impalastg.pfizer.com
- Pfizer Incorporated -
Issued by Entrust Certification Authority - L1K
About this certificate
This digital certificate with serial number 4f:5a:b2:b7:c3:6e:47:39:00:00:00:00:50:f1:a4:4d was issued on by Entrust, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Pfizer Incorporated
Organization:
Pfizer Incorporated
State / Province:
Connecticut
Locality: Groton
Country: US
Locality: Groton
Country: US
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 4f:5a:b2:b7:c3:6e:47:39:00:00:00:00:50:f1:a4:4dSerial Number (int): 105479943212422573648482338219211465805
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 30:88:a0:58:5a:2a:45:0a:c5:ae:ca:48:8b:5a:0e:5c:a3:e5:c0:f6
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf
Fingerprint (sha1): ea:d3:9f:b5:00:1d:9d:45:ad:15:5c:6b:b7:3f:9b:88:d5:48:11:f7
Fingerprint (sha256): 06:ff:c0:9e:d5:12:f8:3a:23:1f:76:ae:86:f7:c4:c3:da:03:93:61:13:68:39:5d:19:54:1e:35:0e:15:30:63
Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1k.crl
Check the revocation status for certificate impalastg.pfizer.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for impalastg.pfizer.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
impalastg.pfizer.com
www.impalastg.pfizer.com
www.impalastg.pfizer.com
Other certificates including the domain name pfizer.com
(limited to 100 certificates)
artifactory.pfizer.com
som-bc-drp-04.pfizer.com
*.us.digitalpfizer.com
www.pfizer.com
sni.cloudflaressl.com
cdeportalapi.pfizer.com
imsws.pfizer.com
*.us3.digitalpfizer.com
rdctest.pfizer.com
pfizer.com
datacloudm.pfizer.com
domains.pfizer.com
pharmatictur.pfizer.com
logonv2dmz.pfizer.com
*.eu2.digitalpfizer.com
maintenance.pfizer.com
*.sf4.digitalpfizer.com
*.eu.digitalpfizer.com
canvas-webbuilder-qa04.pfizer.com
mmstatus.pfizer.com
stgfederate.pfizer.com
boxinterface.pfizer.com
partnerportal.pfizer.com
sni.cloudflaressl.com
*.apac3.digitalpfizer.com
amrvwp000005418.amer.pfizer.com
epp-stg.pfizer.com
devfederate.pfizer.com
sni.cloudflaressl.com
sni.cloudflaressl.com
gbi-bti-sdc-es-prod.pfizer.com
sni.cloudflaressl.com
CLM-API-2.Pfizer.com
groxs40a.pfizer.com
sni.cloudflaressl.com
sni.cloudflaressl.com
*.eu2.digitalpfizer.com
azpksim.pfizer.com
*.sf3.digitalpfizer.com
sni.cloudflaressl.com
aribaprime-dr-new.pfizer.com
ariba-stg.pfizer.com
sni.cloudflaressl.com
lshdev2-cal.pfizer.com
gbi-insightsnow-api.pfizer.com
epartner.pfizer.com
uc17.janrainengage.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ebusiness-bi.pfizer.com
*.us2.digitalpfizer.com
*.us8.digitalpfizer.com
e1.pfizer.com
www.primehemophilia.pfizer.com
promosprime.pfizer.com
ariba.pfizer.com
promos-ppd.pfizer.com
sni.cloudflaressl.com
xeljanz.pca.pfizer.com
sni.cloudflaressl.com
sdctst.pfizer.com
*.sf3.digitalpfizer.com
cdn.digitalpfizer.com
sdc20_dev.pfizer.com
sni.cloudflaressl.com
*.opx.janrain.ws
*.sf3.digitalpfizer.com
sni.cloudflaressl.com
amrsomw1527.amer.pfizer.com
*.eu.digitalpfizer.com
spotfirebi7sbx.pfizer.com
tie.pfizer.com
sni.cloudflaressl.com
pfizergardens.com
sni.cloudflaressl.com
sni.cloudflaressl.com
secxs40a
*.pfizergardens.com
apsis.pfizer.com
uc18.janrainengage.com
*.eu6.digitalpfizer.com
sni.cloudflaressl.com
