clearpass.lockton.com
- Lockton Companies LLC -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 0e:83:5c:74:24:ad:a6:1a:bf:a0:01:aa:1f:dd:6f:30 was issued on by DigiCert Inc.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Lockton Companies LLC
Company registration number:
LC001474102
Organization: Lockton Companies LLC
Organization unit: Lockton
Organization: Lockton Companies LLC
Organization unit: Lockton
State / Province:
Missouri
Locality: Kansas City
Country: US
Locality: Kansas City
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:83:5c:74:24:ad:a6:1a:bf:a0:01:aa:1f:dd:6f:30Serial Number (int): 19291258012958661174954251747847925552
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 36:eb:d5:8c:36:b6:3a:9a:ac:5b:94:23:83:40:b7:d9:7e:58:7b:2d
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): 35:80:da:6f:3f:93:fb:6c:11:a5:41:f6:b9:6c:63:43:25:d7:47:5c
Fingerprint (sha256): 09:52:fa:de:bf:fe:e8:84:b3:b4:57:58:e9:bb:2b:35:d5:2c:43:91:a8:e0:af:78:92:fe:28:38:bb:9b:c2:40
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate clearpass.lockton.com
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for clearpass.lockton.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
clearpass.lockton.com
lockton-cppm1.uk.lockton.com
lockton-cppm2.uk.lockton.com
guest.locktonuk.com
lockkc-cp2.lockton.com
guest.lockton.com
lockton-cppm1.uk.lockton.com
lockton-cppm2.uk.lockton.com
guest.locktonuk.com
lockkc-cp2.lockton.com
guest.lockton.com
Other certificates including the domain name lockton.com
(limited to 100 certificates)
test.social.lockton.com
*.lockton.mcdpartners.dev
*.lockton.mcdpartners.dev
eucomms.lockton.com
global.lockton.com
globalbenefits.lockton.com
vcbridge.lockton.com
s.consulting.lockton.com
awt.lockton.com
extranet.uk.lockton.com
activesync.br.lockton.com
976539-web1.uk.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
mail-th.asia.lockton.com
micollab.asia.lockton.com
clearpass.lockton.com
eucomms.lockton.com
*.lockton.com
ssl943496.cloudflaressl.com
www.autocert.lockton.com
micollab.asia.lockton.com
*.lockton.mcdpartners.dev
axis.sage.lockton.com
*.lockton.com
xmp.mena.lockton.com
cirrus.us.lockton.com
global.lockton.com
PDFNet.lockton.com
mail.plf.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
mail.mena.lockton.com
devma360-infolock.lockton.com
cirrus.mena.lockton.com
clearpass.lockton.com
SecureAruba.uk.lockton.com
extranet.uk.lockton.com
insight.lockton.com
976539-web1.uk.lockton.com
fs.uk.lockton.com
micollab.asia.lockton.com
Tunnel.uk.lockton.com
micollab.asia.lockton.com
ftp.lockton.com
vpn2.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
*.lockton.com
sni.cloudflaressl.com
976539-web1.uk.lockton.com
ssl943498.cloudflaressl.com
locktonmail.lockton.com
abi-infolock.lockton.com
www.autocert.lockton.com
globalbenefits.lockton.com
976539-web1.uk.lockton.com
citrix.asia.lockton.com
cirrus.mena.lockton.com
citrix.asia.lockton.com
mail.asia.lockton.com
cirrus.mena.lockton.com
devrpt-infolock.lockton.com
sni.cloudflaressl.com
fs.lockton.com
micollab.asia.lockton.com
extranet.uk.lockton.com
mail.asia.lockton.com
micollab.asia.lockton.com
*.lockton.mcdpartners.dev
mail.asia.lockton.com
*.mcdpartners.dev
mail.asia.lockton.com
ssl943497.cloudflaressl.com
micollab.asia.lockton.com
micollab.asia.lockton.com
ukcomms.lockton.com
mail.mena.lockton.com
www.lockton.com
global.lockton.com
micollab.asia.lockton.com
smtp-dr.lockton.com
extranet.uk.lockton.com
secure.uk.lockton.com
*.lockton.mcdpartners.dev
micollab.asia.lockton.com
owa.lockton.com
ukcomms.lockton.com
