opportunity.statefarm.com
- State Farm Mutual Automobile Insurance Company -
Issued by Entrust Certification Authority - L1M
About this certificate
This digital certificate with serial number 91:4b:02:9d:00:00:00:00:54:cc:9b:52 was issued on by Entrust, Inc..
With 23 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
State Farm Mutual Automobile Insurance Company
Company registration number:
37-0533100
Organization: State Farm Mutual Automobile Insurance Company
Organization: State Farm Mutual Automobile Insurance Company
State / Province:
Illinois
Locality: Bloomington
Country: US
Locality: Bloomington
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2014 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2014 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 91:4b:02:9d:00:00:00:00:54:cc:9b:52Serial Number (int): 44966008201437917466308942674
Serial Number lenght: 96 bits, 12 octets
SubjectKeyId: ec:fb:be:94:38:28:ba:73:cd:82:4a:2b:83:54:41:1c:95:ba:62:7a
AuthorityKeyId: c3:f7:d0:b5:2a:30:ad:af:0d:91:21:70:39:54:dd:bc:89:70:c7:3a
Fingerprint (sha1): 2b:f9:6f:fa:55:0a:b5:43:c4:10:1d:89:c2:3d:9a:fe:e1:f9:7f:f7
Fingerprint (sha256): 06:f5:ca:c7:8f:1c:3e:3d:1b:f0:60:26:96:df:8e:b7:e7:fe:44:e4:d1:fa:58:01:47:ba:87:d8:e0:2c:15:28
Issuing Certificate URL: http://aia.entrust.net/l1m-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1m.crl
Check the revocation status for certificate opportunity.statefarm.com
23
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for opportunity.statefarm.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sfbackout-opportunity-app-prod-iscc.prod.statefarm.com
sfbackout-opportunity-app-prod-iscc.prod.statefarm.ca
www.opportunity.statefarm.com
sfcheckout-opportunity-app-prod-isce.prod.statefarm.com
opportunity-appint-prod-iscw.prod.statefarm.com
hashtag-opportunity.statefarm.com
sfbackout-opportunity-app-prod-isce.prod.statefarm.ca
sfbackout-opportunity-app-prod-isce.prod.statefarm.com
opportunity.statefarm.com
sfbackout-opportunity-app-prod-iscw.prod.statefarm.com
opportunity-appint-prod-iscc.prod.statefarm.com
sfcheckout-opportunity-app-prod-iscc.prod.statefarm.com
sfcheckout-opportunity-app-prod-isce.prod.statefarm.ca
sfcheckout-opportunity-app-prod-iscw.prod.statefarm.ca
sfcheckout-opportunity-app-prod-iscc.prod.statefarm.ca
opportunity.statefarm.ca
sfcheckout-opportunity-app-prod-iscw.prod.statefarm.com
opportunity-appint-prod-isce.prod.statefarm.com
sfbackout-opportunity-app-prod-iscw.prod.statefarm.ca
sfcheckout-opportunity.statefarm.ca
sfcheckout-opportunity.statefarm.com
sfbackout-opportunity.statefarm.ca
sfbackout-opportunity.statefarm.com
sfbackout-opportunity-app-prod-iscc.prod.statefarm.ca
www.opportunity.statefarm.com
sfcheckout-opportunity-app-prod-isce.prod.statefarm.com
opportunity-appint-prod-iscw.prod.statefarm.com
hashtag-opportunity.statefarm.com
sfbackout-opportunity-app-prod-isce.prod.statefarm.ca
