assets.nba.com
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 09:37:ae:ac:b4:07:f9:06:af:98:8f:ba:c9:d1:44:43 was issued on by DigiCert, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=assets.nba.com
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:37:ae:ac:b4:07:f9:06:af:98:8f:ba:c9:d1:44:43Serial Number (int): 12252171111515586460990408696022516803
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 6d:eb:ae:b8:37:d2:ca:b3:c9:2f:ba:f4:2f:f1:6f:e3:99:3a:0c:90
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): a2:44:47:36:89:41:d3:5d:de:66:ab:50:cf:7d:be:4a:25:7c:35:df
Fingerprint (sha256): 05:7d:0d:74:43:aa:9c:ac:6f:49:96:22:c9:8a:93:a3:60:38:af:c6:21:fb:0b:ac:9e:d0:e9:2e:12:ba:0a:26
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate assets.nba.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for assets.nba.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
assets.nba.com
Other certificates including the domain name nba.com
(limited to 100 certificates)
sp.gosanangelo.com
www-all.nba.com
secure.nba.com
global.nba.com
classroom.nba.com
allball.blogs.nba.com
takrun.org
stage.nba.com
hk.nba.com
cmp.channelpartner.de
store.nba.com
google-videos-qa.nba.com
nbaevents.nba.com
ct-sand.nba.com
r2.shared.global.fastly.net
audience.nba.com
webmail.hk.nba.com
google-videos-dev.nba.com
sdc.turner.com
www-all.nba.com
fidelity.nba.com
on.nba.com
ca.nba.com
nbafantasy.nba.com
fantasy.india.nba.com
nba.com
mvpvote.nba.com
sni330fgl.wpc.edgecastcdn.net
a.data.nba.com
techtips.nba.com
audience.nba.com
madants.gleague.nba.com
r2.shared.global.fastly.net
esinniobiwaquareeb.live
nba.com
store.nba.com
account-staging.nba.com
account.nba.com
play.nba.com
sdc.turner.com
www-all.nba.com
hk.nba.com
store.nba.com
*.nba.com
nba.com
nbae-support.nba.com
*.global.nba.com
*.nba.com
sni330fgl.wpc.edgecastcdn.net
google-videos-qa.nba.com
polls.turner.com
hk.nba.com
aspera.nba.com
exec.nba.com
webmail.sh.nba.com
returns.store.nba.com
www.turner.com
teamvideo.nba.com
ik.imagekit.io
dleaguestore.nba.com
akamai-san88.exacttarget.com
www-all.nba.com
dev.turner.com
vpnsh.nba.com
lrmedia.nba.com
vegasexpo.nba.com
www.sidekick.management
ik.imagekit.io
assets.nba.com
r2.shared.global.fastly.net
nbafantasy.nba.com
www.vegasexpo.nba.com
checkin.nba.com
*.internal.nba.com
sa1gl.wpc.edgecastcdn.net
www.turner.com
picks.nba.com
ct.nba.com
ik.imagekit.io
centercourtlive.nba.com
sdc.turner.com
audience.lab.nba.com
*.nba.com
*.nba.com
stage.nba.com
vpnhk.nba.com
consent.planetradio.co.uk
emediate.com.br
google-videos-qa.nba.com
global.nba.com
content.nba.com
gr.leaguepass.nba.com
stage.nba.com
smetrics.global.nba.com
nbaevents.nba.com
www.docsupport.nba.com
mydepartment.nba.com
audience.lab.nba.com
exec.nba.com
photostore.nba.com
www-all.nba.com
secure.nba.com
global.nba.com
classroom.nba.com
allball.blogs.nba.com
takrun.org
stage.nba.com
hk.nba.com
cmp.channelpartner.de
store.nba.com
google-videos-qa.nba.com
nbaevents.nba.com
ct-sand.nba.com
r2.shared.global.fastly.net
audience.nba.com
webmail.hk.nba.com
google-videos-dev.nba.com
sdc.turner.com
www-all.nba.com
fidelity.nba.com
on.nba.com
ca.nba.com
nbafantasy.nba.com
fantasy.india.nba.com
nba.com
mvpvote.nba.com
sni330fgl.wpc.edgecastcdn.net
a.data.nba.com
techtips.nba.com
audience.nba.com
madants.gleague.nba.com
r2.shared.global.fastly.net
esinniobiwaquareeb.live
nba.com
store.nba.com
account-staging.nba.com
account.nba.com
play.nba.com
sdc.turner.com
www-all.nba.com
hk.nba.com
