dbt.data.doma.com
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 01:49:45:c3:bf:a6:de:93:73:09:5b:3f:b4:fa:5f:f5 was issued on by DigiCert, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=dbt.data.doma.com
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:49:45:c3:bf:a6:de:93:73:09:5b:3f:b4:fa:5f:f5Serial Number (int): 1709680661525670183844385778027880437
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: ec:7b:57:dc:2e:a3:80:d1:b1:7a:0f:35:2b:24:75:96:c9:32:35:d1
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): 37:a8:d9:51:21:17:84:34:13:1b:b9:a5:99:22:97:bd:37:6e:de:59
Fingerprint (sha256): 07:53:40:bc:58:42:af:f4:97:d2:bb:69:b8:52:0a:a6:06:68:e4:1a:fb:de:e4:93:96:55:ec:10:63:9f:db:b6
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate dbt.data.doma.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dbt.data.doma.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dbt.data.doma.com
Other certificates including the domain name doma.com
(limited to 100 certificates)
qr-admin.handelslabbet.com
leapfrog-ssl-47.gcs-web.com
servicedesk.doma.com
dbt.data.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
*.ds.cloud.doma.com
*.comms.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
*.comms.staging.cloud.doma.com
doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
*.litify-claims.staging.cloud.doma.com
*.staging.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
login.doma.com
leapfrog-ssl-47.gcs-web.com
doma.com
doma.com
engage.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
servicedesk.doma.com
*.dx.staging.cloud.doma.com
*.comms.staging.cloud.doma.com
*.task-automation.staging.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
portal.k9fit.co
brocodeapp.com
leapfrog-ssl-47.gcs-web.com
doma.com
leapfrog-ssl-47.gcs-web.com
dbt.data.doma.com
leapfrog-ssl-47.gcs-web.com
doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
*.staging.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
doma.com
leapfrog-ssl-47.gcs-web.com
*.ds.staging.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
agmessenger.anangames.my.id
www.allaboutjae.com
leapfrog-ssl-47.gcs-web.com
appforu.ca
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
www.doma.com
*.task-automation.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
*.cloud.doma.com
*.dx.staging.cloud.doma.com
login.staging.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
doma.com
links.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
local.doma.com
*.staging.doma.com
*.doma.com
info.doma.com
leapfrog-ssl-47.gcs-web.com
www.doma.com
www.store4pet.net
www.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
doma.com
instantorderepc.conn.staging.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
esim.no
krynn.com
leapfrog-ssl-47.gcs-web.com
*.litify-claims.dev.cloud.doma.com
login.dev.doma.com
connect.doma.com
info.doma.com
doma.com
leapfrog-ssl-47.gcs-web.com
servicedesk.doma.com
dbt.data.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
*.ds.cloud.doma.com
*.comms.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
*.comms.staging.cloud.doma.com
doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
*.litify-claims.staging.cloud.doma.com
*.staging.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
login.doma.com
leapfrog-ssl-47.gcs-web.com
doma.com
doma.com
engage.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
servicedesk.doma.com
*.dx.staging.cloud.doma.com
*.comms.staging.cloud.doma.com
*.task-automation.staging.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
portal.k9fit.co
brocodeapp.com
leapfrog-ssl-47.gcs-web.com
doma.com
leapfrog-ssl-47.gcs-web.com
dbt.data.doma.com
leapfrog-ssl-47.gcs-web.com
doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
*.staging.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
doma.com
leapfrog-ssl-47.gcs-web.com
*.ds.staging.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
agmessenger.anangames.my.id
www.allaboutjae.com
leapfrog-ssl-47.gcs-web.com
appforu.ca
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
www.doma.com
*.task-automation.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
*.cloud.doma.com
*.dx.staging.cloud.doma.com
login.staging.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
doma.com
links.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
local.doma.com
*.staging.doma.com
*.doma.com
info.doma.com
leapfrog-ssl-47.gcs-web.com
www.doma.com
www.store4pet.net
www.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
