booking.vacations.united.com
- United Airlines, Inc. -
Issued by DigiCert Global G2 TLS RSA SHA256 2020 CA1
About this certificate
This digital certificate with serial number 02:69:39:d9:6d:76:7d:70:14:80:22:9f:a9:34:60:82 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
United Airlines, Inc.
Organization:
United Airlines, Inc.
State / Province:
Illinois
Locality: Chicago
Country: US
Locality: Chicago
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 02:69:39:d9:6d:76:7d:70:14:80:22:9f:a9:34:60:82Serial Number (int): 3204820485451774067942791469138731138
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: f1:0d:2c:d1:d9:f5:21:e4:c8:f5:9d:a7:ee:ad:eb:57:89:e4:5d:d6
AuthorityKeyId: 74:85:80:c0:66:c7:df:37:de:cf:bd:29:37:aa:03:1d:be:ed:cd:17
Fingerprint (sha1): 0b:ab:4f:2e:37:0c:55:23:88:53:aa:2a:70:c3:5a:00:2f:78:57:8c
Fingerprint (sha256): 06:cb:9a:f7:32:a5:e9:35:1a:78:9c:df:c0:f6:4c:0b:45:fe:2c:fb:6b:44:32:c8:78:55:e4:40:16:38:81:e9
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Check the revocation status for certificate booking.vacations.united.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for booking.vacations.united.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
booking.vacations.united.com
res.vacations.united.com
res.vacations.united.com
Other certificates including the domain name united.com
(limited to 100 certificates)
eres.app.stage.auth.united.com
vss.united.com
rebelmouse.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
rebelmouse.map.fastly.net
wheelchair.united.com
wftest.united.com
trk.notify.hotels.united.com
gofly.united.com
partnergw-csmc.united.com
business2.united.com
cardmemberoffers.united.com
iot-qa.united.com
api-qa.united.com
packages.united.com
commerce.united.com
svcgw.qa.aws.united.com
skyfi.united.com
meetings.united.com
checkin.united.com
rebelmouse.map.fastly.net
meetings.united.com
accessedge.united.com
cardmemberoffers.united.com
alpha.vacations.united.com
rebelmouse.map.fastly.net
rebelmouse.map.fastly.net
aws.qa.webauth.united.com
wheelchair-qa.united.com
rebelmouse.map.fastly.net
rebelmouse.map.fastly.net
ndcxway1.united.com
classified.united.com
vacations.united.com
premierevents.united.com
cardmemberoffers.united.com
uma.united.com
ebso.ual.com
rebelmouse.map.fastly.net
luxury.vacations.united.com
stage.united.com
businesstravel.united.com
qa7.united.com
ivr-qa.ual.com
newsroom.united.com
dns-vetting1-jeffg-noah.map.fastly.net
www.de.hotels.united.com
rebelmouse.map.fastly.net
qa.united.com
lyncdiscover.united.com
offers.united.com
crreport-dev.united.com
rebelmouse.map.fastly.net
san-14-s12.tlsprovisioning.exacttarget.com
rebelmouse.map.fastly.net
vacations.united.com
united.com
schedulep.united.com
qol-mffqa.united.com
eres.app.stage.auth.united.com
meetings.united.com
vacations.united.com
xml.united.com
san-34-s12.tlsprovisioning.exacttarget.com
rebelmouse.map.fastly.net
inflight-mff.united.com
dns-vetting1-jeffg-noah.map.fastly.net
rebelmouse.map.fastly.net
ualapi.united.com
eservicetest.united.com
dns-vetting1-jeffg-noah.map.fastly.net
assets.mystatus.united.com
wf.united.com
signatures.united.com
unitedperksplus.united.com
svcgw.prd.aws.united.com
rebelmouse.map.fastly.net
mobile-test.united.com
view.enews.united.com
uabusiness.united.com
vacations.united.com
dtm.cc.cruises.united.com
ucbadm.stage.united.com
click.e.united.com
alg-prod.actioniq.mr-in.com
booking.vacations.united.com
rebelmouse.map.fastly.net
walletservices.united.com
rebelmouse.map.fastly.net
api-qa.united.com
cruises.united.com
