*.lib.sfu.ca
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 02:4a:50:6c:b6:d3:6f:92:77:38:87:96:11:4b:3f:a9 was issued on by DigiCert, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.lib.sfu.ca
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:4a:50:6c:b6:d3:6f:92:77:38:87:96:11:4b:3f:a9Serial Number (int): 3044317165093134684419734655573114793
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 8b:8c:4d:a2:f6:5f:9c:40:e0:45:50:1c:00:41:dd:95:d3:00:80:e6
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): fc:e2:a4:d9:8d:88:33:73:b8:94:f7:d0:3a:bd:07:36:6a:61:ca:7a
Fingerprint (sha256): 07:0c:11:37:23:27:f4:d0:96:ea:10:41:d8:e1:ee:97:70:d1:b0:af:5f:92:88:53:d8:d4:71:8c:54:da:ec:2b
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate *.lib.sfu.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.lib.sfu.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.lib.sfu.ca
lib.sfu.ca
lib.sfu.ca
Other certificates including the domain name sfu.ca
(limited to 100 certificates)
*.sfu.ca
*.bus.sfu.ca
journals.lib.sfu.ca
*.its.sfu.ca
lib-theses.lib.sfu.ca
aldine.lib.sfu.ca
lib-theses.lib.sfu.ca
journals.sfu.ca
idp.sfu.ca
research.wiki.iat.sfu.ca
*.sfu.ca
bfraser-srv01.cmpt.sfu.ca
cmpt165.csil.sfu.ca
*.sfu.ca
athletics.sfu.ca
digital.lib.sfu.ca
git.fits.sfu.ca
globeproject.com
gruvi.cs.sfu.ca
databases.lib.sfu.ca
badas.irmacs.sfu.ca
ibcwg.org
*.its.sfu.ca
docs.pkp.sfu.ca
piwik.lib.sfu.ca
journal.archpress.lib.sfu.ca
*.sfu.ca
community.sfu.ca
journals.lib.sfu.ca
*.its.sfu.ca
*.sfu.ca
ceramicca.ensc.sfu.ca
adler.psyc.sfu.ca
appointment.lib.sfu.ca
athletics.sfu.ca
cas.sfu.ca
*.sfu.ca
www.npatlas.org
*.its.sfu.ca
*.its.sfu.ca
*.its.sfu.ca
*.its.sfu.ca
mikkeo-git-test.bus.sfu.ca
www.lib.sfu.ca
banyanlab.cs.sfu.ca
autonomy.cs.sfu.ca
newmediabusinessblog.org
*.fhs.sfu.ca
lib-search-dev.lib.sfu.ca
olc-dev.its.sfu.ca
calculator.lib.sfu.ca
atom.archives.sfu.ca
static.lib.sfu.ca
*.its.sfu.ca
isea2015.org
ocs.lib.sfu.ca
*.fhs.sfu.ca
vpstest18.lib.sfu.ca
cs-dm-signage.dc.sfu.ca
*.its.sfu.ca
lib-staff.lib.sfu.ca
pathogenomics.sfu.ca
registry.cloud.rcg.sfu.ca
appointment.lib.sfu.ca
bookings.science.sfu.ca
*.its.sfu.ca
npatlas-curate.chem.sfu.ca
api.lib.sfu.ca
*.sfu.ca
mwhs.avalanche.rem.sfu.ca
*.polylab.sfu.ca
cmpt373-lockdown.cs.surrey.sfu.ca
canvas2.tlc.sfu.ca
*.fhs.sfu.ca
digital.lib.sfu.ca
facts.arts.sfu.ca
nsl.cs.sfu.ca
journals.lib.sfu.ca
