*.illinoiscomptroller.gov
- Illinois Office of Comptroller -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 1c:4c:22:d2:83:ac:69:3f:00:00:00:00:50:e7:5b:72 was issued on by Entrust, Inc..
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Illinois Office of Comptroller
Organization:
Illinois Office of Comptroller
State / Province:
Illinois
Locality: Springfield
Country: US
Locality: Springfield
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 1c:4c:22:d2:83:ac:69:3f:00:00:00:00:50:e7:5b:72Serial Number (int): 37613704723817912031575722438445980530
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 8b:b4:89:da:ea:08:e5:f9:ba:94:07:00:96:84:b1:40:58:b6:a2:40
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): a5:c2:dd:56:11:fd:71:6e:c9:62:c9:a7:53:a9:9e:f7:92:c8:c5:13
Fingerprint (sha256): 04:3c:2f:96:51:b4:62:8a:92:b5:b4:02:8f:64:cc:34:de:06:6a:55:82:7d:9a:8e:75:90:6e:a3:f5:c7:94:3e
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate *.illinoiscomptroller.gov
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.illinoiscomptroller.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.illinoiscomptroller.gov
illinoiscomptroller.gov
*.illinoiscomptroller.com
illinoiscomptroller.com
*.ioc.state.il.us
ioc.state.il.us
illinoiscomptroller.gov
*.illinoiscomptroller.com
illinoiscomptroller.com
*.ioc.state.il.us
ioc.state.il.us
Other certificates including the domain name illinoiscomptroller.gov
(limited to 100 certificates)
analytics.illinoiscomptroller.gov
*.illinoiscomptroller.gov
*.illinoiscomptroller.gov
analyticsv20.illinoiscomptroller.gov
IllinoisComptroller.gov
sslvpn.illinoiscomptroller.gov
IllinoisComptroller.gov
IOC-ISE1.illinoiscomptroller.gov
IOC-ISE1.illinoiscomptroller.gov
ioc-fmc-ca.illinoiscomptroller.gov
IllinoisComptroller.gov
*.illinoiscomptroller.gov
analyticsv20.illinoiscomptroller.gov
*.IllinoisComptroller.gov
IllinoisComptroller.gov
analytics.illinoiscomptroller.gov
IOC-ISE2.illinoiscomptroller.gov
gateway.iconstituent.com
*.IllinoisComptroller.gov
*.illinoiscomptroller.gov
training.illinoiscomptroller.gov
analyticsv20.illinoiscomptroller.gov
illinoiscomptroller.gov
gateway.iconstituent.com
*.illinoiscomptroller.gov
*.illinoiscomptroller.gov
*.illinoiscomptroller.gov
analyticsv20.illinoiscomptroller.gov
IllinoisComptroller.gov
sslvpn.illinoiscomptroller.gov
IllinoisComptroller.gov
IOC-ISE1.illinoiscomptroller.gov
IOC-ISE1.illinoiscomptroller.gov
ioc-fmc-ca.illinoiscomptroller.gov
IllinoisComptroller.gov
*.illinoiscomptroller.gov
analyticsv20.illinoiscomptroller.gov
*.IllinoisComptroller.gov
IllinoisComptroller.gov
analytics.illinoiscomptroller.gov
IOC-ISE2.illinoiscomptroller.gov
gateway.iconstituent.com
*.IllinoisComptroller.gov
*.illinoiscomptroller.gov
training.illinoiscomptroller.gov
analyticsv20.illinoiscomptroller.gov
illinoiscomptroller.gov
gateway.iconstituent.com
*.illinoiscomptroller.gov
Certificate
