loans.bankofalbuquerque.com
- BOK Financial Corporation -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 04:7d:3d:38:ea:5c:20:0b:3f:af:f0:a6:ef:90:23:2d was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
BOK Financial Corporation
Company registration number:
1900494658
Organization: BOK Financial Corporation
Organization unit: Bank of Albuquerque
Organization: BOK Financial Corporation
Organization unit: Bank of Albuquerque
State / Province:
Oklahoma
Locality: Tulsa
Country: US
Locality: Tulsa
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:7d:3d:38:ea:5c:20:0b:3f:af:f0:a6:ef:90:23:2dSerial Number (int): 5967190826750305292710386053275460397
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 21:cc:7b:ed:35:fd:dc:ea:b3:db:ca:d2:c6:0f:b0:9c:90:0b:59:6a
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 26:73:dc:54:51:15:f3:74:8e:17:cc:52:0d:44:ce:c2:69:a8:93:35
Fingerprint (sha256): 06:0d:fe:cb:78:06:61:82:8d:f4:a5:46:f9:41:19:69:4e:d2:c0:fd:7b:73:86:e8:33:41:d4:21:79:30:7c:42
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate loans.bankofalbuquerque.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for loans.bankofalbuquerque.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
loans.bankofalbuquerque.com
Other certificates including the domain name bankofalbuquerque.com
(limited to 100 certificates)
homenow-d.bokf.com
onlinebanking.bokfinancial.com
openaccount.bokfinancial.com
onlinebanking.bokfinancial.com
onlinebanking.bokfinancial.com
homenow-t.bokf.com
www.bokfinancial.com
homenow.bokf.com
loans.bankofalbuquerque.com
homenow-t.bokf.com
ila.bankofalbuquerque.com
homenow-t.bokf.com
homenow.bokf.com
www.bankofalbuquerque.com
homenow-mqa.bokf.com
openaccount.bankofoklahoma.com
tracking.bankofalbuquerque.com
response.bankofalbuquerque.com
loans.bankofalbuquerque.com
onlinebanking.bankofalbuquerque.com
onlinebanking.bokfinancial.com
go.bokf.com
response.bankofalbuquerque.com
homenow-d.bokf.com
www.bokfinancial.com
response.bankofalbuquerque.com
response.bankofalbuquerque.com
homenow.bokf.com
homenow-t.bokf.com
www.bokfinancial.com
loans.bankofalbuquerque.com
www.bankofalbuquerque.com
locations.bankofalbuquerque.com
www.bokfinancial.com
bok-qa.roostify.com
go.bokf.com
onlinebanking.bokfinancial.com
openaccount.bokfinancial.com
demosource.bokf.com
www.bankofalbuquerque.com
tracking.bankofalbuquerque.com
es.bankofalbuquerque.com
www.bankofalbuquerque.com
www.bokfinancial.com
locations.bankofoklahoma.com
onlinebanking.bankofalbuquerque.com
response.bankofalbuquerque.com
homenow.bokf.com
onlinebanking.bokfinancial.com
homenow-d.bokf.com
onlinebanking.bokfinancial.com
es.bankofalbuquerque.com
www.bokfinancial.com
locations.bankofalbuquerque.com
openaccount.bankofoklahoma.com
bok-qa.roostify.com
homenow.bokf.com
onlinebanking.bankofalbuquerque.com
www.bankofalbuquerque.com
homenow-t.bokf.com
homenow-t.bokf.com
response.bankofalbuquerque.com
ila.bankofalbuquerque.com
bok-qa.roostify.com
es.bankofalbuquerque.com
www.bankofalbuquerque.com
onlinebanking.bokfinancial.com
openaccount.bankofoklahoma.com
onlinebanking.bankofalbuquerque.com
es.bankofalbuquerque.com
www.bokfinancial.com
bok-qa.roostify.com
mortgage-d.bokf.com
onlinebanking.bankofalbuquerque.com
www.bokfinancial.com
homenow.bokf.com
www.bankofalbuquerque.com
es.bokfinancial.com
sitecore.bokfinancial.com
es.bokfinancial.com
homenow.bokf.com
homenow-mqa.bokf.com
bok-qa.roostify.com
loans.bankofalbuquerque.com
m.bankofalbuquerque.com
openaccount.bokfinancial.com
onlinebanking.bokfinancial.com
es.bankofalbuquerque.com
ila.bankofalbuquerque.com
locations.bokfinancial.com
www.bokfinancial.com
locations.bokfinancial.com
www.bankofalbuquerque.com
homenow.bokf.com
onlinebanking.bokfinancial.com
openaccount.bankofoklahoma.com
