.geico.com
imperva.com
imperva.com
hive.geico.com
comcbs-ut1.geico.com
docusigneo-ut1.geico.com
imperva.com
docusigneo-EU1.geico.com
claims.geico.com
partnersgateway001-tr.geico.com
mstage2.service-ft.geico.com
umbrella-user.geico.com
service-ft.geico.com
mts-ut1.geico.com
psfthr-dr.oci.geico.com
awpocseg365.private.geico.com
partnersgateway001.geico.com
imperva.com
isotest1.geico.com
imperva.com
billingreportsapi-eu1.geico.com
Plazamail2016.geico.net
gragwns.private.geico.com
homeowners.geico.com
partnersgateway009-tr.geico.com
Ivanticsa12.private.geico.com
partnersgateway005-in.geico.com
tier2-int2.geico.com
ecams.geico.com
sales.geico.com
sales-in2.geico.com
boat-user.geico.com
dmvtest.geico.com
partnersgateway-tr.geico.com
egressgateway14-lt.geico.com
partners.geico.com
umbrella-user.geico.com
awprodsegv2.private.geico.com
ingressgateway07-ut.geico.com
sig-ft.geico.com
crm-cs-eapi-gateway-tr1.geico.com
*.geico.com
partnersgateway007.geico.com
edgein-tr.geico.com
claimsdr.geico.com
anbcui-prod.geico.com
tier.geico.com
ecams.geico.com
claimiq.geico.com
mts.geico.com
docusigneo-FT1.geico.com
imperva.com
atlastest.geico.com
vdipd1external.private.geico.com
propertysales.geico.com
polcomexpressvue-eu1.geico.com
edgeex-in.geico.com
imperva.com
commercial-in1.geico.com
nocpaa.np.geico.com
auto-buy-tr1.geico.com
imperva.com
optout.geico.com
portfolioex-lt.geico.com
ingressgateway08.geico.com
capsales-test.geico.com
partnersgateway002-dv.geico.com
adestimatetest.geico.com
polcomexpressvue-eu1.geico.com
bilpyh-ut1.geico.com
blaster.geico.com
umbrella-c-load.geico.com
edsinbound-trng.geico.com
umbapp-umbuicustomer-ed1.geico.com
FRWS7845.geico.net
claimsportal-tr1.geico.com
FredMail2016.geico.net
partnersgateway005.geico.com
salesb2b2-int.geico.com
telpdchvg01.anc.geico.net
cvshealth.geico.com
propertysales-ut1-api.geico.com
imperva.com
rewards-ut1.geico.com
*.geico.com
ivrpl.private.geico.com
edsinbound-load.geico.com
billingwdayinterface.geico.com
CHWS7104.geico.net
auto-buy-GZ-ftrack1.geico.com
PartnersTest.geico.com
auto-kate-fn1.geico.com
propertysales-It-api.geico.com
imperva.com
sattest.geico.com
Arbitration.geico.com
Ivanticsa6.private.geico.com
umbapp-umbuicustomer-ed1.geico.com
tierb2b-test.geico.com
partnersgateway-tt.geico.com
imperva.com
imperva.com
hive.geico.com
comcbs-ut1.geico.com
docusigneo-ut1.geico.com
imperva.com
docusigneo-EU1.geico.com
claims.geico.com
partnersgateway001-tr.geico.com
mstage2.service-ft.geico.com
umbrella-user.geico.com
service-ft.geico.com
mts-ut1.geico.com
psfthr-dr.oci.geico.com
awpocseg365.private.geico.com
partnersgateway001.geico.com
imperva.com
isotest1.geico.com
imperva.com
billingreportsapi-eu1.geico.com
Plazamail2016.geico.net
gragwns.private.geico.com
homeowners.geico.com
partnersgateway009-tr.geico.com
Ivanticsa12.private.geico.com
partnersgateway005-in.geico.com