sfbackout-opportunity-app-prod-isce.prod.statefarm.com
opportunity.statefarm.com
sfbackout-opportunity-app-prod-iscw.prod.statefarm.com
opportunity-appint-prod-iscc.prod.statefarm.com
sfcheckout-opportunity-app-prod-iscc.prod.statefarm.com
sfcheckout-opportunity-app-prod-isce.prod.statefarm.ca
sfcheckout-opportunity-app-prod-iscw.prod.statefarm.ca
sfcheckout-opportunity-app-prod-iscc.prod.statefarm.ca
opportunity.statefarm.ca
sfcheckout-opportunity-app-prod-iscw.prod.statefarm.com
opportunity-appint-prod-isce.prod.statefarm.com
sfbackout-opportunity-app-prod-iscw.prod.statefarm.ca
sfcheckout-opportunity.statefarm.ca
sfcheckout-opportunity.statefarm.com
sfbackout-opportunity.statefarm.ca
sfbackout-opportunity.statefarm.com
Other certificates including the domain name statefarm.com
(limited to 100 certificates)
claims-prep.test.statefarm.com
apps-prep.test.statefarm.com
iwh.statefarm.com
forlife.statefarm.com
ex90dev1vin2.statefarm.com
ildap.prod.statefarm.com
cebuatadm.statefarm.com
sflws13p1.tcisp.statefarm.com
securedatamgmt.statefarm.com
eBank.statefarm.com
onlineapps-imaging.statefarm.com
checkout.hub.claims.statefarm.com
quotes.statefarm.com
arsondog.statefarm.com
sfrun.statefarm.com
cebuat.statefarm.com
cebuat.statefarm.com
b2b.statefarm.com
aexp.auto.statefarm.com
www.statefarm.com
services.tcidv.statefarm.com
online2.statefarm.com
edocuments.statefarm.com
www.neighborhoodofgood.statefarm.com
portfolio.statefarm.com
es.statefarm.com
hub.claims.sandbox.statefarm.com
utility-prep.test.statefarm.com
coleschallenge.statefarm.com
iwh.statefarm.com
worlds22.statefarm.com
online3.statefarm.com
communication.statefarm.com
www-prep.test.statefarm.com
banksvc.statefarm.com
cebuat.statefarm.com
checkout.hub.claims.statefarm.com
commercialcard.statefarm.com
roadsideassistance.claims.test.statefarm.com
iwh.statefarm.com
bank.statefarm.com
sflsweb.statefarm.com
auth.statefarm.com
common.statefarm.com
opportunity.statefarm.com
api.claims.sandbox.c1.statefarm
cromsvcs-prep.test.statefarm.com
chat.statefarm.com
cebuat.statefarm.com
e.statefarm.com
base.statefarm.com
banksvc.statefarm.com
common.statefarm.com
fire.statefarm.com
vehicleloan.statefarm.com
developer.statefarm.com
iwh.statefarm.com
communication.statefarm.com
quotes.statefarm.com
b2cwa.tcidv.statefarm.com
photovideocapture.claims.test.statefarm.com
SECCTF.STATEFARM.COM
learningcenter.statefarm.com
assocmgmt-prep.test.statefarm.com
phase0-xx.test.statefarm.com
www.developer.statefarm.com
apps-prep.test.statefarm.com
sfvdiFrstBdom.statefarm.com
sfvdifrstbdom.tcisp.statefarm.com
sfmeet.statefarm.com
online4.tcidv.statefarm.com
banksvc-prep.test.statefarm.com
chat.statefarm.com
developer.statefarm.com
www.tcidv.statefarm.com
statefarm.com
launch-dev.policy-view.test.statefarm.com
sfcmgtest.test.statefarm.com
health-prep.test.statefarm.com
forlife.statefarm.com
checkout.hub.claims.statefarm.com