homenow-d.bokf.com
m.bankofalbuquerque.com
homenow-mqa.bokf.com
onlinebanking.bankofalbuquerque.com
onlinebanking.bokfinancial.com
openaccount.bokfinancial.com
onlinebanking.bokfinancial.com
onlinebanking.bokfinancial.com
homenow-t.bokf.com
www.bokfinancial.com
homenow.bokf.com
loans.bankofalbuquerque.com
homenow-t.bokf.com
ila.bankofalbuquerque.com
homenow-t.bokf.com
homenow.bokf.com
www.bankofalbuquerque.com
homenow-mqa.bokf.com
openaccount.bankofoklahoma.com
tracking.bankofalbuquerque.com
response.bankofalbuquerque.com
loans.bankofalbuquerque.com
onlinebanking.bankofalbuquerque.com
onlinebanking.bokfinancial.com
go.bokf.com
response.bankofalbuquerque.com
homenow-d.bokf.com
www.bokfinancial.com
response.bankofalbuquerque.com
response.bankofalbuquerque.com
homenow.bokf.com
homenow-t.bokf.com
www.bokfinancial.com
loans.bankofalbuquerque.com
www.bankofalbuquerque.com
locations.bankofalbuquerque.com
www.bokfinancial.com
bok-qa.roostify.com
go.bokf.com
onlinebanking.bokfinancial.com
openaccount.bokfinancial.com
demosource.bokf.com
www.bankofalbuquerque.com
tracking.bankofalbuquerque.com
es.bankofalbuquerque.com
www.bankofalbuquerque.com
www.bokfinancial.com
locations.bankofoklahoma.com
onlinebanking.bankofalbuquerque.com
response.bankofalbuquerque.com
homenow.bokf.com
onlinebanking.bokfinancial.com
homenow-d.bokf.com
onlinebanking.bokfinancial.com
es.bankofalbuquerque.com
www.bokfinancial.com
locations.bankofalbuquerque.com
openaccount.bankofoklahoma.com
bok-qa.roostify.com
homenow.bokf.com
onlinebanking.bankofalbuquerque.com
www.bankofalbuquerque.com
homenow-t.bokf.com
homenow-t.bokf.com
response.bankofalbuquerque.com
ila.bankofalbuquerque.com
bok-qa.roostify.com
es.bankofalbuquerque.com
www.bankofalbuquerque.com
onlinebanking.bokfinancial.com
openaccount.bankofoklahoma.com
onlinebanking.bankofalbuquerque.com
es.bankofalbuquerque.com
www.bokfinancial.com
bok-qa.roostify.com
mortgage-d.bokf.com
onlinebanking.bankofalbuquerque.com
www.bokfinancial.com
homenow.bokf.com
www.bankofalbuquerque.com
es.bokfinancial.com
sitecore.bokfinancial.com
es.bokfinancial.com
homenow.bokf.com
homenow-mqa.bokf.com
bok-qa.roostify.com
loans.bankofalbuquerque.com
m.bankofalbuquerque.com
openaccount.bokfinancial.com
onlinebanking.bokfinancial.com
es.bankofalbuquerque.com
ila.bankofalbuquerque.com
locations.bokfinancial.com
www.bokfinancial.com
locations.bokfinancial.com
www.bankofalbuquerque.com
homenow.bokf.com
onlinebanking.bokfinancial.com
openaccount.bankofoklahoma.com
homenow-d.bokf.com
m.bankofalbuquerque.com
homenow-mqa.bokf.com
onlinebanking.bankofalbuquerque.com
Certificate
The complete raw certificate details for loans.bankofalbuquerque.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIQBH09OOpcIAs/r/Cm75AjLTANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE4MTExNjAwMDAwMFoXDTE5MTExNzEy MDAwMFowgfwxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAlVTMRkwFwYLKwYBBAGCNzwCAQITCE9rbGFob21hMRMwEQYDVQQF EwoxOTAwNDk0NjU4MQswCQYDVQQGEwJVUzERMA8GA1UECBMIT2tsYWhvbWExDjAM BgNVBAcTBVR1bHNhMSIwIAYDVQQKExlCT0sgRmluYW5jaWFsIENvcnBvcmF0aW9u MRwwGgYDVQQLExNCYW5rIG9mIEFsYnVxdWVycXVlMSQwIgYDVQQDExtsb2Fucy5i YW5rb2ZhbGJ1cXVlcnF1ZS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCXmZ602kAtiQUa0YYNEnD0OEtyk6xFBCjhMUZC5m+yLS9o/aHjFnJD3rwK ySU29O8nLY6WyyfhoeFbfmlhf+lsqiyl4NOegjO5jffHiePD0qdFKKnOZiQj9lBQ kZIW9otucsRtNpYzz1cbB0NL92ad5lRygaK9nwJT6gVMbpw2kPGcFOu5pZLPVCUU xLx/EZXcP9NJA4wK1FiugNhhq5TSTz9UFYdpRwPAcymcZtmZ3VhxR+AAR1jMRqV7 0mPFV8s5K+qzIA4ajJAU+F/5+L3/+mk9WxNAXIovla28A9MECinzkZH275f56yoB 1dOKxp6ngY3AghKzr8Q8PEksFvfNAgMBAAGjggL9MIIC+TAfBgNVHSMEGDAWgBQ9 01Cl1qCt7vNKYApl0yHU+PjWDzAdBgNVHQ4EFgQUIcx77TX93Oqz28rSxg+wnJAL WWowJgYDVR0RBB8wHYIbbG9hbnMuYmFua29mYWxidXF1ZXJxdWUuY29tMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwdQYDVR0f