cvs.pfizer.com
- Pfizer, Inc -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 0e:ae:9c:b7:42:5b:42:8c:a6:df:65:55:e3:29:a7:a0 was issued on by Entrust, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Pfizer, Inc
Organization:
Pfizer, Inc
State / Province:
Connecticut
Locality: Groton
Country: US
Locality: Groton
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0e:ae:9c:b7:42:5b:42:8c:a6:df:65:55:e3:29:a7:a0Serial Number (int): 19515830169562129167527707051268089760
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 17:c0:c5:5f:51:f6:1d:61:fb:e7:71:06:16:93:02:6a:e8:b0:54:b4
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): 2d:f6:d1:13:9f:02:d5:7f:c8:5d:79:ac:88:cc:e0:3c:ce:71:27:7f
Fingerprint (sha256): 05:28:eb:7a:28:f1:31:c7:43:90:6d:25:9a:86:a9:ba:51:f5:e8:81:dc:58:73:b0:25:37:de:6e:e0:54:6b:25
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate cvs.pfizer.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cvs.pfizer.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cvs.pfizer.com
Other certificates including the domain name pfizer.com
(limited to 100 certificates)
artifactory.pfizer.com
som-bc-drp-04.pfizer.com
*.us.digitalpfizer.com
www.pfizer.com
sni.cloudflaressl.com
cdeportalapi.pfizer.com
imsws.pfizer.com
*.us3.digitalpfizer.com
rdctest.pfizer.com
pfizer.com
datacloudm.pfizer.com
domains.pfizer.com
pharmatictur.pfizer.com
logonv2dmz.pfizer.com
*.eu2.digitalpfizer.com
maintenance.pfizer.com
*.sf4.digitalpfizer.com
*.eu.digitalpfizer.com
canvas-webbuilder-qa04.pfizer.com
mmstatus.pfizer.com
stgfederate.pfizer.com
boxinterface.pfizer.com
partnerportal.pfizer.com
sni.cloudflaressl.com
*.apac3.digitalpfizer.com
amrvwp000005418.amer.pfizer.com
epp-stg.pfizer.com
devfederate.pfizer.com
sni.cloudflaressl.com
sni.cloudflaressl.com
gbi-bti-sdc-es-prod.pfizer.com
sni.cloudflaressl.com
CLM-API-2.Pfizer.com
groxs40a.pfizer.com
sni.cloudflaressl.com
sni.cloudflaressl.com
*.eu2.digitalpfizer.com
azpksim.pfizer.com
*.sf3.digitalpfizer.com
startrak-dr.pfizer.com
sni.cloudflaressl.com
aribaprime-dr-new.pfizer.com
ais-hummingbird-upscf-nprod.pfizer.com
ariba-stg.pfizer.com
sni.cloudflaressl.com
lshdev2-cal.pfizer.com
gbi-insightsnow-api.pfizer.com
epartner.pfizer.com
uc17.janrainengage.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ebusiness-bi.pfizer.com
*.us2.digitalpfizer.com
*.us8.digitalpfizer.com
e1.pfizer.com
www.primehemophilia.pfizer.com
promosprime.pfizer.com
ariba.pfizer.com
promos-ppd.pfizer.com
sni.cloudflaressl.com
xeljanz.pca.pfizer.com
sni.cloudflaressl.com
sdctst.pfizer.com
*.sf3.digitalpfizer.com
cdn.digitalpfizer.com
sdc20_dev.pfizer.com
sni.cloudflaressl.com
*.opx.janrain.ws
*.sf3.digitalpfizer.com
sni.cloudflaressl.com
amrsomw1527.amer.pfizer.com
*.eu.digitalpfizer.com
cvs.pfizer.com
spotfirebi7sbx.pfizer.com
tie.pfizer.com
sni.cloudflaressl.com
pfizergardens.com
sni.cloudflaressl.com
sni.cloudflaressl.com
secxs40a
*.pfizergardens.com
apsis.pfizer.com
uc18.janrainengage.com
*.eu6.digitalpfizer.com
sni.cloudflaressl.com