tier2-int2.geico.com
ecams.geico.com
sales.geico.com
sales-in2.geico.com
boat-user.geico.com
dmvtest.geico.com
partnersgateway-tr.geico.com
egressgateway14-lt.geico.com
partners.geico.com
umbrella-user.geico.com
awprodsegv2.private.geico.com
ingressgateway07-ut.geico.com
sig-ft.geico.com
crm-cs-eapi-gateway-tr1.geico.com
*.geico.com
partnersgateway007.geico.com
edgein-tr.geico.com
claimsdr.geico.com
anbcui-prod.geico.com
tier.geico.com
ecams.geico.com
claimiq.geico.com
mts.geico.com
docusigneo-FT1.geico.com
imperva.com
atlastest.geico.com
vdipd1external.private.geico.com
propertysales.geico.com
polcomexpressvue-eu1.geico.com
edgeex-in.geico.com
imperva.com
commercial-in1.geico.com
nocpaa.np.geico.com
auto-buy-tr1.geico.com
imperva.com
optout.geico.com
portfolioex-lt.geico.com
ingressgateway08.geico.com
capsales-test.geico.com
partnersgateway002-dv.geico.com
adestimatetest.geico.com
polcomexpressvue-eu1.geico.com
bilpyh-ut1.geico.com
blaster.geico.com
umbrella-c-load.geico.com
edsinbound-trng.geico.com
umbapp-umbuicustomer-ed1.geico.com
FRWS7845.geico.net
claimsportal-tr1.geico.com
FredMail2016.geico.net
partnersgateway005.geico.com
salesb2b2-int.geico.com
telpdchvg01.anc.geico.net
cvshealth.geico.com
propertysales-ut1-api.geico.com
imperva.com
rewards-ut1.geico.com
*.geico.com
ivrpl.private.geico.com
edsinbound-load.geico.com
billingwdayinterface.geico.com
CHWS7104.geico.net
auto-buy-GZ-ftrack1.geico.com
PartnersTest.geico.com
auto-kate-fn1.geico.com
propertysales-It-api.geico.com
imperva.com
Certificate
The complete raw certificate details for ecams.geico.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgITBjU/bWwDspy8Q6SF2HzM6jMFfzANBgkqhkiG9w0BAQUF ADCBrjELMAkGA1UEBhMCVVMxETAPBgNVBAgTCElsbGlub2lzMRAwDgYDVQQHEwdD aGljYWdvMSEwHwYDVQQKExhUcnVzdHdhdmUgSG9sZGluZ3MsIEluYy4xNjA0BgNV BAMTLVRydXN0d2F2ZSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBDQSwgTGV2ZWwg MjEfMB0GCSqGSIb3DQEJARYQY2FAdHJ1c3R3YXZlLmNvbTAeFw0xMzExMTQwNTU0 MTVaFw0xNTExMTYxMTU0MTVaMF0xGDAWBgNVBAMMD2VjYW1zLmdlaWNvLmNvbTEO MAwGA1UECgwFR0VJQ08xETAPBgNVBAcMCEJldGhlc2RhMREwDwYDVQQIDAhNYXJ5 bGFuZDELMAkGA1UEBhMCVVMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgUy70B7K4e3xy4mXRi07A02RtIidF1NKNscHkUEJA9ecc8nZfhSseqxnU4Nsk GyTqbzX12Yfo1rZauG7f/ZbrVsJU6meyQsH8IQC2Id/i6JY8QUnMbR4AszETCNrK EvuTZh5jXqSkr2ScsGyLyVyy/1ovhVkHzlTEqng3XqVx+RgpsrD++nf+ijQQkKe6 mJp59dPXf1hs0T2uMtkGMTzLyGlaJa0XJY+stiXwOBiQtMRjl+TjkulBbFYPyT2d +QgUl0sJjQ6hHlIB4qy3ZiH9uyUDwhmjoppMG68v8ql38f84C0lHQlSG/38nPa3d hKmevz+wfgxy/faS1SiFT6VXAgMBAAGjggFTMIIBTzAMBgNVHRMBAf8EAjAAMAsG A1UdDwQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwHQYDVR0O BBYEFFk6r64+P300qjkzSfLF6PZ7a2W5MB8GA1UdIwQYMBaAFF3ZlppAxyfLLJui 7M8Zq8ivzIZIMEgGA1UdIARBMD8wPQYPKwYBBAGB7RgDAwMDBAQDMCowKAYIKwYB BQUHAgEWHGh0dHBzOi8vc3NsLnRydXN0d2F2ZS5jb20vQ0EwGgYDVR0RBBMwEYIP ZWNhbXMuZ2VpY28uY29tMDUGA1UdHwQuMCwwKqAooCaGJGh0dHA6Ly9jcmwudHJ1 