test.rewards.sonypictures.com
Issued by GTS CA 1D4
About this certificate
This digital certificate with serial number 4c:83:39:96:0e:12:69:06:09:46:90:86:7a:3f:ef:00 was issued on by Google Trust Services LLC.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=test.rewards.sonypictures.com
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 4c:83:39:96:0e:12:69:06:09:46:90:86:7a:3f:ef:00Serial Number (int): 101702686554048500806973076169608392448
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: ae:bd:46:25:f1:48:0c:fe:9e:83:ee:dd:f8:8e:f9:ea:db:2b:e8:2d
AuthorityKeyId: 25:e2:18:0e:b2:57:91:94:2a:e5:d4:5d:86:90:83:de:53:b3:b8:92
Fingerprint (sha1): a1:a2:77:ab:bc:26:ce:f7:cf:cc:22:ca:6e:9a:25:77:56:17:21:b4
Fingerprint (sha256): 08:e3:ff:dd:66:b1:5b:04:f9:bb:f0:bc:f3:ae:6e:89:8b:ac:83:7c:ff:73:55:04:73:11:da:91:ef:52:99:ee
Issuing Certificate URL: http://pki.goog/repo/certs/gts1d4.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1d4/_l3iB99NeYkCRL Distribution Point: http://crls.pki.goog/gts1d4/S4ncRdVfvuE.crl
Check the revocation status for certificate test.rewards.sonypictures.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for test.rewards.sonypictures.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
test.rewards.sonypictures.com
Other certificates including the domain name sonypictures.com
(limited to 100 certificates)
conectados.sonypictures.com
*.sonypictures.com
redeem.sonypictures.com
origin-flash.sonypictures.com
edge-micros1.sonypictures.com
secure.sonypictures.com
origin-flash.sonypictures.com
edge-micros2.sonypictures.com
brand.sonypictures.com
flash.sonypictures.com
microsites.sonypictures.com
extaz-qa.spe.sony.com
edge-micros2.sonypictures.com
edge-micros2.sonypictures.com
sites.sonypictures.com
sites.sonypictures.com
secure.sonypictures.com
globalassethub.sonypictures.com
www.stage6films.com
api.stg-stage-productionservices.sonypictures.com
pub.email.sonypictures.com
connect.sonypictures.com
sites.sonypictures.com
edge-micros1.sonypictures.com
edge-micros1.sonypictures.com
edge-micros1.sonypictures.com
globalassethub.sonypictures.com
stage-microsites.sonypictures.com
portals.sonypictures.com
microsites.sonypictures.com
image.20210419.200345.s6.et.yellsatcloud.com
globalassethub.sonypictures.com
portals.sonypictures.com
portals.sonypictures.com
conectados.sonypictures.com
edge-micros1.sonypictures.com
flash.sonypictures.com
sites.sonypictures.com
edge-portals.sonypictures.com
edge-micros1.sonypictures.com
globalassethub.sonypictures.com
edge-micros2.sonypictures.com
flash.sonypictures.com
pub.email.sonypictures.com
griffin.sonypictures.com
view.email.sonypictures.com
edge-micros1.sonypictures.com
edge-micros1.sonypictures.com
flash.sonypictures.com
microsites.sonypictures.com
sites.sonypictures.com
audiolibrary.sonypictures.com
edge-portals.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
akamai-san77.exacttarget.com
stage-microsites.sonypictures.com
www.sonypictures.co.uk
edge-portals.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
viewer.sonypictures.com
secure.sonypictures.com
edge-portals.sonypictures.com
sites2.sonypictures.com
edge-micros2.sonypictures.com
test.rewards.sonypictures.com
www.stage6films.com
test.rewards.sonypictures.com
microsites.sonypictures.com
stage-microsites.sonypictures.com
edge-micros1.sonypictures.com
gam.sonypictures.com
microsites.sonypictures.com
flash.sonypictures.com
view.email.games.sonypictures.com
rewards.sonypictures.com
test.redeem.sonypictures.com
edge-micros1.sonypictures.com
brand.sonypictures.com
gam.sonypictures.com
stage-microsites.sonypictures.com
perc.sonypictures.com
sony-prod.actioniq.mr-in.com
click.email.sonypictures.com
stage-edge-portals.sonypictures.com
stage-microsites.sonypictures.com
tweets.sonypictures.com
flash.sonypictures.com
rewards.sonypictures.com
pages.email.games.sonypictures.com
view.email.sonypictures.com
rewards.sonypictures.com
redeem.sonypictures.com
