sts.accp.ia.ca
- Industrial Alliance Insurance and Financial Services -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 41:93:0b:44:d3:76:ac:bf:00:00:00:00:50:e4:ad:f6 was issued on by Entrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Industrial Alliance Insurance and Financial Services
Organization:
Industrial Alliance Insurance and Financial Services
State / Province:
Quebec
Locality: Quebec
Country: CA
Locality: Quebec
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 41:93:0b:44:d3:76:ac:bf:00:00:00:00:50:e4:ad:f6Serial Number (int): 87163315923689648627872569061772930550
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: d9:91:7c:52:7f:c0:74:84:80:48:a9:f5:78:37:45:66:11:42:99:71
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 0d:4c:d9:98:45:f2:ad:73:48:d7:22:db:67:a1:6c:06:1b:30:9e:e1
Fingerprint (sha256): 04:4a:3c:aa:59:95:33:54:f5:25:b0:cd:88:8e:22:55:89:06:c4:92:51:78:47:3f:28:b2:b2:8c:27:4b:bb:ba
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate sts.accp.ia.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sts.accp.ia.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sts.accp.ia.ca
Other certificates including the domain name ia.ca
(limited to 100 certificates)
partners.ia.ca
sts.accp.ia.ca
auto.ia.ca
trk.mail-corpo.ia.ca
www.security.ia.ca
sva0735.ia.iafg.net
connect.ia.ca
admin.uat-flex.ia.ca
covid-conseiller.ia.ca
test222.ia.ca
content.accp.secureweb.ia.ca
auto.ia.ca
sts.accp.ia.ca
voyagedereve.ia.ca
ia.ca
portail-02.wifi.ia.ca
security.ia.ca
GTMSS.ia.ca
test222.ia.ca
trk.mail-corpo.ia.ca
Collectif-bo-integration-2022-accp.ia.ca
linstantia.ia.ca
extension.apps.astor.ai
admin.devtest-flex.ia.ca
www.regimeiaah.ia.ca
app.lab.secure.ia.ca
www.security.ia.ca
portail-accp-01.wifi.ia.ca
testev.ia.ca
promo.ia.ca
app.flex.ia.ca
signing.ia.ca
security.ia.ca
content.devtest-flex.ia.ca
test222.ia.ca
iacampus.ia.ca
test222.ia.ca
test2222.ia.ca
securite.ia.ca
*.portal.api.ia.ca
auto.ia.ca
Collectif-bo-integration-2022-prod.ia.ca
cee.ia.ca
evolife.accp.apis.ia.ca
authentification.asmb.secureweb.ia.ca
test222.ia.ca
fs52.ia.ca
security.ia.ca
test2222.ia.ca
test2222.ia.ca
elleven.minhacentralonline.com.br
ece.ia.ca
auto.ia.ca
securite.ia.ca
auto.ia.ca
mastrategie.ia.ca
webmail.intg.ia.ca
auto.ia.ca
evo.accp.ia.ca
www.regimeiaah.ia.ca
TestWild.ia.ca
app.devtest.ia.ca
adj.accp.ia.ca
login.accp.privatewealth.ia.ca
test222.ia.ca
dialog.ia.ca
innovation.ia.ca
devjira.ia.ca
*.asmb.secureweb.ia.ca
rri.ia.ca
auto.ia.ca
GTMSSACC.ia.ca
remote01.ia.ca
www.security.ia.ca
accp.api.ia.ca
apis.ia.ca
lean.ia.ca
login.service.partners.ia.ca
login.develop.benefits.ia.ca
covid-advisor.ia.ca
evo.dev.ia.ca
auto.ia.ca
dealers.ia.ca
www.securite.ia.ca
qc-remote.ia.ca
auto.ia.ca
*.ia.ca
rest.devtest-flex.ia.ca
expw-e.uc.iafg.net
test2222.ia.ca
auto.ia.ca
