bc.pershing.com
- The Bank of New York Mellon -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 08:07:6a:35:64:ae:9c:0c:f8:b5:1e:63:a1:78:b6:79 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
The Bank of New York Mellon
Organization:
The Bank of New York Mellon
Organization unit: GSMC
Organization unit: GSMC
State / Province:
Pennsylvania
Locality: Pittsburgh
Country: US
Locality: Pittsburgh
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:07:6a:35:64:ae:9c:0c:f8:b5:1e:63:a1:78:b6:79Serial Number (int): 10672324209959262112905973426508314233
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: a4:fa:77:80:33:32:80:6b:94:13:51:50:cb:a7:fb:70:ef:b0:51:27
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): b2:47:3c:06:6e:15:da:ff:20:fe:a0:e2:51:ca:77:3c:57:9d:78:68
Fingerprint (sha256): 08:aa:4d:07:27:5c:0d:12:0c:97:f3:05:1c:87:88:87:94:52:49:08:fd:11:2c:81:b2:36:cd:d6:78:d5:87:a2
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate bc.pershing.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bc.pershing.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bc.pershing.com
Other certificates including the domain name pershing.com
(limited to 100 certificates)
coh.pershing.com
ccenter.pershing.com
bc.pershing.com
support.pershing.com
info.bnymellon.com
inside.pershing.com
investor.pershing.com
pershing.com
information.pershing.com
investor.pershing.com
voiceware.pershing.com
pershing.com
insite.pershing.com
jtapcentral.pershing.com
cfat.pershing.com
ccenter.pershing.com
data.pershing.com
cfat.pershing.com
content.pershing.com
mft.sfg.bnymellon.com
uat-bondwave.pershing.com
pershing.com
roars.pershing.com
uat-bondwave.pershing.com
bc.pershing.com
mqmf-mqu1.pershing.com
remote1.pershing.com
bc.pershing.com
voiceware.pershing.com
remote1.pershing.com
insite.pershing.com
retirement.pershing.com
xat-bondwave.pershing.com
qc.pershing.com
investorportal.pershing.com
xne1e1.bnymellon.net
roars.pershing.com
files.pershing.com
mod-content.pershing.com
qpr.pershing.com
infodirect.pershing.com
demo-pernet.pershing.com
xat-bondwave.pershing.com
services.pershing.com
data.pershing.com
bc.pershing.com
qpr.pershing.com
ice2roars2.bnymellon.net
sni243645.cloudflaressl.com
information.pershing.com
mqmf-mqu2.pershing.com
pershing.com
pershing.com
mansee-test-external.dev.pershing.com
managergateway.pershing.com
support.pershing.com
services.pershing.com
www.pershing.com
data.pershing.com
xat-bondwave.pershing.com
voiceware.pershing.com
sni243645.cloudflaressl.com
controlcenter.pershing.com
cfat.pershing.com
content-demo.pershing.com
cfat.pershing.com
insite.pershing.com
pernet.pershing.com
content.pershing.com
dasf-saml.sso.pershing.com
bc.pershing.com
actimize.pershing.com
pernet.pershing.com
files.pershing.com
www.pershing.com
mqmf-mqu2.pershing.com
managergateway.pershing.com
managergateway.pershing.com
data.pershing.com
standardfiles.pershing.com
communications.pershing.com
actimize.pershing.com
info.bnymellon.com
controlcenter.pershing.com
mod-content.pershing.com
uat-bondwave.pershing.com
actimizedemo.pershing.com
xat-insite.pershing.com
xne1e1.bnymellon.net
remote2.pershing.com
infodirect.pershing.com
uit.pershing.com
ftps5.pershing.com
mft.sfg.bnymellon.com
iceroars2.pershing.com
files.pershing.com
insite.pershing.com
iceroars2.pershing.com
files.pershing.com