easyupdate.united.com
united.com
united.com
connections.united.com
cargo-iot.dev.ual.com
smartphone.united.com
packages.united.com
uabusiness.united.com
ndc.auth.united.com
vss.united.com
rebelmouse.map.fastly.net
dns-vetting1-jeffg-noah.map.fastly.net
rebelmouse.map.fastly.net
wheelchair.united.com
wftest.united.com
trk.notify.hotels.united.com
gofly.united.com
partnergw-csmc.united.com
business2.united.com
cardmemberoffers.united.com
iot-qa.united.com
api-qa.united.com
packages.united.com
commerce.united.com
svcgw.qa.aws.united.com
skyfi.united.com
meetings.united.com
checkin.united.com
rebelmouse.map.fastly.net
meetings.united.com
accessedge.united.com
cardmemberoffers.united.com
alpha.vacations.united.com
rebelmouse.map.fastly.net
rebelmouse.map.fastly.net
aws.qa.webauth.united.com
wheelchair-qa.united.com
rebelmouse.map.fastly.net
rebelmouse.map.fastly.net
ndcxway1.united.com
classified.united.com
vacations.united.com
premierevents.united.com
cardmemberoffers.united.com
uma.united.com
ebso.ual.com
rebelmouse.map.fastly.net
luxury.vacations.united.com
stage.united.com
businesstravel.united.com
qa7.united.com
ivr-qa.ual.com
newsroom.united.com
dns-vetting1-jeffg-noah.map.fastly.net
www.de.hotels.united.com
rebelmouse.map.fastly.net
qa.united.com
lyncdiscover.united.com
offers.united.com
crreport-dev.united.com
rebelmouse.map.fastly.net
san-14-s12.tlsprovisioning.exacttarget.com
rebelmouse.map.fastly.net
vacations.united.com
united.com
schedulep.united.com
qol-mffqa.united.com
eres.app.stage.auth.united.com
meetings.united.com
vacations.united.com
xml.united.com
san-34-s12.tlsprovisioning.exacttarget.com
rebelmouse.map.fastly.net
inflight-mff.united.com
dns-vetting1-jeffg-noah.map.fastly.net
rebelmouse.map.fastly.net
ualapi.united.com
eservicetest.united.com
dns-vetting1-jeffg-noah.map.fastly.net
assets.mystatus.united.com
wf.united.com
signatures.united.com
unitedperksplus.united.com
svcgw.prd.aws.united.com
rebelmouse.map.fastly.net
mobile-test.united.com
view.enews.united.com
uabusiness.united.com
vacations.united.com
dtm.cc.cruises.united.com
ucbadm.stage.united.com
click.e.united.com
alg-prod.actioniq.mr-in.com
booking.vacations.united.com
rebelmouse.map.fastly.net
walletservices.united.com
rebelmouse.map.fastly.net
api-qa.united.com
cruises.united.com
easyupdate.united.com
united.com
united.com
connections.united.com
cargo-iot.dev.ual.com
smartphone.united.com
packages.united.com
uabusiness.united.com
ndc.auth.united.com
Certificate
The complete raw certificate details for booking.vacations.united.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHEDCCBfigAwIBAgIQAmk52W12fXAUgCKfqTRggjANBgkqhkiG9w0BAQsFADBZ MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMTMwMQYDVQQDEypE aWdpQ2VydCBHbG9iYWwgRzIgVExTIFJTQSBTSEEyNTYgMjAyMCBDQTEwHhcNMjQw MjIyMDAwMDAwWhcNMjQxMjIwMjM1OTU5WjB5MQswCQYDVQQGEwJVUzERMA8GA1UE CBMISWxsaW5vaXMxEDAOBgNVBAcTB0NoaWNhZ28xHjAcBgNVBAoTFVVuaXRlZCBB aXJsaW5lcywgSW5jLjElMCMGA1UEAxMcYm9va2luZy52YWNhdGlvbnMudW5pdGVk LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAN3RKWWR/X7fzX0t sGD1KxfXGWD+uPjAsxYkMZDFDzy69GzfnL3ua/mAzVwYwf/f9yJ9glySYcj60Lfy OOtvMDo46ZTrzAUgYq/4n2kLYbj5ckPvQZE0B5ue3LthY9uE/rSCf35F2VYQTQYx Idx8yB89oIbBhX/qPWwsPA3mLnnQ0bg9Uc/DEecfZSlMvprKkrVDcA+WEXMpfcQJ pHvh0rdM8IVvx+Y6sp+VBUnnYMl55UMzaTiN1LUDBxfaYZ1ceFuFZGk7j9dj62nf 1gfw1WBxtKEY12FHqYFBbwrrWI+g3HAUESWzrUj9/2qnADPyvEgvB0eP+H5JvFu3 ltOGUj0CAwEAAaOCA7IwggOuMB8GA1UdIwQYMBaAFHSFgMBmx9833s+9KTeqAx2+ 7c0XMB0GA1UdDgQWBBTxDSzR2fUh5Mj1nafuretXieRd1jBBBgNVHREEOjA4ghxi