microsites.sonypictures.com
redeem.sonypictures.com
stage-microsites.sonypictures.com
microsites.sonypictures.com
microsites.sonypictures.com
origin-flash.sonypictures.com
*.sonypictures.com
redeem.sonypictures.com
origin-flash.sonypictures.com
edge-micros1.sonypictures.com
secure.sonypictures.com
origin-flash.sonypictures.com
edge-micros2.sonypictures.com
brand.sonypictures.com
flash.sonypictures.com
microsites.sonypictures.com
extaz-qa.spe.sony.com
edge-micros2.sonypictures.com
edge-micros2.sonypictures.com
sites.sonypictures.com
sites.sonypictures.com
secure.sonypictures.com
globalassethub.sonypictures.com
www.stage6films.com
api.stg-stage-productionservices.sonypictures.com
pub.email.sonypictures.com
connect.sonypictures.com
sites.sonypictures.com
edge-micros1.sonypictures.com
edge-micros1.sonypictures.com
edge-micros1.sonypictures.com
globalassethub.sonypictures.com
stage-microsites.sonypictures.com
portals.sonypictures.com
microsites.sonypictures.com
image.20210419.200345.s6.et.yellsatcloud.com
globalassethub.sonypictures.com
portals.sonypictures.com
portals.sonypictures.com
conectados.sonypictures.com
edge-micros1.sonypictures.com
flash.sonypictures.com
sites.sonypictures.com
edge-portals.sonypictures.com
edge-micros1.sonypictures.com
globalassethub.sonypictures.com
edge-micros2.sonypictures.com
flash.sonypictures.com
pub.email.sonypictures.com
griffin.sonypictures.com
view.email.sonypictures.com
edge-micros1.sonypictures.com
edge-micros1.sonypictures.com
flash.sonypictures.com
microsites.sonypictures.com
sites.sonypictures.com
audiolibrary.sonypictures.com
edge-portals.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
akamai-san77.exacttarget.com
stage-microsites.sonypictures.com
www.sonypictures.co.uk
edge-portals.sonypictures.com
stage-microsites.sonypictures.com
stage-microsites.sonypictures.com
viewer.sonypictures.com
secure.sonypictures.com
edge-portals.sonypictures.com
sites2.sonypictures.com
edge-micros2.sonypictures.com
test.rewards.sonypictures.com
www.stage6films.com
test.rewards.sonypictures.com
microsites.sonypictures.com
stage-microsites.sonypictures.com
edge-micros1.sonypictures.com
gam.sonypictures.com
microsites.sonypictures.com
flash.sonypictures.com
view.email.games.sonypictures.com
rewards.sonypictures.com
test.redeem.sonypictures.com
edge-micros1.sonypictures.com
brand.sonypictures.com
gam.sonypictures.com
stage-microsites.sonypictures.com
perc.sonypictures.com
sony-prod.actioniq.mr-in.com
click.email.sonypictures.com
stage-edge-portals.sonypictures.com
stage-microsites.sonypictures.com
tweets.sonypictures.com
flash.sonypictures.com
rewards.sonypictures.com
pages.email.games.sonypictures.com
view.email.sonypictures.com
rewards.sonypictures.com
redeem.sonypictures.com
microsites.sonypictures.com
redeem.sonypictures.com
stage-microsites.sonypictures.com
microsites.sonypictures.com
microsites.sonypictures.com
origin-flash.sonypictures.com
Certificate
The complete raw certificate details for test.rewards.sonypictures.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIQTIM5lg4SaQYJRpCGej/vADANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFENDAeFw0yMzA5MjgwODA2NThaFw0yMzEyMjcw ODU4MDJaMCgxJjAkBgNVBAMTHXRlc3QucmV3YXJkcy5zb255cGljdHVyZXMuY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSOwpq7uaKOoCBFbB6lj fGZhtQMsfJjOYf+SnSkhwbxY08+Thl4yu4lOAEjfZpzGqqA78d5V/qDsSQXx4I7N E1F277PheuqDuBv1BQJIoNFWzPtNmamxbWnmpY9pom6CpF0SNqBKywGESyYkhdzQ ATMvhL9acwqqgdpxysm/+bDHXk/sE9kbYLiuupqKSh/bqmfAzZHHEqGiL7F0D8m0 +cOAXIHU/9nd6PTK/ejUqTt5fP0gb7mDvFgJ8lWknaGiqFOzJSV1063nsR8PFl41 oWw2t/zCp9htLJKGtqFBt3mEl4gzp0BAecoD8/cKAU0dsGGK9adHxWzKHfQ+VD/X DQIDAQABo4ICgzCCAn8wDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUF BwMBMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFK69RiXxSAz+noPu3fiO+erbK+gt MB8GA1UdIwQYMBaAFCXiGA6yV5GUKuXUXYaQg95Ts7iSMHgGCCsGAQUFBwEBBGww ajA1BggrBgEFBQcwAYYpaHR0cDovL29jc3AucGtpLmdvb2cvcy9ndHMxZDQvX2wz