*.geico.com
- GEICO -
Issued by Trustwave Organization Validation SHA256 CA, Level 1
About this certificate
This digital certificate with serial number 07:4d:90:97:28:b6:63:b9:7b:be:b0:d7:53:84:54:cd:b7:1a:59 was issued on by Trustwave Holdings, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
GEICO
Organization:
GEICO
State / Province:
Maryland
Locality: Chevy Chase
Country: US
Locality: Chevy Chase
Country: US
Trustwave Holdings, Inc.
Organization:
Trustwave Holdings, Inc.
State / Province:
Illinois
Locality: Chicago
Country: US
Locality: Chicago
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:4d:90:97:28:b6:63:b9:7b:be:b0:d7:53:84:54:cd:b7:1a:59Serial Number (int): 162862063992115053525247428452399785264487001
Serial Number lenght: 147 bits, 19 octets
SubjectKeyId: 93:7e:dc:36:de:0f:37:49:bd:37:10:9b:b6:b2:9a:a0:c3:52:b3:34
AuthorityKeyId: ca:ce:1d:18:03:77:1e:1c:f3:7c:58:b2:9a:70:a8:08:80:16:f4:ae
Fingerprint (sha1): 4f:16:94:be:78:58:4f:c7:de:4d:8c:05:8c:3e:40:80:4a:3b:4a:b9
Fingerprint (sha256): 08:34:47:91:65:18:19:8a:61:73:e1:7a:27:98:05:85:c5:ca:4f:24:78:8a:b4:91:a4:a2:e3:48:d2:0c:b5:bb
Issuing Certificate URL: http://certs.securetrust.com/issuers/OVCA2_L1.crt
Revocation information
OCSP Server: http://ocsp.securetrust.com/CRL Distribution Point: http://crl.securetrust.com/OVCA2_L1.crl
Check the revocation status for certificate *.geico.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.geico.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.geico.com
geico.com
geico.com
Other certificates including the domain name geico.com
(limited to 100 certificates)
copart.geico.com
sattest.geico.com
Arbitration.geico.com
Ivanticsa6.private.geico.com
umbapp-umbuicustomer-ed1.geico.com
tierb2b-test.geico.com
partnersgateway-tt.geico.com
imperva.com
imperva.com
hive.geico.com
comcbs-ut1.geico.com
docusigneo-ut1.geico.com
imperva.com
docusigneo-EU1.geico.com
claims.geico.com
partnersgateway001-tr.geico.com
mstage2.service-ft.geico.com
umbrella-user.geico.com
service-ft.geico.com
mts-ut1.geico.com
psfthr-dr.oci.geico.com
awpocseg365.private.geico.com
partnersgateway001.geico.com
imperva.com
isotest1.geico.com
imperva.com
billingreportsapi-eu1.geico.com
Plazamail2016.geico.net
gragwns.private.geico.com
homeowners.geico.com
partnersgateway009-tr.geico.com
Ivanticsa12.private.geico.com
partnersgateway005-in.geico.com
tier2-int2.geico.com
ecams.geico.com
sales.geico.com
sales-in2.geico.com
boat-user.geico.com
dmvtest.geico.com
partnersgateway-tr.geico.com
egressgateway14-lt.geico.com
partners.geico.com
umbrella-user.geico.com
awprodsegv2.private.geico.com
ingressgateway07-ut.geico.com
sig-ft.geico.com
crm-cs-eapi-gateway-tr1.geico.com
*.geico.com
partnersgateway007.geico.com
edgein-tr.geico.com
claimsdr.geico.com
anbcui-prod.geico.com
tier.geico.com
ecams.geico.com
claimiq.geico.com
mts.geico.com
docusigneo-FT1.geico.com
imperva.com
atlastest.geico.com
vdipd1external.private.geico.com
propertysales.geico.com
polcomexpressvue-eu1.geico.com
edgeex-in.geico.com
imperva.com
commercial-in1.geico.com
nocpaa.np.geico.com
auto-buy-tr1.geico.com
imperva.com
optout.geico.com
portfolioex-lt.geico.com
ingressgateway08.geico.com
capsales-test.geico.com
partnersgateway002-dv.geico.com
adestimatetest.geico.com
polcomexpressvue-eu1.geico.com
bilpyh-ut1.geico.com
blaster.geico.com
umbrella-c-load.geico.com
edsinbound-trng.geico.com
umbapp-umbuicustomer-ed1.geico.com
FRWS7845.geico.net
claimsportal-tr1.geico.com
FredMail2016.geico.net
partnersgateway005.geico.com
salesb2b2-int.geico.com
telpdchvg01.anc.geico.net
cvshealth.geico.com
propertysales-ut1-api.geico.com
imperva.com
rewards-ut1.geico.com
*.geico.com
ivrpl.private.geico.com
edsinbound-load.geico.com