*.proxy.lib.sfu.ca
*.its.sfu.ca
vpstest23.lib.sfu.ca
advance.science.sfu.ca
conference.pkp.sfu.ca
www.cieedac.sfu.ca
alerts.library.nyu.edu
arago.cprost.sfu.ca
give.sfu.ca
*.lib.sfu.ca
*.ezproxy2.lib.sfu.ca
*.its.sfu.ca
*.fhs.sfu.ca
www.psyc.sfu.ca
rcg-ggt-dash.dcr.sfu.ca
hadar.tlc.sfu.ca
*.sfu.ca
www.psyc.sfu.ca
*.polylab.sfu.ca
my.sfu.ca
banyanlab.cs.sfu.ca
remsurvey.rem.sfu.ca
*.bus.sfu.ca
journals.lib.sfu.ca
*.its.sfu.ca
lib-theses.lib.sfu.ca
aldine.lib.sfu.ca
lib-theses.lib.sfu.ca
journals.sfu.ca
idp.sfu.ca
research.wiki.iat.sfu.ca
*.sfu.ca
bfraser-srv01.cmpt.sfu.ca
cmpt165.csil.sfu.ca
*.sfu.ca
athletics.sfu.ca
digital.lib.sfu.ca
git.fits.sfu.ca
globeproject.com
gruvi.cs.sfu.ca
databases.lib.sfu.ca
badas.irmacs.sfu.ca
ibcwg.org
*.its.sfu.ca
docs.pkp.sfu.ca
piwik.lib.sfu.ca
journal.archpress.lib.sfu.ca
*.sfu.ca
community.sfu.ca
journals.lib.sfu.ca
*.its.sfu.ca
*.sfu.ca
ceramicca.ensc.sfu.ca
adler.psyc.sfu.ca
appointment.lib.sfu.ca
athletics.sfu.ca
cas.sfu.ca
*.sfu.ca
www.npatlas.org
*.its.sfu.ca
*.its.sfu.ca
*.its.sfu.ca
*.its.sfu.ca
mikkeo-git-test.bus.sfu.ca
www.lib.sfu.ca
banyanlab.cs.sfu.ca
autonomy.cs.sfu.ca
newmediabusinessblog.org
*.fhs.sfu.ca
lib-search-dev.lib.sfu.ca
olc-dev.its.sfu.ca
calculator.lib.sfu.ca
atom.archives.sfu.ca
static.lib.sfu.ca
*.its.sfu.ca
isea2015.org
ocs.lib.sfu.ca
*.fhs.sfu.ca
vpstest18.lib.sfu.ca
cs-dm-signage.dc.sfu.ca
*.its.sfu.ca
lib-staff.lib.sfu.ca
pathogenomics.sfu.ca
registry.cloud.rcg.sfu.ca
appointment.lib.sfu.ca
bookings.science.sfu.ca
*.its.sfu.ca
npatlas-curate.chem.sfu.ca
api.lib.sfu.ca
*.sfu.ca
mwhs.avalanche.rem.sfu.ca
*.polylab.sfu.ca
cmpt373-lockdown.cs.surrey.sfu.ca
canvas2.tlc.sfu.ca
*.fhs.sfu.ca
digital.lib.sfu.ca
facts.arts.sfu.ca
nsl.cs.sfu.ca
journals.lib.sfu.ca
*.proxy.lib.sfu.ca
*.its.sfu.ca
vpstest23.lib.sfu.ca
advance.science.sfu.ca
conference.pkp.sfu.ca
www.cieedac.sfu.ca
alerts.library.nyu.edu
arago.cprost.sfu.ca
give.sfu.ca
*.lib.sfu.ca
*.ezproxy2.lib.sfu.ca
*.its.sfu.ca
*.fhs.sfu.ca
www.psyc.sfu.ca
rcg-ggt-dash.dcr.sfu.ca
hadar.tlc.sfu.ca
*.sfu.ca
www.psyc.sfu.ca
*.polylab.sfu.ca
my.sfu.ca
banyanlab.cs.sfu.ca
remsurvey.rem.sfu.ca
Certificate