mft.statefarm.com
rating.statefarm.com
meetus.statefarm.com
franchiseprograms.statefarm.com
qaa-prep.test.statefarm.com
cdnlog.statefarm.com
cromsvcs.statefarm.com
iwh-staging.statefarm.com
mail71.tcisp.statefarm.com
www.statefarm.com
auth.test.statefarm.com
assocmgmt.statefarm.com
dvntservice.test.statefarm.com
findjobs.statefarm.com
becomeanagent.statefarm.com
tcixx.statefarm.com
access.tcidv.statefarm.com
test.statefarm.com
mvp.statefarm.com
apps-prep.test.statefarm.com
iwh.statefarm.com
forlife.statefarm.com
ex90dev1vin2.statefarm.com
ildap.prod.statefarm.com
cebuatadm.statefarm.com
sflws13p1.tcisp.statefarm.com
securedatamgmt.statefarm.com
eBank.statefarm.com
onlineapps-imaging.statefarm.com
checkout.hub.claims.statefarm.com
quotes.statefarm.com
arsondog.statefarm.com
sfrun.statefarm.com
cebuat.statefarm.com
cebuat.statefarm.com
b2b.statefarm.com
aexp.auto.statefarm.com
www.statefarm.com
services.tcidv.statefarm.com
online2.statefarm.com
edocuments.statefarm.com
www.neighborhoodofgood.statefarm.com
portfolio.statefarm.com
es.statefarm.com
hub.claims.sandbox.statefarm.com
utility-prep.test.statefarm.com
coleschallenge.statefarm.com
iwh.statefarm.com
worlds22.statefarm.com
online3.statefarm.com
communication.statefarm.com
www-prep.test.statefarm.com
banksvc.statefarm.com
cebuat.statefarm.com
checkout.hub.claims.statefarm.com
commercialcard.statefarm.com
roadsideassistance.claims.test.statefarm.com
iwh.statefarm.com
bank.statefarm.com
sflsweb.statefarm.com
auth.statefarm.com
common.statefarm.com
opportunity.statefarm.com
api.claims.sandbox.c1.statefarm
cromsvcs-prep.test.statefarm.com
chat.statefarm.com
cebuat.statefarm.com
e.statefarm.com
base.statefarm.com
banksvc.statefarm.com
common.statefarm.com
fire.statefarm.com
vehicleloan.statefarm.com
developer.statefarm.com
iwh.statefarm.com
communication.statefarm.com
quotes.statefarm.com
b2cwa.tcidv.statefarm.com
photovideocapture.claims.test.statefarm.com
SECCTF.STATEFARM.COM
learningcenter.statefarm.com
assocmgmt-prep.test.statefarm.com
phase0-xx.test.statefarm.com
www.developer.statefarm.com
apps-prep.test.statefarm.com
sfvdiFrstBdom.statefarm.com
sfvdifrstbdom.tcisp.statefarm.com
sfmeet.statefarm.com
online4.tcidv.statefarm.com
banksvc-prep.test.statefarm.com
chat.statefarm.com
developer.statefarm.com
www.tcidv.statefarm.com
statefarm.com
launch-dev.policy-view.test.statefarm.com
sfcmgtest.test.statefarm.com
health-prep.test.statefarm.com
forlife.statefarm.com
checkout.hub.claims.statefarm.com
mft.statefarm.com
rating.statefarm.com
meetus.statefarm.com
franchiseprograms.statefarm.com
qaa-prep.test.statefarm.com
cdnlog.statefarm.com
cromsvcs.statefarm.com
iwh-staging.statefarm.com
mail71.tcisp.statefarm.com
www.statefarm.com
auth.test.statefarm.com
assocmgmt.statefarm.com
dvntservice.test.statefarm.com
findjobs.statefarm.com
becomeanagent.statefarm.com
tcixx.statefarm.com
access.tcidv.statefarm.com
test.statefarm.com