aUI5OU5lWWswMQYIKwYBBQUHMAKGJWh0dHA6Ly9wa2kuZ29vZy9yZXBvL2NlcnRz L2d0czFkNC5kZXIwKAYDVR0RBCEwH4IddGVzdC5yZXdhcmRzLnNvbnlwaWN0dXJl cy5jb20wIQYDVR0gBBowGDAIBgZngQwBAgEwDAYKKwYBBAHWeQIFAzA8BgNVHR8E NTAzMDGgL6AthitodHRwOi8vY3Jscy5wa2kuZ29vZy9ndHMxZDQvUzRuY1JkVmZ2 dUUuY3JsMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAejKMVNi3LbYg6jjgUh7p hBZwMhOFTTvSK8E6V6NS61IAAAGK2wqYUwAABAMARzBFAiEA+V+jVg/scoTbYDIR MfMFmlGXK1XG2vbJ+sDTixR8rQcCIBhIDvxLXqWQKiXSBFiG8wjV4aR3vxPpEFFr 5IMniPauAHUA6D7Q2j71BjUy51covIlryQPTy9ERa+zraeF3fW0GvW4AAAGK2wqY HwAABAMARjBEAiBvr1hPwM2vnN+vu9lVhI3rVKnK6bZ0Glc9gaThrFg0HgIgFRsU BqgwU4jOP/khU2UB6nbpcDKhvutw2PUc1SSRRC8wDQYJKoZIhvcNAQELBQADggEB AHp2H7sQLqOkHc8KnstDHCMU7Uu+hB4q6yHEf9fb1Q/T0DoQq/M+2fJPt7/weE5d MfgkMMUvXrPyU7i8c2Jjk/5fLNpDyYA33vrwYRqecyNUizKQjeu/WAEieh+vWtv7 Dykogqz/PPlm4kMFIeDTi4bZITSeNpZkkZjtqrRc5KBY+n2PKhYaZqaUYwJzJ6a6 4/Z2N6I4VzJm66t0gyw+elcp8ajCGKQawdt/Om0eLCj28osboGBf7blzHtSSVjrh A2Z2Wi96QT3/SmpdxZukd/I2ONIqx2RkOu3yRW4qL28Yk59GJYraht+MIJihItW3 sZpnrUGSHkh8hOdmOYGQuJA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSOwpq7uaKOoCBFbB6lj fGZhtQMsfJjOYf+SnSkhwbxY08+Thl4yu4lOAEjfZpzGqqA78d5V/qDsSQXx4I7N E1F277PheuqDuBv1BQJIoNFWzPtNmamxbWnmpY9pom6CpF0SNqBKywGESyYkhdzQ ATMvhL9acwqqgdpxysm/+bDHXk/sE9kbYLiuupqKSh/bqmfAzZHHEqGiL7F0D8m0 +cOAXIHU/9nd6PTK/ejUqTt5fP0gb7mDvFgJ8lWknaGiqFOzJSV1063nsR8PFl41 oWw2t/zCp9htLJKGtqFBt3mEl4gzp0BAecoD8/cKAU0dsGGK9adHxWzKHfQ+VD/X DQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 101702686554048500806973076169608392448 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1D4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-28 08:06:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-27 08:58:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'test.rewards.sonypictures.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22866732615189329537851402261761107729205630215043830622354866333000392083692619006253704391301647748845249551956961586530630761379833009447168494529090519699462491327616862014146672655055417744471751863005306337678976720818916593866402628942821086418262636823826646205257113864293609331930618056834066566927370990627875087925778768945665001640165683056005125639323971226813509868136389770334965171698071039205073198873409576050275360464826557217325374133699896539549088405552562005050145803007223369108919613288620978685079460228844778686070879799086155745705834050099400448294784661615213446108411217161352139233037 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aebd4625f1480cfe9e83eeddf88ef9eadb2be82d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 25e2180eb25791942ae5d45d869083de53b3b892 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1d4/_l3iB99NeYk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1d4.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (33 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.rewards.sonypictures.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1d4/S4ncRdVfvuE.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018adb0a98530000040300473045022100f95fa3560fec7284db60321131f3059a51972b55c6daf6c9fac0d38b147cad07022018480efc4b5ea5902a25d2045886f308d5e1a477bf13e910516be4832788f6ae007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018adb0a981f000004030046304402206faf584fc0cdaf9cdfafbbd955848deb54a9cae9b6741a573d81a4e1ac58341e0220151b1406a8305388ce3ff921536501ea76e97032a1beeb70d8f51cd52491442f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007a761fbb102ea3a41dcf0a9ecb431c2314ed4bbe841e2aeb21c47fd7dbd50fd3d03a10abf33ed9f24fb7bff0784e5d31f82430c52f5eb3f253b8bc73626393fe5f2cda43c98037defaf0611a9e7323548b32908debbf5801227a1faf5adbfb0f292882acff3cf966e2430521e0d38b86d921349e3696649198edaab45ce4a058fa7d8f2a161a66a69463027327a6bae3f67637a238573266ebab74832c3e7a5729f1a8c218a41ac1db7f3a6d1e2c28f6f28b1ba0605fedb9731ed492563ae10366765a2f7a413dff4a6a5dc59ba477f23638d22ac764643aedf2456e2a2f6f18939f46258ada86df8c2098a122d5b7b19a67ad41921e487c84e766398190b890