billingwdayinterface.geico.com
CHWS7104.geico.net
auto-buy-GZ-ftrack1.geico.com
PartnersTest.geico.com
auto-kate-fn1.geico.com
propertysales-It-api.geico.com
imperva.com
sattest.geico.com
Arbitration.geico.com
Ivanticsa6.private.geico.com
umbapp-umbuicustomer-ed1.geico.com
tierb2b-test.geico.com
partnersgateway-tt.geico.com
imperva.com
imperva.com
hive.geico.com
comcbs-ut1.geico.com
docusigneo-ut1.geico.com
imperva.com
docusigneo-EU1.geico.com
claims.geico.com
partnersgateway001-tr.geico.com
mstage2.service-ft.geico.com
umbrella-user.geico.com
service-ft.geico.com
mts-ut1.geico.com
psfthr-dr.oci.geico.com
awpocseg365.private.geico.com
partnersgateway001.geico.com
imperva.com
isotest1.geico.com
imperva.com
billingreportsapi-eu1.geico.com
Plazamail2016.geico.net
gragwns.private.geico.com
homeowners.geico.com
partnersgateway009-tr.geico.com
Ivanticsa12.private.geico.com
partnersgateway005-in.geico.com
tier2-int2.geico.com
ecams.geico.com
sales.geico.com
sales-in2.geico.com
boat-user.geico.com
dmvtest.geico.com
partnersgateway-tr.geico.com
egressgateway14-lt.geico.com
partners.geico.com
umbrella-user.geico.com
awprodsegv2.private.geico.com
ingressgateway07-ut.geico.com
sig-ft.geico.com
crm-cs-eapi-gateway-tr1.geico.com
*.geico.com
partnersgateway007.geico.com
edgein-tr.geico.com
claimsdr.geico.com
anbcui-prod.geico.com
tier.geico.com
ecams.geico.com
claimiq.geico.com
mts.geico.com
docusigneo-FT1.geico.com
imperva.com
atlastest.geico.com
vdipd1external.private.geico.com
propertysales.geico.com
polcomexpressvue-eu1.geico.com
edgeex-in.geico.com
imperva.com
commercial-in1.geico.com
nocpaa.np.geico.com
auto-buy-tr1.geico.com
imperva.com
optout.geico.com
portfolioex-lt.geico.com
ingressgateway08.geico.com
capsales-test.geico.com
partnersgateway002-dv.geico.com
adestimatetest.geico.com
polcomexpressvue-eu1.geico.com
bilpyh-ut1.geico.com
blaster.geico.com
umbrella-c-load.geico.com
edsinbound-trng.geico.com
umbapp-umbuicustomer-ed1.geico.com
FRWS7845.geico.net
claimsportal-tr1.geico.com
FredMail2016.geico.net
partnersgateway005.geico.com
salesb2b2-int.geico.com
telpdchvg01.anc.geico.net
cvshealth.geico.com
propertysales-ut1-api.geico.com
imperva.com
rewards-ut1.geico.com
*.geico.com
ivrpl.private.geico.com
edsinbound-load.geico.com
billingwdayinterface.geico.com
CHWS7104.geico.net
auto-buy-GZ-ftrack1.geico.com
PartnersTest.geico.com
auto-kate-fn1.geico.com
propertysales-It-api.geico.com
imperva.com
Certificate
The complete raw certificate details for *.geico.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGvzCCBaegAwIBAgITB02Qlyi2Y7l7vrDXU4RUzbcaWTANBgkqhkiG9w0BAQsF ADCBtTELMAkGA1UEBhMCVVMxETAPBgNVBAgTCElsbGlub2lzMRAwDgYDVQQHEwdD aGljYWdvMSEwHwYDVQQKExhUcnVzdHdhdmUgSG9sZGluZ3MsIEluYy4xPTA7BgNV BAMTNFRydXN0d2F2ZSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTSEEyNTYgQ0Es IExldmVsIDExHzAdBgkqhkiG9w0BCQEWEGNhQHRydXN0d2F2ZS5jb20wHhcNMjEw ODEwMTIzNzE5WhcNMjIwODEwMTIzNjE5WjBcMRQwEgYDVQQDDAsqLmdlaWNvLmNv bTEOMAwGA1UEChMFR0VJQ08xFDASBgNVBAcTC0NoZXZ5IENoYXNlMREwDwYDVQQI EwhNYXJ5bGFuZDELMAkGA1UEBhMCVVMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDhorcxdiUzzIu0YnNIe3rzJrGQe0hTmUZXs1LgVGb9di01IpUxgJcA RJ9GqaYHsrrG5RNG3yC/9Gr+yE18FqdBjoTdxmFFsSR99SZ+2Vp6ks8c1Wb2Li8/ ACYmZ0YcoXEuQh8m6kAcou+qVthJuqSw1wm2OjYaaGL3sToiiBsa07A+qkkEbD+t 1pC/DZS5RitWKCOAV8Duj350qtRcSKJpWmjsHplBKeABc1Arn/48EXRsIlhuyo6g 3dXc4Pd3fFQclMmelM9ikInSPZLhvSdV6hbd9EjArIPRZN36f+MM9TtmfDMPzeN9 1BMaszjzVkYvaV+CafnCEB/odW2RydFRAgMBAAGjggMeMIIDGjAMBgNVHRMBAf8E AjAAMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUH AwEwHQYDVR0OBBYEFJN+3DbeDzdJvTcQm7aymqDDUrM0MB8GA1UdIwQYMBaAFMrO HRgDdx4c83xYsppwqAiAFvSuMEMGA1UdIAQ8MDowOAYGZ4EMAQICMC4wLAYIKwYB BQUHAgEWIGh0dHBzOi8vY2VydHMuc2VjdXJldHJ1c3QuY29tL0NBMCEGA1UdEQQa