mvp.statefarm.com
Certificate
The complete raw certificate details for opportunity.statefarm.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIL6zCCCtOgAwIBAgINAJFLAp0AAAAAVMybUjANBgkqhkiG9w0BAQsFADCBujEL MAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsTH1Nl ZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAyMDE0 IEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwGA1UE AxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxTTAeFw0xNjAz MjgxMzA3NDRaFw0xNzEyMjQxMzM3NDJaMIH3MQswCQYDVQQGEwJVUzERMA8GA1UE CBMISWxsaW5vaXMxFDASBgNVBAcTC0Jsb29taW5ndG9uMRMwEQYLKwYBBAGCNzwC AQMTAlVTMRkwFwYLKwYBBAGCNzwCAQITCElsbGlub2lzMTcwNQYDVQQKEy5TdGF0 ZSBGYXJtIE11dHVhbCBBdXRvbW9iaWxlIEluc3VyYW5jZSBDb21wYW55MR0wGwYD VQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGA1UEBRMKMzctMDUzMzEwMDEi MCAGA1UEAxMZb3Bwb3J0dW5pdHkuc3RhdGVmYXJtLmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBANanquDrzAfpGINMR+GEf1BGMjYk9bYf7/dNX1GH +Xvvv/6ZbdzWdKxXArlL+Qg0CHQb6PgweoEuLi2dUx9jx4K6TaW+O4vVX0N9BtlL qTmh2SuSlFbSGsTv2wxZyqPWfXmF9Hkfl7byKVHoY7s5uWdCpKhavgJgp5PqLGlM s3Hn6fvZ1wy5Ub2x5+m+n8AHSQ8tfeFtfgvmIgoKOWurrEue8q/fmkyMyAWXjJKW vBgQNBzwjQV40Ux6LD4bI6XGKrWWw+yKh3AJlZQlgmJuzHjSoEyk2ymaqbqF9pZI lk6iiulP0B9c2UsGP9+vhnzEDKQuxBer8krBYMLYENoDTA0CAwEAAaOCB68wgger MIIESwYDVR0RBIIEQjCCBD6CNnNmYmFja291dC1vcHBvcnR1bml0eS1hcHAtcHJv ZC1pc2NjLnByb2Quc3RhdGVmYXJtLmNvbYI1c2ZiYWNrb3V0LW9wcG9ydHVuaXR5 LWFwcC1wcm9kLWlzY2MucHJvZC5zdGF0ZWZhcm0uY2GCHXd3dy5vcHBvcnR1bml0 eS5zdGF0ZWZhcm0uY29tgjdzZmNoZWNrb3V0LW9wcG9ydHVuaXR5LWFwcC1wcm9k LWlzY2UucHJvZC5zdGF0ZWZhcm0uY29tgi9vcHBvcnR1bml0eS1hcHBpbnQtcHJv ZC1pc2N3LnByb2Quc3RhdGVmYXJtLmNvbYIhaGFzaHRhZy1vcHBvcnR1bml0eS5z dGF0ZWZhcm0uY29tgjVzZmJhY2tvdXQtb3Bwb3J0dW5pdHktYXBwLXByb2QtaXNj ZS5wcm9kLnN0YXRlZmFybS5jYYI2c2ZiYWNrb3V0LW9wcG9ydHVuaXR5LWFwcC1w cm9kLWlzY2UucHJvZC5zdGF0ZWZhcm0uY29tghlvcHBvcnR1bml0eS5zdGF0ZWZh cm0uY29tgjZzZmJhY2tvdXQtb3Bwb3J0dW5pdHktYXBwLXByb2QtaXNjdy5wcm9k LnN0YXRlZmFybS5jb22CL29wcG9ydHVuaXR5LWFwcGludC1wcm9kLWlzY2MucHJv ZC5zdGF0ZWZhcm0uY29tgjdzZmNoZWNrb3V0LW9wcG9ydHVuaXR5LWFwcC1wcm9k LWlzY2MucHJvZC5zdGF0ZWZhcm0uY29tgjZzZmNoZWNrb3V0LW9wcG9ydHVuaXR5 LWFwcC1wcm9kLWlzY2UucHJvZC5zdGF0ZWZhcm0uY2GCNnNmY2hlY2tvdXQtb3Bw b3J0dW5pdHktYXBwLXByb2QtaXNjdy5wcm9kLnN0YXRlZmFybS5jYYI2c2ZjaGVj a291dC1vcHBvcnR1bml0eS1hcHAtcHJvZC1pc2NjLnByb2Quc3RhdGVmYXJtLmNh ghhvcHBvcnR1bml0eS5zdGF0ZWZhcm0uY2GCN3NmY2hlY2tvdXQtb3Bwb3J0dW5p dHktYXBwLXByb2QtaXNjdy5wcm9kLnN0YXRlZmFybS5jb22CL29wcG9ydHVuaXR5 LWFwcGludC1wcm9kLWlzY2UucHJvZC5zdGF0ZWZhcm0uY29tgjVzZmJhY2tvdXQt b3Bwb3J0dW5pdHktYXBwLXByb2QtaXNjdy5wcm9kLnN0YXRlZmFybS5jYYIjc2Zj aGVja291dC1vcHBvcnR1bml0eS5zdGF0ZWZhcm0uY2GCJHNmY2hlY2tvdXQtb3Bw b3J0dW5pdHkuc3RhdGVmYXJtLmNvbYIic2ZiYWNrb3V0LW9wcG9ydHVuaXR5LnN0 YXRlZmFybS5jYYIjc2ZiYWNrb3V0LW9wcG9ydHVuaXR5LnN0YXRlZmFybS5jb20w ggH2BgorBgEEAdZ5AgQCBIIB5gSCAeIB4AB2AGj2mPgfZIK+OozuuSgdTPxxUV1n k9RE0QpnrLtPT/vEAAABU71xzBIAAAQDAEcwRQIhAO5pz/iYCLZhe10OuMRavGb9 