architectsofskin.com
Issued by USERTrust RSA Domain Validation Secure Server CA
About this certificate
This digital certificate with serial number 1a:7a:63:cb:d2:c5:f1:2f:63:0c:43:da:9f:51:c2:b6 was issued on by The USERTRUST Network.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=architectsofskin.com
The USERTRUST Network
Organization:
The USERTRUST Network
State / Province:
New Jersey
Locality: Jersey City
Country: US
Locality: Jersey City
Country: US
This certificate will expire on
Certificate Details
Serial Number (hex): 1a:7a:63:cb:d2:c5:f1:2f:63:0c:43:da:9f:51:c2:b6Serial Number (int): 35195412214247962990615249930949870262
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 70:15:1a:ee:f3:2a:7b:2c:94:67:1e:19:e4:ec:fc:1b:56:2d:44:c1
AuthorityKeyId: a6:c1:e7:e1:f4:f6:47:63:d7:2f:7d:8d:90:f8:ba:23:4f:60:ac:9e
Fingerprint (sha1): bf:77:02:22:c1:c5:83:29:cf:dd:18:5f:07:85:5d:ce:17:3d:ff:e5
Fingerprint (sha256): 08:83:5b:d8:bf:3f:8c:5f:6b:0f:b0:c5:b8:09:ce:6f:49:76:ac:c2:71:3d:4c:fe:9f:b5:ac:a5:b4:65:44:4b
Issuing Certificate URL: http://crt.usertrust.com/USERTrustRSADomainValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.usertrust.com/USERTrustRSADomainValidationSecureServerCA.crl
Check the revocation status for certificate architectsofskin.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for architectsofskin.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
architectsofskin.com
www.architectsofskin.com
www.architectsofskin.com
Other certificates including the domain name architectsofskin.com
(limited to 100 certificates)
sni242135.cloudflaressl.com
architectsofskin.com
architectsofskin.com
sni242135.cloudflaressl.com
sni.cloudflaressl.com
forms.baxtonmedia.me
sni242135.cloudflaressl.com
architectsofskin.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
us.architectsofskin.com
sni242135.cloudflaressl.com
architectsofskin.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
sni242135.cloudflaressl.com
architectsofskin.com
sni242135.cloudflaressl.com
forms.architectsofskin.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
architectsofskin.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
www.architectsofskin.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
forms.baxtonmedia.me
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni.cloudflaressl.com
form.itcglobal.mx
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.stickersquad.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.mexicocosmeticcenter.com
architectsofskin.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.myascents.net
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
pricematch.unmannedtech.co.uk
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
architectsofskin.com
architectsofskin.com
sni242135.cloudflaressl.com
sni.cloudflaressl.com
forms.baxtonmedia.me
sni242135.cloudflaressl.com
architectsofskin.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
us.architectsofskin.com
sni242135.cloudflaressl.com
architectsofskin.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
sni242135.cloudflaressl.com
architectsofskin.com
sni242135.cloudflaressl.com
forms.architectsofskin.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
architectsofskin.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
www.architectsofskin.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
forms.baxtonmedia.me
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni.cloudflaressl.com
form.itcglobal.mx
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.stickersquad.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.mexicocosmeticcenter.com
architectsofskin.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.myascents.net
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
pricematch.unmannedtech.co.uk
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
sni242135.cloudflaressl.com
forms.baxtonmedia.me
Certificate
The complete raw certificate details for architectsofskin.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGszCCBZugAwIBAgIQGnpjy9LF8S9jDEPan1HCtjANBgkqhkiG9w0BAQsFADCB kzELMAkGA1UEBhMCVVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxFDASBgNVBAcTC0pl cnNleSBDaXR5MR4wHAYDVQQKExVUaGUgVVNFUlRSVVNUIE5ldHdvcmsxOTA3BgNV BAMTMFVTRVJUcnVzdCBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZl ciBDQTAeFw0yNDA1MTkwMDAwMDBaFw0yNTA1MjYyMzU5NTlaMB8xHTAbBgNVBAMT FGFyY2hpdGVjdHNvZnNraW4uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAu7z5rFsyhA3je9A+2mpkqrn1rUjadt3Uf+IU6imqaZ61kzWtn8nhVqle 7TJiJRjfUyGTD5gzvVvVetq6jLPKD9qZjVs8G3Oe2EcQitabyO4U1thhGVBSx2GV fFuSYSPRQ38RXcZ/arj7U2HJKRVCzGG7BkC35l/igxSv2Ovw1wGoBTti38xgNKRs RcfdpZ70RUQhYMGZgv3T6IxEQqJEvyoZPMGkTUdgHa/MCKmu/ob8Dr9oQNaOlHPg