MBiCCyouZ2VpY28uY29tgglnZWljby5jb20wOAYDVR0fBDEwLzAtoCugKYYnaHR0 cDovL2NybC5zZWN1cmV0cnVzdC5jb20vT1ZDQTJfTDEuY3JsMHcGCCsGAQUFBwEB BGswaTAoBggrBgEFBQcwAYYcaHR0cDovL29jc3Auc2VjdXJldHJ1c3QuY29tLzA9 BggrBgEFBQcwAoYxaHR0cDovL2NlcnRzLnNlY3VyZXRydXN0LmNvbS9pc3N1ZXJz L09WQ0EyX0wxLmNydDCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHcAb1N2rDHw MRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAF7MVrSpAAABAMASDBGAiEAwOMT 91DJ1Xz9rRpgBJ5ysoFRKhfGPq/l0euQzsv+3QQCIQDBIPU8GuHkhu4B6fcP1h9i pYAU82TRpFbHe8XcqZe9FwB2AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0H E9MMAAABezFaz4wAAAQDAEcwRQIhAJVegL/fCBJCTKnfxcclwgslEUc8YVCljTg4 jijceb0BAiBJcZkARMnvhooh4duWtZ7L+7Vr1wBGBjGq/fEAIIaUDgB1ACl5vvCe OTkh8FZzn2Old+W+V32cYAr4+U1dJlwlXceEAAABezFaz6cAAAQDAEYwRAIgD0nX 8SBtcSnVZvtj/pEgOmYH1rT/QqPdXxPWLlwXJE0CIGowQWh+3zAUKdD+yfHYVMqt 1KTIPatisajwd+DTX7ChMA0GCSqGSIb3DQEBCwUAA4IBAQCX11Nr4g7aYLgi1i0f eE9UVKglaHdd61tvTQgo4tb/Frr9iYOA+ShRw2C8m9qkKN/NmJ1qtjw9nqb98uu1 +xvaWDWAevqG4w8VWg+A0y9A7X0UTZxGRVX4uTbYdhLQWfEXBIdokpmu0z7wLpq4 UrBlPDVvjuoCr0UrySnmyBRfA03eV0nGCZXZEbKqQQ7weTjOjmwJtmnzwiv6UGlm HbGi/Jdr0A1VBRzQCugF7XyolBP+Ukf1Pg7B43E8cuX5pMlJQocKqU6im/ert7pr yyLt1klYUMk4HaFwCVUx4c5JD+5FJNGpmIRQk/q3N/du6CQxLS7xGPhopFq4srw/ kULE -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4aK3MXYlM8yLtGJzSHt6 8yaxkHtIU5lGV7NS4FRm/XYtNSKVMYCXAESfRqmmB7K6xuUTRt8gv/Rq/shNfBan QY6E3cZhRbEkffUmftlaepLPHNVm9i4vPwAmJmdGHKFxLkIfJupAHKLvqlbYSbqk sNcJtjo2Gmhi97E6IogbGtOwPqpJBGw/rdaQvw2UuUYrVigjgFfA7o9+dKrUXEii aVpo7B6ZQSngAXNQK5/+PBF0bCJYbsqOoN3V3OD3d3xUHJTJnpTPYpCJ0j2S4b0n VeoW3fRIwKyD0WTd+n/jDPU7ZnwzD83jfdQTGrM481ZGL2lfgmn5whAf6HVtkcnR UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 162862063992115053525247428452399785264487001 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chicago' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustwave Holdings, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustwave Organization Validation SHA256 CA, Level 1' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-10 12:37:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-08-10 12:36:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.geico.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEICO' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chevy Chase' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28483856669483221892492356587987749818312559417672808667543841007361851822271179265781843277801492272973066605167816228012928315556608038350230764129799583763996942307407428898768606507435673109919095880529718157927306125996946073157394738489850490816823612822616170211692856486172297450063707722845000006508249932978085740324974334485418609200267482325188777022196408516083259712607014867797265633975772995730501380585860672566245353204313789386251111128862913308539539703575760390733408159984332457103570723854457247470925024861306131685486141360436018911333774352078528857948835439333287512874588586291115089056081 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 937edc36de0f3749bd37109bb6b29aa0c352b334 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName cace1d1803771e1cf37c58b29a70a8088016f4ae . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certs.securetrust.com/CA' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.geico.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geico.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.securetrust.com/OVCA2_L1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (107 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.securetrust.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certs.securetrust.com/issuers/OVCA2_L1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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