BG4wbDA0oDKgMIYuaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL3NoYTItZXYtc2Vy dmVyLWcyLmNybDA0oDKgMIYuaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL3NoYTIt ZXYtc2VydmVyLWcyLmNybDBLBgNVHSAERDBCMDcGCWCGSAGG/WwCATAqMCgGCCsG AQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAcGBWeBDAEBMIGI BggrBgEFBQcBAQR8MHowJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0 LmNvbTBSBggrBgEFBQcwAoZGaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Rp Z2lDZXJ0U0hBMkV4dGVuZGVkVmFsaWRhdGlvblNlcnZlckNBLmNydDAJBgNVHRME AjAAMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAu9nfvB+KcbWTlCOXqpJ7RzhX lQqrUugakJZkNo4e0YUAAAFnHgCYwQAABAMARzBFAiEAjiSCA3edW9zL/af88D3b orkoLoMzWWcjU7cBrhUg8LYCIA0bz5mdmdp2RLCaY31kl17sxB/AVsQ3Wpt4a7Zs TjssAHYAh3W/51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq/16ggw8AAAFnHgCZdgAA BAMARzBFAiEA1gWMhAOoHqA59kMK2DOY+1IjKJu3pkCQhTqCVwUdjTMCIEa4GDgb NM1Yf2OWaZxqdoFD90AhPJclsqhiGMheFmJwMA0GCSqGSIb3DQEBCwUAA4IBAQAX zsmYO0tSNY8gRX+G4qW5olrh65IVrzVaGuq4S791rXivW8qmX9fXBznGzn+eOiJY lHlQyUa7YMIM/gFpyIwstPTIWBz3ewp1PCFbJLyUhkibWAhFYC12iWJHk6RJFN9I xxfFU+49cKFmKKkgkiGMFQDF6rVkPO+/pJoEAiziDQbhu0VsPkWxS6z0MAbxmakv SciObjv4WNzVRxtkrnxg/md+5rfXE0ZvfFb6pXyipy5ure/wreATh/YKTTzpopll EHNZ9UE94dvvKQ2DSofo6Aq9PpPTJQt2kqcJnA0bU/IDlCWbCrvMUuS4p5IBfjtX c4mVgfes3KNEFA/K5W12 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl5metNpALYkFGtGGDRJw 9DhLcpOsRQQo4TFGQuZvsi0vaP2h4xZyQ968CsklNvTvJy2Olssn4aHhW35pYX/p bKospeDTnoIzuY33x4njw9KnRSipzmYkI/ZQUJGSFvaLbnLEbTaWM89XGwdDS/dm neZUcoGivZ8CU+oFTG6cNpDxnBTruaWSz1QlFMS8fxGV3D/TSQOMCtRYroDYYauU 0k8/VBWHaUcDwHMpnGbZmd1YcUfgAEdYzEale9JjxVfLOSvqsyAOGoyQFPhf+fi9 //ppPVsTQFyKL5WtvAPTBAop85GR9u+X+esqAdXTisaep4GNwIISs6/EPDxJLBb3 zQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5967190826750305292710386053275460397 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-17 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Oklahoma' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1900494658' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Oklahoma' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Tulsa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BOK Financial Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bank of Albuquerque' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'loans.bankofalbuquerque.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19137736869131556969836323259269157717551042131613310755747335780794934302674021069351096900902587728822940130693817069063030839719055682139807085109693679527441897415766190757443059271260732172121352476886846550780469867389252856017230924983358465096807658594651296143995456011571187702691247284061852330820697624240976664433943565883422796945072667941184743018490289474786843121090177657687119687430643211274000280412278278222520066317555873192278974113387157622126722756371928725777757402764241607099887914678561566930491156071463097166836495707848828703455916156356214174246177973347766779417124276986798600026061 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 21cc7bed35fddceab3dbcad2c60fb09c900b596a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'loans.bankofalbuquerque.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed185000001671e0098c100000403004730450221008e248203779d5bdccbfda7fcf03ddba2b9282e833359672353b701ae1520f0b602200d1bcf999d99da7644b09a637d64975eecc41fc056c4375a9b786bb66c4e3b2c0076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f000001671e0099760000040300473045022100d6058c8403a81ea039f6430ad83398fb5223289bb7a64090853a8257051d8d33022046b818381b34cd587f6396699c6a768143f740213c9725b2a86218c85e166270 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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