orderentryapi.allegion.com
Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1
About this certificate
This digital certificate with serial number 05:3d:26:a3:54:c7:64:a0:01:aa:c7:f0:d3:cb:0f:cc was issued on by DigiCert, Inc..
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=orderentryapi.allegion.com
DigiCert, Inc.
Organization:
DigiCert, Inc.
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 05:3d:26:a3:54:c7:64:a0:01:aa:c7:f0:d3:cb:0f:ccSerial Number (int): 6963653759288424689766297234632806348
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: ae:cc:3f:f3:fc:68:ad:f8:24:fe:76:eb:75:bc:75:40:57:d6:9c:f7
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23
Fingerprint (sha1): 97:e1:bc:02:b5:5d:4a:a1:e4:63:22:a3:1b:43:99:78:77:08:fc:7f
Fingerprint (sha256): 07:6d:1c:0e:25:df:ea:5e:c9:99:7e:4d:78:e3:fe:59:9e:cb:5c:cb:2d:39:cd:78:0d:3c:cd:82:ac:87:3c:c5
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
Check the revocation status for certificate orderentryapi.allegion.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for orderentryapi.allegion.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
orderentryapi.allegion.com
Other certificates including the domain name allegion.com
(limited to 100 certificates)
status.pipeimob.com.br
ordermanagement-api-uat.allegion.com
support.overtur.allegion.com
el-api-svc-prd.allegion.com
hrassignment-api-dev.allegion.com
el-api-svc-prd.allegion.com
overturkeying-api-uat.allegion.com
smetrics.allegion.com
status.markiiieb.com
discover-overtur.allegion.com
alm-uat.allegion.com
ind-av-veeam1.allegion.com
procom.allegion.com
cisasmartaccess.allegion.com
ivroderstatus-api-dev.allegion.com
ordermanagement-el-qa.allegion.com
overtur-uat.allegion.com
status.ngxnetworks.com
shw.rmt.status.descartes.com
shw.rmt.status.descartes.com
merlin-test.allegion.com
afdverify.beta-reporting.allegion.com
iq.syncd.tech
ind-av-ignition.allegion.com
as2test.allegion.com
ordermanagement-qa.allegion.com
startsmart.allegion.com
overtur-reports-api-qa.allegion.com
algchi-gm-ib-am.allegion.com
kc-test.allegion.com
status.us.premium.salusconnect.io
disponibilidade.activecorp.com.br
www.allegion.com
shw.rmt.status.descartes.com
overtur.allegion.com
alle-despatch-lane-manager-printer-prod.anz.allegion.com
status.quarklink.io
omk-uat.allegion.com
orderentryapi.allegion.com
startsmart.allegion.com
status.5starcoms.net
alm-dev.allegion.com
beta-planviewer.allegion.com
prn-av-opct1.allegion.com
m3uid01.allegion.com
overtur-sandbox-el.allegion.com
soca.allegion.com
shw.rmt.status.descartes.com
feedback.allegion.com
status.anywhere.asolvi.app
overturstatus.allegion.com
cmg.allegion.com
dev-cisasmartaccess.allegion.com
chicago2.allegion.com
www.allegion.com
www.allegion.com
support.overtur.allegion.com
apollo-fw-docs.allegion.com
emeia.allegion.com
www.fshlocking.com.au
accessmgmt-test.allegion.com
overturkeying-api-qa.allegion.com
c360.allegion.com
level4.allegion.com