datacloudmdr.pfizer.com
pfizer.com
pxedpass.pfizer.com
rdcext.pfizer.com
myservicepartner.pfizer.com
san-11-s51.tlsprovisioning.exacttarget.com
pwondemand.pfizer.com
impalastg.pfizer.com
*.apac3.digitalpfizer.com
artifactory.pfizer.com
sni.cloudflaressl.com
devfederate.pfizer.com
sni.cloudflaressl.com
onetimesetupsom.pfizer.com
sni.cloudflaressl.com
som-bc-drp-04.pfizer.com
*.us.digitalpfizer.com
www.pfizer.com
sni.cloudflaressl.com
cdeportalapi.pfizer.com
imsws.pfizer.com
*.us3.digitalpfizer.com
rdctest.pfizer.com
pfizer.com
datacloudm.pfizer.com
domains.pfizer.com
pharmatictur.pfizer.com
logonv2dmz.pfizer.com
*.eu2.digitalpfizer.com
maintenance.pfizer.com
*.sf4.digitalpfizer.com
*.eu.digitalpfizer.com
canvas-webbuilder-qa04.pfizer.com
mmstatus.pfizer.com
stgfederate.pfizer.com
boxinterface.pfizer.com
partnerportal.pfizer.com
sni.cloudflaressl.com
*.apac3.digitalpfizer.com
amrvwp000005418.amer.pfizer.com
epp-stg.pfizer.com
devfederate.pfizer.com
sni.cloudflaressl.com
sni.cloudflaressl.com
gbi-bti-sdc-es-prod.pfizer.com
sni.cloudflaressl.com
CLM-API-2.Pfizer.com
groxs40a.pfizer.com
sni.cloudflaressl.com
sni.cloudflaressl.com
*.eu2.digitalpfizer.com
azpksim.pfizer.com
*.sf3.digitalpfizer.com
startrak-dr.pfizer.com
sni.cloudflaressl.com
aribaprime-dr-new.pfizer.com
ais-hummingbird-upscf-nprod.pfizer.com
ariba-stg.pfizer.com
sni.cloudflaressl.com
lshdev2-cal.pfizer.com
gbi-insightsnow-api.pfizer.com
epartner.pfizer.com
uc17.janrainengage.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ebusiness-bi.pfizer.com
*.us2.digitalpfizer.com
*.us8.digitalpfizer.com
e1.pfizer.com
www.primehemophilia.pfizer.com
promosprime.pfizer.com
ariba.pfizer.com
promos-ppd.pfizer.com
sni.cloudflaressl.com
xeljanz.pca.pfizer.com
sni.cloudflaressl.com
sdctst.pfizer.com
*.sf3.digitalpfizer.com
cdn.digitalpfizer.com
sdc20_dev.pfizer.com
sni.cloudflaressl.com
*.opx.janrain.ws
*.sf3.digitalpfizer.com
sni.cloudflaressl.com
amrsomw1527.amer.pfizer.com
*.eu.digitalpfizer.com
cvs.pfizer.com
spotfirebi7sbx.pfizer.com
tie.pfizer.com
sni.cloudflaressl.com
pfizergardens.com
sni.cloudflaressl.com
sni.cloudflaressl.com
secxs40a
*.pfizergardens.com
apsis.pfizer.com
uc18.janrainengage.com
*.eu6.digitalpfizer.com
sni.cloudflaressl.com
datacloudmdr.pfizer.com
pfizer.com
pxedpass.pfizer.com
rdcext.pfizer.com
myservicepartner.pfizer.com
san-11-s51.tlsprovisioning.exacttarget.com
pwondemand.pfizer.com
impalastg.pfizer.com
*.apac3.digitalpfizer.com
artifactory.pfizer.com
sni.cloudflaressl.com
devfederate.pfizer.com
sni.cloudflaressl.com
onetimesetupsom.pfizer.com
sni.cloudflaressl.com
Certificate