store.nba.com
*.nba.com
nba.com
nbae-support.nba.com
*.global.nba.com
*.nba.com
sni330fgl.wpc.edgecastcdn.net
google-videos-qa.nba.com
polls.turner.com
hk.nba.com
aspera.nba.com
exec.nba.com
webmail.sh.nba.com
returns.store.nba.com
www.turner.com
teamvideo.nba.com
ik.imagekit.io
dleaguestore.nba.com
akamai-san88.exacttarget.com
www-all.nba.com
dev.turner.com
vpnsh.nba.com
lrmedia.nba.com
vegasexpo.nba.com
www.sidekick.management
ik.imagekit.io
assets.nba.com
r2.shared.global.fastly.net
nbafantasy.nba.com
www.vegasexpo.nba.com
checkin.nba.com
*.internal.nba.com
sa1gl.wpc.edgecastcdn.net
www.turner.com
picks.nba.com
ct.nba.com
ik.imagekit.io
centercourtlive.nba.com
sdc.turner.com
audience.lab.nba.com
*.nba.com
*.nba.com
stage.nba.com
vpnhk.nba.com
consent.planetradio.co.uk
emediate.com.br
google-videos-qa.nba.com
global.nba.com
content.nba.com
gr.leaguepass.nba.com
stage.nba.com
smetrics.global.nba.com
nbaevents.nba.com
www.docsupport.nba.com
mydepartment.nba.com
audience.lab.nba.com
exec.nba.com
photostore.nba.com
Certificate
The complete raw certificate details for assets.nba.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHijCCBXKgAwIBAgIQCTeurLQH+QavmI+6ydFEQzANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjMwMzA3MDAwMDAwWhcNMjQwNDA1MjM1OTU5WjAZMRcwFQYDVQQDEw5hc3NldHMu bmJhLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANY8lhnOCBpr rZ7gPy0Yl8lE+00oPlRcTgE+16UJqrhh1+NupN5Mi1UqILnaDzxnNCaERW0EACMY 8z/yxE/pYXbhN2aa8pBu1tjgOuDLd511PW/UxQCHPIZPd0Y8XuGFA9I4hPleFwSA vFEFgZaSW0pECqojmd0/gCt/EaF2EF2sXrf4T0977QYK5yTGNk1gjpxhCTEVZ8w9 lPBqkfvjDO/G/3HfYmJ1MazeRuOADgxvyREUQZEr8ctihQeg2kpH8bOt7YfiM1Xk VsqWZnGbafXNlFdpr5XDP8jHd+0acu6sgGp/RafcCFYWd4ENgTPXLleAWRqmWR0W 0f7g3gvnkJECAwEAAaOCA4kwggOFMB8GA1UdIwQYMBaAFKW01us2xOdrpt/EZAsB KiAEuGYjMB0GA1UdDgQWBBRt6664N9LKs8kvuvQv8W/jmToMkDAZBgNVHREEEjAQ gg5hc3NldHMubmJhLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMIGfBgNVHR8EgZcwgZQwSKBGoESGQmh0dHA6Ly9jcmwz LmRpZ2ljZXJ0LmNvbS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIy Q0ExLmNybDBIoEagRIZCaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0dlb1RydXN0 R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEuY3JsMD4GA1UdIAQ3MDUwMwYG Z4EMAQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQ UzCBhwYIKwYBBQUHAQEEezB5MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdp Y2VydC5jb20wUQYIKwYBBQUHMAKGRWh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNv bS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNydDAJBgNV HRMEAjAAMIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoAdwDuzdBk1dsazsVct520 zROiModGfLzs3sNRSFlGcR+1mwAAAYa8ahZvAAAEAwBIMEYCIQDZdwu4Phqc+kvL do4/oJsSK+EtCPJMO7+43HDvQynh1QIhANRce2Us980o6d3oHYMP88OGnSEDkNBz XUqwla4fV+mjAHcAc9meiRtMlnigIH1HneayxhzQUV5xGSqMa4AQesF3crUAAAGG vGoWwQAABAMASDBGAiEA9g9VBCRfnrAbHdaM/R1ElDu0PahJ7XhEWRls9IRF47oC IQCPc/IPuLrSwWD6+AvspD7qgtsVmRHTOSa9vryzQb6TFQB2AEiw42vapkc0D+Vq AvqdMOscUgHLVt0sgdm7v6s52IRzAAABhrxqFqMAAAQDAEcwRQIhALZUlCf17fuy H5gnDOLFWKqi7V0EiHOOOZe3bof1cU68AiALU7yQ+MYiJCFwcL/I33IrTX5rZJvY yTPtd2svJQLvuTANBgkqhkiG9w0BAQsFAAOCAgEAuT3q8NYDEwXsf2LTITZRvdfx jy4M+KxyGoTHxl9jMGMc2WtQbjKF3d7P8qvMguWQiouWFsgvsHBKXRD/xWHQOhJp w+2ovNn4Y5S4QctM79ZV4M1AyZmeJ479EIPFZTLY9ifUsNleOoRl6mDMFx3so7Bs LCjIhNqx3LPTZU8ObZb+qor6RVYRldfZGjh/+lt0r1nyo7eBwb2yr4JS2184mbv/ bUw4G4stv10xvDUZBKDl5ukVUewgztUGOnesVL0+0cON8UbxIqhKvtulvz7dmWVP +YS0NPty2TYDcvzQXTDb31REmHU3cX9q3yScl+eEmq1fsdzTMSXwZTdlwHr2ThwH Vfc7mOSauXIuoJqiuFnCjswvAWfzde+uIs9YJCoCN3ob5ruB65H8M7CnGpaC8UrP