api-stage.marksandspencer.com
- MARKS AND SPENCER P.L.C. -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0a:e7:22:19:fa:85:34:70:27:9a:6e:45:37:ae:e2:41 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
MARKS AND SPENCER P.L.C.
Organization:
MARKS AND SPENCER P.L.C.
Organization unit: MARKS AND SPENCER P.L.C.
Organization unit: MARKS AND SPENCER P.L.C.
Locality:
London
Country: GB
Country: GB
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:e7:22:19:fa:85:34:70:27:9a:6e:45:37:ae:e2:41Serial Number (int): 14492392192333578145922642195906486849
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 96:29:1a:2a:d1:ad:a3:1b:44:0b:1f:45:15:12:b9:56:cb:36:68:a4
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): 48:9b:54:d6:bc:63:7f:f0:7b:5a:12:59:98:74:f3:09:be:0d:40:40
Fingerprint (sha256): 07:bc:a5:df:73:cb:90:38:9b:3c:66:72:16:fa:47:f4:4a:df:78:53:9c:61:86:12:4d:8d:f7:7e:45:08:d2:e5
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate api-stage.marksandspencer.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api-stage.marksandspencer.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api-stage.marksandspencer.com
Other certificates including the domain name marksandspencer.com
(limited to 100 certificates)
corporate.marksandspencer.com
va.marksandspencer.com
auth.ciam.marksandspencer.com
www7.marksandspencer.com
INDISSDIQA.MANDSINDIA.marksandspencer.com
p1escp21.unix.marksandspencer.com
flowersubscriptions.marksandspencer.com
help.marksandspencer.com
marksintime.marksandspencer.com
dev.comshub-msb.marksandspencer.com
adriatic.b2b.marksandspencer.com
msib-fileservice.marksandspencer.com
msib-fileservice.marksandspencer.com
webforms.marksandspencer.com
api-test.marksandspencer.com
dressipi-staging.marksandspencer.com
akamai-san7.exacttarget.com
stg1.dotcom.apps.mnscorpcate.net
sendgrid.trytuesday.com
msib-fileservice.marksandspencer.com
help.marksandspencer.com
dev.comshub-msb.marksandspencer.com
qa.dotcom.apps.mnscorpcate.net
mands.uk
alumni.marksandspencer.com
st.marksandspencer.com
foodmagazine.marksandspencer.com
suppliers.marksandspencer.com
www5.marksandspencer.com
esb.marksandspencer.com
corporder.marksandspencer.com
bra-fit-calculator-uat.marksandspencer.com
capture.marksandspencer.com
api-test.marksandspencer.com
api-sit1.marksandspencer.com
bra-fit-booking.marksandspencer.com
jobs.marksandspencer.com
auth-stage.ciam.marksandspencer.com
www7.marksandspencer.com
mci.bank.marksandspencer.com
cftobrochure.marksandspencer.com
jobs.marksandspencer.com
dev.comshub-msb.marksandspencer.com
comshub-msb.marksandspencer.com
api-stage.marksandspencer.com
alumni.marksandspencer.com
creditcardeligibilitycheck.marksandspencer.com
inforights.marksandspencer.com
webchat2.marksandspencer.com
sparkslive.marksandspencer.com
st.marksandspencer.com
auth-stage.ciam.marksandspencer.com
uat.comshub-msb.marksandspencer.com
sparkslive.marksandspencer.com
auth.ciam.marksandspencer.com
corporder.marksandspencer.com
mshsvn.marksandspencer.com
banklive.marksandspencer.com
supplierexchange1.marksandspencer.com
msib-fileservice.marksandspencer.com
hlxp00m0011.unix.marksandspencer.com
hkhmnshk2k8ftp1.marksandspencer.com
cdntm.marksandspencer.com
marksandspencer.app
flowersubscriptions.marksandspencer.com
flowersubscriptions.marksandspencer.com
mands.uk
www.vp.marksandspencer.com
www7.marksandspencer.com
archive.marksandspencer.com
dev.comshub-msb.marksandspencer.com
CSSMWPC.webapps.marksandspencer.com
akamai-san7.exacttarget.com
www.marksandspencer.com
bw-a-hbp.webapps.marksandspencer.com
partners.ruckusdev.ruckuswireless.com
dressipi-staging.marksandspencer.com
personalisedloanquote.marksandspencer.com
secure.scene7.com
marksandspencer.brandactif.com