b29raW5nLnZhY2F0aW9ucy51bml0ZWQuY29tghhyZXMudmFjYXRpb25zLnVuaXRl ZC5jb20wPgYDVR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEFBQcCARYbaHR0cDov L3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwgZ8GA1UdHwSBlzCBlDBIoEagRIZCaHR0cDov L2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0R2xvYmFsRzJUTFNSU0FTSEEyNTYy MDIwQ0ExLTEuY3JsMEigRqBEhkJodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vRGln aUNlcnRHbG9iYWxHMlRMU1JTQVNIQTI1NjIwMjBDQTEtMS5jcmwwgYcGCCsGAQUF BwEBBHsweTAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMFEG CCsGAQUFBzAChkVodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRH bG9iYWxHMlRMU1JTQVNIQTI1NjIwMjBDQTEtMS5jcnQwDAYDVR0TAQH/BAIwADCC AX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHcA7s3QZNXbGs7FXLedtM0TojKHRny8 7N7DUUhZRnEftZsAAAGN0t5TjwAABAMASDBGAiEA/5/AhTvodm1E2fN0oePyanEc IWbsN+v5o91JovJW4WYCIQCACl0D3mIhKysdFVPX6MIbpL0gqkhPkLGXwtzcDhT8 AQB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjdLeUzwAAAQD AEYwRAIgCuNOOasGv+cOyQWf4rg55nDmZ6d8gfw3MMT7QselRJACICW+jEyY01ND 2Qi+/WW8eIRnlwy89AUVXLQ4STCUMFnmAHYA2ra/az+1tiKfm8K7XGvocJFxbLtR hIU0vaQ9MEjX+6sAAAGN0t5TcAAABAMARzBFAiAbFO4Q2ZIHITvvFwDV27dg1q+V PTbDKJqz5M+F/u9G+gIhALPdZfQNtpZB228sM8yRlSWvYbFxL297byk1y/KFs34/ MA0GCSqGSIb3DQEBCwUAA4IBAQBIo5OE4SKAJiVl1JRgLw3+L/X8NV/Vlsk5c6iJ l0rHVTl8MPhBXfKRPPJGbe2XwyHC/R6pL8HKwKVHaWWZiNGEA9ra7ECwmzuV8UHz UbbXIrzPsngIqE/9FZ3Z0FsCS+hrwm4+FDTaUKejtkb+Hk7yX1XU/kqJJk635PQN YXAH4LDtaoNRixDK0imxTVTTp3q7XZfemzEX7B8bdkOfobfyjhTFxe8j4RK+5h/l TbuXqF2xfaWMHaJyjdfjEBXoer2grnxRN77/fx5lvVq9fVKqUkMq61DpoOP+KR0J +8+OyDSDhC3S+6leL/IrsSWLSu4j07LZ1QoNcozOjIu7Ut5t -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3dEpZZH9ft/NfS2wYPUr F9cZYP64+MCzFiQxkMUPPLr0bN+cve5r+YDNXBjB/9/3In2CXJJhyPrQt/I4628w OjjplOvMBSBir/ifaQthuPlyQ+9BkTQHm57cu2Fj24T+tIJ/fkXZVhBNBjEh3HzI Hz2ghsGFf+o9bCw8DeYuedDRuD1Rz8MR5x9lKUy+msqStUNwD5YRcyl9xAmke+HS t0zwhW/H5jqyn5UFSedgyXnlQzNpOI3UtQMHF9phnVx4W4VkaTuP12Prad/WB/DV YHG0oRjXYUepgUFvCutYj6DccBQRJbOtSP3/aqcAM/K8SC8HR4/4fkm8W7eW04ZS PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3204820485451774067942791469138731138 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Global G2 TLS RSA SHA256 2020 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-20 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chicago' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'United Airlines, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'booking.vacations.united.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28001806878907289817003643102761321171516588243804407662392831510355918162855265141117544691314251440207153538811024324317414047725211800504475710917479326203946595949834400228929961548571307414154936290551153714608981337772839007399675076006780100092912527281406762478487910499128625690388945733231282350542117950442472914272844157240258240894509491953320842477967838251842188649577505112887032101179328220744414538971156435865497745782521930764029122920155518659073934288308277136131473896160360730853489643224429434832092894304089051938295712967137970422327283961038637375722945752211302006857818678456078628704829 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 748580c066c7df37decfbd2937aa031dbeedcd17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f10d2cd1d9f521e4c8f59da7eeadeb5789e45dd6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'booking.vacations.united.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'res.vacations.united.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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