intranet.intg.ia.ca
mulesoft.dev.mtls.genericsalesforce.ia.ca
expw-e.uc.iafg.net
fs52.ia.ca
content.accp.ia.ca
proxy.intg.secureweb.ia.ca
accp.apis.ia.ca
iaconnectlab.ia.ca
content.accp.secureweb.ia.ca
sts.accp.ia.ca
auto.ia.ca
trk.mail-corpo.ia.ca
www.security.ia.ca
sva0735.ia.iafg.net
connect.ia.ca
admin.uat-flex.ia.ca
covid-conseiller.ia.ca
test222.ia.ca
content.accp.secureweb.ia.ca
auto.ia.ca
sts.accp.ia.ca
voyagedereve.ia.ca
ia.ca
portail-02.wifi.ia.ca
security.ia.ca
GTMSS.ia.ca
test222.ia.ca
trk.mail-corpo.ia.ca
Collectif-bo-integration-2022-accp.ia.ca
linstantia.ia.ca
extension.apps.astor.ai
admin.devtest-flex.ia.ca
www.regimeiaah.ia.ca
app.lab.secure.ia.ca
www.security.ia.ca
portail-accp-01.wifi.ia.ca
testev.ia.ca
promo.ia.ca
app.flex.ia.ca
signing.ia.ca
security.ia.ca
content.devtest-flex.ia.ca
test222.ia.ca
iacampus.ia.ca
test222.ia.ca
test2222.ia.ca
securite.ia.ca
*.portal.api.ia.ca
auto.ia.ca
Collectif-bo-integration-2022-prod.ia.ca
cee.ia.ca
evolife.accp.apis.ia.ca
authentification.asmb.secureweb.ia.ca
test222.ia.ca
fs52.ia.ca
security.ia.ca
test2222.ia.ca
test2222.ia.ca
elleven.minhacentralonline.com.br
ece.ia.ca
auto.ia.ca
securite.ia.ca
auto.ia.ca
mastrategie.ia.ca
webmail.intg.ia.ca
auto.ia.ca
evo.accp.ia.ca
www.regimeiaah.ia.ca
TestWild.ia.ca
app.devtest.ia.ca
adj.accp.ia.ca
login.accp.privatewealth.ia.ca
test222.ia.ca
dialog.ia.ca
innovation.ia.ca
devjira.ia.ca
*.asmb.secureweb.ia.ca
rri.ia.ca
auto.ia.ca
GTMSSACC.ia.ca
remote01.ia.ca
www.security.ia.ca
accp.api.ia.ca
apis.ia.ca
lean.ia.ca
login.service.partners.ia.ca
login.develop.benefits.ia.ca
covid-advisor.ia.ca
evo.dev.ia.ca
auto.ia.ca
dealers.ia.ca
www.securite.ia.ca
qc-remote.ia.ca
auto.ia.ca
*.ia.ca
rest.devtest-flex.ia.ca
expw-e.uc.iafg.net
test2222.ia.ca
auto.ia.ca
intranet.intg.ia.ca
mulesoft.dev.mtls.genericsalesforce.ia.ca
expw-e.uc.iafg.net
fs52.ia.ca
content.accp.ia.ca
proxy.intg.secureweb.ia.ca
accp.apis.ia.ca
iaconnectlab.ia.ca
content.accp.secureweb.ia.ca
Certificate
The complete raw certificate details for sts.accp.ia.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIQQZMLRNN2rL8AAAAAUOSt9jANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0x ODA3MDkxNzA5MTZaFw0yMDA5MDkxNzM5MTVaMIGHMQswCQYDVQQGEwJDQTEPMA0G A1UECBMGUXVlYmVjMQ8wDQYDVQQHEwZRdWViZWMxPTA7BgNVBAoTNEluZHVzdHJp YWwgQWxsaWFuY2UgSW5zdXJhbmNlIGFuZCBGaW5hbmNpYWwgU2VydmljZXMxFzAV BgNVBAMTDnN0cy5hY2NwLmlhLmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEApDkkEMg5PQYos1GRYFn6i5+8Jy54msHtf0x3Q/nrMhdQ9CbLqWU7injL gCuv96D5jMp7ArORtVcN6iNW2md2z+obb8hJtviNkYtcF/UgczYBInKQqlmB/8CC FZCkB0rtFebC1sxLe5ZbbflJs7qhl2zpda4qLPu6nr6XDmuq4tsMmL3kKe7OQ9jm FEEUrZlTQ8WUjnqKb+ni9W7W2d6Pk3Hmy00frOOi9+4q08KvyrM1nEoQc2Q6TDuX lmk2Urq84q09xNM2uWxBibsiyONvIqXxAlnRh3+w0TawCFyp6O2gqk+An9jIyjl9 YVYnuOEqcRFbtcsVPlDep7WLo8k+CQIDAQABo4IBmjCCAZYwEwYKKwYBBAHWeQIE