The complete raw certificate details for *.lib.sfu.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHjzCCBXegAwIBAgIQAkpQbLbTb5J3OIeWEUs/qTANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjIwOTA3MDAwMDAwWhcNMjMxMDA4MjM1OTU5WjAXMRUwEwYDVQQDDAwqLmxpYi5z ZnUuY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUnTli9Ad2wsci m0LlXMz1UGffy9QxJKpUCnmmhf5IhEvlB8OPK/NVhZ1/TPrTwptm90ww1E2Og83N R60Ea/ZxJoNAeWTzosehIysuoFXMPRe4rKvn7bXKyQ8/4PZWxyBMaZ9bwfiCLTAJ t2a+7VMehn8qwDdZCPLOGUX3YT6g3bS/35UzJjKMklvXnpoR3FCA5o9Vua3B0Qp2 QifFDF2voHu0rD9SB79N2W0yPln4XLZAGcSm8czs7DmorFRQIoZJ20EzDxNUz8xm E2eCw5iDbw5aE3xp52GRzDHzl/r/wD1TcGEi3eDEPrR6GxcbGd2681knlz1enr/x VHoIduhhAgMBAAGjggOQMIIDjDAfBgNVHSMEGDAWgBSltNbrNsTna6bfxGQLASog BLhmIzAdBgNVHQ4EFgQUi4xNovZfnEDgRVAcAEHdldMAgOYwIwYDVR0RBBwwGoIM Ki5saWIuc2Z1LmNhggpsaWIuc2Z1LmNhMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwgZ8GA1UdHwSBlzCBlDBIoEagRIZCaHR0 cDovL2NybDMuZGlnaWNlcnQuY29tL0dlb1RydXN0R2xvYmFsVExTUlNBNDA5NlNI QTI1NjIwMjJDQTEuY3JsMEigRqBEhkJodHRwOi8vY3JsNC5kaWdpY2VydC5jb20v R2VvVHJ1c3RHbG9iYWxUTFNSU0E0MDk2U0hBMjU2MjAyMkNBMS5jcmwwPgYDVR0g BDcwNTAzBgZngQwBAgEwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2Vy dC5jb20vQ1BTMIGHBggrBgEFBQcBAQR7MHkwJAYIKwYBBQUHMAGGGGh0dHA6Ly9v Y3NwLmRpZ2ljZXJ0LmNvbTBRBggrBgEFBQcwAoZFaHR0cDovL2NhY2VydHMuZGln aWNlcnQuY29tL0dlb1RydXN0R2xvYmFsVExTUlNBNDA5NlNIQTI1NjIwMjJDQTEu Y3J0MAkGA1UdEwQCMAAwggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB2AOg+0No+ 9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABgxj6dwMAAAQDAEcwRQIhANn+ mFFXRSBGMyYlaMS1JZwEInaaC832Mjuu8MHygc9PAiAg+hZHzAMuGznWMMgscYEf JJYKEnz1IiIYvm1DbidpAQB2ADXPGRu/sWxXvw+tTG1Cy7u2JyAmUeo/4SrvqAPD O9ZMAAABgxj6d0YAAAQDAEcwRQIhAL+7R/HI2NoAJJHdHay6+zGafyyU9qPLKJem HzRrh6M4AiBAvDMW9p3xPQtbrBvGq5hNK/tnU0WpZWeyDBOvW4aLMgB1ALNzdwfh hFD4Y4bWBancEQlKeS2xZwwLh9zwAw55NqWaAAABgxj6d4UAAAQDAEYwRAIgGTEQ 2ov19FH0uCVrD5GSnNQ5yvhbbqH0yKnwAKU23NACIA8tbu+N830eHu6xymtIJlaB xY4jGBROm9sn3u2KNjizMA0GCSqGSIb3DQEBCwUAA4ICAQDGZOxAhKla7/DnAgpy bHKsivvvGh5XlPx5cqRNxTynzJClF46hjuFgg1QpLjsUrZR+ZQBd5b9bA8YX/YnB nhN63pkiZdFpjzFohR/uGrIyWi1zhJ5l/IJqx1fvYNEyhHlnXBB3/hLR8EkiYl0D AK/PpdKEV1mvEjMJ/KjYwKMdnT9+x6su7+Nao3JQHEwhC2AH61D/50JxQmplPNpM a3fuZslM00PC6qRkUMQWyNbc9kQNub624OS+tFRBu40SikW2Fio2/EBPn614MopK 12wvJUChQikRrwOrrvRt8pxjCCwfpAfP0W2zmZbiIy2/N4Q/HcdXqcsrpcb4uQ3m g+CnW9lx+2f4BhRg2aXC/c5NJCQETCBrNLX0HuQvBw15N85QbH0z+ju/KNv5a+QZ XD29gud4QjqaZ452HwOpkO0yBO9fCJORvfkM3ZvZrHKRyLMOl4esBHe+5rXdMGq4 4xOgcMr7Ih8NFETichUserX2fG8iEicGPh6I8C2s7dn6wld+PwKxfMI+vIhK4nQG iegZwZ9R8P1hfnu2Z6G4yBkOL1YprTcnDr5r6lqYMDkWP/zM1QpAaNvPV2Hhy7GP vn0JrnDcty+vwixoZXryIzvMXmIkke9mR6o+V4TPTkdMIJXLmd2LgtfP9CzL1OFu