discover-overtur.allegion.com
status.mapworks.io
americas.allegion.com
www.allegion.com
notifications-dev.allegion.com
accessmgmt-dev.allegion.com
startsmart.allegion.com
shw.rmt.status.descartes.com
notifications-qa.allegion.com
hrassignment-dev.allegion.com
status.pipeimob.com.br
status.doccle.be
mcprod.macle.bricard.com
status.lenderdock.com
shw.rmt.status.descartes.com
m3bed01.allegion.com
vip.allegion.com
www.allegion.com
alle-identity-api.allegion.com
chicago2.allegion.com
soca.allegion.com
ivroderstatus-api-dev.allegion.com
beta-reporting.allegion.com
cisasmartaccess.allegion.com
tooling.allegion.com
beta-history.allegion.com
shw.rmt.status.descartes.com
colwvwcappt1.allegion.com
iq.syncd.tech
alle-operation-reporting-portal-production.anz.allegion.com
ordermanagement.allegion.com
sni22ce5gl.wpc.edgecastcdn.net
ivroderstatus-api-dev.allegion.com
level4.allegion.com
soca-dev.allegion.com
support.overtur.allegion.com
ordermanagement-api-uat.allegion.com
support.overtur.allegion.com
el-api-svc-prd.allegion.com
hrassignment-api-dev.allegion.com
el-api-svc-prd.allegion.com
overturkeying-api-uat.allegion.com
smetrics.allegion.com
status.markiiieb.com
discover-overtur.allegion.com
alm-uat.allegion.com
ind-av-veeam1.allegion.com
procom.allegion.com
cisasmartaccess.allegion.com
ivroderstatus-api-dev.allegion.com
ordermanagement-el-qa.allegion.com
overtur-uat.allegion.com
status.ngxnetworks.com
shw.rmt.status.descartes.com
shw.rmt.status.descartes.com
merlin-test.allegion.com
afdverify.beta-reporting.allegion.com
iq.syncd.tech
ind-av-ignition.allegion.com
as2test.allegion.com
ordermanagement-qa.allegion.com
startsmart.allegion.com
overtur-reports-api-qa.allegion.com
algchi-gm-ib-am.allegion.com
kc-test.allegion.com
status.us.premium.salusconnect.io
disponibilidade.activecorp.com.br
www.allegion.com
shw.rmt.status.descartes.com
overtur.allegion.com
alle-despatch-lane-manager-printer-prod.anz.allegion.com
status.quarklink.io
omk-uat.allegion.com
orderentryapi.allegion.com
startsmart.allegion.com
status.5starcoms.net
alm-dev.allegion.com
beta-planviewer.allegion.com
prn-av-opct1.allegion.com
m3uid01.allegion.com
overtur-sandbox-el.allegion.com
soca.allegion.com
shw.rmt.status.descartes.com
feedback.allegion.com
status.anywhere.asolvi.app
overturstatus.allegion.com
cmg.allegion.com
dev-cisasmartaccess.allegion.com
chicago2.allegion.com
www.allegion.com
www.allegion.com
support.overtur.allegion.com
apollo-fw-docs.allegion.com
emeia.allegion.com
www.fshlocking.com.au
accessmgmt-test.allegion.com
overturkeying-api-qa.allegion.com
c360.allegion.com
level4.allegion.com
discover-overtur.allegion.com
status.mapworks.io
americas.allegion.com
www.allegion.com
notifications-dev.allegion.com
accessmgmt-dev.allegion.com
startsmart.allegion.com
shw.rmt.status.descartes.com
notifications-qa.allegion.com
hrassignment-dev.allegion.com
status.pipeimob.com.br
status.doccle.be
mcprod.macle.bricard.com
status.lenderdock.com