datacloudmdr.pfizer.com
pxedpass.pfizer.com
rdcext.pfizer.com
myservicepartner.pfizer.com
san-11-s51.tlsprovisioning.exacttarget.com
pwondemand.pfizer.com
impalastg.pfizer.com
*.apac3.digitalpfizer.com
artifactory.pfizer.com
sni.cloudflaressl.com
devfederate.pfizer.com
sni.cloudflaressl.com
onetimesetupsom.pfizer.com
sni.cloudflaressl.com
*.us7.digitalpfizer.com
sma-dev.pfizer.com
cmtnl.pfizer.com
pfizergardens.com
som-bc-drp-04.pfizer.com
*.us.digitalpfizer.com
www.pfizer.com
sni.cloudflaressl.com
cdeportalapi.pfizer.com
imsws.pfizer.com
*.us3.digitalpfizer.com
rdctest.pfizer.com
pfizer.com
datacloudm.pfizer.com
domains.pfizer.com
pharmatictur.pfizer.com
logonv2dmz.pfizer.com
*.eu2.digitalpfizer.com
maintenance.pfizer.com
*.sf4.digitalpfizer.com
*.eu.digitalpfizer.com
canvas-webbuilder-qa04.pfizer.com
mmstatus.pfizer.com
stgfederate.pfizer.com
boxinterface.pfizer.com
partnerportal.pfizer.com
sni.cloudflaressl.com
*.apac3.digitalpfizer.com
amrvwp000005418.amer.pfizer.com
epp-stg.pfizer.com
devfederate.pfizer.com
sni.cloudflaressl.com
sni.cloudflaressl.com
gbi-bti-sdc-es-prod.pfizer.com
sni.cloudflaressl.com
CLM-API-2.Pfizer.com
groxs40a.pfizer.com
sni.cloudflaressl.com
sni.cloudflaressl.com
*.eu2.digitalpfizer.com
azpksim.pfizer.com
*.sf3.digitalpfizer.com
sni.cloudflaressl.com
aribaprime-dr-new.pfizer.com
ariba-stg.pfizer.com
sni.cloudflaressl.com
lshdev2-cal.pfizer.com
gbi-insightsnow-api.pfizer.com
epartner.pfizer.com
uc17.janrainengage.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ebusiness-bi.pfizer.com
*.us2.digitalpfizer.com
*.us8.digitalpfizer.com
e1.pfizer.com
www.primehemophilia.pfizer.com
promosprime.pfizer.com
ariba.pfizer.com
promos-ppd.pfizer.com
sni.cloudflaressl.com
xeljanz.pca.pfizer.com
sni.cloudflaressl.com
sdctst.pfizer.com
*.sf3.digitalpfizer.com
cdn.digitalpfizer.com
sdc20_dev.pfizer.com
sni.cloudflaressl.com
*.opx.janrain.ws
*.sf3.digitalpfizer.com
sni.cloudflaressl.com
amrsomw1527.amer.pfizer.com
*.eu.digitalpfizer.com
spotfirebi7sbx.pfizer.com
tie.pfizer.com
sni.cloudflaressl.com
pfizergardens.com
sni.cloudflaressl.com
sni.cloudflaressl.com
secxs40a
*.pfizergardens.com
apsis.pfizer.com
uc18.janrainengage.com
*.eu6.digitalpfizer.com
sni.cloudflaressl.com
datacloudmdr.pfizer.com
pxedpass.pfizer.com
rdcext.pfizer.com
myservicepartner.pfizer.com
san-11-s51.tlsprovisioning.exacttarget.com
pwondemand.pfizer.com
impalastg.pfizer.com
*.apac3.digitalpfizer.com
artifactory.pfizer.com
sni.cloudflaressl.com
devfederate.pfizer.com
sni.cloudflaressl.com
onetimesetupsom.pfizer.com
sni.cloudflaressl.com
*.us7.digitalpfizer.com
sma-dev.pfizer.com
cmtnl.pfizer.com
pfizergardens.com
Certificate
The complete raw certificate details for impalastg.pfizer.