uUxoX3H+bSMPWygjMDubSIh01tPJ4rLcDax5GrqUywR9g5qJzuvhy9MQeBUe+tO8 PtkCvkoZbfDoi10ThTq/Ee2s724hrQIDAQABo4IDdDCCA3AwHwYDVR0jBBgwFoAU psHn4fT2R2PXL32NkPi6I09grJ4wHQYDVR0OBBYEFHAVGu7zKnsslGceGeTs/BtW LUTBMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjBMBgNVHSAERTBDMDcGDCsGAQQBsjEBAgEDBDAnMCUG CCsGAQUFBwIBFhlodHRwczovL2Nwcy51c2VydHJ1c3QuY29tMAgGBmeBDAECATBY BgNVHR8EUTBPME2gS6BJhkdodHRwOi8vY3JsLnVzZXJ0cnVzdC5jb20vVVNFUlRy dXN0UlNBRG9tYWluVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNybDCBigYIKwYB BQUHAQEEfjB8MFMGCCsGAQUFBzAChkdodHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20v VVNFUlRydXN0UlNBRG9tYWluVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNydDAl BggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTA5BgNVHREEMjAw ghRhcmNoaXRlY3Rzb2Zza2luLmNvbYIYd3d3LmFyY2hpdGVjdHNvZnNraW4uY29t MIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdgDPEVbu1S58r/OHW9lpLpvpGnFn SrAX7KwB0lt3zsw7CAAAAY+PO7nkAAAEAwBHMEUCIQCugDZ+iVhtuclLuRkpXsty /ezotJe1fvffFtTWNiw7OAIgbKfXvSg3v/Ticdj5PTWLlpSZm6FqpoK8b3dmnlpD sxkAdgCi4wrkRe+9rZt+OO1HZ3dT14JbhJTXK14bLMS5UKRH5wAAAY+PO7l8AAAE AwBHMEUCIQCDYO0DWuUHKKSbkcqo+Nu3uvb62BXF6z2LNISt0f8l0AIgbdJDBlfk 2re7j0hv34gTrxfZqEhgZUdJyh5hZ9wo2PQAdwBOdaMnXJoQwzhbbNTfP1LrHfDg jhuNacCx+mSxYpo53wAAAY+PO7l7AAAEAwBIMEYCIQC035Ryg2xSbgUSt0A+ANi6 RS/Oxeh2PQcx1h2tkmgr4gIhAKPTMvP1xwM4xo3mZCZsn3p8khEEPIqUfhvxFHbd WP1oMA0GCSqGSIb3DQEBCwUAA4IBAQCHQjQyjGIU53IGF/RQY/aEjxMQw/sPB+5L kXZPhI2u/JmZiFoPRJJr3DpbkozfQFKCWG73VZzjhSrId/lxLKbQjNvjzQ9sNYhF R/oRO5MuzSGOaOd+P/oWeFQG8Te11XDFZxf7XhUJoh2bSmjdZIFXonlt/+guICGR Di9JJl0yHq3bMkTZv5GCjQ2f+A4Q4f7YFDQrZth4MNSlPx6vhcL5aU76X1ma+6HT MNvvq/sOw9BRc53Zy3PWqkAH+6eLe71GoHj2qLqD8YsU3IoeooZM0Jb8xntvXqrb 5k43WvMkTMw5rUMBPajr8v7bMLy9gLbNxxKuyYdEx99NIqHx5K5C -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu7z5rFsyhA3je9A+2mpk qrn1rUjadt3Uf+IU6imqaZ61kzWtn8nhVqle7TJiJRjfUyGTD5gzvVvVetq6jLPK D9qZjVs8G3Oe2EcQitabyO4U1thhGVBSx2GVfFuSYSPRQ38RXcZ/arj7U2HJKRVC zGG7BkC35l/igxSv2Ovw1wGoBTti38xgNKRsRcfdpZ70RUQhYMGZgv3T6IxEQqJE vyoZPMGkTUdgHa/MCKmu/ob8Dr9oQNaOlHPguUxoX3H+bSMPWygjMDubSIh01tPJ 4rLcDax5GrqUywR9g5qJzuvhy9MQeBUe+tO8PtkCvkoZbfDoi10ThTq/Ee2s724h rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 35195412214247962990615249930949870262 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Jersey' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Jersey City' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The USERTRUST Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'USERTrust RSA Domain Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-26 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'architectsofskin.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23699750215410964707469284990651420234205608370806201143512284259599693712999086872589680134529188876748455692670309647942068683107161675122046709422418847919737366229686852843845976684863511709975297574806880647185546311889397831410587274767253153420498746580951434364457040163605377572233282903371428286527462934947246061534623635514340408794301345138789392064344498134819365509519260399250624979219322884750800243070518699475899919477691118518433356241433612652528821865051446161707459446328444095189960383050377525920888921907695060642226319853360226242169459139413094305376349841038678994718175522882092037710253 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a6c1e7e1f4f64763d72f7d8d90f8ba234f60ac9e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 70151aeef32a7b2c94671e19e4ecfc1b562d44c1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (81 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/USERTrustRSADomainValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/USERTrustRSADomainValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'architectsofskin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.architectsofskin.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 0169007600cf1156eed52e7caff3875bd9692e9be91a71674ab017ecac01d25b77cecc3b080000018f8f3bb9e40000040300473045022100ae80367e89586db9c94bb919295ecb72fdece8b497b57ef7df16d4d6362c3b3802206ca7d7bd2837bff4e271d8f93d358b9694999ba16aa682bc6f77669e5a43b319007600a2e30ae445efbdad9b7e38ed47677753d7825b8494d72b5e1b2cc4b950a447e70000018f8f3bb97c00000403004730450221008360ed035ae50728a49b91caa8f8dbb7baf6fad815c5eb3d8b3484add1ff25d002206dd2430657e4dab7bb8f486fdf8813af17d9a84860654749ca1e6167dc28d8f40077004e75a3275c9a10c3385b6cd4df3f52eb1df0e08e1b8d69c0b1fa64b1629a39df0000018f8f3bb97b0000040300483046022100b4df9472836c526e0512b7403e00d8ba452fcec5e8763d0731d61dad92682be2022100a3d332f3f5c70338c68de664266c9f7a7c9211043c8a947e1bf11476dd58fd68 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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