AwEB/wQCBQAwGQYDVR0RBBIwEIIOc3RzLmFjY3AuaWEuY2EwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAzBgNVHR8ELDAqMCig JqAkhiJodHRwOi8vY3JsLmVudHJ1c3QubmV0L2xldmVsMWsuY3JsMEsGA1UdIARE MEIwNgYKYIZIAYb6bAoBBTAoMCYGCCsGAQUFBwIBFhpodHRwOi8vd3d3LmVudHJ1 c3QubmV0L3JwYTAIBgZngQwBAgIwaAYIKwYBBQUHAQEEXDBaMCMGCCsGAQUFBzAB hhdodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAzBggrBgEFBQcwAoYnaHR0cDovL2Fp YS5lbnRydXN0Lm5ldC9sMWstY2hhaW4yNTYuY2VyMB8GA1UdIwQYMBaAFIKicHTd vFM/z3vU981/p2DGCky/MB0GA1UdDgQWBBTZkXxSf8B0hIBIqfV4N0VmEUKZcTAJ BgNVHRMEAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQCtVptx+qPqn4sDuOXRVgnK1CB0 I1orHJFju++VCBl6JFN09xfprAOOmY6gDAlun6ubkWPSlDEd+38JeNnyC42tmBrw c0899ZkMboFK6W5MkYNK/Kp0DrfIOUVfZTWlLHOKn5L+qRvKMemzadYjYp3O5z1B GljH2jztz2eafiU2sU4hQUHcOHasqpEYgT4UMvYVEI7gbEahyeg+92grRaR9clpZ N+l7NcPnCEamHsfTjxep28va9rjwFYIhZAUeDgCXQlt4o1u7aR/7Mo1jPKNS5icK 7RS0/Q7PiUkgueEoj18cIFiB+hL4C1E5IE6/v/PoUkr5Q9iZa1/oCjaY7/8e -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApDkkEMg5PQYos1GRYFn6 i5+8Jy54msHtf0x3Q/nrMhdQ9CbLqWU7injLgCuv96D5jMp7ArORtVcN6iNW2md2 z+obb8hJtviNkYtcF/UgczYBInKQqlmB/8CCFZCkB0rtFebC1sxLe5ZbbflJs7qh l2zpda4qLPu6nr6XDmuq4tsMmL3kKe7OQ9jmFEEUrZlTQ8WUjnqKb+ni9W7W2d6P k3Hmy00frOOi9+4q08KvyrM1nEoQc2Q6TDuXlmk2Urq84q09xNM2uWxBibsiyONv IqXxAlnRh3+w0TawCFyp6O2gqk+An9jIyjl9YVYnuOEqcRFbtcsVPlDep7WLo8k+ CQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 87163315923689648627872569061772930550 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-09 17:09:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-09 17:39:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Quebec' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Quebec' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Industrial Alliance Insurance and Financial Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sts.accp.ia.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20731259233070958155134152161844446411894228392684852839502637065841001108971285595073370396249117124005375077106669233050761072937464067357562795375272949878593707605424003027317683007636739322344452733898224383650122567724926241058962994675569919385043843588909095888445733336991475157082361528900816357840863164918589399707512329799212040411053832707926105820879940012367767597465791500155425575735692099925401235555670333063565465267731673954187754627563473939186448680714270910920385714913879595961278005128711206350842480824443342919583027623682540287919530559771034403478449170601236925194936039595973716557321 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sts.accp.ia.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d9917c527fc074848048a9f57837456611429971 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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