insite.pershing.com
ccenter.pershing.com
bc.pershing.com
support.pershing.com
info.bnymellon.com
inside.pershing.com
investor.pershing.com
pershing.com
information.pershing.com
investor.pershing.com
voiceware.pershing.com
pershing.com
insite.pershing.com
jtapcentral.pershing.com
cfat.pershing.com
ccenter.pershing.com
data.pershing.com
cfat.pershing.com
content.pershing.com
mft.sfg.bnymellon.com
uat-bondwave.pershing.com
pershing.com
roars.pershing.com
uat-bondwave.pershing.com
bc.pershing.com
mqmf-mqu1.pershing.com
remote1.pershing.com
bc.pershing.com
voiceware.pershing.com
remote1.pershing.com
insite.pershing.com
retirement.pershing.com
xat-bondwave.pershing.com
qc.pershing.com
investorportal.pershing.com
xne1e1.bnymellon.net
roars.pershing.com
files.pershing.com
mod-content.pershing.com
qpr.pershing.com
infodirect.pershing.com
demo-pernet.pershing.com
xat-bondwave.pershing.com
services.pershing.com
data.pershing.com
bc.pershing.com
qpr.pershing.com
ice2roars2.bnymellon.net
sni243645.cloudflaressl.com
information.pershing.com
mqmf-mqu2.pershing.com
pershing.com
pershing.com
mansee-test-external.dev.pershing.com
managergateway.pershing.com
support.pershing.com
services.pershing.com
www.pershing.com
data.pershing.com
xat-bondwave.pershing.com
voiceware.pershing.com
sni243645.cloudflaressl.com
controlcenter.pershing.com
cfat.pershing.com
content-demo.pershing.com
cfat.pershing.com
insite.pershing.com
pernet.pershing.com
content.pershing.com
dasf-saml.sso.pershing.com
bc.pershing.com
actimize.pershing.com
pernet.pershing.com
files.pershing.com
www.pershing.com
mqmf-mqu2.pershing.com
managergateway.pershing.com
managergateway.pershing.com
data.pershing.com
standardfiles.pershing.com
communications.pershing.com
actimize.pershing.com
info.bnymellon.com
controlcenter.pershing.com
mod-content.pershing.com
uat-bondwave.pershing.com
actimizedemo.pershing.com
xat-insite.pershing.com
xne1e1.bnymellon.net
remote2.pershing.com
infodirect.pershing.com
uit.pershing.com
ftps5.pershing.com
mft.sfg.bnymellon.com
iceroars2.pershing.com
files.pershing.com
insite.pershing.com
iceroars2.pershing.com
files.pershing.com
insite.pershing.com
Certificate
The complete raw certificate details for bc.pershing.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGPjCCBSagAwIBAgIQCAdqNWSunAz4tR5joXi2eTANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTkwMTI0MDAwMDAwWhcN MjAwMzI1MTIwMDAwWjCBiDELMAkGA1UEBhMCVVMxFTATBgNVBAgTDFBlbm5zeWx2 YW5pYTETMBEGA1UEBxMKUGl0dHNidXJnaDEkMCIGA1UEChMbVGhlIEJhbmsgb2Yg TmV3IFlvcmsgTWVsbG9uMQ0wCwYDVQQLEwRHU01DMRgwFgYDVQQDEw9iYy5wZXJz aGluZy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeCglrmGJv 1p3vLI19Gop97d7jqrao24e2tEHZEG3vTIr+TyMkT8WIg69hNnXUxA7AAZNRhKxc dmpAWu+gryG4FWgssqjmQJVRbwhDX84eGGyF3waee5ZDVHBjXennqIywCte2mzpV g9NwwXde7qV49nC2OQ/SwRUpanfZBghScVv8REuv0JSTaohIYNrw9t20mE8nWj+k qgBNhjUw8kouNFr+NysDWP08u9sTCGTCx7kkIbKk9fQpVqnfLQOEJdCpg5S/nQHU Pa9Ate6oQA2D1ikUdLFgahSRNkYhEVmvUhWcs2sH/R+f3cBdSKRTBEoIPnbQnSA6 J1CPFt1JvTc5AgMBAAGjggLcMIIC2DAfBgNVHSMEGDAWgBQPgGEcgjFh1S8o541G OLQs4cbZ4jAdBgNVHQ4EFgQUpPp3gDMygGuUE1FQy6f7cO+wUScwGgYDVR0RBBMw EYIPYmMucGVyc2hpbmcuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwawYDVR0fBGQwYjAvoC2gK4YpaHR0cDovL2NybDMu ZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nNi5jcmwwL6AtoCuGKWh0dHA6Ly9jcmw0 LmRpZ2ljZXJ0LmNvbS9zc2NhLXNoYTItZzYuY3JsMEwGA1UdIARFMEMwNwYJYIZI