shw.rmt.status.descartes.com
m3bed01.allegion.com
vip.allegion.com
www.allegion.com
alle-identity-api.allegion.com
chicago2.allegion.com
soca.allegion.com
ivroderstatus-api-dev.allegion.com
beta-reporting.allegion.com
cisasmartaccess.allegion.com
tooling.allegion.com
beta-history.allegion.com
shw.rmt.status.descartes.com
colwvwcappt1.allegion.com
iq.syncd.tech
alle-operation-reporting-portal-production.anz.allegion.com
ordermanagement.allegion.com
sni22ce5gl.wpc.edgecastcdn.net
ivroderstatus-api-dev.allegion.com
level4.allegion.com
soca-dev.allegion.com
support.overtur.allegion.com
Certificate
The complete raw certificate details for orderentryapi.allegion.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHozCCBYugAwIBAgIQBT0mo1THZKABqsfw08sPzDANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xNDAyBgNVBAMT K0dlb1RydXN0IEdsb2JhbCBUTFMgUlNBNDA5NiBTSEEyNTYgMjAyMiBDQTEwHhcN MjQwNDAyMDAwMDAwWhcNMjQxMDAyMjM1OTU5WjAlMSMwIQYDVQQDExpvcmRlcmVu dHJ5YXBpLmFsbGVnaW9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM4Pd6AmmOt5RjjTXPc8c0HBLK30eacV9uF3eN5CHQjEpKWmf3Ozzmx9Ywhb Yp3aucrTgWoPIzODFYo8Dwlvt421fO9VgB/hNcn7yTefwHY/AHbrgwS9Qfj1a1up RxnDFoyIIN9TGLceyyRqe9lBf3pG/ygULOiMYgQ5cFvJ7pYG5LGgRkuv8aXUpDTQ YgT1HTvHbQumHixb2EyVTnuB3Mibd1tJb7JTsZovpSzuFuwAcoT1HJy93iQiPVuQ 4pHrOUr5dRWICFONPY0Eoe8o9lVVIk9tr5VvZ/y+IJsgj8HkMq5lmFFGdW/PsnGK a7GHHI+lMoV6z39vpoOfsd+EOdECAwEAAaOCA5YwggOSMB8GA1UdIwQYMBaAFKW0 1us2xOdrpt/EZAsBKiAEuGYjMB0GA1UdDgQWBBSuzD/z/Git+CT+dut1vHVAV9ac 9zAlBgNVHREEHjAcghpvcmRlcmVudHJ5YXBpLmFsbGVnaW9uLmNvbTA+BgNVHSAE NzA1MDMGBmeBDAECATApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0 LmNvbS9DUFMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjCBnwYDVR0fBIGXMIGUMEigRqBEhkJodHRwOi8vY3JsMy5kaWdpY2Vy dC5jb20vR2VvVHJ1c3RHbG9iYWxUTFNSU0E0MDk2U0hBMjU2MjAyMkNBMS5jcmww SKBGoESGQmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9HZW9UcnVzdEdsb2JhbFRM U1JTQTQwOTZTSEEyNTYyMDIyQ0ExLmNybDCBhwYIKwYBBQUHAQEEezB5MCQGCCsG AQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wUQYIKwYBBQUHMAKGRWh0 dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9HZW9UcnVzdEdsb2JhbFRMU1JTQTQw OTZTSEEyNTYyMDIyQ0ExLmNydDAMBgNVHRMBAf8EAjAAMIIBfgYKKwYBBAHWeQIE AgSCAW4EggFqAWgAdQB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAA AY6hNSUcAAAEAwBGMEQCICmxrn/T7/4ITHuGwGQdHDJs4jGEk7lXn47Mg8MAYpNd AiBLrMFpnWBjV0dWs934gg87Ppvcv+LL6CZy2qv/HlQlxAB2ANq2v2s/tbYin5vC u1xr6HCRcWy7UYSFNL2kPTBI1/urAAABjqE1JPwAAAQDAEcwRQIgcTQGweJZI4OG WpSM/VZLlABfm7K9EISCXIdKecOdiX8CIQDT4AsH3de4LLM682f41cg+W5fz5y1u POmbLjshuE9f1wB3AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/KIXs+GRuAAAB jqE1JS8AAAQDAEgwRgIhAJlAY/cmtJQhujnyzcEmNDXbhMjY4DENSYlrKewnpTRo AiEAuehCa2Pk9Rxn4iBz1MA0vR0Sm5pFF+5r7q0UPmhcNw4wDQYJKoZIhvcNAQEL BQADggIBAI0xDJB3xWZPADCgM8ptjN0ggLVaplrr6pexJKhQ6Dsf5xGs8FErSN06 dK5VIFaljLZeKdTh1qqhE99humn0YUWg2ILsaBraHE95TV+fQ+cfpY5BVyhz9Yle DI+MrIg+mvooTXhAdUd5EFijXK22mU1HLQi8jWRDAEnzd0FsL3je03wXIGtJScLm FJGn8IsFHhZbnNLXbgSeEdWpGAnKDXPNYWFtYG+kuJ/HvxxYDgE8sW//Q7hAURhi