c3R3YXZlLmNvbS9PVkNBX0wyLmNybDA2BggrBgEFBQcBAQQqMCgwJgYIKwYBBQUH MAGGGmh0dHA6Ly9vY3NwLnRydXN0d2F2ZS5jb20vMA0GCSqGSIb3DQEBBQUAA4IB AQCq5ntPrmz2yeEugb0FpfaKrjaHW9oGcBonkJLc689pWYT59HfoM9O3HUXoik4w Vi/VGdJHrInDguEbpQFoxIyPPpw5Mt9PHdUTnbMA8dKAuWdRVVpVLAXuj73b55mb sXKw0/78Z0Od/f9PSpetoZLZltngS0MSLFTWvJpVVnREOTip01G23s4but8qm9Ud 1gXHYlG7JIu4qozbqxdMstIkth95zHeu5VF1PrjcfEto1x7GBrkJpMC/yi6YhA1K v1NYQZj3jgdpTracuGqtv3DIfRaHMIsn7xlLPu0WpzaL55jPrruscBIAHDUiZNuF Lk4BgTyQOVseZrmWFfkVKem4 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFMu9AeyuHt8cuJl0YtO wNNkbSInRdTSjbHB5FBCQPXnHPJ2X4UrHqsZ1ODbJBsk6m819dmH6Na2Wrhu3/2W 61bCVOpnskLB/CEAtiHf4uiWPEFJzG0eALMxEwjayhL7k2YeY16kpK9knLBsi8lc sv9aL4VZB85UxKp4N16lcfkYKbKw/vp3/oo0EJCnupiaefXT139YbNE9rjLZBjE8 y8hpWiWtFyWPrLYl8DgYkLTEY5fk45LpQWxWD8k9nfkIFJdLCY0OoR5SAeKst2Yh /bslA8IZo6KaTBuvL/Kpd/H/OAtJR0JUhv9/Jz2t3YSpnr8/sH4Mcv32ktUohU+l VwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 138443005581377650671272613051776450281276799 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chicago' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustwave Holdings, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustwave Organization Validation CA, Level 2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-11-14 05:54:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-11-16 11:54:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ecams.geico.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'GEICO' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bethesda' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20239148063393539450325012636577740861121151316683290460611402507433851505848607001313109751591442994310344786229422195114779531017980963537480099269935659322092289162218317169971635328775845043737840146703624617736740576974123741933294920201196127554836979221405968298786298056124804888327229605213945495091189055334231881535102749096305307984378948281198887302997945244601517075151238310793807526194037022688264485812224778047779339740954558762989313708457692292684382622856166821081418444260971807383089607283452545054637443563541315137185473742629192781995496866972381458477239551416324642217844987611587349030231 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 593aafae3e3f7d34aa393349f2c5e8f67b6b65b9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5dd9969a40c727cb2c9ba2eccf19abc8afcc8648 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.30360.3.3.3.3.4.4.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://ssl.trustwave.com/CA' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ecams.geico.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.trustwave.com/OVCA_L2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.trustwave.com/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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