paa-pac.acdi-cida.gc.ca
- Canadian International Development Agency -
Issued by Entrust Certification Authority - L1B
About this certificate
This digital certificate with serial number 48:0e:23:ae was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Canadian International Development Agency
Organization:
Canadian International Development Agency
Organization unit: acdi-cida
Organization unit: acdi-cida
State / Province:
Quebec
Locality: Gatineau
Country: CA
Locality: Gatineau
Country: CA
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: AND ADDITIONAL TERMS GOVERNING USE AND RELIANCE
Organization unit: CPS CONTAINS IMPORTANT LIMITATIONS OF WARRANTIES AND LIABILITY
Organization unit: www.entrust.net/CPS is incorporated by reference
Organization unit: (c) 2008 Entrust, Inc.
Organization unit: AND ADDITIONAL TERMS GOVERNING USE AND RELIANCE
Organization unit: CPS CONTAINS IMPORTANT LIMITATIONS OF WARRANTIES AND LIABILITY
Organization unit: www.entrust.net/CPS is incorporated by reference
Organization unit: (c) 2008 Entrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 48:0e:23:aeSerial Number (int): 1208886190
Serial Number lenght: 31 bits, 4 octets
SubjectKeyId: dc:b0:d4:11:64:c5:11:7f:3f:11:bd:55:3b:ec:a9:23:3a:6c:2e:8a
AuthorityKeyId: f5:f2:96:88:7d:0d:f3:2a:f9:4e:e7:34:a0:bd:46:7e:13:d6:16:c8
Fingerprint (sha1): 7c:af:e0:35:81:5d:a8:33:83:8a:28:ce:4f:9a:63:68:46:8a:cf:bf
Fingerprint (sha256): 04:ab:1b:09:95:ff:00:69:17:1d:30:3e:f0:d4:8e:38:3a:cf:cd:e0:e8:60:07:87:0d:4a:5c:26:c6:d9:01:a3
Issuing Certificate URL: http://aia.entrust.net/2048-l1b.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1b.crl
Check the revocation status for certificate paa-pac.acdi-cida.gc.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for paa-pac.acdi-cida.gc.ca
Public Key Algorithm
RSA
Key Size
1024
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
paa-pac.acdi-cida.gc.ca
am.acdi-cida.gc.ca
am.acdi-cida.gc.ca
Other certificates including the domain name acdi-cida.gc.ca
(limited to 100 certificates)
paa-pac.acdi-cida.gc.ca
travel-smart.international.gc.ca
paa-pac.acdi-cida.gc.ca
travel-smart.international.gc.ca
pi.international.gc.ca
ecollaboration.acdi-cida.gc.ca
ext.acdi-cida.gc.ca
ext.acdi-cida.gc.ca
am.acdi-cida.gc.ca
ads-sra.acdi-cida.gc.ca
acwcx324.acdi-cida.gc.ca
gateway.acdi-cida.gc.ca
paa-pac.acdi-cida.gc.ca
ads-sra.preprod.acdi-cida.gc.ca
gdc-as.acdi-cida.gc.ca
paa-pac.acdi-cida.gc.ca
ads-sra.acdi-cida.gc.ca
gdc-as.acdi-cida.gc.ca
pi.international.gc.ca
paa-pac.acdi-cida.gc.ca
gateway.preprod.acdi-cida.gc.ca
paa-pac.acdi-cida.gc.ca
collaboration.acdi-cida.gc.ca
apprentissage-learning.acdi-cida.gc.ca
travel-smart.international.gc.ca
smt.acdi-cida.gc.ca
bdca-ccdb.acdi-cida.gc.ca
am.acdi-cida.gc.ca
gateway.acdi-cida.gc.ca
travel-smart.international.gc.ca
paa-pac.acdi-cida.gc.ca
travel-smart.international.gc.ca
pi.international.gc.ca
ecollaboration.acdi-cida.gc.ca
ext.acdi-cida.gc.ca
ext.acdi-cida.gc.ca
am.acdi-cida.gc.ca
ads-sra.acdi-cida.gc.ca
acwcx324.acdi-cida.gc.ca
gateway.acdi-cida.gc.ca
paa-pac.acdi-cida.gc.ca
ads-sra.preprod.acdi-cida.gc.ca
gdc-as.acdi-cida.gc.ca
paa-pac.acdi-cida.gc.ca
ads-sra.acdi-cida.gc.ca
gdc-as.acdi-cida.gc.ca
pi.international.gc.ca
paa-pac.acdi-cida.gc.ca
gateway.preprod.acdi-cida.gc.ca
paa-pac.acdi-cida.gc.ca
collaboration.acdi-cida.gc.ca
apprentissage-learning.acdi-cida.gc.ca
travel-smart.international.gc.ca
smt.acdi-cida.gc.ca
bdca-ccdb.acdi-cida.gc.ca
am.acdi-cida.gc.ca
gateway.acdi-cida.gc.ca
Certificate
The complete raw certificate details for paa-pac.acdi-cida.gc.