san.ets.org
- Educational Testing Service -
Issued by GeoTrust SSL CA - G4
About this certificate
This digital certificate with serial number 07:ef was issued on by GeoTrust Inc..
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Educational Testing Service
Organization:
Educational Testing Service
State / Province:
New Jersey
Locality: Princeton
Country: US
Locality: Princeton
Country: US
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:efSerial Number (int): 2031
Serial Number lenght: 11 bits, 2 octets
SubjectKeyId:
AuthorityKeyId: ac:32:ed:5a:c9:e0:de:30:9c:90:58:55:26:63:f6:72:a6:54:5f:e3
Fingerprint (sha1): ed:72:3b:af:6b:34:23:d7:c2:6d:f1:fa:e0:6c:e1:bf:17:88:5e:36
Fingerprint (sha256): 09:9b:64:ee:30:76:69:e8:53:4f:1b:a4:b0:88:43:3c:a3:81:99:d4:17:79:6c:6c:8e:c1:65:07:cd:26:53:f6
Issuing Certificate URL: http://gw.symcb.com/gw.crt
Revocation information
OCSP Server: http://gw.symcd.comCRL Distribution Point: http://gw.symcb.com/gw.crl
Check the revocation status for certificate san.ets.org
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for san.ets.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
wdpibadger-tss-uat-a.caltesting.org
wdpibadger-tss-uat.caltesting.org
wdpibadger-tss.caltesting.org
wdpibadger.caltesting.org
wdpibadger-toms.caltesting.org
wdpibadger-tss-a.caltesting.org
san.ets.org
wdpibadger-tss-uat.caltesting.org
wdpibadger-tss.caltesting.org
wdpibadger.caltesting.org
wdpibadger-toms.caltesting.org
wdpibadger-tss-a.caltesting.org
san.ets.org
Other certificates including the domain name ets.org
(limited to 100 certificates)
ibt2-cloud-util-test-prod.ets.org
isbd-cdn-test.ets.org
nlp-pilot.ets.org
elpac-help-preview.ets.org
ibt2tc-ts.ets.org
elpac-help-qc.ets.org
cahsee1.ets.org
ibtint-prod.ets.org
one-uat-batchservices-a.ets.org
v2.ereg.ets.org
ibis-ess-perf.ets.org
ereg.ets.org
stnmanager-uat.ets.org
isbd-matchmakerphp-dev.ets.org
ndecore.ets.org
cdd-dev-cft.ets.org
erater-new-test.ets.org
sparkle-0-8-2-prod-elb-tfd.ets-lltalab-swc-prod.c.ets.org
www.ets.org
ereg-ext.ets.org
rm.ets.org
eregweb-uat-ext.ets.org
cdd-test.ets.org
criterion28.ets.org
isr-stage.ets.org
eiassoaresponse-dvi.ets.org
erater-new-stage.ets.org
ibtprod-central.ets.org
facets-test.ets.org
fed11g-stg.ets.org
portal-stage.ets.org
cars-dev.ets.org
esc-dev-rest.ets.org
etslnbz28.ets.org
skw.ets.org
toeicrts.ets.org
conda.nlplab-dev.c.ets.org
isr.ets.org
TOEFL-REGISTRATION.ETS.ORG
one-web-a.ets.org
toefl-registration-dev.ets.org
osnlbpi4.ets.org
hostedzone-demo.etstest-innovate001.c-test.ets.org
isbd-cdn-stage.ets.org
api.parcore-dev.ets.org
api.ibis-test.ets.org
rpm-ot.ets.org
store.ets.org
origin-cinnamon.m.ets-plalab-ghe-nonprod.c.ets.org
san.ets.org
etsvln160.etslan.org
ensr-web.ets.org
gatewaycps-stg.ets.org
www.ets.org
nlpservices-stage.ets.org
ensr-ssrs-web-60.ets.org
one-uat-web-a.ets.org
usndcssl3.ets.org
*.ets.org
v2-scoreload.ereg.ets.org
*.ets.org
texasassessment.ets.org
toefl.ereg.ets.org
gace-qc.ets.org
cert-1201-1.etstest-innovate001.c-test.ets.org
rptasys-stg.ets.org
*.ets.org
title2.ets.org
sparkle-0-5-2-prod-elb-tfd.ets-lltalab-swc-prod.c.ets.org
sparklite.jr.ets-plalab-ghe-nonprod.c.ets.org
fed11g-stg.ets.org
cbmtd.ets.org
ibt2-speedtest.ets.org
san.ets.org
eias11g-stg.ets.org
authnsvcps3-tst.ets.org
isbd-portal-stage.ets.org
ssrs.ets.org
san.ets.org
vpn.ets.org
tcmservices-dev.ets.org
ibt2-cloud-util.ets.org
san.ets.org
api.parcore-test.ets.org
practice-new.ets.org
gace.more.ets.org
www.ets.org
stnres-int.ets.org
ibtsb.ets.org
conda.nlplab-dev.c.ets.org
origin-criterionng-stage.ets.org