s4FbPRQADPikkctnZ+64joJCUMPYVvS1H02089JchFUIcL8sY3qEBNzjO3HTpvQA 9NkaEfjD/qc7hZMfm/Z0IH5BfDlw3GfWlkTY9jNhuJ582qbSly8QsVUOVIzdLjbV I9qYPaCJTEOgOK7v4Q1cPAOJcQ+p2wlMfr+AYaHXA0iD5ZzJVFoq2SVT6aCJTDzG jseq/eoeDca/wFjcumRx53dXasFtq5f8cllZiXEoZfPaka/pAATNS3e/0uRkzvQX g0IYb8FY9E2wc32bulo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1jyWGc4IGmutnuA/LRiX yUT7TSg+VFxOAT7XpQmquGHX426k3kyLVSogudoPPGc0JoRFbQQAIxjzP/LET+lh duE3ZprykG7W2OA64Mt3nXU9b9TFAIc8hk93Rjxe4YUD0jiE+V4XBIC8UQWBlpJb SkQKqiOZ3T+AK38RoXYQXaxet/hPT3vtBgrnJMY2TWCOnGEJMRVnzD2U8GqR++MM 78b/cd9iYnUxrN5G44AODG/JERRBkSvxy2KFB6DaSkfxs63th+IzVeRWypZmcZtp 9c2UV2mvlcM/yMd37Rpy7qyAan9Fp9wIVhZ3gQ2BM9cuV4BZGqZZHRbR/uDeC+eQ kQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12252171111515586460990408696022516803 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'assets.nba.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27044873496178473352479499992452604064064931264176922503503203432682548800176423008831857402660859144062578098080102434269591346962231715632242733781079073830370586792275825041531101996629161774257702317498645463816355280062867110531130618964946324191376201227627318869898319372251773138268754622178458691343709037066844003089226153183051721992400875346199100491305898183216711730434044573637139521268804108922828927920671426036737947184951010740599222834281908725476242249528294074047645278911992007148353552138348910262118307150508905234679471709726294840910046237378940222996728060508597940155596514042075675070609 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6debaeb837d2cab3c92fbaf42ff16fe3993a0c90 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.nba.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 016a007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b00000186bc6a166f0000040300483046022100d9770bb83e1a9cfa4bcb768e3fa09b122be12d08f24c3bbfb8dc70ef4329e1d5022100d45c7b652cf7cd28e9dde81d830ff3c3869d210390d0735d4ab095ae1f57e9a300770073d99e891b4c9678a0207d479de6b2c61cd0515e71192a8c6b80107ac17772b500000186bc6a16c10000040300483046022100f60f5504245f9eb01b1dd68cfd1d44943bb43da849ed784459196cf48445e3ba0221008f73f20fb8bad2c160faf80beca43eea82db159911d33926bdbebcb341be931500760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d8847300000186bc6a16a30000040300473045022100b6549427f5edfbb21f98270ce2c558aaa2ed5d0488738e3997b76e87f5714ebc02200b53bc90f8c62224217070bfc8df722b4d7e6b649bd8c933ed776b2f2502efb9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 00b93deaf0d6031305ec7f62d3213651bdd7f18f2e0cf8ac721a84c7c65f6330631cd96b506e3285dddecff2abcc82e5908a8b9616c82fb0704a5d10ffc561d03a1269c3eda8bcd9f86394b841cb4cefd655e0cd40c9999e278efd1083c56532d8f627d4b0d95e3a8465ea60cc171deca3b06c2c28c884dab1dcb3d3654f0e6d96feaa8afa45561195d7d91a387ffa5b74af59f2a3b781c1bdb2af8252db5f3899bbff6d4c381b8b2dbf5d31bc351904a0e5e6e91551ec20ced5063a77ac54bd3ed1c38df146f122a84abedba5bf3edd99654ff984b434fb72d9360372fcd05d30dbdf5444987537717f6adf249c97e7849aad5fb1dcd33125f0653765c07af64e1c0755f73b98e49ab9722ea09aa2b859c28ecc2f0167f375efae22cf58242a02377a1be6bb81eb91fc33b0a71a9682f14acfb3815b3d14000cf8a491cb6767eeb88e824250c3d856f4b51f4db4f3d25c84550870bf2c637a8404dce33b71d3a6f400f4d91a11f8c3fea73b85931f9bf674207e417c3970dc67d69644d8f63361b89e7cdaa6d2972f10b1550e548cdd2e36d523da983da0894c43a038aeefe10d5c3c0389710fa9db094c7ebf8061a1d7034883e59cc9545a2ad92553e9a0894c3cc68ec7aafdea1e0dc6bfc058dcba6471e777576ac16dab97fc72595989712865f3da91afe90004cd4b77bfd2e464cef4178342186fc158f44db0737d9bba5a