LJXuD5VTRfXFhehlY7UJAiAP54BV0vUdu30y89VVm+6XmkkLp4rKkd9oxI+fMHD4 +gB2AFYUBpov18Ls0/XhvUSyPsdGdrm8mRFcwO+UmFXWidDdAAABU71xz+8AAAQD AEcwRQIgE9M+eMnSCeyoR06unXEW6TMe16MhYlRUy5Qkwi8uhkMCIQDxyDYPuPSj 0KdcxsS9l0Dxd/othS+RcyEEtJWM8SllpQB2AHRhtKCc+z1B11FZV1sudkmkRajS dwmwzFZKZIK360GjAAABU71x0oYAAAQDAEcwRQIhAJDU39+iOffESh6uffqokEFE 3o7Rrcd52U0ZTs2ZaqHkAiAtBWlljgqXxjdpc79URC4Ui601ibuPG6bHLgGyKWyL pAB2AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABU71x1EgAAAQD AEcwRQIgLiJyT7/JE5s0ec5kgLXS8AM5FAwhN9VCDqmShlFpoWECIQCo8wQiKGW8 7Xs1V4QzvpDa590zeAa/Tb7Ag/B/xILcIzALBgNVHQ8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMGgGCCsGAQUFBwEBBFwwWjAjBggrBgEFBQcw AYYXaHR0cDovL29jc3AuZW50cnVzdC5uZXQwMwYIKwYBBQUHMAKGJ2h0dHA6Ly9h aWEuZW50cnVzdC5uZXQvbDFtLWNoYWluMjU2LmNlcjAzBgNVHR8ELDAqMCigJqAk hiJodHRwOi8vY3JsLmVudHJ1c3QubmV0L2xldmVsMW0uY3JsMEoGA1UdIARDMEEw NgYKYIZIAYb6bAoBAjAoMCYGCCsGAQUFBwIBFhpodHRwOi8vd3d3LmVudHJ1c3Qu bmV0L3JwYTAHBgVngQwBATAfBgNVHSMEGDAWgBTD99C1KjCtrw2RIXA5VN28iXDH OjAdBgNVHQ4EFgQU7Pu+lDgounPNgkorg1RBHJW6YnowCQYDVR0TBAIwADANBgkq hkiG9w0BAQsFAAOCAQEAQWOfs/UlyNs09CacghzmrtcDO6U9X8SIC/3qV/+2psSM KBOxHyakwVzDPi8A7JZ9X1tZAKwrDBy1P+u3+L/Trnz9n/oUWvYrhgz9ZgYCzAQK Wk9dWuv7Pa8PeuUY7Rz2qlY1IBv7rgCbr3h7fd2WKL7KJk0/pHIhCbuZw1/9sV7i t4CGRLFs6se2L9QK/VEYaGkYuGhTr7Ko7DdzyG3nfvmSUCvTxuOF88QA8kn/0UZH 2OMx/LYkrGpaAHPdb9UUKgOoliizNgCmgrN3sj4NQpoEdajmVMbBznl4CQTopM/C LVs5rjLyh9PXLiOu6Tj8wbkGwd96obxTzKEkSsBXEQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1qeq4OvMB+kYg0xH4YR/ UEYyNiT1th/v901fUYf5e++//plt3NZ0rFcCuUv5CDQIdBvo+DB6gS4uLZ1TH2PH grpNpb47i9VfQ30G2UupOaHZK5KUVtIaxO/bDFnKo9Z9eYX0eR+XtvIpUehjuzm5 Z0KkqFq+AmCnk+osaUyzcefp+9nXDLlRvbHn6b6fwAdJDy194W1+C+YiCgo5a6us S57yr9+aTIzIBZeMkpa8GBA0HPCNBXjRTHosPhsjpcYqtZbD7IqHcAmVlCWCYm7M eNKgTKTbKZqpuoX2lkiWTqKK6U/QH1zZSwY/36+GfMQMpC7EF6vySsFgwtgQ2gNM DQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 44966008201437917466308942674 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2014 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1M' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-03-28 13:07:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-24 13:37:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bloomington' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'State Farm Mutual Automobile Insurance Company' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '37-0533100' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'opportunity.statefarm.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27097677185808940233508607133536739608013433832365035409584896965843139533343861119650673513873951649107015377875886182606884220238047107874738905456749217222212682587783970954523552167963262590838731072000705504135587966815267891659768019538919589149397633848334894358917934672324389144832101842692528890867529522792175622431471927739185932505118413798985283938282523739786932936122931455549741050224120910547221922620044558270782686057458365252839029359749867710081265054887590456222507533001693716587374549171732655610904502158550926618695803149730474424096927286765958766774822168720633355185695861278740916161549 