mmai-nvf-mmai-tst-272250.ets-mmai-nonprod.c.ets.org
osn-wspx1.ets.org
acres-dev.ets-acres-nonprod.c.ets.org
ca-toms-help-qc.ets.org
ibt2-dashboard-uat.ets.org
stnfinancial.ets.org
tartine-asr.jbtest.ets-plalab-ghe-nonprod.c.ets.org
mds-services-int.ets.org
origin.parcore-test.ets.org
isbd-cdn-test.ets.org
nlp-pilot.ets.org
elpac-help-preview.ets.org
ibt2tc-ts.ets.org
elpac-help-qc.ets.org
cahsee1.ets.org
ibtint-prod.ets.org
one-uat-batchservices-a.ets.org
v2.ereg.ets.org
ibis-ess-perf.ets.org
ereg.ets.org
stnmanager-uat.ets.org
isbd-matchmakerphp-dev.ets.org
ndecore.ets.org
cdd-dev-cft.ets.org
erater-new-test.ets.org
sparkle-0-8-2-prod-elb-tfd.ets-lltalab-swc-prod.c.ets.org
www.ets.org
ereg-ext.ets.org
rm.ets.org
eregweb-uat-ext.ets.org
cdd-test.ets.org
criterion28.ets.org
isr-stage.ets.org
eiassoaresponse-dvi.ets.org
erater-new-stage.ets.org
ibtprod-central.ets.org
facets-test.ets.org
fed11g-stg.ets.org
portal-stage.ets.org
cars-dev.ets.org
esc-dev-rest.ets.org
etslnbz28.ets.org
skw.ets.org
toeicrts.ets.org
conda.nlplab-dev.c.ets.org
isr.ets.org
TOEFL-REGISTRATION.ETS.ORG
one-web-a.ets.org
toefl-registration-dev.ets.org
osnlbpi4.ets.org
hostedzone-demo.etstest-innovate001.c-test.ets.org
isbd-cdn-stage.ets.org
api.parcore-dev.ets.org
api.ibis-test.ets.org
rpm-ot.ets.org
store.ets.org
origin-cinnamon.m.ets-plalab-ghe-nonprod.c.ets.org
san.ets.org
etsvln160.etslan.org
ensr-web.ets.org
gatewaycps-stg.ets.org
www.ets.org
nlpservices-stage.ets.org
ensr-ssrs-web-60.ets.org
one-uat-web-a.ets.org
usndcssl3.ets.org
*.ets.org
v2-scoreload.ereg.ets.org
*.ets.org
texasassessment.ets.org
toefl.ereg.ets.org
gace-qc.ets.org
cert-1201-1.etstest-innovate001.c-test.ets.org
rptasys-stg.ets.org
*.ets.org
title2.ets.org
sparkle-0-5-2-prod-elb-tfd.ets-lltalab-swc-prod.c.ets.org
sparklite.jr.ets-plalab-ghe-nonprod.c.ets.org
fed11g-stg.ets.org
cbmtd.ets.org
ibt2-speedtest.ets.org
san.ets.org
eias11g-stg.ets.org
authnsvcps3-tst.ets.org
isbd-portal-stage.ets.org
ssrs.ets.org
san.ets.org
vpn.ets.org
tcmservices-dev.ets.org
ibt2-cloud-util.ets.org
san.ets.org
api.parcore-test.ets.org
practice-new.ets.org
gace.more.ets.org
www.ets.org
stnres-int.ets.org
ibtsb.ets.org
conda.nlplab-dev.c.ets.org
origin-criterionng-stage.ets.org
mmai-nvf-mmai-tst-272250.ets-mmai-nonprod.c.ets.org
osn-wspx1.ets.org
acres-dev.ets-acres-nonprod.c.ets.org
ca-toms-help-qc.ets.org
ibt2-dashboard-uat.ets.org
stnfinancial.ets.org
tartine-asr.jbtest.ets-plalab-ghe-nonprod.c.ets.org
mds-services-int.ets.org
origin.parcore-test.ets.org
Certificate
The complete raw certificate details for san.ets.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICB+8wDQYJKoZIhvcNAQELBQAwRDELMAkGA1UEBhMCVVMx FjAUBgNVBAoTDUdlb1RydXN0IEluYy4xHTAbBgNVBAMTFEdlb1RydXN0IFNTTCBD QSAtIEc0MB4XDTE1MDQxMzIwNTMwMVoXDTE2MDQxNTA0NTg1NFowcjELMAkGA1UE BhMCVVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxEjAQBgNVBAcTCVByaW5jZXRvbjEk MCIGA1UEChMbRWR1Y2F0aW9uYWwgVGVzdGluZyBTZXJ2aWNlMRQwEgYDVQQDEwtz YW4uZXRzLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALg1Klv+ kziy3v2Psz/PEozR6miyYxNGhVWpjZERn7QiYG6uHgHX5JlBfzyAK9rXSdiP10A8 jE09Yd55wSvEIxgQXWklTY21mGXKGRpm29v+GAzXOEgEbUVMY3OEVM7b/kL4FR2g GQ5mjcZ3HCuTn4DhnHqrJMvmfZXoeSR/cZlUk8599gl5qeYsuIfg54ycMu17Zbja KCty4onzRaP9C4gibREls/fSjNu5dn1gOP1kVrmzYECBx2Ka3n8kTUEspoo4iKdr g884mGU3QiD0OJpky1LJchSScGyylVLsLbn662YHct9mVxQZ6VGlp8xPp3d+8Dce O+gxuAh67i1tnXECAwEAAaOCAiIwggIeMB8GA1UdIwQYMBaAFKwy7VrJ4N4wnJBY VSZj9nKmVF/jMFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcwAYYTaHR0cDovL2d3 LnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0cDovL2d3LnN5bWNiLmNvbS9ndy5j cnQwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjCB2wYDVR0RBIHTMIHQgiN3ZHBpYmFkZ2VyLXRzcy11YXQtYS5jYWx0ZXN0aW5n Lm9yZ4Ihd2RwaWJhZGdlci10c3MtdWF0LmNhbHRlc3Rpbmcub3Jngh13ZHBpYmFk Z2VyLXRzcy5jYWx0ZXN0aW5nLm9yZ4IZd2RwaWJhZGdlci5jYWx0ZXN0aW5nLm9y Z4Ied2RwaWJhZGdlci10b21zLmNhbHRlc3Rpbmcub3Jngh93ZHBpYmFkZ2VyLXRz cy1hLmNhbHRlc3Rpbmcub3JnggtzYW4uZXRzLm9yZzArBgNVHR8EJDAiMCCgHqAc hhpodHRwOi8vZ3cuc3ltY2IuY29tL2d3LmNybDAMBgNVHRMBAf8EAjAAMFoGA1Ud IARTMFEwTwYKYIZIAYb4RQEHNjBBMD8GCCsGAQUFBwIBFjNodHRwczovL3d3dy5n ZW90cnVzdC5jb20vcmVzb3VyY2VzL3JlcG9zaXRvcnkvbGVnYWwwDQYJKoZIhvcN AQELBQADggEBAAnssd/XVhnyIuMMladwC/uWjF/OhJDHAKL9vWDAGfUB9o/go+rk pKruppXM3skDI+vtHHwbqXBOSgIMuWOK/kLuz5oAL3ShJQPDogWVfaoCXovdY+9E nzvQ6yXtMrfQLjT3p2fzIUbhD/qeL/rZXaR/GkyjxDyMeUKOsO/hbY3frkTg7v2S Czbxz45KRq8ygckXS+G7/+wND4FXJYbz7guNLiKfPG++YiWbsLa8ZxzbITLIjCIW mcGAdo/UK9dqzw6oyyHW1tR9PiQ55+TQbyJaaDhIg1t6UZGr4rt0cLCzWjIL/XJh Kx98ZwO1Mve4TLhcTxt1YJwzb4pjOzLyVeo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDUqW/6TOLLe/Y+zP88S jNHqaLJjE0aFVamNkRGftCJgbq4eAdfkmUF/PIAr2tdJ2I/XQDyMTT1h3nnBK8Qj GBBdaSVNjbWYZcoZGmbb2/4YDNc4SARtRUxjc4RUztv+QvgVHaAZDmaNxnccK5Of gOGceqsky+Z9leh5JH9xmVSTzn32CXmp5iy4h+DnjJwy7XtluNooK3LiifNFo/0L iCJtESWz99KM27l2fWA4/WRWubNgQIHHYprefyRNQSymijiIp2uDzziYZTdCIPQ4 mmTLUslyFJJwbLKVUuwtufrrZgdy32ZXFBnpUaWnzE+nd37wNx476DG4CHruLW2d cQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2031 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA - G4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-04-13 20:53:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-04-15 04:58:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Jersey' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Princeton' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Educational Testing Service' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'san.ets.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23254064982265744893077138868538948833733566176685839204267903482683657480413298320927041137697423035245832204956077864353014912962218723048964417014931148895787717629632948007550831734441257276195268847924591253315662831846474459825690097856934607026394834369337101924021732204819568867720852058214853966786035134301048182675582306495115065626676523187943379337306435906371530358256812689232286024409011754584459069423616429251370545877955696469606206540078378862079217602372922418698281652878683772651979802551154864994273372806390805253338014622303540112208315288737113806423731502333987693960556517989974767672689 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ac32ed5ac9e0de309c9058552663f672a6545fe3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gw.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gw.symcb.com/gw.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (211 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wdpibadger-tss-uat-a.caltesting.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wdpibadger-tss-uat.caltesting.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wdpibadger-tss.caltesting.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wdpibadger.caltesting.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wdpibadger-toms.caltesting.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wdpibadger-tss-a.caltesting.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'san.ets.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gw.symcb.com/gw.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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