The complete raw certificate details for cvs.pfizer.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgIQDq6ct0JbQoym32VV4ymnoDANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0y NDAyMjIxMzE5NTRaFw0yNTAyMjIxMzE5NTNaMGMxCzAJBgNVBAYTAlVTMRQwEgYD VQQIEwtDb25uZWN0aWN1dDEPMA0GA1UEBxMGR3JvdG9uMRQwEgYDVQQKEwtQZml6 ZXIsIEluYzEXMBUGA1UEAxMOY3ZzLnBmaXplci5jb20wggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQC2JqjjTL9xPn8FQBTZI+Z1spKPgLrmxrLF/9aFzNte dNSmGWrbD4u6HqJtSXMOkkwPZU+8wZJgCMEaWnVouniWBTEnR80bCSqAmZPyh8W3 8yhsdQDG8ZB/ubhGypSr8MhDGcUx8/Ri2FMnOHSi1m7cxi/SztZi1ZQC+UZB/S35 JvSScfXG4iwyvc6pg4DqcPfJWG0sQonpHiX5XTA2rXMUhVTKra0P4uSgHCgO+0ev RSWuUpXkQoHqelGlG+Dv6mA/8Tx1I/YsyFZpkopzyFcKqan2O+Z5epiA9VJFm8Xm H7ricdHkPRSLEnHR9+i/15wKGat8avaaDNeY7gs1WlDJAgMBAAGjggFlMIIBYTAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQXwMVfUfYdYfvncQYWkwJq6LBUtDAfBgNV HSMEGDAWgBSConB03bxTP8971PfNf6dgxgpMvzBoBggrBgEFBQcBAQRcMFowIwYI KwYBBQUHMAGGF2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChido dHRwOi8vYWlhLmVudHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5jZXIwMwYDVR0fBCww KjAooCagJIYiaHR0cDovL2NybC5lbnRydXN0Lm5ldC9sZXZlbDFrLmNybDAZBgNV HREEEjAQgg5jdnMucGZpemVyLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMBMGA1UdIAQMMAowCAYGZ4EMAQICMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBV/oviKR9den2s/vBI 30ofmCXEbt6fb9N/GV5zOvbogesit4URPAbUksPuk5GVhHSsnfA5h5WBwIMBSWAx 3bpVZ6z7lVI+hlvghJlUpbyRB7UmwAEUxCqzQEEfxNFI33Bayutz0Z5CflEpL7eF EkZp4+kHG10T44xLbIOLCA0LTdZ9L6gT3Wk2/jwseEpFkI8sKnXFLtr303QyUzYz Rt+gweox0MGuuViieFzwDI3vQb/2FcJRgEDqos22h/XtBZ+teSYtdQfGMbAPRIEL TX03IdMoTYin2Ux9ovegHLuxiQ6qeUVx0OSUoXzljp4k+qMQCu4LHQtvqPJEjqKw Vlpr -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtiao40y/cT5/BUAU2SPm dbKSj4C65sayxf/WhczbXnTUphlq2w+Luh6ibUlzDpJMD2VPvMGSYAjBGlp1aLp4 lgUxJ0fNGwkqgJmT8ofFt/MobHUAxvGQf7m4RsqUq/DIQxnFMfP0YthTJzh0otZu 3MYv0s7WYtWUAvlGQf0t+Sb0knH1xuIsMr3OqYOA6nD3yVhtLEKJ6R4l+V0wNq1z FIVUyq2tD+LkoBwoDvtHr0UlrlKV5EKB6npRpRvg7+pgP/E8dSP2LMhWaZKKc8hX Cqmp9jvmeXqYgPVSRZvF5h+64nHR5D0UixJx0ffov9ecChmrfGr2mgzXmO4LNVpQ yQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19515830169562129167527707051268089760 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-22 13:19:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-22 13:19:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Connecticut' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Groton' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pfizer, Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cvs.pfizer.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22994435321444298636633968657446567250667781788598340103195425946807358206931848843279864045744423889498314167159308085466294661916140523862294862923420905098875667010146151044001866353854458872262302130481056378073945514262464603485331135537768667270480353877032642548371787086383302054483244148175621703899721449854012012813861569404080107522842198981482896680552051604374297625414809654558860290919107336942371130302657379169035169979757783911979219838814962493798626124948027115368461777893334582714298618435866554183218669680001530467725418050110892363659070582309097075406338115593003857369790149883208109019337 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 17c0c55f51f61d61fbe771061693026ae8b054b4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cvs.pfizer.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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