doma.com
instantorderepc.conn.staging.cloud.doma.com
leapfrog-ssl-47.gcs-web.com
leapfrog-ssl-47.gcs-web.com
esim.no
krynn.com
leapfrog-ssl-47.gcs-web.com
*.litify-claims.dev.cloud.doma.com
login.dev.doma.com
connect.doma.com
info.doma.com
doma.com
Certificate
The complete raw certificate details for dbt.data.doma.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHkDCCBXigAwIBAgIQAUlFw7+m3pNzCVs/tPpf9TANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjMxMDMwMDAwMDAwWhcNMjQwNDMwMjM1OTU5WjAcMRowGAYDVQQDExFkYnQuZGF0 YS5kb21hLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK8Q0+ip 2FLpCiLuGw2/iOk/oMXw86i6d4GK5yxKW2v1CHXVIxKk9NMWoJAlZQ2mHJCkaqxu AkVJ4n0AWwYO2MGwSKGB0uyxtY7a3QviAkLWhfQczMxKlBHE4S69GM5fH16BNC1d Jp5JqyF0AZXvPQdPkWFxTvPC3CtS83V4jIMTEwbqD74kaowxUAwsslPhKNRPmoPP v7a2+4OkJiJpWJT1QHUWgovHwvMvNWRE8V2Jd6XsxgRB5+37ctmDnQNg6ETm958I L/K5lZcGhYs2OZY+/jEDGtTHSPU+hZ8yX4gDsqMm2CPn/CybOjYCHb8F7BQ3bvuF yChBr/7gY9YvdKkCAwEAAaOCA4wwggOIMB8GA1UdIwQYMBaAFKW01us2xOdrpt/E ZAsBKiAEuGYjMB0GA1UdDgQWBBTse1fcLqOA0bF6DzUrJHWWyTI10TAcBgNVHREE FTATghFkYnQuZGF0YS5kb21hLmNvbTA+BgNVHSAENzA1MDMGBmeBDAECATApMCcG CCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBnwYDVR0fBIGX MIGUMEigRqBEhkJodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vR2VvVHJ1c3RHbG9i YWxUTFNSU0E0MDk2U0hBMjU2MjAyMkNBMS5jcmwwSKBGoESGQmh0dHA6Ly9jcmw0 LmRpZ2ljZXJ0LmNvbS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIy Q0ExLmNybDCBhwYIKwYBBQUHAQEEezB5MCQGCCsGAQUFBzABhhhodHRwOi8vb2Nz cC5kaWdpY2VydC5jb20wUQYIKwYBBQUHMAKGRWh0dHA6Ly9jYWNlcnRzLmRpZ2lj ZXJ0LmNvbS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNy dDAMBgNVHRMBAf8EAjAAMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdQDuzdBk 1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYuAmibxAAAEAwBGMEQCIBis a4FphwyqiO8zwNZpTfaeTkX6SH4oQg2ieXTt6K6AAiAFmmoLXBY6arG64cuEoBqN 3jhcAFqvgiPtToCZwv9GJAB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s5 2IRzAAABi4CaJu8AAAQDAEgwRgIhAO+MDQj/C+aZzEKGUl08qJZ4KnpnQExin52F RIJ73sP6AiEAm9nja93u2qPoeTvxmxO1gWy6yXz3R5Oe7+Tdeq8iyngAdQDatr9r P7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYuAmibcAAAEAwBGMEQCIG+B 8H1y8XUi58a12Sj2B81PvR/Msrwfar0yGoXoVbLMAiBi6M6cYuWAL6I3zmD8ckeJ mMn3ahyTxuK77pBcU9D4WTANBgkqhkiG9w0BAQsFAAOCAgEALlhgulmDOuIGhAxO e8d9gVAtdwp3jeLpGOjgLMfQcKDzL26bW4eBRN8wE8D/Z4E+UWMh6/FAgBrFOKOR mIu5h3jTlk5Bw04zcYdW1MX5Myfp9gE/REaL9cJ/8MMv4cQm4noyylno/Hl6hjov eIbJKMZV17aJsygIktwcV8cX8jjGGD7lczOcAE7lX1AY3fEDjN4e56pgOPx33eMz cXGK1EbBwbjbC0Vnyc5P1hQ2HTdhkqUWlP5TTfR7pxMmV1v8jvK3Ue9GFMjVlkC7 ecWQFcN8JELW7hM4BHAz+YGQ04el0ZSYvoCEEHkKcGcW7pfPsNhep1zjj29wuN2p r4JjWEdgNAVzCtK+Si21rSgomn3q2eKXJsbYJdMTiTGJEGNmiw0u14+xAebPalx3 MfhJspzHkawn3ewLsmjKYPUFVcjEcsSskvOmPxB47T/WzAZ7OaVSjpvS+LEC6Rgz 58Q9CtOdv21QIDJAyZAyEqgFzvbpEhGXSH9vGJqOwyVtbSWUf0PwSdIgqMIC3S7c XUMr2uNfY9DDYGEkAus8znFfQWSAaWSukWVe30HZxnn2L9MCYotpwxEGWL4FwoYp TvzLFnqLmmP++7MljIBY+u10zUSTXuZZaDDIw9uNqd0BGtN3JGTbW2Gx4aWzaQa8 PoCwIUZcfeJSnrhxAfWphktb39w= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxDT6KnYUukKIu4bDb+I 6T+gxfDzqLp3gYrnLEpba/UIddUjEqT00xagkCVlDaYckKRqrG4CRUnifQBbBg7Y wbBIoYHS7LG1jtrdC+ICQtaF9BzMzEqUEcThLr0Yzl8fXoE0LV0mnkmrIXQBle89 B0+RYXFO88LcK1LzdXiMgxMTBuoPviRqjDFQDCyyU+Eo1E+ag8+/trb7g6QmImlY lPVAdRaCi8fC8y81ZETxXYl3pezGBEHn7fty2YOdA2DoROb3nwgv8rmVlwaFizY5 lj7+MQMa1MdI9T6FnzJfiAOyoybYI+f8LJs6NgIdvwXsFDdu+4XIKEGv/uBj1i90 qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1709680661525670183844385778027880437 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-30 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dbt.data.doma.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22100001451184825161622859367053248670205176699127633387033037456029258260500609444659432577644934739014613864696119983548997174781800687568264558549149961008488149442061306916079082592918518512204881504636079040385348204226760043567598431540786217953075396379840291262335226647143895478271385138672407191663054243759488328492671119931925906378129569457712073458367675222638475966226553127526285375772027554219679139716813275892918423722025847887497335887164567874587950227133561411302971079709474657313370455888269196010162400397796383988910792253424240938378018740806759291869838500846585891472898213754523047916713 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ec7b57dc2ea380d1b17a0f352b247596c93235d1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dbt.data.doma.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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