mshfmmswebp0001.wintel.marksandspencer.com
BANK.MARKSANDSPENCER.COM
tracking.service.marksandspencer.com
personal-bank.marksandspencer.com
insuranceservicing.marksandspencer.com
stpaccess.marksandspencer.com
marksandspencer.app
personalised.marksandspencer.com
st.marksandspencer.com
mcp.dotcom.apps.mnscorpdev.net
lifeinsurance.marksandspencer.com
webforms.marksandspencer.com
auth-dev.ciam.marksandspencer.com
api-preprod.marksandspencer.com
prod1.dotcom.apps.mnscorp.net
alumni.marksandspencer.com
api.marksandspencer.com
www9.marksandspencer.com
mcp.dotcom.apps.mnscorp.net
bra-fit-booking.marksandspencer.com
va.marksandspencer.com
auth.ciam.marksandspencer.com
www7.marksandspencer.com
INDISSDIQA.MANDSINDIA.marksandspencer.com
p1escp21.unix.marksandspencer.com
flowersubscriptions.marksandspencer.com
help.marksandspencer.com
marksintime.marksandspencer.com
dev.comshub-msb.marksandspencer.com
adriatic.b2b.marksandspencer.com
msib-fileservice.marksandspencer.com
msib-fileservice.marksandspencer.com
webforms.marksandspencer.com
api-test.marksandspencer.com
dressipi-staging.marksandspencer.com
akamai-san7.exacttarget.com
stg1.dotcom.apps.mnscorpcate.net
sendgrid.trytuesday.com
msib-fileservice.marksandspencer.com
help.marksandspencer.com
dev.comshub-msb.marksandspencer.com
qa.dotcom.apps.mnscorpcate.net
mands.uk
alumni.marksandspencer.com
st.marksandspencer.com
foodmagazine.marksandspencer.com
suppliers.marksandspencer.com
www5.marksandspencer.com
esb.marksandspencer.com
corporder.marksandspencer.com
bra-fit-calculator-uat.marksandspencer.com
capture.marksandspencer.com
api-test.marksandspencer.com
api-sit1.marksandspencer.com
bra-fit-booking.marksandspencer.com
jobs.marksandspencer.com
auth-stage.ciam.marksandspencer.com
www7.marksandspencer.com
mci.bank.marksandspencer.com
cftobrochure.marksandspencer.com
jobs.marksandspencer.com
dev.comshub-msb.marksandspencer.com
comshub-msb.marksandspencer.com
api-stage.marksandspencer.com
alumni.marksandspencer.com
creditcardeligibilitycheck.marksandspencer.com
inforights.marksandspencer.com
webchat2.marksandspencer.com
sparkslive.marksandspencer.com
st.marksandspencer.com
auth-stage.ciam.marksandspencer.com
uat.comshub-msb.marksandspencer.com
sparkslive.marksandspencer.com
auth.ciam.marksandspencer.com
corporder.marksandspencer.com
mshsvn.marksandspencer.com
banklive.marksandspencer.com
supplierexchange1.marksandspencer.com
msib-fileservice.marksandspencer.com
hlxp00m0011.unix.marksandspencer.com
hkhmnshk2k8ftp1.marksandspencer.com
cdntm.marksandspencer.com
marksandspencer.app
flowersubscriptions.marksandspencer.com
flowersubscriptions.marksandspencer.com
mands.uk
www.vp.marksandspencer.com
www7.marksandspencer.com
archive.marksandspencer.com
dev.comshub-msb.marksandspencer.com
CSSMWPC.webapps.marksandspencer.com
akamai-san7.exacttarget.com
www.marksandspencer.com
bw-a-hbp.webapps.marksandspencer.com
partners.ruckusdev.ruckuswireless.com
dressipi-staging.marksandspencer.com
personalisedloanquote.marksandspencer.com
secure.scene7.com
marksandspencer.brandactif.com
mshfmmswebp0001.wintel.marksandspencer.com
BANK.MARKSANDSPENCER.COM
tracking.service.marksandspencer.com
personal-bank.marksandspencer.com
insuranceservicing.marksandspencer.com
stpaccess.marksandspencer.com
marksandspencer.app
personalised.marksandspencer.com
st.marksandspencer.com
mcp.dotcom.apps.mnscorpdev.net
lifeinsurance.marksandspencer.com
webforms.marksandspencer.com
auth-dev.ciam.marksandspencer.com
api-preprod.marksandspencer.com
prod1.dotcom.apps.mnscorp.net
alumni.marksandspencer.com
api.marksandspencer.com
www9.marksandspencer.com
mcp.dotcom.apps.mnscorp.net
bra-fit-booking.marksandspencer.com
Certificate