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgIQT1qyt8NuRzkAAAAAUPGkTTANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxSzAeFw0x OTA1MTQxNTQ2MTlaFw0yMDA2MDUxNjE2MThaMHExCzAJBgNVBAYTAlVTMRQwEgYD VQQIEwtDb25uZWN0aWN1dDEPMA0GA1UEBxMGR3JvdG9uMRwwGgYDVQQKExNQZml6 ZXIgSW5jb3Jwb3JhdGVkMR0wGwYDVQQDExRpbXBhbGFzdGcucGZpemVyLmNvbTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL6BLrBEzWDqwaULoax3XXJR hBT7KPUSBA1g1+6Ihb9JhCq449qmpE+e82DoKgyM2YUZGrSYns8afdFsdk2dLCbs C3Aq9cBIguDc5dymTkRuNerk7O2badz/mLnvsHxecn8P1gkTzq0uV2vN26hNaZ8w ZNzxjginkYHuL4pkf4z7WoYMcQEVN1LvHRKTP67lbJAsxDg7pW+W7A1D3cr4GV4F L47FkfjPb20ZE8Eg4roJSyg9RP22H5fTwlsewXIbrpm210TXcAE6UemhVrZZGpim dyjxu/Qug+rn/Qn3RPOgl9RL4xtNeIuTf7D1ReN78e+14gI//OZultUSk/fYc8EC AwEAAaOCAbAwggGsMBMGCisGAQQB1nkCBAMBAf8EAgUAMDkGA1UdEQQyMDCCFGlt cGFsYXN0Zy5wZml6ZXIuY29tghh3d3cuaW1wYWxhc3RnLnBmaXplci5jb20wDgYD VR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMDMGA1UdHwQsMCowKKAm oCSGImh0dHA6Ly9jcmwuZW50cnVzdC5uZXQvbGV2ZWwxay5jcmwwSwYDVR0gBEQw QjA2BgpghkgBhvpsCgEFMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly93d3cuZW50cnVz dC5uZXQvcnBhMAgGBmeBDAECAjBoBggrBgEFBQcBAQRcMFowIwYIKwYBBQUHMAGG F2h0dHA6Ly9vY3NwLmVudHJ1c3QubmV0MDMGCCsGAQUFBzAChidodHRwOi8vYWlh LmVudHJ1c3QubmV0L2wxay1jaGFpbjI1Ni5jZXIwHwYDVR0jBBgwFoAUgqJwdN28 Uz/Pe9T3zX+nYMYKTL8wHQYDVR0OBBYEFDCIoFhaKkUKxa7KSItaDlyj5cD2MAkG A1UdEwQCMAAwDQYJKoZIhvcNAQELBQADggEBANHd2R3MY68+h64dlL03qG/Ny1tX eLtqirdkIbHa+XsrhbIqLK9rD9FsTu9xttjNrITw6gYIqT1x3RJoP8F1X+NL757c V3Byl/lmJG7t+RN9FotxP0MsYJGdQtDp34ZvvL7ofQEpSGL31++2CkT++qMUk61O LGeq+DXddYzxnxWNbHNQIYipvCIETXUCuQuMgPUedAISBRjL7V6tX/GBiBhFPhA4 sSDAQ0/rDqkzpAzAIa9YACafeQMiieCyft9sOvdebXtTSf6iiUorOt/0FrxdGcZx +R+fwVI24pjuuYEer5X99hEupLzvtNxhc6C1xPriM7B1a3tXb3HGCl4mymk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvoEusETNYOrBpQuhrHdd clGEFPso9RIEDWDX7oiFv0mEKrjj2qakT57zYOgqDIzZhRkatJiezxp90Wx2TZ0s JuwLcCr1wEiC4Nzl3KZORG416uTs7Ztp3P+Yue+wfF5yfw/WCRPOrS5Xa83bqE1p nzBk3PGOCKeRge4vimR/jPtahgxxARU3Uu8dEpM/ruVskCzEODulb5bsDUPdyvgZ XgUvjsWR+M9vbRkTwSDiuglLKD1E/bYfl9PCWx7BchuumbbXRNdwATpR6aFWtlka mKZ3KPG79C6D6uf9CfdE86CX1EvjG014i5N/sPVF43vx77XiAj/85m6W1RKT99hz wQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 105479943212422573648482338219211465805 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-14 15:46:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-05 16:16:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Connecticut' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Groton' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pfizer Incorporated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'impalastg.pfizer.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24048980147936394282270525642545677371801788565288652986258892634708914690902839135694101883657005710443467885401878589845518885222580829626298327913719112598124383168081992628110741106517642805039954607700219444806373334269887887668313402858980896666154135045914884941600700814685297685823177830428646247178592720580281499495632252386184279205382082870096938169141091143250729583693569821516725891311154593133698609469623269117445196827850937863967749001140408112741310092628404472200846395192073813264475608551469571984054887782257133332431238341809270192505889328181877735306188444997617893085249961333846370186177 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'impalastg.pfizer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.impalastg.pfizer.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3088a0585a2a450ac5aeca488b5a0e5ca3e5c0f6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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