The complete raw certificate details for *.illinoiscomptroller.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHyTCCBrGgAwIBAgIQHEwi0oOsaT8AAAAAUOdbcjANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0x ODA5MTAxOTU2MzhaFw0yMDA5MTAyMDI2MzhaMIGDMQswCQYDVQQGEwJVUzERMA8G A1UECBMISWxsaW5vaXMxFDASBgNVBAcTC1NwcmluZ2ZpZWxkMScwJQYDVQQKEx5J bGxpbm9pcyBPZmZpY2Ugb2YgQ29tcHRyb2xsZXIxIjAgBgNVBAMMGSouaWxsaW5v aXNjb21wdHJvbGxlci5nb3YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCTo5mO6MBiEDMiTmRBtqd+BDm6/4mRN9GdcAzbVNMsZZl2mOoKGJAh48YbQiht xy0Ai7jPKpEMwCeuT22jBAfzk5rK1diFSxEurP0rFp8rjaqgaih2KaCKNrCY+BlH FPxL0TYRmdDZw/gn4LbPN2yL9LPHDdvCpBaBBRK5ZZgVnMhowxgfzKuoW3tjPhGI 3PnrrZSp3IB0qLjFqTqvis8XJiSJja8L0nxmcJKo5X8zBY+9H5VTvvFHmWpaVtbD WPfEDtlyeM1oNg9WzIhKDHwalCLC8xGIdasPGpLIg5+SFnqJSyKNa6giRjyd/JJY 4bvhSVK82048VbLipZRKbBRpAgMBAAGjggP+MIID+jCBlwYDVR0RBIGPMIGMghkq LmlsbGlub2lzY29tcHRyb2xsZXIuZ292ghdpbGxpbm9pc2NvbXB0cm9sbGVyLmdv doIZKi5pbGxpbm9pc2NvbXB0cm9sbGVyLmNvbYIXaWxsaW5vaXNjb21wdHJvbGxl ci5jb22CESouaW9jLnN0YXRlLmlsLnVzgg9pb2Muc3RhdGUuaWwudXMwggH2Bgor BgEEAdZ5AgQCBIIB5gSCAeIB4AB3AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+j qh0HE9MMAAABZcUqKI0AAAQDAEgwRgIhANa9RNqM1iS1IVlaR+m/06fc0zLkCsfU +UraDPgA/lzyAiEA2crYEBdfmafV2LBbP6JNarSguK7R5zlOm14BX86ddRcAdgCH db/nWXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/XqCDDwAAAWXFKiirAAAEAwBHMEUC IQC7XBLoIk2ONs/ZAURk3boUa0SLRVxQVoQvk6M6FVzcfAIgYPOvu0dX7r5Xbyul NDRl36ht06DYEfZzkDHsx52dmhsAdQC72d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQ lmQ2jh7RhQAAAWXFKiiSAAAEAwBGMEQCIAupqJXT11sBfQ3+ctBcOAVV/KUmGRHT 82mbr9fGIePbAiApatQWyaQc8AuvrIsHQ4cBQM5qSTdZue4YHVmuS7nwcAB2AFYU Bpov18Ls0/XhvUSyPsdGdrm8mRFcwO+UmFXWidDdAAABZcUqKNAAAAQDAEcwRQIh AKRmQpJofYHcmLYiyDYaa0CQkSt+fPoPv85lzKqx9t+sAiAcHQoSL/+QMfQeYP/K R16WilmoUi5/50EQxJ3dWgu6wDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMDMGA1UdHwQsMCowKKAmoCSGImh0dHA6Ly9jcmwu ZW50cnVzdC5uZXQvbGV2ZWwxay5jcmwwSwYDVR0gBEQwQjA2BgpghkgBhvpsCgEF MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly93d3cuZW50cnVzdC5uZXQvcnBhMAgGBmeB DAECAjBoBggrBgEFBQcBAQRcMFowIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVu dHJ1c3QubmV0MDMGCCsGAQUFBzAChidodHRwOi8vYWlhLmVudHJ1c3QubmV0L2wx ay1jaGFpbjI1Ni5jZXIwHwYDVR0jBBgwFoAUgqJwdN28Uz/Pe9T3zX+nYMYKTL8w HQYDVR0OBBYEFIu0idrqCOX5upQHAJaEsUBYtqJAMAkGA1UdEwQCMAAwDQYJKoZI hvcNAQELBQADggEBADdYZRahLJPoZp4Krgk+kBmQDlAnGrP687OKQZZ0Rjjutbwi i3Afx6AEa4mn5kre/9kIqOoxE4d5mgnF0OHDOgXXzujPO5oSUxKcP30Uy8rF+NLk TxWqw8Qu30q7mOs2j3Z3er+oEhhD3jvcw925CZywF1kPSpEJNK/LwtKaCBsrNLHb t/IG+MIEkMIZoaiPZT/6cuSH//DlFbwo5TvViydu+v59CXzBN85aWTcthr/wTBoW mNNOvkG54nOn6UOE9NOUlc460vkxJe0mzc41GYOU3rADAgO+xP2HBPMuxccCqPbp z3qNCSn1QpkKk1sQYvLY6Q4+qmNjw6m2kQicoJQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk6OZjujAYhAzIk5kQban fgQ5uv+JkTfRnXAM21TTLGWZdpjqChiQIePGG0IobcctAIu4zyqRDMAnrk9towQH 85OaytXYhUsRLqz9KxafK42qoGoodimgijawmPgZRxT8S9E2EZnQ2cP4J+C2zzds i/Szxw3bwqQWgQUSuWWYFZzIaMMYH8yrqFt7Yz4RiNz5662UqdyAdKi4xak6r4rP