AYb9bAEBMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9D UFMwCAYGZ4EMAQICMHwGCCsGAQUFBwEBBHAwbjAkBggrBgEFBQcwAYYYaHR0cDov L29jc3AuZGlnaWNlcnQuY29tMEYGCCsGAQUFBzAChjpodHRwOi8vY2FjZXJ0cy5k aWdpY2VydC5jb20vRGlnaUNlcnRTSEEyU2VjdXJlU2VydmVyQ0EuY3J0MAkGA1Ud EwQCMAAwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwCyHgXMi6LNiiBOh2b5K7mK JSBna9r6cOeySVMt74uQXgAAAWiAOyMNAAAEAwBIMEYCIQD3Iv1iceAkZKdFDvaT yCHOVjY4vnLBf1BxTHQCUK8YSwIhAOGaZPdd/pjQ186amyMlPOKRMW2O+s1l4CAB LHIzYTQRAHYAh3W/51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq/16ggw8AAAFogDsj 1wAABAMARzBFAiEAob+sNDuUdMtoH/0HE1sA29JMHEjXL688ULmoruoMcuQCIEe2 1hpQVLdX4OHJJRDnKf1BNBhdTnVqeH4DcUNBfFhtMA0GCSqGSIb3DQEBCwUAA4IB AQABUyoLImJe8OyMPn0VvGpcQmVBEgaWDFAAyedl7pavO3aCgpc4zCLrv15l5FCf jVGK4uONlqaROVdzV2tD3eKAcBJCsE7OD9cjuPQAsqPfm1WUbvfplL+4rlbDG5OM SzTAr6KUP2nS3SpuELkRio7mjsqf+6IyD5wDNH7K3B/0TNkQqI146+SA+H4FVr6l zF+a2w9PMouGuwWnLoKknoHC+Y9nDbVqZubxeSg9HbyzgffFXPnPiYLsYjlz76Eh BW9hthilscBSby0Qn6E8jvixZZovlZxUOxNtHYd4p7XpKt+ggClQA/JpL1janmGc IWlyM9ZW+ZYAjaCIN1P3oVeW -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngoJa5hib9ad7yyNfRqK fe3e46q2qNuHtrRB2RBt70yK/k8jJE/FiIOvYTZ11MQOwAGTUYSsXHZqQFrvoK8h uBVoLLKo5kCVUW8IQ1/OHhhshd8GnnuWQ1RwY13p56iMsArXtps6VYPTcMF3Xu6l ePZwtjkP0sEVKWp32QYIUnFb/ERLr9CUk2qISGDa8PbdtJhPJ1o/pKoATYY1MPJK LjRa/jcrA1j9PLvbEwhkwse5JCGypPX0KVap3y0DhCXQqYOUv50B1D2vQLXuqEAN g9YpFHSxYGoUkTZGIRFZr1IVnLNrB/0fn93AXUikUwRKCD520J0gOidQjxbdSb03 OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10672324209959262112905973426508314233 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-25 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pennsylvania' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Pittsburgh' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Bank of New York Mellon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GSMC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bc.pershing.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19950601514206568472319340120901884777535093685248315033856743464073929846902613415676808910012709655430284832772550505999843292287739598740192103527053526492943376446289808537251880804007457039038227268598282115593050507820527691682848696822477965073571209342453894214925228984948736288163832067535268823665299199148921552784844366339805918555925689375181143442649786541223181810166917558993546092146938753448879102483867348564906659873672104143602354123894345647103751843644603783262096008168105232689148152373881626333873766020300678318137656398468144784675926381345629095135259479389145771703590085811310312634169 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a4fa77803332806b94135150cba7fb70efb05127 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bc.pershing.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000168803b230d0000040300483046022100f722fd6271e02464a7450ef693c821ce563638be72c17f50714c740250af184b022100e19a64f75dfe98d0d7ce9a9b23253ce291316d8efacd65e020012c72336134110076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000168803b23d70000040300473045022100a1bfac343b9474cb681ffd07135b00dbd24c1c48d72faf3c50b9a8aeea0c72e4022047b6d61a5054b757e0e1c92510e729fd4134185d4e756a787e037143417c586d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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