HbU/eb08PE4GOCbrWj8VxPmRJ0u0kM54jYN7NhpD4PAB9ykVTliNkZ6lJML/qUsD aRBD3wuK/JnLMW0MiBIXbqjJwk0L9W/ZAbYpoE97pI4reG2Xbxy5lEknBHA8jSkq 01taadDlY0CTft2Olgq+v/3SSMXjNuNfdkLsFYRPYTT1neNbcp5YHXNP85Wpvf0Q aECl+8ToHANH65ZJjX6J3ZfqBzx22aCN4+zCtd1j7QvrMCARMH0TIfcrxF4w8NLt hLLuOP2XgCl3S672evvcwE/ltREL5Ah3BirBg+ru6Jq1mcJXZUx9E6DaC9CJztfd Vvz2x1knRlhknSpwFyMiS8WOnZNXej3+MVY1H5DckePMj9MSwhDqhwSxsit9E+4T kuKDudJ2BUZhE2WnbA9+KkxG2CCWmH4S6hZ3sWagzpv/Ho4DWiel -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzg93oCaY63lGONNc9zxz QcEsrfR5pxX24Xd43kIdCMSkpaZ/c7PObH1jCFtindq5ytOBag8jM4MVijwPCW+3 jbV871WAH+E1yfvJN5/Adj8AduuDBL1B+PVrW6lHGcMWjIgg31MYtx7LJGp72UF/ ekb/KBQs6IxiBDlwW8nulgbksaBGS6/xpdSkNNBiBPUdO8dtC6YeLFvYTJVOe4Hc yJt3W0lvslOxmi+lLO4W7AByhPUcnL3eJCI9W5Dikes5Svl1FYgIU409jQSh7yj2 VVUiT22vlW9n/L4gmyCPweQyrmWYUUZ1b8+ycYprsYccj6UyhXrPf2+mg5+x34Q5 0QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6963653759288424689766297234632806348 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'orderentryapi.allegion.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26012718026722814918325574895576441216765824522922050436045355261710507496469619673691215854631971678977069447795434899686033604357764536909799621082830858876635200858784035131455105777965078152505681871948237350322303429906615389750018181136141095230301514097122062788568236353725644235771066580859950997018117800416689406245271186698934886502028078528796401114631807341111959428354014650736546928140849818010063048823856300082514462165757877805903991853258555555768308521270057001720518077377405966953394207435514129531222510028458624853801710781811329144401458738813826440178564403057245773478461854457700278352337 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aecc3ff3fc68adf824fe76eb75bc754057d69cf7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orderentryapi.allegion.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 008d310c9077c5664f0030a033ca6d8cdd2080b55aa65aebea97b124a850e83b1fe711acf0512b48dd3a74ae552056a58cb65e29d4e1d6aaa113df61ba69f46145a0d882ec681ada1c4f794d5f9f43e71fa58e41572873f5895e0c8f8cac883e9afa284d78407547791058a35cadb6994d472d08bc8d64430049f377416c2f78ded37c17206b4949c2e61491a7f08b051e165b9cd2d76e049e11d5a91809ca0d73cd61616d606fa4b89fc7bf1c580e013cb16fff43b8405118621db53f79bd3c3c4e063826eb5a3f15c4f991274bb490ce788d837b361a43e0f001f729154e588d919ea524c2ffa94b03691043df0b8afc99cb316d0c8812176ea8c9c24d0bf56fd901b629a04f7ba48e2b786d976f1cb994492704703c8d292ad35b5a69d0e56340937edd8e960abebffdd248c5e336e35f7642ec15844f6134f59de35b729e581d734ff395a9bdfd106840a5fbc4e81c0347eb96498d7e89dd97ea073c76d9a08de3ecc2b5dd63ed0beb302011307d1321f72bc45e30f0d2ed84b2ee38fd978029774baef67afbdcc04fe5b5110be40877062ac183eaeee89ab599c257654c7d13a0da0bd089ced7dd56fcf6c759274658649d2a701723224bc58e9d93577a3dfe3156351f90dc91e3cc8fd312c210ea8704b1b22b7d13ee1392e283b9d2760546611365a76c0f7e2a4c46d82096987e12ea1677b166a0ce9bff1e8e035a27a5