The complete raw certificate details for api-stage.marksandspencer.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIQCuciGfqFNHAnmm5FN67iQTANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTkwMzIxMDAwMDAwWhcN MjAwMzIxMTIwMDAwWjCBjDELMAkGA1UEBhMCR0IxDzANBgNVBAcTBkxvbmRvbjEh MB8GA1UEChMYTUFSS1MgQU5EIFNQRU5DRVIgUC5MLkMuMSEwHwYDVQQLExhNQVJL UyBBTkQgU1BFTkNFUiBQLkwuQy4xJjAkBgNVBAMTHWFwaS1zdGFnZS5tYXJrc2Fu ZHNwZW5jZXIuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXc2 oVqVlKoe+lZa9GpUnovFmSg7oBGRdiFKeGJXxfhHpVmaLbz1/lglejQ8WioPPLd2 E8kq3iSNhjBfzzPZcYl2zEglwDKyeqCLu/iCiHp+NFSOb/gCGd9RXPqITM7ANr/y lxCkc+2AoKW/Nvgv8Mk47Tgn9ZdpTaJvxPmFpdMQ7bijXbf1lgswEkkNrCA8oi97 FaeEFF6AfLLCEzcCHA/wnR9lw/6Xv45BAFBJkAVQzJWoeIEVi8tUldu7fMwFo9uh 7oZgPeacp6VbqPpK0+1xtFJEivNUctX2oFH6ycFLEDHy615futtOR/d4d6czjB0u gd5x/L5Vj5M0lQ4JCQIDAQABo4IB9jCCAfIwHwYDVR0jBBgwFoAUD4BhHIIxYdUv KOeNRji0LOHG2eIwHQYDVR0OBBYEFJYpGirRraMbRAsfRRUSuVbLNmikMCgGA1Ud EQQhMB+CHWFwaS1zdGFnZS5tYXJrc2FuZHNwZW5jZXIuY29tMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwawYDVR0fBGQwYjAv oC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nNi5jcmww L6AtoCuGKWh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3Js MEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8v d3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQICMHwGCCsGAQUFBwEBBHAwbjAk BggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMEYGCCsGAQUFBzAC hjpodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRGlnaUNlcnRTSEEyU2VjdXJl U2VydmVyQ0EuY3J0MAkGA1UdEwQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJ KoZIhvcNAQELBQADggEBAEqplZ1/Lqyaq05LFAAtydUCECQDqPbYkEiLE72XUuz8 I3U630CvjZpqNNImUma/0fgirE4vkok0WOnaAQV/L+lzwXZasHgCtnIbJshfMSTM G6BlvZcLwCMjzhY6vvRquIFPp1xLZeGZyxmH0yRXQR8HDjwx9wsQTmfDmnFA4hPB DQrztx7+Y5sKJlcX8+YWRMi0512FKJOQcL/bWcQZUn1QCWDc86KB3x22y0BqZImc oLckmh+Hfz1eQpOVo8k7vmqIzjm98SYyALuaA/exbGCGsLL1tr5eNTfi5pNmc8cQ WQwYmBiJbXg/VSVceg0Lm8Dc/EQnt1ECGk+CJxRmcOc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXc2oVqVlKoe+lZa9GpU novFmSg7oBGRdiFKeGJXxfhHpVmaLbz1/lglejQ8WioPPLd2E8kq3iSNhjBfzzPZ cYl2zEglwDKyeqCLu/iCiHp+NFSOb/gCGd9RXPqITM7ANr/ylxCkc+2AoKW/Nvgv 8Mk47Tgn9ZdpTaJvxPmFpdMQ7bijXbf1lgswEkkNrCA8oi97FaeEFF6AfLLCEzcC HA/wnR9lw/6Xv45BAFBJkAVQzJWoeIEVi8tUldu7fMwFo9uh7oZgPeacp6VbqPpK 0+1xtFJEivNUctX2oFH6ycFLEDHy615futtOR/d4d6czjB0ugd5x/L5Vj5M0lQ4J CQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14492392192333578145922642195906486849 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-21 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MARKS AND SPENCER P.L.C.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'MARKS AND SPENCER P.L.C.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api-stage.marksandspencer.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23917825956906316687761685933254425684821852074806022163482930747497876981290614130561603740474145181286261992856919661695403945841923648989744419127380031444189257762508734892042166372398169264460962500032297617189390225085806884262708910133317384041238621120819048224120067743661687418011797521262639216299071556138500364734481066717453013529520765358201996018593850050109197078844562972972891417726705806915574856174706635860896582809560552887570891769758914208853911585342329033017425765709219137387146488510658426494324013181172526370303800129788734987827476397565671440621285872292557988013729586855953843489033 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 96291a2ad1ada31b440b1f451512b956cb3668a4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (33 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-stage.marksandspencer.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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