micollab.asia.lockton.com
qbe.sage.lockton.com
ssl943498.cloudflaressl.com
activesync.mx.lockton.com
s.consulting.lockton.com
globalbenefits.lockton.com
activesync.uk.lockton.com
asiacomms.lockton.com
fastpass.uk.lockton.com
ssl943496.cloudflaressl.com
globalbenefits.lockton.com
*.lockton.mcdpartners.dev
*.lockton.mcdpartners.dev
eucomms.lockton.com
global.lockton.com
globalbenefits.lockton.com
vcbridge.lockton.com
s.consulting.lockton.com
awt.lockton.com
extranet.uk.lockton.com
activesync.br.lockton.com
976539-web1.uk.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
mail-th.asia.lockton.com
micollab.asia.lockton.com
clearpass.lockton.com
eucomms.lockton.com
*.lockton.com
ssl943496.cloudflaressl.com
www.autocert.lockton.com
micollab.asia.lockton.com
*.lockton.mcdpartners.dev
axis.sage.lockton.com
*.lockton.com
xmp.mena.lockton.com
cirrus.us.lockton.com
global.lockton.com
PDFNet.lockton.com
mail.plf.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
mail.mena.lockton.com
devma360-infolock.lockton.com
cirrus.mena.lockton.com
clearpass.lockton.com
SecureAruba.uk.lockton.com
extranet.uk.lockton.com
insight.lockton.com
976539-web1.uk.lockton.com
fs.uk.lockton.com
micollab.asia.lockton.com
Tunnel.uk.lockton.com
micollab.asia.lockton.com
ftp.lockton.com
vpn2.lockton.com
micollab.asia.lockton.com
micollab.asia.lockton.com
*.lockton.com
sni.cloudflaressl.com
976539-web1.uk.lockton.com
ssl943498.cloudflaressl.com
locktonmail.lockton.com
abi-infolock.lockton.com
www.autocert.lockton.com
globalbenefits.lockton.com
976539-web1.uk.lockton.com
citrix.asia.lockton.com
cirrus.mena.lockton.com
citrix.asia.lockton.com
mail.asia.lockton.com
cirrus.mena.lockton.com
devrpt-infolock.lockton.com
sni.cloudflaressl.com
fs.lockton.com
micollab.asia.lockton.com
extranet.uk.lockton.com
mail.asia.lockton.com
micollab.asia.lockton.com
*.lockton.mcdpartners.dev
mail.asia.lockton.com
*.mcdpartners.dev
mail.asia.lockton.com
ssl943497.cloudflaressl.com
micollab.asia.lockton.com
micollab.asia.lockton.com
ukcomms.lockton.com
mail.mena.lockton.com
www.lockton.com
global.lockton.com
micollab.asia.lockton.com
smtp-dr.lockton.com
extranet.uk.lockton.com
secure.uk.lockton.com
*.lockton.mcdpartners.dev
micollab.asia.lockton.com
owa.lockton.com
ukcomms.lockton.com
micollab.asia.lockton.com
qbe.sage.lockton.com
ssl943498.cloudflaressl.com
activesync.mx.lockton.com
s.consulting.lockton.com
globalbenefits.lockton.com
activesync.uk.lockton.com
asiacomms.lockton.com
fastpass.uk.lockton.com
ssl943496.cloudflaressl.com
globalbenefits.lockton.com
Certificate
The complete raw certificate details for clearpass.lockton.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGdTCCBV2gAwIBAgIQDoNcdCStphq/oAGqH91vMDANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTE5MDYxMTAwMDAwMFoXDTIxMDcwODEy MDAwMFowge0xHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAlVTMRkwFwYLKwYBBAGCNzwCAQITCE1pc3NvdXJpMRQwEgYDVQQF EwtMQzAwMTQ3NDEwMjELMAkGA1UEBhMCVVMxETAPBgNVBAgTCE1pc3NvdXJpMRQw EgYDVQQHEwtLYW5zYXMgQ2l0eTEeMBwGA1UEChMVTG9ja3RvbiBDb21wYW5pZXMg TExDMRAwDgYDVQQLEwdMb2NrdG9uMR4wHAYDVQQDExVjbGVhcnBhc3MubG9ja3Rv bi5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGN5Km93J0YVHN jVkfnywqVJyEjDacmdcLEzB4v0UERojyHrKs+/23BNwviuwIYIPb9xK9oIdRgwQj Xt/OfeeBVhJ0Y02mFQr63QJXu3ptjxh2n/7XvgrQNm2zw6WBXZ4RPyK1sdVuEYWo GbH37I2JKxxlfjIwmhJMUF6O+PBxmqffzIV1jGwdamv8EF/kt9YUsJ/crtE1pNB4 +AY5SE4aX1y36emb7kFDuzZYmHkQM7zymdJTDTDcyKqbnUboJoQVhF8VYsMfFTaz 2/i9u7b1Lr2Njsj70FQWCZbQCM5mZKiIFACIPxUmTcnY85fPlVk9rAsO282yTgZn 5fzB+wQdAgMBAAGjggKGMIICgjAfBgNVHSMEGDAWgBQ901Cl1qCt7vNKYApl0yHU +PjWDzAdBgNVHQ4EFgQUNuvVjDa2OpqsW5Qjg0C32X5Yey0wgZ4GA1UdEQSBljCB k4IVY2xlYXJwYXNzLmxvY2t0b24uY29tghxsb2NrdG9uLWNwcG0xLnVrLmxvY2t0 b24uY29tghxsb2NrdG9uLWNwcG0yLnVrLmxvY2t0b24uY29tghNndWVzdC5sb2Nr dG9udWsuY29tghZsb2Nra2MtY3AyLmxvY2t0b24uY29tghFndWVzdC5sb2NrdG9u LmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMHUGA1UdHwRuMGwwNKAyoDCGLmh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9z aGEyLWV2LXNlcnZlci1nMi5jcmwwNKAyoDCGLmh0dHA6Ly9jcmw0LmRpZ2ljZXJ0 LmNvbS9zaGEyLWV2LXNlcnZlci1nMi5jcmwwSwYDVR0gBEQwQjA3BglghkgBhv1s AgEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAH BgVngQwBATCBiAYIKwYBBQUHAQEEfDB6MCQGCCsGAQUFBzABhhhodHRwOi8vb2Nz cC5kaWdpY2VydC5jb20wUgYIKwYBBQUHMAKGRmh0dHA6Ly9jYWNlcnRzLmRpZ2lj ZXJ0LmNvbS9EaWdpQ2VydFNIQTJFeHRlbmRlZFZhbGlkYXRpb25TZXJ2ZXJDQS5j cnQwDAYDVR0TAQH/BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0B AQsFAAOCAQEAbMhyZJvCK9tTgdjqYsAqWvLEJgOqHnzRGZq+tFEAt4DHWhsNd0xF 88KYrF5MO2y50vQxOS9xD8NU0Lp6SAuV89I4ZNkPoRJxMeZPvVmI+rTrTm0vWMWX EVl9ck8Mm8xPiXdKe8B7LGyn6rslxY+Kc4cPltojMp2lhhN3dSVGXnFXp9UJ/7MR JLprEtOzWjGFJO+msbz6wiWUAqNrzFAo6PfB3Xf+rxRIzH2W3a9rSUnJ17eu0cTs WlNoJH8Oeabdxw5zOOaHyU8dyTyHL/0DzMm6+2f2DdsxtCn8mRjkPi0SS38zgeSn AEIGHffvJqq8q/VAHjjZnPY60yCZfaUy/Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjeSpvdydGFRzY1ZH58s KlSchIw2nJnXCxMweL9FBEaI8h6yrPv9twTcL4rsCGCD2/cSvaCHUYMEI17fzn3n gVYSdGNNphUK+t0CV7t6bY8Ydp/+174K0DZts8OlgV2eET8itbHVbhGFqBmx9+yN iSscZX4yMJoSTFBejvjwcZqn38yFdYxsHWpr/BBf5LfWFLCf3K7RNaTQePgGOUhO Gl9ct+npm+5BQ7s2WJh5EDO88pnSUw0w3Miqm51G6CaEFYRfFWLDHxU2s9v4vbu2 9S69jY7I+9BUFgmW0AjOZmSoiBQAiD8VJk3J2POXz5VZPawLDtvNsk4GZ+X8wfsE HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19291258012958661174954251747847925552 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-07-08 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Missouri' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'LC001474102' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Missouri' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Kansas City' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Lockton Companies LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Lockton' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'clearpass.lockton.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25022588382009181995590752759172194226442821169450134666068781376688898898687260789880816257875310500524297556461550155618154018961254166531425203144164570842868629304689650027541758358876939557022922968397981411678931326295801095830872094712253494661390330714690334507656345363819530949930592369372578911069950873028583733463296729237707928361879156844129003045526649036601037120412652343101973178996594508160135515698523933369069935500280481506275970497067231442626094617499006834160013150221131124667135969224547840885783144541439316398771535863603434656263829741249207800968563960315579780268371474529187232678941 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 36ebd58c36b63a9aac5b94238340b7d97e587b2d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (150 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clearpass.lockton.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lockton-cppm1.uk.lockton.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lockton-cppm2.uk.lockton.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'guest.locktonuk.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lockkc-cp2.lockton.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'guest.lockton.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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