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1090 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfbackout-opportunity-app-prod-iscc.prod.statefarm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfbackout-opportunity-app-prod-iscc.prod.statefarm.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.opportunity.statefarm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfcheckout-opportunity-app-prod-isce.prod.statefarm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'opportunity-appint-prod-iscw.prod.statefarm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hashtag-opportunity.statefarm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfbackout-opportunity-app-prod-isce.prod.statefarm.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfbackout-opportunity-app-prod-isce.prod.statefarm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'opportunity.statefarm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfbackout-opportunity-app-prod-iscw.prod.statefarm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'opportunity-appint-prod-iscc.prod.statefarm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfcheckout-opportunity-app-prod-iscc.prod.statefarm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfcheckout-opportunity-app-prod-isce.prod.statefarm.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfcheckout-opportunity-app-prod-iscw.prod.statefarm.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfcheckout-opportunity-app-prod-iscc.prod.statefarm.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'opportunity.statefarm.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfcheckout-opportunity-app-prod-iscw.prod.statefarm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'opportunity-appint-prod-isce.prod.statefarm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfbackout-opportunity-app-prod-iscw.prod.statefarm.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfcheckout-opportunity.statefarm.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfcheckout-opportunity.statefarm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfbackout-opportunity.statefarm.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfbackout-opportunity.statefarm.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1m-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1m.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.2 (Entrust EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c3f7d0b52a30adaf0d9121703954ddbc8970c73a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ecfbbe943828ba73cd824a2b8354411c95ba627a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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