FyYkiY2vC9J8ZnCSqOV/MwWPvR+VU77xR5lqWlbWw1j3xA7ZcnjNaDYPVsyISgx8 GpQiwvMRiHWrDxqSyIOfkhZ6iUsijWuoIkY8nfySWOG74UlSvNtOPFWy4qWUSmwU aQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 37613704723817912031575722438445980530 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-10 19:56:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-10 20:26:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Springfield' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois Office of Comptroller' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.illinoiscomptroller.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18637704916336139061959030783389488367950955851248725032828163125193378656187142374636412479481224875675307871321987271633652377267116836945967929358167480111577133308094054692541922692460709127434442045396245974781078175730392822690736446583215484734972414170453194943085917602187083955861466883121579742105087858986015406757274130174937977028877462485368764284522636635741215536838640953860177593418970982043784286070838555967259550415214525802605623025622497356875578429213105718762602421162468539971938437145780623586936847500030531087704342654822844477717377043620675008249919989300856520475147115852084131140713 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (143 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.illinoiscomptroller.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'illinoiscomptroller.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.illinoiscomptroller.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'illinoiscomptroller.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ioc.state.il.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ioc.state.il.us' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 01e00077005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c00000165c52a288d0000040300483046022100d6bd44da8cd624b521595a47e9bfd3a7dcd332e40ac7d4f94ada0cf800fe5cf2022100d9cad810175f99a7d5d8b05b3fa24d6ab4a0b8aed1e7394e9b5e015fce9d75170076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000165c52a28ab0000040300473045022100bb5c12e8224d8e36cfd9014464ddba146b448b455c5056842f93a33a155cdc7c022060f3afbb4757eebe576f2ba5343465dfa86dd3a0d811f6739031ecc79d9d9a1b007500bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed18500000165c52a2892000004030046304402200ba9a895d3d75b017d0dfe72d05c380555fca5261911d3f3699bafd7c621e3db0220296ad416c9a41cf00bafac8b0743870140ce6a493759b9ee181d59ae4bb9f0700076005614069a2fd7c2ecd3f5e1bd44b23ec74676b9bc99115cc0ef949855d689d0dd00000165c52a28d00000040300473045022100a4664292687d81dc98b622c8361a6b4090912b7e7cfa0fbfce65ccaab1f6dfac02201c1d0a122fff9031f41e60ffca475e968a59a8522e7fe74110c49ddd5a0bbac0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8bb489daea08e5f9ba9407009684b14058b6a240 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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