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFpjCCBI6gAwIBAgIESA4jrjANBgkqhkiG9w0BAQUFADCCATQxCzAJBgNVBAYT AlVTMRYwFAYDVQQKEw1FbnRydXN0LCBJbmMuMTgwNgYDVQQLEy9BTkQgQURESVRJ T05BTCBURVJNUyBHT1ZFUk5JTkcgVVNFIEFORCBSRUxJQU5DRTFHMEUGA1UECxM+ Q1BTIENPTlRBSU5TIElNUE9SVEFOVCBMSU1JVEFUSU9OUyBPRiBXQVJSQU5USUVT IEFORCBMSUFCSUxJVFkxOTA3BgNVBAsTMHd3dy5lbnRydXN0Lm5ldC9DUFMgaXMg aW5jb3Jwb3JhdGVkIGJ5IHJlZmVyZW5jZTEfMB0GA1UECxMWKGMpIDIwMDggRW50 cnVzdCwgSW5jLjEuMCwGA1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhv cml0eSAtIEwxQjAeFw0wOTEwMzAxMzI0MDBaFw0xMTEyMTUxMzUxMzJaMIGbMQsw CQYDVQQGEwJDQTEPMA0GA1UECBMGUXVlYmVjMREwDwYDVQQHEwhHYXRpbmVhdTEy MDAGA1UEChMpQ2FuYWRpYW4gSW50ZXJuYXRpb25hbCBEZXZlbG9wbWVudCBBZ2Vu Y3kxEjAQBgNVBAsTCWFjZGktY2lkYTEgMB4GA1UEAxMXcGFhLXBhYy5hY2RpLWNp ZGEuZ2MuY2EwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBALNaWynBmhMSVVGj sbOKmW69iqnT7RlyT3dHm48V1BdFeTz8J8iZbCUQrGAWNjNcEMtSB+QB5p7fA+tU U6tCs+ECy9JuCtSJLZKRVdoL3+4uC1fqwtTXIfoRTLyUuoNZRykw9cy4FawEzaAl kiD+exCf9roYdr0LXo3P2gjRsFnfAgMBAAGjggHYMIIB1DALBgNVHQ8EBAMCBaAw KwYDVR0QBCQwIoAPMjAwOTEwMzAxMzI0MDBagQ8yMDExMTIxNTEzNTEzMlowHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDMGA1UdHwQsMCowKKAmoCSGImh0 dHA6Ly9jcmwuZW50cnVzdC5uZXQvbGV2ZWwxYi5jcmwwZAYIKwYBBQUHAQEEWDBW MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAvBggrBgEFBQcw AoYjaHR0cDovL2FpYS5lbnRydXN0Lm5ldC8yMDQ4LWwxYi5jZXIwQAYDVR0gBDkw NzA1BgkqhkiG9n0HSwIwKDAmBggrBgEFBQcCARYaaHR0cDovL3d3dy5lbnRydXN0 Lm5ldC9ycGEwNgYDVR0RBC8wLYIXcGFhLXBhYy5hY2RpLWNpZGEuZ2MuY2GCEmFt LmFjZGktY2lkYS5nYy5jYTAfBgNVHSMEGDAWgBT18paIfQ3zKvlO5zSgvUZ+E9YW yDAdBgNVHQ4EFgQU3LDUEWTFEX8/Eb1VO+ypIzpsLoowCQYDVR0TBAIwADAZBgkq hkiG9n0HQQAEDDAKGwRWNy4xAwIDKDANBgkqhkiG9w0BAQUFAAOCAQEAX9PwFQKu RdVwI6O2t34mJEhuclMBYgxXN0kMRLExa2o/YeOFADY+THZO12b8rlFof2xwFx6X EMeLI+Yt2nFKjkD6OkRywLpiDSjMv21VsNYcmG4Fqfdi/z0A8EGJMA3t7KkEXL9t iRe53FD9l7AA7pS5h+uLvMJHSLFm3fkiqmFWbtAx73oEXkU/4/QGwKpd1CwNhwWZ zqmbfQPEuWaCsZhMnEi2glLBNkmMRFWXA5rsObgXh5TCrQkJHh7Q+jcUGwrl7sJ3 vbg9UdGtg8eU6ZtwppIrJ5EeXb3At6Osl2dJ7hSickW8ENRD8OLMc0SR+1veFlF+ wa9DQStHA9GF3g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCzWlspwZoTElVRo7GzipluvYqp 0+0Zck93R5uPFdQXRXk8/CfImWwlEKxgFjYzXBDLUgfkAeae3wPrVFOrQrPhAsvS bgrUiS2SkVXaC9/uLgtX6sLU1yH6EUy8lLqDWUcpMPXMuBWsBM2gJZIg/nsQn/a6 GHa9C16Nz9oI0bBZ3wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1208886190 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AND ADDITIONAL TERMS GOVERNING USE AND RELIANCE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CPS CONTAINS IMPORTANT LIMITATIONS OF WARRANTIES AND LIABILITY' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.entrust.net/CPS is incorporated by reference' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2008 Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1B' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2009-10-30 13:24:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-12-15 13:51:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Quebec' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gatineau' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Canadian International Development Agency' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'acdi-cida' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'paa-pac.acdi-cida.gc.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1120 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 125945927067871009856166870818423862693902897173738343926488389899591934003622087702489224346648941664869502438853567105451541776839981188196809357500629094189803551048165572909406914550204162716567683146518255820016406085017108148807890446736304007520706072501565761404051253881398701481537324473357171710431 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.16 (privateKeyUsagePeriod) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 32303039313033303133323430305a . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:1|false] IA5String '20111215135132Z' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (88 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/2048-l1b.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113533.7.75.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paa-pac.acdi-cida.gc.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'am.acdi-cida.gc.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f5f296887d0df32af94ee734a0bd467e13d616c8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dcb0d41164c5117f3f11bd553beca9233a6c2e8a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113533.7.65.0 (entrustVersInfo) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:27|false] GeneralString 'V7.1' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 0328 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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