UauTWirVwz0I5bA83YQPUgX6TQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1J05YvQHdsLHIptC5VzM 9VBn38vUMSSqVAp5poX+SIRL5QfDjyvzVYWdf0z608KbZvdMMNRNjoPNzUetBGv2 cSaDQHlk86LHoSMrLqBVzD0XuKyr5+21yskPP+D2VscgTGmfW8H4gi0wCbdmvu1T HoZ/KsA3WQjyzhlF92E+oN20v9+VMyYyjJJb156aEdxQgOaPVbmtwdEKdkInxQxd r6B7tKw/Uge/TdltMj5Z+Fy2QBnEpvHM7Ow5qKxUUCKGSdtBMw8TVM/MZhNngsOY g28OWhN8aedhkcwx85f6/8A9U3BhIt3gxD60ehsXGxnduvNZJ5c9Xp6/8VR6CHbo YQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3044317165093134684419734655573114793 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-08 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.lib.sfu.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26840050778723611719689453190059093308320779714060938212208275907998147173956254584985448269465856483349411080943337521328960751986521209638849923680675667981099266944897628156447868787412698805832978346705138499993619426137004927496791553511059218334398029661218387569154134760057051816325436065270005991985832009966922844831284970314709955663115054450919119829000323396024142744335959349286856184712564437175190871695808805335812562763009408699960502283274277298147960187901398969062719492127274984693990294170845181439035076258327659652991311881092998101177557778198037684410147955814851468074397245599518817708129 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8b8c4da2f65f9c40e045501c0041dd95d30080e6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lib.sfu.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lib.sfu.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 0167007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018318fa77030000040300473045022100d9fe98515745204633262568c4b5259c0422769a0bcdf6323baef0c1f281cf4f022020fa1647cc032e1b39d630c82c71811f24960a127cf5222218be6d436e27690100760035cf191bbfb16c57bf0fad4c6d42cbbbb627202651ea3fe12aefa803c33bd64c0000018318fa77460000040300473045022100bfbb47f1c8d8da002491dd1dacbafb319a7f2c94f6a3cb2897a61f346b87a338022040bc3316f69df13d0b5bac1bc6ab984d2bfb675345a96567b20c13af5b868b32007500b3737707e18450f86386d605a9dc11094a792db1670c0b87dcf0030e7936a59a0000018318fa778500000403004630440220193110da8bf5f451f4b8256b0f91929cd439caf85b6ea1f4c8a9f000a536dcd002200f2d6eef8df37d1e1eeeb1ca6b48265681c58e2318144e9bdb27deed8a3638b3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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